diff -Nru thunderbird-102.9.0+build1/accessible/base/ARIAMap.cpp thunderbird-102.10.0+build2/accessible/base/ARIAMap.cpp
--- thunderbird-102.9.0+build1/accessible/base/ARIAMap.cpp	2023-03-11 11:24:06.000000000 +0000
+++ thunderbird-102.10.0+build2/accessible/base/ARIAMap.cpp	2023-04-11 06:10:53.000000000 +0000
@@ -1446,10 +1446,22 @@
   } else if (aRoleMapEntry == &sLandmarkRoleMap) {
     return LANDMARK_ROLE_MAP_ENTRY_INDEX;
   } else {
-    return aRoleMapEntry - sWAIRoleMaps;
+    uint8_t index = aRoleMapEntry - sWAIRoleMaps;
+    MOZ_ASSERT(aria::IsRoleMapIndexValid(index));
+    return index;
   }
 }
 
+bool aria::IsRoleMapIndexValid(uint8_t aRoleMapIndex) {
+  switch (aRoleMapIndex) {
+    case NO_ROLE_MAP_ENTRY_INDEX:
+    case EMPTY_ROLE_MAP_ENTRY_INDEX:
+    case LANDMARK_ROLE_MAP_ENTRY_INDEX:
+      return true;
+  }
+  return aRoleMapIndex < ArrayLength(sWAIRoleMaps);
+}
+
 uint64_t aria::UniversalStatesFor(mozilla::dom::Element* aElement) {
   uint64_t state = 0;
   uint32_t index = 0;
diff -Nru thunderbird-102.9.0+build1/accessible/base/ARIAMap.h thunderbird-102.10.0+build2/accessible/base/ARIAMap.h
--- thunderbird-102.9.0+build1/accessible/base/ARIAMap.h	2023-03-11 11:24:06.000000000 +0000
+++ thunderbird-102.10.0+build2/accessible/base/ARIAMap.h	2023-04-11 06:10:53.000000000 +0000
@@ -259,6 +259,11 @@
 uint8_t GetIndexFromRoleMap(const nsRoleMapEntry* aRoleMap);
 
 /**
+ * Determine whether a role map entry index is valid.
+ */
+bool IsRoleMapIndexValid(uint8_t aRoleMapIndex);
+
+/**
  * Return accessible state from ARIA universal states applied to the given
  * element.
  */
diff -Nru thunderbird-102.9.0+build1/accessible/ipc/DocAccessibleParent.cpp thunderbird-102.10.0+build2/accessible/ipc/DocAccessibleParent.cpp
--- thunderbird-102.9.0+build1/accessible/ipc/DocAccessibleParent.cpp	2023-03-11 11:24:06.000000000 +0000
+++ thunderbird-102.10.0+build2/accessible/ipc/DocAccessibleParent.cpp	2023-04-11 06:10:53.000000000 +0000
@@ -4,6 +4,7 @@
  * License, v. 2.0. If a copy of the MPL was not distributed with this
  * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
 
+#include "ARIAMap.h"
 #include "CachedTableAccessible.h"
 #include "DocAccessibleParent.h"
 #include "mozilla/a11y/Platform.h"
@@ -145,6 +146,10 @@
     aParent->AddChildAt(aIdxInParent, newProxy);
     newProxy->SetParent(aParent);
   } else {
+    if (!aria::IsRoleMapIndexValid(newChild.RoleMapEntryIndex())) {
+      MOZ_ASSERT_UNREACHABLE("Invalid role map entry index");
+      return 0;
+    }
     newProxy = new RemoteAccessible(
         newChild.ID(), aParent, this, newChild.Role(), newChild.Type(),
         newChild.GenericTypes(), newChild.RoleMapEntryIndex());
@@ -246,8 +251,18 @@
     return IPC_OK();
   }
 
+#ifdef XP_WIN
+  WeakPtr<RemoteAccessible> parent = root->RemoteParent();
+#else
   RemoteAccessible* parent = root->RemoteParent();
+#endif
   ProxyShowHideEvent(root, parent, false, aFromUser);
+#ifdef XP_WIN
+  if (!parent) {
+    MOZ_ASSERT(!StaticPrefs::accessibility_cache_enabled_AtStartup());
+    return IPC_FAIL(this, "Parent removed while removing child");
+  }
+#endif
 
   RefPtr<xpcAccHideEvent> event = nullptr;
   if (nsCoreUtils::AccEventObserversExist()) {
@@ -726,7 +741,12 @@
     return IPC_FAIL(this, "binding to nonexistant proxy!");
   }
 
+#ifdef XP_WIN
+  WeakPtr<RemoteAccessible> outerDoc = e->mProxy;
+#else
   RemoteAccessible* outerDoc = e->mProxy;
+#endif
+
   MOZ_ASSERT(outerDoc);
 
   // OuterDocAccessibles are expected to only have a document as a child.
@@ -781,6 +801,9 @@
 #  endif  // defined(MOZ_SANDBOX)
           }
         }
+        if (!outerDoc) {
+          return IPC_FAIL(this, "OuterDoc removed while adding child doc");
+        }
         // Send a COM proxy for the embedder OuterDocAccessible to the embedded
         // document process. This will be returned as the parent of the
         // embedded document.
@@ -818,6 +841,9 @@
 #  endif  // defined(MOZ_SANDBOX)
           }
         }
+        if (!outerDoc) {
+          return IPC_FAIL(this, "OuterDoc removed while adding child doc");
+        }
       }
       if (nsWinUtils::IsWindowEmulationStarted()) {
         aChildDoc->SetEmulatedWindowHandle(mEmulatedWindowHandle);
diff -Nru thunderbird-102.9.0+build1/accessible/ipc/RemoteAccessibleBase.h thunderbird-102.10.0+build2/accessible/ipc/RemoteAccessibleBase.h
--- thunderbird-102.9.0+build1/accessible/ipc/RemoteAccessibleBase.h	2023-03-11 11:24:06.000000000 +0000
+++ thunderbird-102.10.0+build2/accessible/ipc/RemoteAccessibleBase.h	2023-04-11 06:10:53.000000000 +0000
@@ -11,6 +11,7 @@
 #include "mozilla/a11y/CacheConstants.h"
 #include "mozilla/a11y/HyperTextAccessibleBase.h"
 #include "mozilla/a11y/Role.h"
+#include "mozilla/WeakPtr.h"
 #include "AccAttributes.h"
 #include "nsIAccessibleText.h"
 #include "nsIAccessibleTypes.h"
@@ -27,7 +28,13 @@
 enum class RelationType;
 
 template <class Derived>
+#ifdef XP_WIN
+class RemoteAccessibleBase : public Accessible,
+                             public HyperTextAccessibleBase,
+                             public SupportsWeakPtr {
+#else
 class RemoteAccessibleBase : public Accessible, public HyperTextAccessibleBase {
+#endif
  public:
   virtual ~RemoteAccessibleBase() { MOZ_ASSERT(!mWrapper); }
 
diff -Nru thunderbird-102.9.0+build1/accessible/ipc/win/RemoteAccessible.cpp thunderbird-102.10.0+build2/accessible/ipc/win/RemoteAccessible.cpp
--- thunderbird-102.9.0+build1/accessible/ipc/win/RemoteAccessible.cpp	2023-03-11 11:24:06.000000000 +0000
+++ thunderbird-102.10.0+build2/accessible/ipc/win/RemoteAccessible.cpp	2023-04-11 06:10:53.000000000 +0000
@@ -38,7 +38,7 @@
   // methods here in RemoteAccessible, causing infinite recursion.
   MOZ_ASSERT(!StaticPrefs::accessibility_cache_enabled_AtStartup());
   if (!mCOMProxy && mSafeToRecurse) {
-    RemoteAccessible* thisPtr = const_cast<RemoteAccessible*>(this);
+    WeakPtr<RemoteAccessible> thisPtr = const_cast<RemoteAccessible*>(this);
     // See if we can lazily obtain a COM proxy
     MsaaAccessible* msaa = MsaaAccessible::GetFrom(thisPtr);
     bool isDefunct = false;
@@ -48,7 +48,12 @@
     VARIANT realId = {{{VT_I4}}};
     realId.ulVal = msaa->GetExistingID();
     MOZ_DIAGNOSTIC_ASSERT(realId.ulVal != CHILDID_SELF);
-    thisPtr->mCOMProxy = msaa->GetIAccessibleFor(realId, &isDefunct);
+    RefPtr<IAccessible> proxy = msaa->GetIAccessibleFor(realId, &isDefunct);
+    if (!thisPtr) {
+      *aOutAccessible = nullptr;
+      return false;
+    }
+    thisPtr->mCOMProxy = proxy;
   }
 
   RefPtr<IAccessible> addRefed = mCOMProxy;
diff -Nru thunderbird-102.9.0+build1/accessible/windows/msaa/MsaaAccessible.cpp thunderbird-102.10.0+build2/accessible/windows/msaa/MsaaAccessible.cpp
--- thunderbird-102.9.0+build1/accessible/windows/msaa/MsaaAccessible.cpp	2023-03-11 11:24:06.000000000 +0000
+++ thunderbird-102.10.0+build2/accessible/windows/msaa/MsaaAccessible.cpp	2023-04-11 06:10:53.000000000 +0000
@@ -665,10 +665,16 @@
     dom::BrowserParent* aBrowser, Callback aCallback) {
   // We can't use BrowserBridgeParent::VisitAllDescendants because it doesn't
   // provide a way to stop the search.
-  const auto& bridges = aBrowser->ManagedPBrowserBridgeParent();
-  return std::all_of(bridges.cbegin(), bridges.cend(), [&](const auto& key) {
-    auto* bridge = static_cast<dom::BrowserBridgeParent*>(key);
-    dom::BrowserParent* childBrowser = bridge->GetBrowserParent();
+  const auto& rawBridges = aBrowser->ManagedPBrowserBridgeParent();
+  nsTArray<RefPtr<dom::BrowserBridgeParent>> bridges(rawBridges.Count());
+  for (const auto bridge : rawBridges) {
+    bridges.AppendElement(static_cast<dom::BrowserBridgeParent*>(bridge));
+  }
+  return std::all_of(bridges.cbegin(), bridges.cend(), [&](const auto& bridge) {
+    RefPtr<dom::BrowserParent> childBrowser = bridge->GetBrowserParent();
+    if (!childBrowser) {
+      return true;
+    }
     DocAccessibleParent* childDocAcc = childBrowser->GetTopLevelDocAccessible();
     if (!childDocAcc || childDocAcc->IsShutdown()) {
       return true;
diff -Nru thunderbird-102.9.0+build1/browser/components/attribution/AttributionCode.jsm thunderbird-102.10.0+build2/browser/components/attribution/AttributionCode.jsm
--- thunderbird-102.9.0+build1/browser/components/attribution/AttributionCode.jsm	2023-03-11 11:24:07.000000000 +0000
+++ thunderbird-102.10.0+build2/browser/components/attribution/AttributionCode.jsm	2023-04-11 06:10:53.000000000 +0000
@@ -66,6 +66,7 @@
   "ua",
   "dltoken",
   "msstoresignedin",
+  "dlsource",
 ];
 
 let gCachedAttrData = null;
diff -Nru thunderbird-102.9.0+build1/browser/components/attribution/test/xpcshell/head.js thunderbird-102.10.0+build2/browser/components/attribution/test/xpcshell/head.js
--- thunderbird-102.9.0+build1/browser/components/attribution/test/xpcshell/head.js	2023-03-11 11:24:06.000000000 +0000
+++ thunderbird-102.10.0+build2/browser/components/attribution/test/xpcshell/head.js	2023-04-11 06:10:53.000000000 +0000
@@ -64,6 +64,12 @@
     code: "dltoken%3Dc18f86a3-f228-4d98-91bb-f90135c0aa9c",
     parsed: { dltoken: "c18f86a3-f228-4d98-91bb-f90135c0aa9c" },
   },
+  {
+    code: "dlsource%3Dsome-dl-source",
+    parsed: {
+      dlsource: "some-dl-source",
+    },
+  },
 ];
 
 let invalidAttrCodes = [
diff -Nru thunderbird-102.9.0+build1/browser/components/enterprisepolicies/Policies.jsm thunderbird-102.10.0+build2/browser/components/enterprisepolicies/Policies.jsm
--- thunderbird-102.9.0+build1/browser/components/enterprisepolicies/Policies.jsm	2023-03-11 11:24:07.000000000 +0000
+++ thunderbird-102.10.0+build2/browser/components/enterprisepolicies/Policies.jsm	2023-04-11 06:10:54.000000000 +0000
@@ -31,6 +31,7 @@
   BookmarksPolicies: "resource:///modules/policies/BookmarksPolicies.jsm",
   CustomizableUI: "resource:///modules/CustomizableUI.jsm",
   FileUtils: "resource://gre/modules/FileUtils.jsm",
+  PdfJsDefaultPreferences: "resource://pdf.js/PdfJsDefaultPreferences.jsm",
   ProxyPolicies: "resource:///modules/policies/ProxyPolicies.jsm",
   WebsiteFilter: "resource:///modules/policies/WebsiteFilter.jsm",
 });
@@ -1669,7 +1670,7 @@
 
   Preferences: {
     onBeforeAddons(manager, param) {
-      const allowedPrefixes = [
+      let allowedPrefixes = [
         "accessibility.",
         "app.update.",
         "browser.",
@@ -1695,6 +1696,9 @@
         "ui.",
         "widget.",
       ];
+      if (!AppConstants.MOZ_REQUIRE_SIGNING) {
+        allowedPrefixes.push("xpinstall.signatures.required");
+      }
       const allowedSecurityPrefs = [
         "security.block_fileuri_script_with_wrong_mime",
         "security.default_personal_cert",
@@ -1770,7 +1774,22 @@
                 // automatically converting these values to booleans.
                 // Since we allow arbitrary prefs now, we have to do
                 // something different. See bug 1666836.
-                if (
+                // Even uglier, because pdfjs prefs are set async, we need
+                // to get their type from PdfJsDefaultPreferences.
+                if (preference.startsWith("pdfjs.")) {
+                  let preferenceTail = preference.replace("pdfjs.", "");
+                  if (
+                    preferenceTail in PdfJsDefaultPreferences &&
+                    typeof PdfJsDefaultPreferences[preferenceTail] == "number"
+                  ) {
+                    prefBranch.setIntPref(preference, param[preference].Value);
+                  } else {
+                    prefBranch.setBoolPref(
+                      preference,
+                      !!param[preference].Value
+                    );
+                  }
+                } else if (
                   prefBranch.getPrefType(preference) == prefBranch.PREF_INT ||
                   ![0, 1].includes(param[preference].Value)
                 ) {
diff -Nru thunderbird-102.9.0+build1/browser/components/enterprisepolicies/tests/xpcshell/head.js thunderbird-102.10.0+build2/browser/components/enterprisepolicies/tests/xpcshell/head.js
--- thunderbird-102.9.0+build1/browser/components/enterprisepolicies/tests/xpcshell/head.js	2023-03-11 11:24:07.000000000 +0000
+++ thunderbird-102.10.0+build2/browser/components/enterprisepolicies/tests/xpcshell/head.js	2023-04-11 06:10:53.000000000 +0000
@@ -51,7 +51,7 @@
     true,
     `Pref ${prefName} is correctly locked`
   );
-  equal(
+  strictEqual(
     Preferences.get(prefName),
     prefValue,
     `Pref ${prefName} has the correct value`
@@ -64,7 +64,7 @@
     false,
     `Pref ${prefName} is correctly unlocked`
   );
-  equal(
+  strictEqual(
     Preferences.get(prefName),
     prefValue,
     `Pref ${prefName} has the correct value`
@@ -72,7 +72,7 @@
 }
 
 function checkUserPref(prefName, prefValue) {
-  equal(
+  strictEqual(
     Preferences.get(prefName),
     prefValue,
     `Pref ${prefName} has the correct value`
diff -Nru thunderbird-102.9.0+build1/browser/components/enterprisepolicies/tests/xpcshell/test_simple_pref_policies.js thunderbird-102.10.0+build2/browser/components/enterprisepolicies/tests/xpcshell/test_simple_pref_policies.js
--- thunderbird-102.9.0+build1/browser/components/enterprisepolicies/tests/xpcshell/test_simple_pref_policies.js	2023-03-11 11:24:06.000000000 +0000
+++ thunderbird-102.10.0+build2/browser/components/enterprisepolicies/tests/xpcshell/test_simple_pref_policies.js	2023-04-11 06:10:53.000000000 +0000
@@ -967,6 +967,26 @@
       "print.prefer_system_dialog": true,
     },
   },
+
+  // Bug 1820195
+  {
+    policies: {
+      Preferences: {
+        "pdfjs.annotationMode": {
+          Value: 1,
+          Status: "default",
+        },
+        "pdfjs.sidebarViewOnLoad": {
+          Value: 0,
+          Status: "default",
+        },
+      },
+    },
+    unlockedPrefs: {
+      "pdfjs.annotationMode": 1,
+      "pdfjs.sidebarViewOnLoad": 0,
+    },
+  },
 ];
 
 add_task(async function test_policy_simple_prefs() {
diff -Nru thunderbird-102.9.0+build1/browser/config/version_display.txt thunderbird-102.10.0+build2/browser/config/version_display.txt
--- thunderbird-102.9.0+build1/browser/config/version_display.txt	2023-03-11 11:24:07.000000000 +0000
+++ thunderbird-102.10.0+build2/browser/config/version_display.txt	2023-04-11 06:11:36.000000000 +0000
@@ -1 +1 @@
-102.9.0esr
+102.10.0esr
diff -Nru thunderbird-102.9.0+build1/browser/config/version.txt thunderbird-102.10.0+build2/browser/config/version.txt
--- thunderbird-102.9.0+build1/browser/config/version.txt	2023-03-11 11:24:07.000000000 +0000
+++ thunderbird-102.10.0+build2/browser/config/version.txt	2023-04-11 06:11:36.000000000 +0000
@@ -1 +1 @@
-102.9.0
+102.10.0
diff -Nru thunderbird-102.9.0+build1/build/debian-packages/mercurial-timeout.diff thunderbird-102.10.0+build2/build/debian-packages/mercurial-timeout.diff
--- thunderbird-102.9.0+build1/build/debian-packages/mercurial-timeout.diff	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/build/debian-packages/mercurial-timeout.diff	2023-04-11 06:10:54.000000000 +0000
@@ -0,0 +1,38 @@
+# HG changeset patch
+# User Julien Cristau <jcristau@mozilla.com>
+# Date 1679408823 -3600
+#      Tue Mar 21 15:27:03 2023 +0100
+# Branch stable
+# Node ID 3a889388b8f5e4fc884fd7eb6c5daf82056627e2
+# Parent  411dc27fd9fd076d6a031a08fcaace659afe2fe3
+url: don't ignore timeout for https connections
+
+For http, we use the stdlib's HTTPConnection.connect which passes the
+timeout down to socket.create_connection; for https, we override the
+connect method but weren't handling the timeout, so connections could
+hang for hours even with http.timeout set to low values.
+
+diff --git a/mercurial/url.py b/mercurial/url.py
+--- a/mercurial/url.py
++++ b/mercurial/url.py
+@@ -404,17 +404,19 @@ if has_https:
+             *args,
+             **kwargs
+         ):
+             keepalive.HTTPConnection.__init__(self, host, port, *args, **kwargs)
+             self.key_file = key_file
+             self.cert_file = cert_file
+ 
+         def connect(self):
+-            self.sock = socket.create_connection((self.host, self.port))
++            self.sock = socket.create_connection(
++                (self.host, self.port), self.timeout
++            )
+ 
+             host = self.host
+             if self.realhostport:  # use CONNECT proxy
+                 _generic_proxytunnel(self)
+                 host = self.realhostport.rsplit(b':', 1)[0]
+             self.sock = sslutil.wrapsocket(
+                 self.sock,
+                 self.key_file,
diff -Nru thunderbird-102.9.0+build1/BUILDID thunderbird-102.10.0+build2/BUILDID
--- thunderbird-102.9.0+build1/BUILDID	2023-03-11 11:33:26.000000000 +0000
+++ thunderbird-102.10.0+build2/BUILDID	2023-04-11 06:18:48.000000000 +0000
@@ -1 +1 @@
-20230310165821
\ No newline at end of file
+20230407145224
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/CLOBBER thunderbird-102.10.0+build2/CLOBBER
--- thunderbird-102.9.0+build1/CLOBBER	2023-03-11 11:24:06.000000000 +0000
+++ thunderbird-102.10.0+build2/CLOBBER	2023-04-11 06:11:36.000000000 +0000
@@ -22,4 +22,4 @@
 # changes to stick? As of bug 928195, this shouldn't be necessary! Please
 # don't change CLOBBER for WebIDL changes any more.
 
-Merge day clobber 2023-02-14
\ No newline at end of file
+Merge day clobber 2023-03-13
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/calendar/timezones/zones.json thunderbird-102.10.0+build2/comm/calendar/timezones/zones.json
--- thunderbird-102.9.0+build1/comm/calendar/timezones/zones.json	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/calendar/timezones/zones.json	2023-04-11 06:11:52.000000000 +0000
@@ -1596,8 +1596,7 @@
     },
     "America/Mexico_City": {
       "ics": [
-        "BEGIN:DAYLIGHT\r\nTZOFFSETFROM:-0600\r\nTZOFFSETTO:-0500\r\nTZNAME:CDT\r\nDTSTART:19700405T020000\r\nRRULE:FREQ=YEARLY;BYMONTH=4;BYDAY=1SU\r\nEND:DAYLIGHT",
-        "BEGIN:STANDARD\r\nTZOFFSETFROM:-0500\r\nTZOFFSETTO:-0600\r\nTZNAME:CST\r\nDTSTART:19701025T020000\r\nRRULE:FREQ=YEARLY;BYMONTH=10;BYDAY=-1SU\r\nEND:STANDARD"
+        "BEGIN:STANDARD\r\nTZOFFSETFROM:-0600\r\nTZOFFSETTO:-0600\r\nTZNAME:CST\r\nDTSTART:19700101T000000\r\nEND:STANDARD"
       ],
       "latitude": "+0192400",
       "longitude": "-0990900"
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/browser-request/index.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/browser-request/index.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/browser-request/index.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/browser-request/index.js	1970-01-01 00:00:00.000000000 +0000
@@ -1,496 +0,0 @@
-// Browser Request
-//
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-//     http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
-// UMD HEADER START 
-(function (root, factory) {
-    if (typeof define === 'function' && define.amd) {
-        // AMD. Register as an anonymous module.
-        define([], factory);
-    } else if (typeof exports === 'object') {
-        // Node. Does not work with strict CommonJS, but
-        // only CommonJS-like enviroments that support module.exports,
-        // like Node.
-        module.exports = factory();
-    } else {
-        // Browser globals (root is window)
-        root.returnExports = factory();
-  }
-}(this, function () {
-// UMD HEADER END
-
-var XHR = XMLHttpRequest
-if (!XHR) throw new Error('missing XMLHttpRequest')
-request.log = {
-  'trace': noop, 'debug': noop, 'info': noop, 'warn': noop, 'error': noop
-}
-
-var DEFAULT_TIMEOUT = 3 * 60 * 1000 // 3 minutes
-
-//
-// request
-//
-
-function request(options, callback) {
-  // The entry-point to the API: prep the options object and pass the real work to run_xhr.
-  if(typeof callback !== 'function')
-    throw new Error('Bad callback given: ' + callback)
-
-  if(!options)
-    throw new Error('No options given')
-
-  var options_onResponse = options.onResponse; // Save this for later.
-
-  if(typeof options === 'string')
-    options = {'uri':options};
-  else
-    options = JSON.parse(JSON.stringify(options)); // Use a duplicate for mutating.
-
-  options.onResponse = options_onResponse // And put it back.
-
-  if (options.verbose) request.log = getLogger();
-
-  if(options.url) {
-    options.uri = options.url;
-    delete options.url;
-  }
-
-  if(!options.uri && options.uri !== "")
-    throw new Error("options.uri is a required argument");
-
-  if(typeof options.uri != "string")
-    throw new Error("options.uri must be a string");
-
-  var unsupported_options = ['proxy', '_redirectsFollowed', 'maxRedirects', 'followRedirect']
-  for (var i = 0; i < unsupported_options.length; i++)
-    if(options[ unsupported_options[i] ])
-      throw new Error("options." + unsupported_options[i] + " is not supported")
-
-  options.callback = callback
-  options.method = options.method || 'GET';
-  options.headers = options.headers || {};
-  options.body    = options.body || null
-  options.timeout = options.timeout || request.DEFAULT_TIMEOUT
-
-  if(options.headers.host)
-    throw new Error("Options.headers.host is not supported");
-
-  if(options.json) {
-    options.headers.accept = options.headers.accept || 'application/json'
-    if(options.method !== 'GET')
-      options.headers['content-type'] = 'application/json'
-
-    if(typeof options.json !== 'boolean')
-      options.body = JSON.stringify(options.json)
-    else if(typeof options.body !== 'string')
-      options.body = JSON.stringify(options.body)
-  }
-  
-  //BEGIN QS Hack
-  var serialize = function(obj) {
-    var str = [];
-    for(var p in obj)
-      if (obj.hasOwnProperty(p)) {
-        str.push(encodeURIComponent(p) + "=" + encodeURIComponent(obj[p]));
-      }
-    return str.join("&");
-  }
-  
-  if(options.qs){
-    var qs = (typeof options.qs == 'string')? options.qs : serialize(options.qs);
-    if(options.uri.indexOf('?') !== -1){ //no get params
-        options.uri = options.uri+'&'+qs;
-    }else{ //existing get params
-        options.uri = options.uri+'?'+qs;
-    }
-  }
-  //END QS Hack
-  
-  //BEGIN FORM Hack
-  var multipart = function(obj) {
-    //todo: support file type (useful?)
-    var result = {};
-    result.boundry = '-------------------------------'+Math.floor(Math.random()*1000000000);
-    var lines = [];
-    for(var p in obj){
-        if (obj.hasOwnProperty(p)) {
-            lines.push(
-                '--'+result.boundry+"\n"+
-                'Content-Disposition: form-data; name="'+p+'"'+"\n"+
-                "\n"+
-                obj[p]+"\n"
-            );
-        }
-    }
-    lines.push( '--'+result.boundry+'--' );
-    result.body = lines.join('');
-    result.length = result.body.length;
-    result.type = 'multipart/form-data; boundary='+result.boundry;
-    return result;
-  }
-  
-  if(options.form){
-    if(typeof options.form == 'string') throw('form name unsupported');
-    if(options.method === 'POST'){
-        var encoding = (options.encoding || 'application/x-www-form-urlencoded').toLowerCase();
-        options.headers['content-type'] = encoding;
-        switch(encoding){
-            case 'application/x-www-form-urlencoded':
-                options.body = serialize(options.form).replace(/%20/g, "+");
-                break;
-            case 'multipart/form-data':
-                var multi = multipart(options.form);
-                //options.headers['content-length'] = multi.length;
-                options.body = multi.body;
-                options.headers['content-type'] = multi.type;
-                break;
-            default : throw new Error('unsupported encoding:'+encoding);
-        }
-    }
-  }
-  //END FORM Hack
-
-  // If onResponse is boolean true, call back immediately when the response is known,
-  // not when the full request is complete.
-  options.onResponse = options.onResponse || noop
-  if(options.onResponse === true) {
-    options.onResponse = callback
-    options.callback = noop
-  }
-
-  // XXX Browsers do not like this.
-  //if(options.body)
-  //  options.headers['content-length'] = options.body.length;
-
-  // HTTP basic authentication
-  if(!options.headers.authorization && options.auth)
-    options.headers.authorization = 'Basic ' + b64_enc(options.auth.username + ':' + options.auth.password);
-
-  return run_xhr(options)
-}
-
-var req_seq = 0
-function run_xhr(options) {
-  var xhr = new XHR
-    , timed_out = false
-    , is_cors = is_crossDomain(options.uri)
-    , supports_cors = ('withCredentials' in xhr)
-
-  req_seq += 1
-  xhr.seq_id = req_seq
-  xhr.id = req_seq + ': ' + options.method + ' ' + options.uri
-  xhr._id = xhr.id // I know I will type "_id" from habit all the time.
-
-  if(is_cors && !supports_cors) {
-    var cors_err = new Error('Browser does not support cross-origin request: ' + options.uri)
-    cors_err.cors = 'unsupported'
-    return options.callback(cors_err, xhr)
-  }
-
-  xhr.timeoutTimer = setTimeout(too_late, options.timeout)
-  function too_late() {
-    timed_out = true
-    var er = new Error('ETIMEDOUT')
-    er.code = 'ETIMEDOUT'
-    er.duration = options.timeout
-
-    request.log.error('Timeout', { 'id':xhr._id, 'milliseconds':options.timeout })
-    return options.callback(er, xhr)
-  }
-
-  // Some states can be skipped over, so remember what is still incomplete.
-  var did = {'response':false, 'loading':false, 'end':false}
-
-  xhr.onreadystatechange = on_state_change
-  xhr.open(options.method, options.uri, true) // asynchronous
-  if(is_cors)
-    xhr.withCredentials = !! options.withCredentials
-  xhr.send(options.body)
-  return xhr
-
-  function on_state_change(event) {
-    if(timed_out)
-      return request.log.debug('Ignoring timed out state change', {'state':xhr.readyState, 'id':xhr.id})
-
-    request.log.debug('State change', {'state':xhr.readyState, 'id':xhr.id, 'timed_out':timed_out})
-
-    if(xhr.readyState === XHR.OPENED) {
-      request.log.debug('Request started', {'id':xhr.id})
-      for (var key in options.headers)
-        xhr.setRequestHeader(key, options.headers[key])
-    }
-
-    else if(xhr.readyState === XHR.HEADERS_RECEIVED)
-      on_response()
-
-    else if(xhr.readyState === XHR.LOADING) {
-      on_response()
-      on_loading()
-    }
-
-    else if(xhr.readyState === XHR.DONE) {
-      on_response()
-      on_loading()
-      on_end()
-    }
-  }
-
-  function on_response() {
-    if(did.response)
-      return
-
-    did.response = true
-    request.log.debug('Got response', {'id':xhr.id, 'status':xhr.status})
-    clearTimeout(xhr.timeoutTimer)
-    xhr.statusCode = xhr.status // Node request compatibility
-
-    // Detect failed CORS requests.
-    if(is_cors && xhr.statusCode == 0) {
-      var cors_err = new Error('CORS request rejected: ' + options.uri)
-      cors_err.cors = 'rejected'
-
-      // Do not process this request further.
-      did.loading = true
-      did.end = true
-
-      return options.callback(cors_err, xhr)
-    }
-
-    options.onResponse(null, xhr)
-  }
-
-  function on_loading() {
-    if(did.loading)
-      return
-
-    did.loading = true
-    request.log.debug('Response body loading', {'id':xhr.id})
-    // TODO: Maybe simulate "data" events by watching xhr.responseText
-  }
-
-  function on_end() {
-    if(did.end)
-      return
-
-    did.end = true
-    request.log.debug('Request done', {'id':xhr.id})
-
-    xhr.body = xhr.responseText
-    if(options.json) {
-      try        { xhr.body = JSON.parse(xhr.responseText) }
-      catch (er) { return options.callback(er, xhr)        }
-    }
-
-    options.callback(null, xhr, xhr.body)
-  }
-
-} // request
-
-request.withCredentials = false;
-request.DEFAULT_TIMEOUT = DEFAULT_TIMEOUT;
-
-//
-// defaults
-//
-
-request.defaults = function(options, requester) {
-  var def = function (method) {
-    var d = function (params, callback) {
-      if(typeof params === 'string')
-        params = {'uri': params};
-      else {
-        params = JSON.parse(JSON.stringify(params));
-      }
-      for (var i in options) {
-        if (params[i] === undefined) params[i] = options[i]
-      }
-      return method(params, callback)
-    }
-    return d
-  }
-  var de = def(request)
-  de.get = def(request.get)
-  de.post = def(request.post)
-  de.put = def(request.put)
-  de.head = def(request.head)
-  return de
-}
-
-//
-// HTTP method shortcuts
-//
-
-var shortcuts = [ 'get', 'put', 'post', 'head' ];
-shortcuts.forEach(function(shortcut) {
-  var method = shortcut.toUpperCase();
-  var func   = shortcut.toLowerCase();
-
-  request[func] = function(opts) {
-    if(typeof opts === 'string')
-      opts = {'method':method, 'uri':opts};
-    else {
-      opts = JSON.parse(JSON.stringify(opts));
-      opts.method = method;
-    }
-
-    var args = [opts].concat(Array.prototype.slice.apply(arguments, [1]));
-    return request.apply(this, args);
-  }
-})
-
-//
-// CouchDB shortcut
-//
-
-request.couch = function(options, callback) {
-  if(typeof options === 'string')
-    options = {'uri':options}
-
-  // Just use the request API to do JSON.
-  options.json = true
-  if(options.body)
-    options.json = options.body
-  delete options.body
-
-  callback = callback || noop
-
-  var xhr = request(options, couch_handler)
-  return xhr
-
-  function couch_handler(er, resp, body) {
-    if(er)
-      return callback(er, resp, body)
-
-    if((resp.statusCode < 200 || resp.statusCode > 299) && body.error) {
-      // The body is a Couch JSON object indicating the error.
-      er = new Error('CouchDB error: ' + (body.error.reason || body.error.error))
-      for (var key in body)
-        er[key] = body[key]
-      return callback(er, resp, body);
-    }
-
-    return callback(er, resp, body);
-  }
-}
-
-//
-// Utility
-//
-
-function noop() {}
-
-function getLogger() {
-  var logger = {}
-    , levels = ['trace', 'debug', 'info', 'warn', 'error']
-    , level, i
-
-  for(i = 0; i < levels.length; i++) {
-    level = levels[i]
-
-    logger[level] = noop
-    if(typeof console !== 'undefined' && console && console[level])
-      logger[level] = formatted(console, level)
-  }
-
-  return logger
-}
-
-function formatted(obj, method) {
-  return formatted_logger
-
-  function formatted_logger(str, context) {
-    if(typeof context === 'object')
-      str += ' ' + JSON.stringify(context)
-
-    return obj[method].call(obj, str)
-  }
-}
-
-// Return whether a URL is a cross-domain request.
-function is_crossDomain(url) {
-  // Always return false, we never issue a cross-domain request.
-  return false;
-  var rurl = /^([\w\+\.\-]+:)(?:\/\/([^\/?#:]*)(?::(\d+))?)?/
-
-  // jQuery #8138, IE may throw an exception when accessing
-  // a field from window.location if document.domain has been set
-  var ajaxLocation
-  try { ajaxLocation = location.href }
-  catch (e) {
-    // Use the href attribute of an A element since IE will modify it given document.location
-    ajaxLocation = document.createElement( "a" );
-    ajaxLocation.href = "";
-    ajaxLocation = ajaxLocation.href;
-  }
-
-  var ajaxLocParts = rurl.exec(ajaxLocation.toLowerCase()) || []
-    , parts = rurl.exec(url.toLowerCase() )
-
-  var result = !!(
-    parts &&
-    (  parts[1] != ajaxLocParts[1]
-    || parts[2] != ajaxLocParts[2]
-    || (parts[3] || (parts[1] === "http:" ? 80 : 443)) != (ajaxLocParts[3] || (ajaxLocParts[1] === "http:" ? 80 : 443))
-    )
-  )
-
-  //console.debug('is_crossDomain('+url+') -> ' + result)
-  return result
-}
-
-// MIT License from http://phpjs.org/functions/base64_encode:358
-function b64_enc (data) {
-    // Encodes string using MIME base64 algorithm
-    var b64 = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=";
-    var o1, o2, o3, h1, h2, h3, h4, bits, i = 0, ac = 0, enc="", tmp_arr = [];
-
-    if (!data) {
-        return data;
-    }
-
-    // assume utf8 data
-    // data = this.utf8_encode(data+'');
-
-    do { // pack three octets into four hexets
-        o1 = data.charCodeAt(i++);
-        o2 = data.charCodeAt(i++);
-        o3 = data.charCodeAt(i++);
-
-        bits = o1<<16 | o2<<8 | o3;
-
-        h1 = bits>>18 & 0x3f;
-        h2 = bits>>12 & 0x3f;
-        h3 = bits>>6 & 0x3f;
-        h4 = bits & 0x3f;
-
-        // use hexets to index into b64, and append result to encoded string
-        tmp_arr[ac++] = b64.charAt(h1) + b64.charAt(h2) + b64.charAt(h3) + b64.charAt(h4);
-    } while (i < data.length);
-
-    enc = tmp_arr.join('');
-
-    switch (data.length % 3) {
-        case 1:
-            enc = enc.slice(0, -2) + '==';
-        break;
-        case 2:
-            enc = enc.slice(0, -1) + '=';
-        break;
-    }
-
-    return enc;
-}
-    return request;
-//UMD FOOTER START
-}));
-//UMD FOOTER END
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/browser-request/LICENSE thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/browser-request/LICENSE
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/browser-request/LICENSE	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/browser-request/LICENSE	1970-01-01 00:00:00.000000000 +0000
@@ -1,202 +0,0 @@
-
-                                 Apache License
-                           Version 2.0, January 2004
-                        http://www.apache.org/licenses/
-
-   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
-
-   1. Definitions.
-
-      "License" shall mean the terms and conditions for use, reproduction,
-      and distribution as defined by Sections 1 through 9 of this document.
-
-      "Licensor" shall mean the copyright owner or entity authorized by
-      the copyright owner that is granting the License.
-
-      "Legal Entity" shall mean the union of the acting entity and all
-      other entities that control, are controlled by, or are under common
-      control with that entity. For the purposes of this definition,
-      "control" means (i) the power, direct or indirect, to cause the
-      direction or management of such entity, whether by contract or
-      otherwise, or (ii) ownership of fifty percent (50%) or more of the
-      outstanding shares, or (iii) beneficial ownership of such entity.
-
-      "You" (or "Your") shall mean an individual or Legal Entity
-      exercising permissions granted by this License.
-
-      "Source" form shall mean the preferred form for making modifications,
-      including but not limited to software source code, documentation
-      source, and configuration files.
-
-      "Object" form shall mean any form resulting from mechanical
-      transformation or translation of a Source form, including but
-      not limited to compiled object code, generated documentation,
-      and conversions to other media types.
-
-      "Work" shall mean the work of authorship, whether in Source or
-      Object form, made available under the License, as indicated by a
-      copyright notice that is included in or attached to the work
-      (an example is provided in the Appendix below).
-
-      "Derivative Works" shall mean any work, whether in Source or Object
-      form, that is based on (or derived from) the Work and for which the
-      editorial revisions, annotations, elaborations, or other modifications
-      represent, as a whole, an original work of authorship. For the purposes
-      of this License, Derivative Works shall not include works that remain
-      separable from, or merely link (or bind by name) to the interfaces of,
-      the Work and Derivative Works thereof.
-
-      "Contribution" shall mean any work of authorship, including
-      the original version of the Work and any modifications or additions
-      to that Work or Derivative Works thereof, that is intentionally
-      submitted to Licensor for inclusion in the Work by the copyright owner
-      or by an individual or Legal Entity authorized to submit on behalf of
-      the copyright owner. For the purposes of this definition, "submitted"
-      means any form of electronic, verbal, or written communication sent
-      to the Licensor or its representatives, including but not limited to
-      communication on electronic mailing lists, source code control systems,
-      and issue tracking systems that are managed by, or on behalf of, the
-      Licensor for the purpose of discussing and improving the Work, but
-      excluding communication that is conspicuously marked or otherwise
-      designated in writing by the copyright owner as "Not a Contribution."
-
-      "Contributor" shall mean Licensor and any individual or Legal Entity
-      on behalf of whom a Contribution has been received by Licensor and
-      subsequently incorporated within the Work.
-
-   2. Grant of Copyright License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      copyright license to reproduce, prepare Derivative Works of,
-      publicly display, publicly perform, sublicense, and distribute the
-      Work and such Derivative Works in Source or Object form.
-
-   3. Grant of Patent License. Subject to the terms and conditions of
-      this License, each Contributor hereby grants to You a perpetual,
-      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
-      (except as stated in this section) patent license to make, have made,
-      use, offer to sell, sell, import, and otherwise transfer the Work,
-      where such license applies only to those patent claims licensable
-      by such Contributor that are necessarily infringed by their
-      Contribution(s) alone or by combination of their Contribution(s)
-      with the Work to which such Contribution(s) was submitted. If You
-      institute patent litigation against any entity (including a
-      cross-claim or counterclaim in a lawsuit) alleging that the Work
-      or a Contribution incorporated within the Work constitutes direct
-      or contributory patent infringement, then any patent licenses
-      granted to You under this License for that Work shall terminate
-      as of the date such litigation is filed.
-
-   4. Redistribution. You may reproduce and distribute copies of the
-      Work or Derivative Works thereof in any medium, with or without
-      modifications, and in Source or Object form, provided that You
-      meet the following conditions:
-
-      (a) You must give any other recipients of the Work or
-          Derivative Works a copy of this License; and
-
-      (b) You must cause any modified files to carry prominent notices
-          stating that You changed the files; and
-
-      (c) You must retain, in the Source form of any Derivative Works
-          that You distribute, all copyright, patent, trademark, and
-          attribution notices from the Source form of the Work,
-          excluding those notices that do not pertain to any part of
-          the Derivative Works; and
-
-      (d) If the Work includes a "NOTICE" text file as part of its
-          distribution, then any Derivative Works that You distribute must
-          include a readable copy of the attribution notices contained
-          within such NOTICE file, excluding those notices that do not
-          pertain to any part of the Derivative Works, in at least one
-          of the following places: within a NOTICE text file distributed
-          as part of the Derivative Works; within the Source form or
-          documentation, if provided along with the Derivative Works; or,
-          within a display generated by the Derivative Works, if and
-          wherever such third-party notices normally appear. The contents
-          of the NOTICE file are for informational purposes only and
-          do not modify the License. You may add Your own attribution
-          notices within Derivative Works that You distribute, alongside
-          or as an addendum to the NOTICE text from the Work, provided
-          that such additional attribution notices cannot be construed
-          as modifying the License.
-
-      You may add Your own copyright statement to Your modifications and
-      may provide additional or different license terms and conditions
-      for use, reproduction, or distribution of Your modifications, or
-      for any such Derivative Works as a whole, provided Your use,
-      reproduction, and distribution of the Work otherwise complies with
-      the conditions stated in this License.
-
-   5. Submission of Contributions. Unless You explicitly state otherwise,
-      any Contribution intentionally submitted for inclusion in the Work
-      by You to the Licensor shall be under the terms and conditions of
-      this License, without any additional terms or conditions.
-      Notwithstanding the above, nothing herein shall supersede or modify
-      the terms of any separate license agreement you may have executed
-      with Licensor regarding such Contributions.
-
-   6. Trademarks. This License does not grant permission to use the trade
-      names, trademarks, service marks, or product names of the Licensor,
-      except as required for reasonable and customary use in describing the
-      origin of the Work and reproducing the content of the NOTICE file.
-
-   7. Disclaimer of Warranty. Unless required by applicable law or
-      agreed to in writing, Licensor provides the Work (and each
-      Contributor provides its Contributions) on an "AS IS" BASIS,
-      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
-      implied, including, without limitation, any warranties or conditions
-      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
-      PARTICULAR PURPOSE. You are solely responsible for determining the
-      appropriateness of using or redistributing the Work and assume any
-      risks associated with Your exercise of permissions under this License.
-
-   8. Limitation of Liability. In no event and under no legal theory,
-      whether in tort (including negligence), contract, or otherwise,
-      unless required by applicable law (such as deliberate and grossly
-      negligent acts) or agreed to in writing, shall any Contributor be
-      liable to You for damages, including any direct, indirect, special,
-      incidental, or consequential damages of any character arising as a
-      result of this License or out of the use or inability to use the
-      Work (including but not limited to damages for loss of goodwill,
-      work stoppage, computer failure or malfunction, or any and all
-      other commercial damages or losses), even if such Contributor
-      has been advised of the possibility of such damages.
-
-   9. Accepting Warranty or Additional Liability. While redistributing
-      the Work or Derivative Works thereof, You may choose to offer,
-      and charge a fee for, acceptance of support, warranty, indemnity,
-      or other liability obligations and/or rights consistent with this
-      License. However, in accepting such obligations, You may act only
-      on Your own behalf and on Your sole responsibility, not on behalf
-      of any other Contributor, and only if You agree to indemnify,
-      defend, and hold each Contributor harmless for any liability
-      incurred by, or claims asserted against, such Contributor by reason
-      of your accepting any such warranty or additional liability.
-
-   END OF TERMS AND CONDITIONS
-
-   APPENDIX: How to apply the Apache License to your work.
-
-      To apply the Apache License to your work, attach the following
-      boilerplate notice, with the fields enclosed by brackets "[]"
-      replaced with your own identifying information. (Don't include
-      the brackets!)  The text should be enclosed in the appropriate
-      comment syntax for the file format. We also recommend that a
-      file or class name and description of purpose be included on the
-      same "printed page" as the copyright notice for easier
-      identification within third-party archives.
-
-   Copyright [yyyy] [name of copyright owner]
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/content-type/index.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/content-type/index.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/content-type/index.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/content-type/index.js	2023-04-11 06:11:52.000000000 +0000
@@ -20,8 +20,8 @@
  * obs-text      = %x80-FF
  * quoted-pair   = "\" ( HTAB / SP / VCHAR / obs-text )
  */
-var PARAM_REGEXP = /; *([!#$%&'*+.^_`|~0-9A-Za-z-]+) *= *("(?:[\u000b\u0020\u0021\u0023-\u005b\u005d-\u007e\u0080-\u00ff]|\\[\u000b\u0020-\u00ff])*"|[!#$%&'*+.^_`|~0-9A-Za-z-]+) */g
-var TEXT_REGEXP = /^[\u000b\u0020-\u007e\u0080-\u00ff]+$/
+var PARAM_REGEXP = /; *([!#$%&'*+.^_`|~0-9A-Za-z-]+) *= *("(?:[\u000b\u0020\u0021\u0023-\u005b\u005d-\u007e\u0080-\u00ff]|\\[\u000b\u0020-\u00ff])*"|[!#$%&'*+.^_`|~0-9A-Za-z-]+) */g // eslint-disable-line no-control-regex
+var TEXT_REGEXP = /^[\u000b\u0020-\u007e\u0080-\u00ff]+$/ // eslint-disable-line no-control-regex
 var TOKEN_REGEXP = /^[!#$%&'*+.^_`|~0-9A-Za-z-]+$/
 
 /**
@@ -30,7 +30,7 @@
  * quoted-pair = "\" ( HTAB / SP / VCHAR / obs-text )
  * obs-text    = %x80-FF
  */
-var QESC_REGEXP = /\\([\u000b\u0020-\u00ff])/g
+var QESC_REGEXP = /\\([\u000b\u0020-\u00ff])/g // eslint-disable-line no-control-regex
 
 /**
  * RegExp to match chars that must be quoted-pair in RFC 7230 sec 3.2.6
@@ -119,7 +119,7 @@
 
   var index = header.indexOf(';')
   var type = index !== -1
-    ? header.substr(0, index).trim()
+    ? header.slice(0, index).trim()
     : header.trim()
 
   if (!TYPE_REGEXP.test(type)) {
@@ -145,11 +145,14 @@
       key = match[1].toLowerCase()
       value = match[2]
 
-      if (value[0] === '"') {
-        // remove quotes and escapes
-        value = value
-          .substr(1, value.length - 2)
-          .replace(QESC_REGEXP, '$1')
+      if (value.charCodeAt(0) === 0x22 /* " */) {
+        // remove quotes
+        value = value.slice(1, -1)
+
+        // remove escapes
+        if (value.indexOf('\\') !== -1) {
+          value = value.replace(QESC_REGEXP, '$1')
+        }
       }
 
       obj.parameters[key] = value
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/@matrix-org/olm/olm.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/@matrix-org/olm/olm.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/@matrix-org/olm/olm.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/@matrix-org/olm/olm.js	2023-04-11 06:11:52.000000000 +0000
@@ -1,12 +1,12 @@
 // @license magnet:?xt=urn:btih:8e4f440f4c65981c5bf93c76d35135ba5064d8b7&dn=apache-2.0.txt Apache-2.0
-// @source: https://gitlab.matrix.org/matrix-org/olm/-/tree/3.2.12
+// @source: https://gitlab.matrix.org/matrix-org/olm/-/tree/3.2.14
 
 var Olm = (function() {
 var olm_exports = {};
 var onInitSuccess;
 var onInitFail;
 
-var Module = (function() {
+var Module = (() => {
   var _scriptDir = typeof document !== 'undefined' && document.currentScript ? document.currentScript.src : undefined;
   if (typeof __filename !== 'undefined') _scriptDir = _scriptDir || __filename;
   return (
@@ -14,24 +14,24 @@
   Module = Module || {};
 
 
-var a;a||(a=typeof Module !== 'undefined' ? Module : {});var aa,ba;a.ready=new Promise(function(b,c){aa=b;ba=c});var g;if("undefined"!==typeof window)g=function(b){window.crypto.getRandomValues(b)};else if(module.exports){var ca=require("crypto");g=function(b){var c=ca.randomBytes(b.length);b.set(c)};process=global.process}else throw Error("Cannot find global to attach library to");
-if("undefined"!==typeof OLM_OPTIONS)for(var da in OLM_OPTIONS)OLM_OPTIONS.hasOwnProperty(da)&&(a[da]=OLM_OPTIONS[da]);a.onRuntimeInitialized=function(){h=a._olm_error();olm_exports.PRIVATE_KEY_LENGTH=a._olm_pk_private_key_length();onInitSuccess&&onInitSuccess()};a.onAbort=function(b){onInitFail&&onInitFail(b)};var ea={},l;for(l in a)a.hasOwnProperty(l)&&(ea[l]=a[l]);var ha="object"===typeof window,ia="function"===typeof importScripts,m="",ja,ka,la,n,q;
-if("object"===typeof process&&"object"===typeof process.versions&&"string"===typeof process.versions.node)m=ia?require("path").dirname(m)+"/":__dirname+"/",ja=function(b,c){n||(n=require("fs"));q||(q=require("path"));b=q.normalize(b);return n.readFileSync(b,c?null:"utf8")},la=function(b){b=ja(b,!0);b.buffer||(b=new Uint8Array(b));b.buffer||r("Assertion failed: undefined");return b},ka=function(b,c,d){n||(n=require("fs"));q||(q=require("path"));b=q.normalize(b);n.readFile(b,function(e,f){e?d(e):c(f.buffer)})},
-1<process.argv.length&&process.argv[1].replace(/\\/g,"/"),process.argv.slice(2),process.on("uncaughtException",function(b){throw b;}),process.on("unhandledRejection",function(b){throw b;}),a.inspect=function(){return"[Emscripten Module object]"};else if(ha||ia)ia?m=self.location.href:"undefined"!==typeof document&&document.currentScript&&(m=document.currentScript.src),_scriptDir&&(m=_scriptDir),0!==m.indexOf("blob:")?m=m.substr(0,m.replace(/[?#].*/,"").lastIndexOf("/")+1):m="",ja=function(b){var c=
-new XMLHttpRequest;c.open("GET",b,!1);c.send(null);return c.responseText},ia&&(la=function(b){var c=new XMLHttpRequest;c.open("GET",b,!1);c.responseType="arraybuffer";c.send(null);return new Uint8Array(c.response)}),ka=function(b,c,d){var e=new XMLHttpRequest;e.open("GET",b,!0);e.responseType="arraybuffer";e.onload=function(){200==e.status||0==e.status&&e.response?c(e.response):d()};e.onerror=d;e.send(null)};a.print||console.log.bind(console);var ma=a.printErr||console.warn.bind(console);
-for(l in ea)ea.hasOwnProperty(l)&&(a[l]=ea[l]);ea=null;var na;a.wasmBinary&&(na=a.wasmBinary);var noExitRuntime=a.noExitRuntime||!0;"object"!==typeof WebAssembly&&r("no native wasm support detected");
-function t(b){var c="i8";"*"===c.charAt(c.length-1)&&(c="i32");switch(c){case "i1":u[b>>0]=0;break;case "i8":u[b>>0]=0;break;case "i16":oa[b>>1]=0;break;case "i32":v[b>>2]=0;break;case "i64":pa=[0,(x=0,1<=+Math.abs(x)?0<x?(Math.min(+Math.floor(x/4294967296),4294967295)|0)>>>0:~~+Math.ceil((x-+(~~x>>>0))/4294967296)>>>0:0)];v[b>>2]=pa[0];v[b+4>>2]=pa[1];break;case "float":qa[b>>2]=0;break;case "double":ra[b>>3]=0;break;default:r("invalid type for setValue: "+c)}}
-function sa(b,c){c=c||"i8";"*"===c.charAt(c.length-1)&&(c="i32");switch(c){case "i1":return u[b>>0];case "i8":return u[b>>0];case "i16":return oa[b>>1];case "i32":return v[b>>2];case "i64":return v[b>>2];case "float":return qa[b>>2];case "double":return Number(ra[b>>3]);default:r("invalid type for getValue: "+c)}return null}var ta,ua=!1,va="undefined"!==typeof TextDecoder?new TextDecoder("utf8"):void 0;
-function y(b,c){if(b){var d=z,e=b+c;for(c=b;d[c]&&!(c>=e);)++c;if(16<c-b&&d.subarray&&va)b=va.decode(d.subarray(b,c));else{for(e="";b<c;){var f=d[b++];if(f&128){var k=d[b++]&63;if(192==(f&224))e+=String.fromCharCode((f&31)<<6|k);else{var p=d[b++]&63;f=224==(f&240)?(f&15)<<12|k<<6|p:(f&7)<<18|k<<12|p<<6|d[b++]&63;65536>f?e+=String.fromCharCode(f):(f-=65536,e+=String.fromCharCode(55296|f>>10,56320|f&1023))}}else e+=String.fromCharCode(f)}b=e}}else b="";return b}
-function A(b,c,d,e){if(!(0<e))return 0;var f=d;e=d+e-1;for(var k=0;k<b.length;++k){var p=b.charCodeAt(k);if(55296<=p&&57343>=p){var w=b.charCodeAt(++k);p=65536+((p&1023)<<10)|w&1023}if(127>=p){if(d>=e)break;c[d++]=p}else{if(2047>=p){if(d+1>=e)break;c[d++]=192|p>>6}else{if(65535>=p){if(d+2>=e)break;c[d++]=224|p>>12}else{if(d+3>=e)break;c[d++]=240|p>>18;c[d++]=128|p>>12&63}c[d++]=128|p>>6&63}c[d++]=128|p&63}}c[d]=0;return d-f}
-function B(b){for(var c=0,d=0;d<b.length;++d){var e=b.charCodeAt(d);55296<=e&&57343>=e&&(e=65536+((e&1023)<<10)|b.charCodeAt(++d)&1023);127>=e?++c:c=2047>=e?c+2:65535>=e?c+3:c+4}return c}function wa(b,c){for(var d=0;d<b.length;++d)u[c++>>0]=b.charCodeAt(d)}var xa,u,z,oa,v,qa,ra;
-function ya(){var b=ta.buffer;xa=b;a.HEAP8=u=new Int8Array(b);a.HEAP16=oa=new Int16Array(b);a.HEAP32=v=new Int32Array(b);a.HEAPU8=z=new Uint8Array(b);a.HEAPU16=new Uint16Array(b);a.HEAPU32=new Uint32Array(b);a.HEAPF32=qa=new Float32Array(b);a.HEAPF64=ra=new Float64Array(b)}var za,Aa=[],Ba=[],Da=[];function Ea(){var b=a.preRun.shift();Aa.unshift(b)}var C=0,Fa=null,Ga=null;a.preloadedImages={};a.preloadedAudios={};
-function r(b){if(a.onAbort)a.onAbort(b);b="Aborted("+b+")";ma(b);ua=!0;b=new WebAssembly.RuntimeError(b+". Build with -s ASSERTIONS=1 for more info.");ba(b);throw b;}function Ha(){return D.startsWith("data:application/octet-stream;base64,")}var D;D="olm.wasm";if(!Ha()){var Ia=D;D=a.locateFile?a.locateFile(Ia,m):m+Ia}function Ja(){var b=D;try{if(b==D&&na)return new Uint8Array(na);if(la)return la(b);throw"both async and sync fetching of the wasm failed";}catch(c){r(c)}}
-function Ka(){if(!na&&(ha||ia)){if("function"===typeof fetch&&!D.startsWith("file://"))return fetch(D,{credentials:"same-origin"}).then(function(b){if(!b.ok)throw"failed to load wasm binary file at '"+D+"'";return b.arrayBuffer()}).catch(function(){return Ja()});if(ka)return new Promise(function(b,c){ka(D,function(d){b(new Uint8Array(d))},c)})}return Promise.resolve().then(function(){return Ja()})}var x,pa;
-function La(b){for(;0<b.length;){var c=b.shift();if("function"==typeof c)c(a);else{var d=c.cc;"number"===typeof d?void 0===c.bc?Ma(d)():Ma(d)(c.bc):d(void 0===c.bc?null:c.bc)}}}var Na=[];function Ma(b){var c=Na[b];c||(b>=Na.length&&(Na.length=b+1),Na[b]=c=za.get(b));return c}
-var Oa={a:function(b,c,d){z.copyWithin(b,c,c+d)},b:function(b){var c=z.length;b>>>=0;if(2147483648<b)return!1;for(var d=1;4>=d;d*=2){var e=c*(1+.2/d);e=Math.min(e,b+100663296);e=Math.max(b,e);0<e%65536&&(e+=65536-e%65536);a:{try{ta.grow(Math.min(2147483648,e)-xa.byteLength+65535>>>16);ya();var f=1;break a}catch(k){}f=void 0}if(f)return!0}return!1}};
-(function(){function b(f){a.asm=f.exports;ta=a.asm.c;ya();za=a.asm.e;Ba.unshift(a.asm.d);C--;a.monitorRunDependencies&&a.monitorRunDependencies(C);0==C&&(null!==Fa&&(clearInterval(Fa),Fa=null),Ga&&(f=Ga,Ga=null,f()))}function c(f){b(f.instance)}function d(f){return Ka().then(function(k){return WebAssembly.instantiate(k,e)}).then(function(k){return k}).then(f,function(k){ma("failed to asynchronously prepare wasm: "+k);r(k)})}var e={a:Oa};C++;a.monitorRunDependencies&&a.monitorRunDependencies(C);if(a.instantiateWasm)try{return a.instantiateWasm(e,
-b)}catch(f){return ma("Module.instantiateWasm callback failed with error: "+f),!1}(function(){return na||"function"!==typeof WebAssembly.instantiateStreaming||Ha()||D.startsWith("file://")||"function"!==typeof fetch?d(c):fetch(D,{credentials:"same-origin"}).then(function(f){return WebAssembly.instantiateStreaming(f,e).then(c,function(k){ma("wasm streaming compile failed: "+k);ma("falling back to ArrayBuffer instantiation");return d(c)})})})().catch(ba);return{}})();
+var a;a||(a=typeof Module !== 'undefined' ? Module : {});var aa,ca;a.ready=new Promise(function(b,c){aa=b;ca=c});var g;if("undefined"!==typeof window)g=function(b){window.crypto.getRandomValues(b)};else if(module.exports){var da=require("crypto");g=function(b){var c=da.randomBytes(b.length);b.set(c)};process=global.process}else throw Error("Cannot find global to attach library to");
+if("undefined"!==typeof OLM_OPTIONS)for(var ea in OLM_OPTIONS)OLM_OPTIONS.hasOwnProperty(ea)&&(a[ea]=OLM_OPTIONS[ea]);a.onRuntimeInitialized=function(){h=a._olm_error();olm_exports.PRIVATE_KEY_LENGTH=a._olm_pk_private_key_length();onInitSuccess&&onInitSuccess()};a.onAbort=function(b){onInitFail&&onInitFail(b)};
+var fa=Object.assign({},a),ha="object"==typeof window,l="function"==typeof importScripts,ia="object"==typeof process&&"object"==typeof process.versions&&"string"==typeof process.versions.node,m="",ja,ka,la,fs,ma,na;
+if(ia)m=l?require("path").dirname(m)+"/":__dirname+"/",na=()=>{ma||(fs=require("fs"),ma=require("path"))},ja=function(b,c){na();b=ma.normalize(b);return fs.readFileSync(b,c?void 0:"utf8")},la=b=>{b=ja(b,!0);b.buffer||(b=new Uint8Array(b));return b},ka=(b,c,d)=>{na();b=ma.normalize(b);fs.readFile(b,function(e,f){e?d(e):c(f.buffer)})},1<process.argv.length&&process.argv[1].replace(/\\/g,"/"),process.argv.slice(2),process.on("uncaughtException",function(b){throw b;}),process.on("unhandledRejection",
+function(b){throw b;}),a.inspect=function(){return"[Emscripten Module object]"};else if(ha||l)l?m=self.location.href:"undefined"!=typeof document&&document.currentScript&&(m=document.currentScript.src),_scriptDir&&(m=_scriptDir),0!==m.indexOf("blob:")?m=m.substr(0,m.replace(/[?#].*/,"").lastIndexOf("/")+1):m="",ja=b=>{var c=new XMLHttpRequest;c.open("GET",b,!1);c.send(null);return c.responseText},l&&(la=b=>{var c=new XMLHttpRequest;c.open("GET",b,!1);c.responseType="arraybuffer";c.send(null);return new Uint8Array(c.response)}),
+ka=(b,c,d)=>{var e=new XMLHttpRequest;e.open("GET",b,!0);e.responseType="arraybuffer";e.onload=()=>{200==e.status||0==e.status&&e.response?c(e.response):d()};e.onerror=d;e.send(null)};a.print||console.log.bind(console);var n=a.printErr||console.warn.bind(console);Object.assign(a,fa);fa=null;var q;a.wasmBinary&&(q=a.wasmBinary);var noExitRuntime=a.noExitRuntime||!0;"object"!=typeof WebAssembly&&r("no native wasm support detected");
+var oa,pa=!1,qa="undefined"!=typeof TextDecoder?new TextDecoder("utf8"):void 0;
+function t(b,c){if(b){var d=u,e=b+c;for(c=b;d[c]&&!(c>=e);)++c;if(16<c-b&&d.buffer&&qa)b=qa.decode(d.subarray(b,c));else{for(e="";b<c;){var f=d[b++];if(f&128){var k=d[b++]&63;if(192==(f&224))e+=String.fromCharCode((f&31)<<6|k);else{var p=d[b++]&63;f=224==(f&240)?(f&15)<<12|k<<6|p:(f&7)<<18|k<<12|p<<6|d[b++]&63;65536>f?e+=String.fromCharCode(f):(f-=65536,e+=String.fromCharCode(55296|f>>10,56320|f&1023))}}else e+=String.fromCharCode(f)}b=e}}else b="";return b}
+function v(b,c,d,e){if(!(0<e))return 0;var f=d;e=d+e-1;for(var k=0;k<b.length;++k){var p=b.charCodeAt(k);if(55296<=p&&57343>=p){var w=b.charCodeAt(++k);p=65536+((p&1023)<<10)|w&1023}if(127>=p){if(d>=e)break;c[d++]=p}else{if(2047>=p){if(d+1>=e)break;c[d++]=192|p>>6}else{if(65535>=p){if(d+2>=e)break;c[d++]=224|p>>12}else{if(d+3>=e)break;c[d++]=240|p>>18;c[d++]=128|p>>12&63}c[d++]=128|p>>6&63}c[d++]=128|p&63}}c[d]=0;return d-f}
+function x(b){for(var c=0,d=0;d<b.length;++d){var e=b.charCodeAt(d);127>=e?c++:2047>=e?c+=2:55296<=e&&57343>=e?(c+=4,++d):c+=3}return c}var ra,y,u,sa,z,ta,ua,va;function wa(){var b=oa.buffer;ra=b;a.HEAP8=y=new Int8Array(b);a.HEAP16=sa=new Int16Array(b);a.HEAP32=z=new Int32Array(b);a.HEAPU8=u=new Uint8Array(b);a.HEAPU16=new Uint16Array(b);a.HEAPU32=ta=new Uint32Array(b);a.HEAPF32=ua=new Float32Array(b);a.HEAPF64=va=new Float64Array(b)}var xa=[],za=[],Aa=[];
+function Ba(){var b=a.preRun.shift();xa.unshift(b)}var A=0,Ca=null,B=null;function r(b){if(a.onAbort)a.onAbort(b);b="Aborted("+b+")";n(b);pa=!0;b=new WebAssembly.RuntimeError(b+". Build with -sASSERTIONS for more info.");ca(b);throw b;}function Da(){return C.startsWith("data:application/octet-stream;base64,")}var C;C="olm.wasm";if(!Da()){var Ea=C;C=a.locateFile?a.locateFile(Ea,m):m+Ea}
+function Fa(){var b=C;try{if(b==C&&q)return new Uint8Array(q);if(la)return la(b);throw"both async and sync fetching of the wasm failed";}catch(c){r(c)}}
+function Ga(){if(!q&&(ha||l)){if("function"==typeof fetch&&!C.startsWith("file://"))return fetch(C,{credentials:"same-origin"}).then(function(b){if(!b.ok)throw"failed to load wasm binary file at '"+C+"'";return b.arrayBuffer()}).catch(function(){return Fa()});if(ka)return new Promise(function(b,c){ka(C,function(d){b(new Uint8Array(d))},c)})}return Promise.resolve().then(function(){return Fa()})}var Ha;function Ia(b){for(;0<b.length;)b.shift()(a)}
+function Ja(b,c="i8"){c.endsWith("*")&&(c="*");switch(c){case "i1":return y[b>>0];case "i8":return y[b>>0];case "i16":return sa[b>>1];case "i32":return z[b>>2];case "i64":return z[b>>2];case "float":return ua[b>>2];case "double":return va[b>>3];case "*":return ta[b>>2];default:r("invalid type for getValue: "+c)}return null}
+function D(b){var c="i8";c.endsWith("*")&&(c="*");switch(c){case "i1":y[b>>0]=0;break;case "i8":y[b>>0]=0;break;case "i16":sa[b>>1]=0;break;case "i32":z[b>>2]=0;break;case "i64":Ha=[0,0];z[b>>2]=Ha[0];z[b+4>>2]=Ha[1];break;case "float":ua[b>>2]=0;break;case "double":va[b>>3]=0;break;case "*":ta[b>>2]=0;break;default:r("invalid type for setValue: "+c)}}function Ka(b,c,d){for(var e=0;e<b.length;++e)y[c++>>0]=b.charCodeAt(e);d||(y[c>>0]=0)}
+function La(b,c,d){d=Array(0<d?d:x(b)+1);b=v(b,d,0,d.length);c&&(d.length=b);return d}var Ma={b:function(b,c,d){u.copyWithin(b,c,c+d)},a:function(b){var c=u.length;b>>>=0;if(2147483648<b)return!1;for(var d=1;4>=d;d*=2){var e=c*(1+.2/d);e=Math.min(e,b+100663296);var f=Math;e=Math.max(b,e);f=f.min.call(f,2147483648,e+(65536-e%65536)%65536);a:{try{oa.grow(f-ra.byteLength+65535>>>16);wa();var k=1;break a}catch(p){}k=void 0}if(k)return!0}return!1}};
+(function(){function b(f){a.asm=f.exports;oa=a.asm.c;wa();za.unshift(a.asm.d);A--;a.monitorRunDependencies&&a.monitorRunDependencies(A);0==A&&(null!==Ca&&(clearInterval(Ca),Ca=null),B&&(f=B,B=null,f()))}function c(f){b(f.instance)}function d(f){return Ga().then(function(k){return WebAssembly.instantiate(k,e)}).then(function(k){return k}).then(f,function(k){n("failed to asynchronously prepare wasm: "+k);r(k)})}var e={a:Ma};A++;a.monitorRunDependencies&&a.monitorRunDependencies(A);if(a.instantiateWasm)try{return a.instantiateWasm(e,
+b)}catch(f){return n("Module.instantiateWasm callback failed with error: "+f),!1}(function(){return q||"function"!=typeof WebAssembly.instantiateStreaming||Da()||C.startsWith("file://")||ia||"function"!=typeof fetch?d(c):fetch(C,{credentials:"same-origin"}).then(function(f){return WebAssembly.instantiateStreaming(f,e).then(c,function(k){n("wasm streaming compile failed: "+k);n("falling back to ArrayBuffer instantiation");return d(c)})})})().catch(ca);return{}})();
 a.___wasm_call_ctors=function(){return(a.___wasm_call_ctors=a.asm.d).apply(null,arguments)};a._olm_get_library_version=function(){return(a._olm_get_library_version=a.asm.f).apply(null,arguments)};a._olm_error=function(){return(a._olm_error=a.asm.g).apply(null,arguments)};a._olm_account_last_error=function(){return(a._olm_account_last_error=a.asm.h).apply(null,arguments)};a.__olm_error_to_string=function(){return(a.__olm_error_to_string=a.asm.i).apply(null,arguments)};
 a._olm_account_last_error_code=function(){return(a._olm_account_last_error_code=a.asm.j).apply(null,arguments)};a._olm_session_last_error=function(){return(a._olm_session_last_error=a.asm.k).apply(null,arguments)};a._olm_session_last_error_code=function(){return(a._olm_session_last_error_code=a.asm.l).apply(null,arguments)};a._olm_utility_last_error=function(){return(a._olm_utility_last_error=a.asm.m).apply(null,arguments)};
 a._olm_utility_last_error_code=function(){return(a._olm_utility_last_error_code=a.asm.n).apply(null,arguments)};a._olm_account_size=function(){return(a._olm_account_size=a.asm.o).apply(null,arguments)};a._olm_session_size=function(){return(a._olm_session_size=a.asm.p).apply(null,arguments)};a._olm_utility_size=function(){return(a._olm_utility_size=a.asm.q).apply(null,arguments)};a._olm_account=function(){return(a._olm_account=a.asm.r).apply(null,arguments)};
@@ -70,47 +70,47 @@
 a._olm_create_sas_random_length=function(){return(a._olm_create_sas_random_length=a.asm.Kb).apply(null,arguments)};a._olm_create_sas=function(){return(a._olm_create_sas=a.asm.Lb).apply(null,arguments)};a._olm_sas_pubkey_length=function(){return(a._olm_sas_pubkey_length=a.asm.Mb).apply(null,arguments)};a._olm_sas_get_pubkey=function(){return(a._olm_sas_get_pubkey=a.asm.Nb).apply(null,arguments)};a._olm_sas_set_their_key=function(){return(a._olm_sas_set_their_key=a.asm.Ob).apply(null,arguments)};
 a._olm_sas_is_their_key_set=function(){return(a._olm_sas_is_their_key_set=a.asm.Pb).apply(null,arguments)};a._olm_sas_generate_bytes=function(){return(a._olm_sas_generate_bytes=a.asm.Qb).apply(null,arguments)};a._olm_sas_mac_length=function(){return(a._olm_sas_mac_length=a.asm.Rb).apply(null,arguments)};a._olm_sas_calculate_mac_fixed_base64=function(){return(a._olm_sas_calculate_mac_fixed_base64=a.asm.Sb).apply(null,arguments)};
 a._olm_sas_calculate_mac=function(){return(a._olm_sas_calculate_mac=a.asm.Tb).apply(null,arguments)};a._olm_sas_calculate_mac_long_kdf=function(){return(a._olm_sas_calculate_mac_long_kdf=a.asm.Ub).apply(null,arguments)};a._malloc=function(){return(a._malloc=a.asm.Vb).apply(null,arguments)};a._free=function(){return(a._free=a.asm.Wb).apply(null,arguments)};
-var Pa=a.stackSave=function(){return(Pa=a.stackSave=a.asm.Xb).apply(null,arguments)},Qa=a.stackRestore=function(){return(Qa=a.stackRestore=a.asm.Yb).apply(null,arguments)},Ra=a.stackAlloc=function(){return(Ra=a.stackAlloc=a.asm.Zb).apply(null,arguments)};a.ALLOC_STACK=1;var Sa;Ga=function Ta(){Sa||Ua();Sa||(Ga=Ta)};
-function Ua(){function b(){if(!Sa&&(Sa=!0,a.calledRun=!0,!ua)){La(Ba);aa(a);if(a.onRuntimeInitialized)a.onRuntimeInitialized();if(a.postRun)for("function"==typeof a.postRun&&(a.postRun=[a.postRun]);a.postRun.length;){var c=a.postRun.shift();Da.unshift(c)}La(Da)}}if(!(0<C)){if(a.preRun)for("function"==typeof a.preRun&&(a.preRun=[a.preRun]);a.preRun.length;)Ea();La(Aa);0<C||(a.setStatus?(a.setStatus("Running..."),setTimeout(function(){setTimeout(function(){a.setStatus("")},1);b()},1)):b())}}a.run=Ua;
-if(a.preInit)for("function"==typeof a.preInit&&(a.preInit=[a.preInit]);0<a.preInit.length;)a.preInit.pop()();Ua();function E(){var b=a._olm_outbound_group_session_size();this.ac=F(b);this.$b=a._olm_outbound_group_session(this.ac)}function G(b){return function(){var c=b.apply(this,arguments);if(c===h)throw c=y(a._olm_outbound_group_session_last_error(arguments[0])),Error("OLM."+c);return c}}E.prototype.free=function(){a._olm_clear_outbound_group_session(this.$b);H(this.$b)};
-E.prototype.pickle=J(function(b){b=K(b);var c=G(a._olm_pickle_outbound_group_session_length)(this.$b),d=L(b),e=L(c+1);try{G(a._olm_pickle_outbound_group_session)(this.$b,d,b.length,e,c)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}return y(e,c)});E.prototype.unpickle=J(function(b,c){b=K(b);var d=L(b);c=K(c);var e=L(c);try{G(a._olm_unpickle_outbound_group_session)(this.$b,d,b.length,e,c.length)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}});
-E.prototype.create=J(function(){var b=G(a._olm_init_outbound_group_session_random_length)(this.$b),c=N(b,g);try{G(a._olm_init_outbound_group_session)(this.$b,c,b)}finally{M(c,b)}});E.prototype.encrypt=function(b){try{var c=B(b);var d=G(a._olm_group_encrypt_message_length)(this.$b,c);var e=F(c+1);A(b,z,e,c+1);var f=F(d+1);G(a._olm_group_encrypt)(this.$b,e,c,f,d);t(f+d);return y(f,d)}finally{void 0!==e&&(M(e,c+1),H(e)),void 0!==f&&H(f)}};
-E.prototype.session_id=J(function(){var b=G(a._olm_outbound_group_session_id_length)(this.$b),c=L(b+1);G(a._olm_outbound_group_session_id)(this.$b,c,b);return y(c,b)});E.prototype.session_key=J(function(){var b=G(a._olm_outbound_group_session_key_length)(this.$b),c=L(b+1);G(a._olm_outbound_group_session_key)(this.$b,c,b);var d=y(c,b);M(c,b);return d});E.prototype.message_index=function(){return G(a._olm_outbound_group_session_message_index)(this.$b)};olm_exports.OutboundGroupSession=E;
-function O(){var b=a._olm_inbound_group_session_size();this.ac=F(b);this.$b=a._olm_inbound_group_session(this.ac)}function P(b){return function(){var c=b.apply(this,arguments);if(c===h)throw c=y(a._olm_inbound_group_session_last_error(arguments[0])),Error("OLM."+c);return c}}O.prototype.free=function(){a._olm_clear_inbound_group_session(this.$b);H(this.$b)};
-O.prototype.pickle=J(function(b){b=K(b);var c=P(a._olm_pickle_inbound_group_session_length)(this.$b),d=L(b),e=L(c+1);try{P(a._olm_pickle_inbound_group_session)(this.$b,d,b.length,e,c)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}return y(e,c)});O.prototype.unpickle=J(function(b,c){b=K(b);var d=L(b);c=K(c);var e=L(c);try{P(a._olm_unpickle_inbound_group_session)(this.$b,d,b.length,e,c.length)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}});
+var Na=a.stackSave=function(){return(Na=a.stackSave=a.asm.Xb).apply(null,arguments)},Oa=a.stackRestore=function(){return(Oa=a.stackRestore=a.asm.Yb).apply(null,arguments)},Pa=a.stackAlloc=function(){return(Pa=a.stackAlloc=a.asm.Zb).apply(null,arguments)};a.intArrayFromString=La;a.writeAsciiToMemory=Ka;a.ALLOC_STACK=1;var Qa;B=function Ra(){Qa||Sa();Qa||(B=Ra)};
+function Sa(){function b(){if(!Qa&&(Qa=!0,a.calledRun=!0,!pa)){Ia(za);aa(a);if(a.onRuntimeInitialized)a.onRuntimeInitialized();if(a.postRun)for("function"==typeof a.postRun&&(a.postRun=[a.postRun]);a.postRun.length;){var c=a.postRun.shift();Aa.unshift(c)}Ia(Aa)}}if(!(0<A)){if(a.preRun)for("function"==typeof a.preRun&&(a.preRun=[a.preRun]);a.preRun.length;)Ba();Ia(xa);0<A||(a.setStatus?(a.setStatus("Running..."),setTimeout(function(){setTimeout(function(){a.setStatus("")},1);b()},1)):b())}}
+if(a.preInit)for("function"==typeof a.preInit&&(a.preInit=[a.preInit]);0<a.preInit.length;)a.preInit.pop()();Sa();function E(){var b=a._olm_outbound_group_session_size();this.ac=F(b);this.$b=a._olm_outbound_group_session(this.ac)}function G(b){return function(){var c=b.apply(this,arguments);if(c===h)throw c=t(a._olm_outbound_group_session_last_error(arguments[0])),Error("OLM."+c);return c}}E.prototype.free=function(){a._olm_clear_outbound_group_session(this.$b);H(this.$b)};
+E.prototype.pickle=J(function(b){b=K(b);var c=G(a._olm_pickle_outbound_group_session_length)(this.$b),d=L(b),e=L(c+1);try{G(a._olm_pickle_outbound_group_session)(this.$b,d,b.length,e,c)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}return t(e,c)});E.prototype.unpickle=J(function(b,c){b=K(b);var d=L(b);c=K(c);var e=L(c);try{G(a._olm_unpickle_outbound_group_session)(this.$b,d,b.length,e,c.length)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}});
+E.prototype.create=J(function(){var b=G(a._olm_init_outbound_group_session_random_length)(this.$b),c=N(b,g);try{G(a._olm_init_outbound_group_session)(this.$b,c,b)}finally{M(c,b)}});E.prototype.encrypt=function(b){try{var c=x(b);var d=G(a._olm_group_encrypt_message_length)(this.$b,c);var e=F(c+1);v(b,u,e,c+1);var f=F(d+1);G(a._olm_group_encrypt)(this.$b,e,c,f,d);D(f+d);return t(f,d)}finally{void 0!==e&&(M(e,c+1),H(e)),void 0!==f&&H(f)}};
+E.prototype.session_id=J(function(){var b=G(a._olm_outbound_group_session_id_length)(this.$b),c=L(b+1);G(a._olm_outbound_group_session_id)(this.$b,c,b);return t(c,b)});E.prototype.session_key=J(function(){var b=G(a._olm_outbound_group_session_key_length)(this.$b),c=L(b+1);G(a._olm_outbound_group_session_key)(this.$b,c,b);var d=t(c,b);M(c,b);return d});E.prototype.message_index=function(){return G(a._olm_outbound_group_session_message_index)(this.$b)};olm_exports.OutboundGroupSession=E;
+function O(){var b=a._olm_inbound_group_session_size();this.ac=F(b);this.$b=a._olm_inbound_group_session(this.ac)}function P(b){return function(){var c=b.apply(this,arguments);if(c===h)throw c=t(a._olm_inbound_group_session_last_error(arguments[0])),Error("OLM."+c);return c}}O.prototype.free=function(){a._olm_clear_inbound_group_session(this.$b);H(this.$b)};
+O.prototype.pickle=J(function(b){b=K(b);var c=P(a._olm_pickle_inbound_group_session_length)(this.$b),d=L(b),e=L(c+1);try{P(a._olm_pickle_inbound_group_session)(this.$b,d,b.length,e,c)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}return t(e,c)});O.prototype.unpickle=J(function(b,c){b=K(b);var d=L(b);c=K(c);var e=L(c);try{P(a._olm_unpickle_inbound_group_session)(this.$b,d,b.length,e,c.length)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}});
 O.prototype.create=J(function(b){b=K(b);var c=L(b);try{P(a._olm_init_inbound_group_session)(this.$b,c,b.length)}finally{for(M(c,b.length),c=0;c<b.length;c++)b[c]=0}});O.prototype.import_session=J(function(b){b=K(b);var c=L(b);try{P(a._olm_import_inbound_group_session)(this.$b,c,b.length)}finally{for(M(c,b.length),c=0;c<b.length;c++)b[c]=0}});
-O.prototype.decrypt=J(function(b){try{var c=F(b.length);wa(b,c);var d=P(a._olm_group_decrypt_max_plaintext_length)(this.$b,c,b.length);wa(b,c);var e=F(d+1);var f=L(4);var k=P(a._olm_group_decrypt)(this.$b,c,b.length,e,d,f);t(e+k);return{plaintext:y(e,k),message_index:sa(f,"i32")}}finally{void 0!==c&&H(c),void 0!==e&&(M(e,k),H(e))}});O.prototype.session_id=J(function(){var b=P(a._olm_inbound_group_session_id_length)(this.$b),c=L(b+1);P(a._olm_inbound_group_session_id)(this.$b,c,b);return y(c,b)});
-O.prototype.first_known_index=J(function(){return P(a._olm_inbound_group_session_first_known_index)(this.$b)});O.prototype.export_session=J(function(b){var c=P(a._olm_export_inbound_group_session_length)(this.$b),d=L(c+1);G(a._olm_export_inbound_group_session)(this.$b,d,c,b);b=y(d,c);M(d,c);return b});olm_exports.InboundGroupSession=O;function Va(){var b=a._olm_pk_encryption_size();this.ac=F(b);this.$b=a._olm_pk_encryption(this.ac)}
-function Q(b){return function(){var c=b.apply(this,arguments);if(c===h)throw c=y(a._olm_pk_encryption_last_error(arguments[0])),Error("OLM."+c);return c}}Va.prototype.free=function(){a._olm_clear_pk_encryption(this.$b);H(this.$b)};Va.prototype.set_recipient_key=J(function(b){b=K(b);var c=L(b);Q(a._olm_pk_encryption_set_recipient_key)(this.$b,c,b.length)});
-Va.prototype.encrypt=J(function(b){try{var c=B(b);var d=F(c+1);A(b,z,d,c+1);var e=Q(a._olm_pk_encrypt_random_length)();var f=N(e,g);var k=Q(a._olm_pk_ciphertext_length)(this.$b,c);var p=F(k+1);var w=Q(a._olm_pk_mac_length)(this.$b),fa=L(w+1);t(fa+w);var R=Q(a._olm_pk_key_length)(),I=L(R+1);t(I+R);Q(a._olm_pk_encrypt)(this.$b,d,c,p,k,fa,w,I,R,f,e);t(p+k);return{ciphertext:y(p,k),mac:y(fa,w),ephemeral:y(I,R)}}finally{void 0!==f&&M(f,e),void 0!==d&&(M(d,c+1),H(d)),void 0!==p&&H(p)}});
-function S(){var b=a._olm_pk_decryption_size();this.ac=F(b);this.$b=a._olm_pk_decryption(this.ac)}function T(b){return function(){var c=b.apply(this,arguments);if(c===h)throw c=y(a._olm_pk_decryption_last_error(arguments[0])),Error("OLM."+c);return c}}S.prototype.free=function(){a._olm_clear_pk_decryption(this.$b);H(this.$b)};
-S.prototype.init_with_private_key=J(function(b){var c=L(b.length);a.HEAPU8.set(b,c);var d=T(a._olm_pk_key_length)(),e=L(d+1);try{T(a._olm_pk_key_from_private)(this.$b,e,d,c,b.length)}finally{M(c,b.length)}return y(e,d)});S.prototype.generate_key=J(function(){var b=T(a._olm_pk_private_key_length)(),c=N(b,g),d=T(a._olm_pk_key_length)(),e=L(d+1);try{T(a._olm_pk_key_from_private)(this.$b,e,d,c,b)}finally{M(c,b)}return y(e,d)});
-S.prototype.get_private_key=J(function(){var b=Q(a._olm_pk_private_key_length)(),c=L(b);T(a._olm_pk_get_private_key)(this.$b,c,b);var d=new Uint8Array(new Uint8Array(a.HEAPU8.buffer,c,b));M(c,b);return d});S.prototype.pickle=J(function(b){b=K(b);var c=T(a._olm_pickle_pk_decryption_length)(this.$b),d=L(b),e=L(c+1);try{T(a._olm_pickle_pk_decryption)(this.$b,d,b.length,e,c)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}return y(e,c)});
-S.prototype.unpickle=J(function(b,c){b=K(b);var d=L(b),e=K(c),f=L(e);c=T(a._olm_pk_key_length)();var k=L(c+1);try{T(a._olm_unpickle_pk_decryption)(this.$b,d,b.length,f,e.length,k,c)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}return y(k,c)});
-S.prototype.decrypt=J(function(b,c,d){try{var e=B(d);var f=F(e+1);A(d,z,f,e+1);var k=K(b),p=L(k),w=K(c),fa=L(w);var R=T(a._olm_pk_max_plaintext_length)(this.$b,e);var I=F(R+1);var Ca=T(a._olm_pk_decrypt)(this.$b,p,k.length,fa,w.length,f,e,I,R);t(I+Ca);return y(I,Ca)}finally{void 0!==I&&(M(I,Ca+1),H(I)),void 0!==f&&H(f)}});function Wa(){var b=a._olm_pk_signing_size();this.ac=F(b);this.$b=a._olm_pk_signing(this.ac)}
-function Xa(b){return function(){var c=b.apply(this,arguments);if(c===h)throw c=y(a._olm_pk_signing_last_error(arguments[0])),Error("OLM."+c);return c}}Wa.prototype.free=function(){a._olm_clear_pk_signing(this.$b);H(this.$b)};Wa.prototype.init_with_seed=J(function(b){var c=L(b.length);a.HEAPU8.set(b,c);var d=Xa(a._olm_pk_signing_public_key_length)(),e=L(d+1);try{Xa(a._olm_pk_signing_key_from_seed)(this.$b,e,d,c,b.length)}finally{M(c,b.length)}return y(e,d)});
-Wa.prototype.generate_seed=J(function(){var b=Xa(a._olm_pk_signing_seed_length)(),c=N(b,g),d=new Uint8Array(new Uint8Array(a.HEAPU8.buffer,c,b));M(c,b);return d});Wa.prototype.sign=J(function(b){try{var c=B(b);var d=F(c+1);A(b,z,d,c+1);var e=Xa(a._olm_pk_signature_length)(),f=L(e+1);Xa(a._olm_pk_sign)(this.$b,d,c,f,e);return y(f,e)}finally{void 0!==d&&(M(d,c+1),H(d))}});
-function U(){var b=a._olm_sas_size(),c=a._olm_create_sas_random_length(),d=N(c,g);this.ac=F(b);this.$b=a._olm_sas(this.ac);a._olm_create_sas(this.$b,d,c);M(d,c)}function V(b){return function(){var c=b.apply(this,arguments);if(c===h)throw c=y(a._olm_sas_last_error(arguments[0])),Error("OLM."+c);return c}}U.prototype.free=function(){a._olm_clear_sas(this.$b);H(this.$b)};
-U.prototype.get_pubkey=J(function(){var b=V(a._olm_sas_pubkey_length)(this.$b),c=L(b+1);V(a._olm_sas_get_pubkey)(this.$b,c,b);return y(c,b)});U.prototype.set_their_key=J(function(b){b=K(b);var c=L(b);V(a._olm_sas_set_their_key)(this.$b,c,b.length)});U.prototype.is_their_key_set=J(function(){return V(a._olm_sas_is_their_key_set)(this.$b)?!0:!1});
-U.prototype.generate_bytes=J(function(b,c){b=K(b);var d=L(b),e=L(c);V(a._olm_sas_generate_bytes)(this.$b,d,b.length,e,c);return new Uint8Array(new Uint8Array(a.HEAPU8.buffer,e,c))});U.prototype.calculate_mac=J(function(b,c){b=K(b);var d=L(b);c=K(c);var e=L(c),f=V(a._olm_sas_mac_length)(this.$b),k=L(f+1);V(a._olm_sas_calculate_mac)(this.$b,d,b.length,e,c.length,k,f);return y(k,f)});
-U.prototype.calculate_mac_fixed_base64=J(function(b,c){b=K(b);var d=L(b);c=K(c);var e=L(c),f=V(a._olm_sas_mac_length)(this.$b),k=L(f+1);V(a._olm_sas_calculate_mac_fixed_base64)(this.$b,d,b.length,e,c.length,k,f);return y(k,f)});U.prototype.calculate_mac_long_kdf=J(function(b,c){b=K(b);var d=L(b);c=K(c);var e=L(c),f=V(a._olm_sas_mac_length)(this.$b),k=L(f+1);V(a._olm_sas_calculate_mac_long_kdf)(this.$b,d,b.length,e,c.length,k,f);return y(k,f)});var F=a._malloc,H=a._free,h;
-function N(b,c){var d=Ra(b);c(new Uint8Array(a.HEAPU8.buffer,d,b));return d}function L(b){return"number"==typeof b?N(b,function(c){c.fill(0)}):N(b.length,function(c){c.set(b)})}function K(b){if(b instanceof Uint8Array)var c=b;else c=Array(B(b)+1),b=A(b,c,0,c.length),c.length=b;return c}function J(b){return function(){var c=Pa();try{return b.apply(this,arguments)}finally{Qa(c)}}}function M(b,c){for(;0<c--;)a.HEAP8[b++]=0}
-function W(){var b=a._olm_account_size();this.ac=F(b);this.$b=a._olm_account(this.ac)}function X(b){return function(){var c=b.apply(this,arguments);if(c===h)throw c=y(a._olm_account_last_error(arguments[0])),Error("OLM."+c);return c}}W.prototype.free=function(){a._olm_clear_account(this.$b);H(this.$b)};W.prototype.create=J(function(){var b=X(a._olm_create_account_random_length)(this.$b),c=N(b,g);try{X(a._olm_create_account)(this.$b,c,b)}finally{M(c,b)}});
-W.prototype.identity_keys=J(function(){var b=X(a._olm_account_identity_keys_length)(this.$b),c=L(b+1);X(a._olm_account_identity_keys)(this.$b,c,b);return y(c,b)});W.prototype.sign=J(function(b){var c=X(a._olm_account_signature_length)(this.$b);b=K(b);var d=L(b),e=L(c+1);try{X(a._olm_account_sign)(this.$b,d,b.length,e,c)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}return y(e,c)});
-W.prototype.one_time_keys=J(function(){var b=X(a._olm_account_one_time_keys_length)(this.$b),c=L(b+1);X(a._olm_account_one_time_keys)(this.$b,c,b);return y(c,b)});W.prototype.mark_keys_as_published=J(function(){X(a._olm_account_mark_keys_as_published)(this.$b)});W.prototype.max_number_of_one_time_keys=J(function(){return X(a._olm_account_max_number_of_one_time_keys)(this.$b)});
+O.prototype.decrypt=J(function(b){try{var c=F(b.length);Ka(b,c,!0);var d=P(a._olm_group_decrypt_max_plaintext_length)(this.$b,c,b.length);Ka(b,c,!0);var e=F(d+1);var f=L(4);var k=P(a._olm_group_decrypt)(this.$b,c,b.length,e,d,f);D(e+k);return{plaintext:t(e,k),message_index:Ja(f,"i32")}}finally{void 0!==c&&H(c),void 0!==e&&(M(e,k),H(e))}});
+O.prototype.session_id=J(function(){var b=P(a._olm_inbound_group_session_id_length)(this.$b),c=L(b+1);P(a._olm_inbound_group_session_id)(this.$b,c,b);return t(c,b)});O.prototype.first_known_index=J(function(){return P(a._olm_inbound_group_session_first_known_index)(this.$b)});O.prototype.export_session=J(function(b){var c=P(a._olm_export_inbound_group_session_length)(this.$b),d=L(c+1);G(a._olm_export_inbound_group_session)(this.$b,d,c,b);b=t(d,c);M(d,c);return b});
+olm_exports.InboundGroupSession=O;function Ta(){var b=a._olm_pk_encryption_size();this.ac=F(b);this.$b=a._olm_pk_encryption(this.ac)}function Q(b){return function(){var c=b.apply(this,arguments);if(c===h)throw c=t(a._olm_pk_encryption_last_error(arguments[0])),Error("OLM."+c);return c}}Ta.prototype.free=function(){a._olm_clear_pk_encryption(this.$b);H(this.$b)};Ta.prototype.set_recipient_key=J(function(b){b=K(b);var c=L(b);Q(a._olm_pk_encryption_set_recipient_key)(this.$b,c,b.length)});
+Ta.prototype.encrypt=J(function(b){try{var c=x(b);var d=F(c+1);v(b,u,d,c+1);var e=Q(a._olm_pk_encrypt_random_length)();var f=N(e,g);var k=Q(a._olm_pk_ciphertext_length)(this.$b,c);var p=F(k+1);var w=Q(a._olm_pk_mac_length)(this.$b),ba=L(w+1);D(ba+w);var R=Q(a._olm_pk_key_length)(),I=L(R+1);D(I+R);Q(a._olm_pk_encrypt)(this.$b,d,c,p,k,ba,w,I,R,f,e);D(p+k);return{ciphertext:t(p,k),mac:t(ba,w),ephemeral:t(I,R)}}finally{void 0!==f&&M(f,e),void 0!==d&&(M(d,c+1),H(d)),void 0!==p&&H(p)}});
+function S(){var b=a._olm_pk_decryption_size();this.ac=F(b);this.$b=a._olm_pk_decryption(this.ac)}function T(b){return function(){var c=b.apply(this,arguments);if(c===h)throw c=t(a._olm_pk_decryption_last_error(arguments[0])),Error("OLM."+c);return c}}S.prototype.free=function(){a._olm_clear_pk_decryption(this.$b);H(this.$b)};
+S.prototype.init_with_private_key=J(function(b){var c=L(b.length);a.HEAPU8.set(b,c);var d=T(a._olm_pk_key_length)(),e=L(d+1);try{T(a._olm_pk_key_from_private)(this.$b,e,d,c,b.length)}finally{M(c,b.length)}return t(e,d)});S.prototype.generate_key=J(function(){var b=T(a._olm_pk_private_key_length)(),c=N(b,g),d=T(a._olm_pk_key_length)(),e=L(d+1);try{T(a._olm_pk_key_from_private)(this.$b,e,d,c,b)}finally{M(c,b)}return t(e,d)});
+S.prototype.get_private_key=J(function(){var b=Q(a._olm_pk_private_key_length)(),c=L(b);T(a._olm_pk_get_private_key)(this.$b,c,b);var d=new Uint8Array(new Uint8Array(a.HEAPU8.buffer,c,b));M(c,b);return d});S.prototype.pickle=J(function(b){b=K(b);var c=T(a._olm_pickle_pk_decryption_length)(this.$b),d=L(b),e=L(c+1);try{T(a._olm_pickle_pk_decryption)(this.$b,d,b.length,e,c)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}return t(e,c)});
+S.prototype.unpickle=J(function(b,c){b=K(b);var d=L(b),e=K(c),f=L(e);c=T(a._olm_pk_key_length)();var k=L(c+1);try{T(a._olm_unpickle_pk_decryption)(this.$b,d,b.length,f,e.length,k,c)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}return t(k,c)});
+S.prototype.decrypt=J(function(b,c,d){try{var e=x(d);var f=F(e+1);v(d,u,f,e+1);var k=K(b),p=L(k),w=K(c),ba=L(w);var R=T(a._olm_pk_max_plaintext_length)(this.$b,e);var I=F(R+1);var ya=T(a._olm_pk_decrypt)(this.$b,p,k.length,ba,w.length,f,e,I,R);D(I+ya);return t(I,ya)}finally{void 0!==I&&(M(I,ya+1),H(I)),void 0!==f&&H(f)}});function Ua(){var b=a._olm_pk_signing_size();this.ac=F(b);this.$b=a._olm_pk_signing(this.ac)}
+function Va(b){return function(){var c=b.apply(this,arguments);if(c===h)throw c=t(a._olm_pk_signing_last_error(arguments[0])),Error("OLM."+c);return c}}Ua.prototype.free=function(){a._olm_clear_pk_signing(this.$b);H(this.$b)};Ua.prototype.init_with_seed=J(function(b){var c=L(b.length);a.HEAPU8.set(b,c);var d=Va(a._olm_pk_signing_public_key_length)(),e=L(d+1);try{Va(a._olm_pk_signing_key_from_seed)(this.$b,e,d,c,b.length)}finally{M(c,b.length)}return t(e,d)});
+Ua.prototype.generate_seed=J(function(){var b=Va(a._olm_pk_signing_seed_length)(),c=N(b,g),d=new Uint8Array(new Uint8Array(a.HEAPU8.buffer,c,b));M(c,b);return d});Ua.prototype.sign=J(function(b){try{var c=x(b);var d=F(c+1);v(b,u,d,c+1);var e=Va(a._olm_pk_signature_length)(),f=L(e+1);Va(a._olm_pk_sign)(this.$b,d,c,f,e);return t(f,e)}finally{void 0!==d&&(M(d,c+1),H(d))}});
+function U(){var b=a._olm_sas_size(),c=a._olm_create_sas_random_length(),d=N(c,g);this.ac=F(b);this.$b=a._olm_sas(this.ac);a._olm_create_sas(this.$b,d,c);M(d,c)}function V(b){return function(){var c=b.apply(this,arguments);if(c===h)throw c=t(a._olm_sas_last_error(arguments[0])),Error("OLM."+c);return c}}U.prototype.free=function(){a._olm_clear_sas(this.$b);H(this.$b)};
+U.prototype.get_pubkey=J(function(){var b=V(a._olm_sas_pubkey_length)(this.$b),c=L(b+1);V(a._olm_sas_get_pubkey)(this.$b,c,b);return t(c,b)});U.prototype.set_their_key=J(function(b){b=K(b);var c=L(b);V(a._olm_sas_set_their_key)(this.$b,c,b.length)});U.prototype.is_their_key_set=J(function(){return V(a._olm_sas_is_their_key_set)(this.$b)?!0:!1});
+U.prototype.generate_bytes=J(function(b,c){b=K(b);var d=L(b),e=L(c);V(a._olm_sas_generate_bytes)(this.$b,d,b.length,e,c);return new Uint8Array(new Uint8Array(a.HEAPU8.buffer,e,c))});U.prototype.calculate_mac=J(function(b,c){b=K(b);var d=L(b);c=K(c);var e=L(c),f=V(a._olm_sas_mac_length)(this.$b),k=L(f+1);V(a._olm_sas_calculate_mac)(this.$b,d,b.length,e,c.length,k,f);return t(k,f)});
+U.prototype.calculate_mac_fixed_base64=J(function(b,c){b=K(b);var d=L(b);c=K(c);var e=L(c),f=V(a._olm_sas_mac_length)(this.$b),k=L(f+1);V(a._olm_sas_calculate_mac_fixed_base64)(this.$b,d,b.length,e,c.length,k,f);return t(k,f)});U.prototype.calculate_mac_long_kdf=J(function(b,c){b=K(b);var d=L(b);c=K(c);var e=L(c),f=V(a._olm_sas_mac_length)(this.$b),k=L(f+1);V(a._olm_sas_calculate_mac_long_kdf)(this.$b,d,b.length,e,c.length,k,f);return t(k,f)});var F=a._malloc,H=a._free,h;
+function N(b,c){var d=Pa(b);c(new Uint8Array(a.HEAPU8.buffer,d,b));return d}function L(b){return"number"==typeof b?N(b,function(c){c.fill(0)}):N(b.length,function(c){c.set(b)})}function K(b){return b instanceof Uint8Array?b:La(b,!0)}function J(b){return function(){var c=Na();try{return b.apply(this,arguments)}finally{Oa(c)}}}function M(b,c){for(;0<c--;)a.HEAP8[b++]=0}function W(){var b=a._olm_account_size();this.ac=F(b);this.$b=a._olm_account(this.ac)}
+function X(b){return function(){var c=b.apply(this,arguments);if(c===h)throw c=t(a._olm_account_last_error(arguments[0])),Error("OLM."+c);return c}}W.prototype.free=function(){a._olm_clear_account(this.$b);H(this.$b)};W.prototype.create=J(function(){var b=X(a._olm_create_account_random_length)(this.$b),c=N(b,g);try{X(a._olm_create_account)(this.$b,c,b)}finally{M(c,b)}});
+W.prototype.identity_keys=J(function(){var b=X(a._olm_account_identity_keys_length)(this.$b),c=L(b+1);X(a._olm_account_identity_keys)(this.$b,c,b);return t(c,b)});W.prototype.sign=J(function(b){var c=X(a._olm_account_signature_length)(this.$b);b=K(b);var d=L(b),e=L(c+1);try{X(a._olm_account_sign)(this.$b,d,b.length,e,c)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}return t(e,c)});
+W.prototype.one_time_keys=J(function(){var b=X(a._olm_account_one_time_keys_length)(this.$b),c=L(b+1);X(a._olm_account_one_time_keys)(this.$b,c,b);return t(c,b)});W.prototype.mark_keys_as_published=J(function(){X(a._olm_account_mark_keys_as_published)(this.$b)});W.prototype.max_number_of_one_time_keys=J(function(){return X(a._olm_account_max_number_of_one_time_keys)(this.$b)});
 W.prototype.generate_one_time_keys=J(function(b){var c=X(a._olm_account_generate_one_time_keys_random_length)(this.$b,b),d=N(c,g);try{X(a._olm_account_generate_one_time_keys)(this.$b,b,d,c)}finally{M(d,c)}});W.prototype.remove_one_time_keys=J(function(b){X(a._olm_remove_one_time_keys)(this.$b,b.$b)});W.prototype.generate_fallback_key=J(function(){var b=X(a._olm_account_generate_fallback_key_random_length)(this.$b),c=N(b,g);try{X(a._olm_account_generate_fallback_key)(this.$b,c,b)}finally{M(c,b)}});
-W.prototype.fallback_key=J(function(){var b=X(a._olm_account_fallback_key_length)(this.$b),c=L(b+1);X(a._olm_account_fallback_key)(this.$b,c,b);return y(c,b)});W.prototype.unpublished_fallback_key=J(function(){var b=X(a._olm_account_unpublished_fallback_key_length)(this.$b),c=L(b+1);X(a._olm_account_unpublished_fallback_key)(this.$b,c,b);return y(c,b)});W.prototype.forget_old_fallback_key=J(function(){X(a._olm_account_forget_old_fallback_key)(this.$b)});
-W.prototype.pickle=J(function(b){b=K(b);var c=X(a._olm_pickle_account_length)(this.$b),d=L(b),e=L(c+1);try{X(a._olm_pickle_account)(this.$b,d,b.length,e,c)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}return y(e,c)});W.prototype.unpickle=J(function(b,c){b=K(b);var d=L(b);c=K(c);var e=L(c);try{X(a._olm_unpickle_account)(this.$b,d,b.length,e,c.length)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}});function Y(){var b=a._olm_session_size();this.ac=F(b);this.$b=a._olm_session(this.ac)}
-function Z(b){return function(){var c=b.apply(this,arguments);if(c===h)throw c=y(a._olm_session_last_error(arguments[0])),Error("OLM."+c);return c}}Y.prototype.free=function(){a._olm_clear_session(this.$b);H(this.$b)};Y.prototype.pickle=J(function(b){b=K(b);var c=Z(a._olm_pickle_session_length)(this.$b),d=L(b),e=L(c+1);try{Z(a._olm_pickle_session)(this.$b,d,b.length,e,c)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}return y(e,c)});
+W.prototype.fallback_key=J(function(){var b=X(a._olm_account_fallback_key_length)(this.$b),c=L(b+1);X(a._olm_account_fallback_key)(this.$b,c,b);return t(c,b)});W.prototype.unpublished_fallback_key=J(function(){var b=X(a._olm_account_unpublished_fallback_key_length)(this.$b),c=L(b+1);X(a._olm_account_unpublished_fallback_key)(this.$b,c,b);return t(c,b)});W.prototype.forget_old_fallback_key=J(function(){X(a._olm_account_forget_old_fallback_key)(this.$b)});
+W.prototype.pickle=J(function(b){b=K(b);var c=X(a._olm_pickle_account_length)(this.$b),d=L(b),e=L(c+1);try{X(a._olm_pickle_account)(this.$b,d,b.length,e,c)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}return t(e,c)});W.prototype.unpickle=J(function(b,c){b=K(b);var d=L(b);c=K(c);var e=L(c);try{X(a._olm_unpickle_account)(this.$b,d,b.length,e,c.length)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}});function Y(){var b=a._olm_session_size();this.ac=F(b);this.$b=a._olm_session(this.ac)}
+function Z(b){return function(){var c=b.apply(this,arguments);if(c===h)throw c=t(a._olm_session_last_error(arguments[0])),Error("OLM."+c);return c}}Y.prototype.free=function(){a._olm_clear_session(this.$b);H(this.$b)};Y.prototype.pickle=J(function(b){b=K(b);var c=Z(a._olm_pickle_session_length)(this.$b),d=L(b),e=L(c+1);try{Z(a._olm_pickle_session)(this.$b,d,b.length,e,c)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}return t(e,c)});
 Y.prototype.unpickle=J(function(b,c){b=K(b);var d=L(b);c=K(c);var e=L(c);try{Z(a._olm_unpickle_session)(this.$b,d,b.length,e,c.length)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}});Y.prototype.create_outbound=J(function(b,c,d){var e=Z(a._olm_create_outbound_session_random_length)(this.$b),f=N(e,g);c=K(c);d=K(d);var k=L(c),p=L(d);try{Z(a._olm_create_outbound_session)(this.$b,b.$b,k,c.length,p,d.length,f,e)}finally{M(f,e)}});
 Y.prototype.create_inbound=J(function(b,c){c=K(c);var d=L(c);try{Z(a._olm_create_inbound_session)(this.$b,b.$b,d,c.length)}finally{for(M(d,c.length),b=0;b<c.length;b++)c[b]=0}});Y.prototype.create_inbound_from=J(function(b,c,d){c=K(c);var e=L(c);d=K(d);var f=L(d);try{Z(a._olm_create_inbound_session_from)(this.$b,b.$b,e,c.length,f,d.length)}finally{for(M(f,d.length),b=0;b<d.length;b++)d[b]=0}});
-Y.prototype.session_id=J(function(){var b=Z(a._olm_session_id_length)(this.$b),c=L(b+1);Z(a._olm_session_id)(this.$b,c,b);return y(c,b)});Y.prototype.has_received_message=function(){return Z(a._olm_session_has_received_message)(this.$b)?!0:!1};Y.prototype.matches_inbound=J(function(b){b=K(b);var c=L(b);return Z(a._olm_matches_inbound_session)(this.$b,c,b.length)?!0:!1});
+Y.prototype.session_id=J(function(){var b=Z(a._olm_session_id_length)(this.$b),c=L(b+1);Z(a._olm_session_id)(this.$b,c,b);return t(c,b)});Y.prototype.has_received_message=function(){return Z(a._olm_session_has_received_message)(this.$b)?!0:!1};Y.prototype.matches_inbound=J(function(b){b=K(b);var c=L(b);return Z(a._olm_matches_inbound_session)(this.$b,c,b.length)?!0:!1});
 Y.prototype.matches_inbound_from=J(function(b,c){b=K(b);var d=L(b);c=K(c);var e=L(c);return Z(a._olm_matches_inbound_session_from)(this.$b,d,b.length,e,c.length)?!0:!1});
-Y.prototype.encrypt=J(function(b){try{var c=Z(a._olm_encrypt_random_length)(this.$b);var d=Z(a._olm_encrypt_message_type)(this.$b);var e=B(b);var f=Z(a._olm_encrypt_message_length)(this.$b,e);var k=N(c,g);var p=F(e+1);A(b,z,p,e+1);var w=F(f+1);Z(a._olm_encrypt)(this.$b,p,e,k,c,w,f);t(w+f);return{type:d,body:y(w,f)}}finally{void 0!==k&&M(k,c),void 0!==p&&(M(p,e+1),H(p)),void 0!==w&&H(w)}});
-Y.prototype.decrypt=J(function(b,c){try{var d=F(c.length);wa(c,d);var e=Z(a._olm_decrypt_max_plaintext_length)(this.$b,b,d,c.length);wa(c,d);var f=F(e+1);var k=Z(a._olm_decrypt)(this.$b,b,d,c.length,f,e);t(f+k);return y(f,k)}finally{void 0!==d&&H(d),void 0!==f&&(M(f,e),H(f))}});Y.prototype.describe=J(function(){try{var b=F(256);Z(a._olm_session_describe)(this.$b,b,256);return y(b)}finally{void 0!==b&&H(b)}});function Ya(){var b=a._olm_utility_size();this.ac=F(b);this.$b=a._olm_utility(this.ac)}
-function Za(b){return function(){var c=b.apply(this,arguments);if(c===h)throw c=y(a._olm_utility_last_error(arguments[0])),Error("OLM."+c);return c}}Ya.prototype.free=function(){a._olm_clear_utility(this.$b);H(this.$b)};Ya.prototype.sha256=J(function(b){var c=Za(a._olm_sha256_length)(this.$b);b=K(b);var d=L(b),e=L(c+1);try{Za(a._olm_sha256)(this.$b,d,b.length,e,c)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}return y(e,c)});
-Ya.prototype.ed25519_verify=J(function(b,c,d){b=K(b);var e=L(b);c=K(c);var f=L(c);d=K(d);var k=L(d);try{Za(a._olm_ed25519_verify)(this.$b,e,b.length,f,c.length,k,d.length)}finally{for(M(f,c.length),b=0;b<c.length;b++)c[b]=0}});olm_exports.Account=W;olm_exports.Session=Y;olm_exports.Utility=Ya;olm_exports.PkEncryption=Va;olm_exports.PkDecryption=S;olm_exports.PkSigning=Wa;olm_exports.SAS=U;
-olm_exports.get_library_version=J(function(){var b=L(3);a._olm_get_library_version(b,b+1,b+2);return[sa(b,"i8"),sa(b+1,"i8"),sa(b+2,"i8")]});
+Y.prototype.encrypt=J(function(b){try{var c=Z(a._olm_encrypt_random_length)(this.$b);var d=Z(a._olm_encrypt_message_type)(this.$b);var e=x(b);var f=Z(a._olm_encrypt_message_length)(this.$b,e);var k=N(c,g);var p=F(e+1);v(b,u,p,e+1);var w=F(f+1);Z(a._olm_encrypt)(this.$b,p,e,k,c,w,f);D(w+f);return{type:d,body:t(w,f)}}finally{void 0!==k&&M(k,c),void 0!==p&&(M(p,e+1),H(p)),void 0!==w&&H(w)}});
+Y.prototype.decrypt=J(function(b,c){try{var d=F(c.length);Ka(c,d,!0);var e=Z(a._olm_decrypt_max_plaintext_length)(this.$b,b,d,c.length);Ka(c,d,!0);var f=F(e+1);var k=Z(a._olm_decrypt)(this.$b,b,d,c.length,f,e);D(f+k);return t(f,k)}finally{void 0!==d&&H(d),void 0!==f&&(M(f,e),H(f))}});Y.prototype.describe=J(function(){try{var b=F(256);Z(a._olm_session_describe)(this.$b,b,256);return t(b)}finally{void 0!==b&&H(b)}});
+function Wa(){var b=a._olm_utility_size();this.ac=F(b);this.$b=a._olm_utility(this.ac)}function Xa(b){return function(){var c=b.apply(this,arguments);if(c===h)throw c=t(a._olm_utility_last_error(arguments[0])),Error("OLM."+c);return c}}Wa.prototype.free=function(){a._olm_clear_utility(this.$b);H(this.$b)};
+Wa.prototype.sha256=J(function(b){var c=Xa(a._olm_sha256_length)(this.$b);b=K(b);var d=L(b),e=L(c+1);try{Xa(a._olm_sha256)(this.$b,d,b.length,e,c)}finally{for(M(d,b.length),d=0;d<b.length;d++)b[d]=0}return t(e,c)});Wa.prototype.ed25519_verify=J(function(b,c,d){b=K(b);var e=L(b);c=K(c);var f=L(c);d=K(d);var k=L(d);try{Xa(a._olm_ed25519_verify)(this.$b,e,b.length,f,c.length,k,d.length)}finally{for(M(f,c.length),b=0;b<c.length;b++)c[b]=0}});olm_exports.Account=W;olm_exports.Session=Y;
+olm_exports.Utility=Wa;olm_exports.PkEncryption=Ta;olm_exports.PkDecryption=S;olm_exports.PkSigning=Ua;olm_exports.SAS=U;olm_exports.get_library_version=J(function(){var b=L(3);a._olm_get_library_version(b,b+1,b+2);return[Ja(b,"i8"),Ja(b+1,"i8"),Ja(b+2,"i8")]});
 
 
   return Module.ready
Binary files /tmp/tmp13iql_nk/uWLg1t1GOh/thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/@matrix-org/olm/olm.wasm and /tmp/tmp13iql_nk/XrrXVw2m11/thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/@matrix-org/olm/olm.wasm differ
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/autodiscovery.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/autodiscovery.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/autodiscovery.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/autodiscovery.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,25 +4,15 @@
   value: true
 });
 exports.AutoDiscoveryAction = exports.AutoDiscovery = void 0;
-
 var _logger = require("./logger");
-
-function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
-
-function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+var _httpApi = require("./http-api");
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 // Dev note: Auto discovery is part of the spec.
 // See: https://matrix.org/docs/spec/client_server/r0.4.0.html#server-discovery
 let AutoDiscoveryAction;
-/**
- * Utilities for automatically discovery resources, such as homeservers
- * for users to log in to.
- */
-
 exports.AutoDiscoveryAction = AutoDiscoveryAction;
-
 (function (AutoDiscoveryAction) {
   AutoDiscoveryAction["SUCCESS"] = "SUCCESS";
   AutoDiscoveryAction["IGNORE"] = "IGNORE";
@@ -30,19 +20,31 @@
   AutoDiscoveryAction["FAIL_PROMPT"] = "FAIL_PROMPT";
   AutoDiscoveryAction["FAIL_ERROR"] = "FAIL_ERROR";
 })(AutoDiscoveryAction || (exports.AutoDiscoveryAction = AutoDiscoveryAction = {}));
-
+var AutoDiscoveryError;
+(function (AutoDiscoveryError) {
+  AutoDiscoveryError["Invalid"] = "Invalid homeserver discovery response";
+  AutoDiscoveryError["GenericFailure"] = "Failed to get autodiscovery configuration from server";
+  AutoDiscoveryError["InvalidHsBaseUrl"] = "Invalid base_url for m.homeserver";
+  AutoDiscoveryError["InvalidHomeserver"] = "Homeserver URL does not appear to be a valid Matrix homeserver";
+  AutoDiscoveryError["InvalidIsBaseUrl"] = "Invalid base_url for m.identity_server";
+  AutoDiscoveryError["InvalidIdentityServer"] = "Identity server URL does not appear to be a valid identity server";
+  AutoDiscoveryError["InvalidIs"] = "Invalid identity server discovery response";
+  AutoDiscoveryError["MissingWellknown"] = "No .well-known JSON file found";
+  AutoDiscoveryError["InvalidJson"] = "Invalid JSON";
+})(AutoDiscoveryError || (AutoDiscoveryError = {}));
+/**
+ * Utilities for automatically discovery resources, such as homeservers
+ * for users to log in to.
+ */
 class AutoDiscovery {
   // Dev note: the constants defined here are related to but not
   // exactly the same as those in the spec. This is to hopefully
   // translate the meaning of the states in the spec, but also
   // support our own if needed.
-  // eslint-disable-next-line
 
   /**
    * The auto discovery failed. The client is expected to communicate
    * the error to the user and refuse logging in.
-   * @return {string}
-   * @constructor
    */
 
   /**
@@ -51,22 +53,16 @@
    * action it would for PROMPT while also warning the user about
    * what went wrong. The client may also treat this the same as
    * a FAIL_ERROR state.
-   * @return {string}
-   * @constructor
    */
 
   /**
    * The auto discovery didn't fail but did not find anything of
    * interest. The client is expected to prompt the user for more
    * information, or fail if it prefers.
-   * @return {string}
-   * @constructor
    */
 
   /**
    * The auto discovery was successful.
-   * @return {string}
-   * @constructor
    */
 
   /**
@@ -75,14 +71,15 @@
    * and identity server URL the client would want. Additional details
    * may also be included, and will be transparently brought into the
    * response object unaltered.
-   * @param {object} wellknown The configuration object itself, as returned
+   * @param wellknown - The configuration object itself, as returned
    * by the .well-known auto-discovery endpoint.
-   * @return {Promise<DiscoveredClientConfig>} Resolves to the verified
+   * @returns Promise which resolves to the verified
    * configuration, which may include error states. Rejects on unexpected
    * failure, not when verification fails.
    */
   static async fromDiscoveryConfig(wellknown) {
     // Step 1 is to get the config, which is provided to us here.
+
     // We default to an error state to make the first few checks easier to
     // write. We'll update the properties of this object over the duration
     // of this function.
@@ -100,56 +97,49 @@
         base_url: null
       }
     };
-
     if (!wellknown || !wellknown["m.homeserver"]) {
       _logger.logger.error("No m.homeserver key in config");
-
       clientConfig["m.homeserver"].state = AutoDiscovery.FAIL_PROMPT;
       clientConfig["m.homeserver"].error = AutoDiscovery.ERROR_INVALID;
       return Promise.resolve(clientConfig);
     }
-
     if (!wellknown["m.homeserver"]["base_url"]) {
       _logger.logger.error("No m.homeserver base_url in config");
-
       clientConfig["m.homeserver"].state = AutoDiscovery.FAIL_PROMPT;
       clientConfig["m.homeserver"].error = AutoDiscovery.ERROR_INVALID_HS_BASE_URL;
       return Promise.resolve(clientConfig);
-    } // Step 2: Make sure the homeserver URL is valid *looking*. We'll make
-    // sure it points to a homeserver in Step 3.
-
+    }
 
+    // Step 2: Make sure the homeserver URL is valid *looking*. We'll make
+    // sure it points to a homeserver in Step 3.
     const hsUrl = this.sanitizeWellKnownUrl(wellknown["m.homeserver"]["base_url"]);
-
     if (!hsUrl) {
       _logger.logger.error("Invalid base_url for m.homeserver");
-
       clientConfig["m.homeserver"].error = AutoDiscovery.ERROR_INVALID_HS_BASE_URL;
       return Promise.resolve(clientConfig);
-    } // Step 3: Make sure the homeserver URL points to a homeserver.
-
+    }
 
+    // Step 3: Make sure the homeserver URL points to a homeserver.
     const hsVersions = await this.fetchWellKnownObject(`${hsUrl}/_matrix/client/versions`);
-
-    if (!hsVersions || !hsVersions.raw["versions"]) {
+    if (!hsVersions || !hsVersions.raw?.["versions"]) {
       _logger.logger.error("Invalid /versions response");
+      clientConfig["m.homeserver"].error = AutoDiscovery.ERROR_INVALID_HOMESERVER;
 
-      clientConfig["m.homeserver"].error = AutoDiscovery.ERROR_INVALID_HOMESERVER; // Supply the base_url to the caller because they may be ignoring liveliness
+      // Supply the base_url to the caller because they may be ignoring liveliness
       // errors, like this one.
-
       clientConfig["m.homeserver"].base_url = hsUrl;
       return Promise.resolve(clientConfig);
-    } // Step 4: Now that the homeserver looks valid, update our client config.
-
+    }
 
+    // Step 4: Now that the homeserver looks valid, update our client config.
     clientConfig["m.homeserver"] = {
       state: AutoDiscovery.SUCCESS,
       error: null,
       base_url: hsUrl
-    }; // Step 5: Try to pull out the identity server configuration
+    };
 
+    // Step 5: Try to pull out the identity server configuration
     let isUrl = "";
-
     if (wellknown["m.identity_server"]) {
       // We prepare a failing identity server response to save lines later
       // in this branch.
@@ -160,81 +150,81 @@
           error: AutoDiscovery.ERROR_INVALID_IS,
           base_url: null
         }
-      }; // Step 5a: Make sure the URL is valid *looking*. We'll make sure it
-      // points to an identity server in Step 5b.
+      };
 
+      // Step 5a: Make sure the URL is valid *looking*. We'll make sure it
+      // points to an identity server in Step 5b.
       isUrl = this.sanitizeWellKnownUrl(wellknown["m.identity_server"]["base_url"]);
-
       if (!isUrl) {
         _logger.logger.error("Invalid base_url for m.identity_server");
-
         failingClientConfig["m.identity_server"].error = AutoDiscovery.ERROR_INVALID_IS_BASE_URL;
         return Promise.resolve(failingClientConfig);
-      } // Step 5b: Verify there is an identity server listening on the provided
-      // URL.
-
-
-      const isResponse = await this.fetchWellKnownObject(`${isUrl}/_matrix/identity/api/v1`);
+      }
 
-      if (!isResponse || !isResponse.raw || isResponse.action !== AutoDiscoveryAction.SUCCESS) {
-        _logger.logger.error("Invalid /api/v1 response");
+      // Step 5b: Verify there is an identity server listening on the provided
+      // URL.
+      const isResponse = await this.fetchWellKnownObject(`${isUrl}/_matrix/identity/v2`);
+      if (!isResponse?.raw || isResponse.action !== AutoDiscoveryAction.SUCCESS) {
+        _logger.logger.error("Invalid /v2 response");
+        failingClientConfig["m.identity_server"].error = AutoDiscovery.ERROR_INVALID_IDENTITY_SERVER;
 
-        failingClientConfig["m.identity_server"].error = AutoDiscovery.ERROR_INVALID_IDENTITY_SERVER; // Supply the base_url to the caller because they may be ignoring
+        // Supply the base_url to the caller because they may be ignoring
         // liveliness errors, like this one.
-
         failingClientConfig["m.identity_server"].base_url = isUrl;
         return Promise.resolve(failingClientConfig);
       }
-    } // Step 6: Now that the identity server is valid, or never existed,
-    // populate the IS section.
-
+    }
 
+    // Step 6: Now that the identity server is valid, or never existed,
+    // populate the IS section.
     if (isUrl && isUrl.toString().length > 0) {
       clientConfig["m.identity_server"] = {
         state: AutoDiscovery.SUCCESS,
         error: null,
         base_url: isUrl
       };
-    } // Step 7: Copy any other keys directly into the clientConfig. This is for
-    // things like custom configuration of services.
-
+    }
 
+    // Step 7: Copy any other keys directly into the clientConfig. This is for
+    // things like custom configuration of services.
     Object.keys(wellknown).forEach(k => {
       if (k === "m.homeserver" || k === "m.identity_server") {
         // Only copy selected parts of the config to avoid overwriting
         // properties computed by the validation logic above.
         const notProps = ["error", "state", "base_url"];
-
         for (const prop of Object.keys(wellknown[k])) {
           if (notProps.includes(prop)) continue;
+          // @ts-ignore - ts gets unhappy as we're mixing types here
           clientConfig[k][prop] = wellknown[k][prop];
         }
       } else {
         // Just copy the whole thing over otherwise
         clientConfig[k] = wellknown[k];
       }
-    }); // Step 8: Give the config to the caller (finally)
+    });
 
+    // Step 8: Give the config to the caller (finally)
     return Promise.resolve(clientConfig);
   }
+
   /**
    * Attempts to automatically discover client configuration information
    * prior to logging in. Such information includes the homeserver URL
    * and identity server URL the client would want. Additional details
    * may also be discovered, and will be transparently included in the
    * response object unaltered.
-   * @param {string} domain The homeserver domain to perform discovery
+   * @param domain - The homeserver domain to perform discovery
    * on. For example, "matrix.org".
-   * @return {Promise<DiscoveredClientConfig>} Resolves to the discovered
+   * @returns Promise which resolves to the discovered
    * configuration, which may include error states. Rejects on unexpected
    * failure, not when discovery fails.
    */
-
-
   static async findClientConfig(domain) {
     if (!domain || typeof domain !== "string" || domain.length === 0) {
       throw new Error("'domain' must be a string of non-zero length");
-    } // We use a .well-known lookup for all cases. According to the spec, we
+    }
+
+    // We use a .well-known lookup for all cases. According to the spec, we
     // can do other discovery mechanisms if we want such as custom lookups
     // however we won't bother with that here (mostly because the spec only
     // supports .well-known right now).
@@ -244,11 +234,10 @@
     // but will return one anyways (with state PROMPT) to make development
     // easier for clients. If we can't get a homeserver URL, all bets are
     // off on the rest of the config and we'll assume it is invalid too.
+
     // We default to an error state to make the first few checks easier to
     // write. We'll update the properties of this object over the duration
     // of this function.
-
-
     const clientConfig = {
       "m.homeserver": {
         state: AutoDiscovery.FAIL_ERROR,
@@ -262,16 +251,14 @@
         error: null,
         base_url: null
       }
-    }; // Step 1: Actually request the .well-known JSON file and make sure it
-    // at least has a homeserver definition.
+    };
 
+    // Step 1: Actually request the .well-known JSON file and make sure it
+    // at least has a homeserver definition.
     const wellknown = await this.fetchWellKnownObject(`https://${domain}/.well-known/matrix/client`);
-
     if (!wellknown || wellknown.action !== AutoDiscoveryAction.SUCCESS) {
       _logger.logger.error("No response or error when parsing .well-known");
-
       if (wellknown.reason) _logger.logger.error(wellknown.reason);
-
       if (wellknown.action === AutoDiscoveryAction.IGNORE) {
         clientConfig["m.homeserver"] = {
           state: AutoDiscovery.PROMPT,
@@ -283,71 +270,71 @@
         clientConfig["m.homeserver"].state = AutoDiscovery.FAIL_PROMPT;
         clientConfig["m.homeserver"].error = AutoDiscovery.ERROR_INVALID;
       }
-
       return Promise.resolve(clientConfig);
-    } // Step 2: Validate and parse the config
-
+    }
 
+    // Step 2: Validate and parse the config
     return AutoDiscovery.fromDiscoveryConfig(wellknown.raw);
   }
+
   /**
    * Gets the raw discovery client configuration for the given domain name.
    * Should only be used if there's no validation to be done on the resulting
    * object, otherwise use findClientConfig().
-   * @param {string} domain The domain to get the client config for.
-   * @returns {Promise<object>} Resolves to the domain's client config. Can
+   * @param domain - The domain to get the client config for.
+   * @returns Promise which resolves to the domain's client config. Can
    * be an empty object.
    */
-
-
   static async getRawClientConfig(domain) {
     if (!domain || typeof domain !== "string" || domain.length === 0) {
       throw new Error("'domain' must be a string of non-zero length");
     }
-
     const response = await this.fetchWellKnownObject(`https://${domain}/.well-known/matrix/client`);
     if (!response) return {};
     return response.raw || {};
   }
+
   /**
    * Sanitizes a given URL to ensure it is either an HTTP or HTTP URL and
    * is suitable for the requirements laid out by .well-known auto discovery.
    * If valid, the URL will also be stripped of any trailing slashes.
-   * @param {string} url The potentially invalid URL to sanitize.
-   * @return {string|boolean} The sanitized URL or a falsey value if the URL is invalid.
-   * @private
+   * @param url - The potentially invalid URL to sanitize.
+   * @returns The sanitized URL or a falsey value if the URL is invalid.
+   * @internal
    */
-
-
   static sanitizeWellKnownUrl(url) {
     if (!url) return false;
-
     try {
-      let parsed = null;
-
+      let parsed;
       try {
         parsed = new URL(url);
       } catch (e) {
         _logger.logger.error("Could not parse url", e);
       }
-
-      if (!parsed || !parsed.hostname) return false;
+      if (!parsed?.hostname) return false;
       if (parsed.protocol !== "http:" && parsed.protocol !== "https:") return false;
       const port = parsed.port ? `:${parsed.port}` : "";
       const path = parsed.pathname ? parsed.pathname : "";
       let saferUrl = `${parsed.protocol}//${parsed.hostname}${port}${path}`;
-
       if (saferUrl.endsWith("/")) {
         saferUrl = saferUrl.substring(0, saferUrl.length - 1);
       }
-
       return saferUrl;
     } catch (e) {
       _logger.logger.error(e);
-
       return false;
     }
   }
+  static fetch(resource, options) {
+    if (this.fetchFn) {
+      return this.fetchFn(resource, options);
+    }
+    return global.fetch(resource, options);
+  }
+  static setFetchFn(fetchFn) {
+    AutoDiscovery.fetchFn = fetchFn;
+  }
+
   /**
    * Fetches a JSON object from a given URL, as expected by all .well-known
    * related lookups. If the server gives a 404 then the `action` will be
@@ -360,82 +347,73 @@
    *   action: One of SUCCESS, IGNORE, or FAIL_PROMPT.
    *   reason: Relatively human-readable description of what went wrong.
    *   error: The actual Error, if one exists.
-   * @param {string} url The URL to fetch a JSON object from.
-   * @return {Promise<object>} Resolves to the returned state.
-   * @private
+   * @param url - The URL to fetch a JSON object from.
+   * @returns Promise which resolves to the returned state.
+   * @internal
    */
-
-
-  static fetchWellKnownObject(uri) {
-    return new Promise(resolve => {
-      // eslint-disable-next-line
-      const request = require("./matrix").getRequest();
-
-      if (!request) throw new Error("No request library available");
-      request({
-        method: "GET",
-        uri,
-        timeout: 5000
-      }, (error, response, body) => {
-        if (error || response?.statusCode < 200 || response?.statusCode >= 300) {
-          const result = {
-            error,
-            raw: {}
-          };
-          return resolve(response?.statusCode === 404 ? _objectSpread(_objectSpread({}, result), {}, {
-            action: AutoDiscoveryAction.IGNORE,
-            reason: AutoDiscovery.ERROR_MISSING_WELLKNOWN
-          }) : _objectSpread(_objectSpread({}, result), {}, {
-            action: AutoDiscoveryAction.FAIL_PROMPT,
-            reason: error?.message || "General failure"
-          }));
-        }
-
-        try {
-          return resolve({
-            raw: JSON.parse(body),
-            action: AutoDiscoveryAction.SUCCESS
-          });
-        } catch (err) {
-          return resolve({
-            error: err,
-            raw: {},
-            action: AutoDiscoveryAction.FAIL_PROMPT,
-            reason: err?.name === "SyntaxError" ? AutoDiscovery.ERROR_INVALID_JSON : AutoDiscovery.ERROR_INVALID
-          });
-        }
+  static async fetchWellKnownObject(url) {
+    let response;
+    try {
+      response = await AutoDiscovery.fetch(url, {
+        method: _httpApi.Method.Get,
+        signal: (0, _httpApi.timeoutSignal)(5000)
       });
-    });
+      if (response.status === 404) {
+        return {
+          raw: {},
+          action: AutoDiscoveryAction.IGNORE,
+          reason: AutoDiscovery.ERROR_MISSING_WELLKNOWN
+        };
+      }
+      if (!response.ok) {
+        return {
+          raw: {},
+          action: AutoDiscoveryAction.FAIL_PROMPT,
+          reason: "General failure"
+        };
+      }
+    } catch (err) {
+      const error = err;
+      let reason = "";
+      if (typeof error === "object") {
+        reason = error?.message;
+      }
+      return {
+        error,
+        raw: {},
+        action: AutoDiscoveryAction.FAIL_PROMPT,
+        reason: reason || "General failure"
+      };
+    }
+    try {
+      return {
+        raw: await response.json(),
+        action: AutoDiscoveryAction.SUCCESS
+      };
+    } catch (err) {
+      const error = err;
+      return {
+        error,
+        raw: {},
+        action: AutoDiscoveryAction.FAIL_PROMPT,
+        reason: error?.name === "SyntaxError" ? AutoDiscovery.ERROR_INVALID_JSON : AutoDiscovery.ERROR_INVALID
+      };
+    }
   }
-
 }
-
 exports.AutoDiscovery = AutoDiscovery;
-
-_defineProperty(AutoDiscovery, "ERROR_INVALID", "Invalid homeserver discovery response");
-
-_defineProperty(AutoDiscovery, "ERROR_GENERIC_FAILURE", "Failed to get autodiscovery configuration from server");
-
-_defineProperty(AutoDiscovery, "ERROR_INVALID_HS_BASE_URL", "Invalid base_url for m.homeserver");
-
-_defineProperty(AutoDiscovery, "ERROR_INVALID_HOMESERVER", "Homeserver URL does not appear to be a valid Matrix homeserver");
-
-_defineProperty(AutoDiscovery, "ERROR_INVALID_IS_BASE_URL", "Invalid base_url for m.identity_server");
-
-_defineProperty(AutoDiscovery, "ERROR_INVALID_IDENTITY_SERVER", "Identity server URL does not appear to be a valid identity server");
-
-_defineProperty(AutoDiscovery, "ERROR_INVALID_IS", "Invalid identity server discovery response");
-
-_defineProperty(AutoDiscovery, "ERROR_MISSING_WELLKNOWN", "No .well-known JSON file found");
-
-_defineProperty(AutoDiscovery, "ERROR_INVALID_JSON", "Invalid JSON");
-
-_defineProperty(AutoDiscovery, "ALL_ERRORS", [AutoDiscovery.ERROR_INVALID, AutoDiscovery.ERROR_GENERIC_FAILURE, AutoDiscovery.ERROR_INVALID_HS_BASE_URL, AutoDiscovery.ERROR_INVALID_HOMESERVER, AutoDiscovery.ERROR_INVALID_IS_BASE_URL, AutoDiscovery.ERROR_INVALID_IDENTITY_SERVER, AutoDiscovery.ERROR_INVALID_IS, AutoDiscovery.ERROR_MISSING_WELLKNOWN, AutoDiscovery.ERROR_INVALID_JSON]);
-
+_defineProperty(AutoDiscovery, "ERROR_INVALID", AutoDiscoveryError.Invalid);
+_defineProperty(AutoDiscovery, "ERROR_GENERIC_FAILURE", AutoDiscoveryError.GenericFailure);
+_defineProperty(AutoDiscovery, "ERROR_INVALID_HS_BASE_URL", AutoDiscoveryError.InvalidHsBaseUrl);
+_defineProperty(AutoDiscovery, "ERROR_INVALID_HOMESERVER", AutoDiscoveryError.InvalidHomeserver);
+_defineProperty(AutoDiscovery, "ERROR_INVALID_IS_BASE_URL", AutoDiscoveryError.InvalidIsBaseUrl);
+_defineProperty(AutoDiscovery, "ERROR_INVALID_IDENTITY_SERVER", AutoDiscoveryError.InvalidIdentityServer);
+_defineProperty(AutoDiscovery, "ERROR_INVALID_IS", AutoDiscoveryError.InvalidIs);
+_defineProperty(AutoDiscovery, "ERROR_MISSING_WELLKNOWN", AutoDiscoveryError.MissingWellknown);
+_defineProperty(AutoDiscovery, "ERROR_INVALID_JSON", AutoDiscoveryError.InvalidJson);
+_defineProperty(AutoDiscovery, "ALL_ERRORS", Object.keys(AutoDiscoveryError));
 _defineProperty(AutoDiscovery, "FAIL_ERROR", AutoDiscoveryAction.FAIL_ERROR);
-
 _defineProperty(AutoDiscovery, "FAIL_PROMPT", AutoDiscoveryAction.FAIL_PROMPT);
-
 _defineProperty(AutoDiscovery, "PROMPT", AutoDiscoveryAction.PROMPT);
-
-_defineProperty(AutoDiscovery, "SUCCESS", AutoDiscoveryAction.SUCCESS);
\ No newline at end of file
+_defineProperty(AutoDiscovery, "SUCCESS", AutoDiscoveryAction.SUCCESS);
+_defineProperty(AutoDiscovery, "fetchFn", void 0);
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/browser-index.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/browser-index.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/browser-index.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/browser-index.js	2023-04-11 06:11:52.000000000 +0000
@@ -5,13 +5,7 @@
 });
 var _exportNames = {};
 exports.default = void 0;
-
-var _browserRequest = _interopRequireDefault(require("browser-request"));
-
-var _qs = _interopRequireDefault(require("qs"));
-
 var matrixcs = _interopRequireWildcard(require("./matrix"));
-
 Object.keys(matrixcs).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -23,13 +17,8 @@
     }
   });
 });
-
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
-function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; }
-
 /*
 Copyright 2019 The Matrix.org Foundation C.I.C.
 
@@ -45,38 +34,25 @@
 See the License for the specific language governing permissions and
 limitations under the License.
 */
-if (matrixcs.getRequest()) {
+
+if (global.__js_sdk_entrypoint) {
   throw new Error("Multiple matrix-js-sdk entrypoints detected!");
 }
+global.__js_sdk_entrypoint = true;
 
-matrixcs.request(function (opts, fn) {
-  // We manually fix the query string for browser-request because
-  // it doesn't correctly handle cases like ?via=one&via=two. Instead
-  // we mimic `request`'s query string interface to make it all work
-  // as expected.
-  // browser-request will happily take the constructed string as the
-  // query string without trying to modify it further.
-  opts.qs = _qs.default.stringify(opts.qs || {}, opts.qsStringifyOptions);
-  return (0, _browserRequest.default)(opts, fn);
-}); // just *accessing* indexedDB throws an exception in firefox with
-// indexeddb disabled.
-
+// just *accessing* indexedDB throws an exception in firefox with indexeddb disabled.
 let indexedDB;
-
 try {
   indexedDB = global.indexedDB;
-} catch (e) {} // if our browser (appears to) support indexeddb, use an indexeddb crypto store.
-
+} catch (e) {}
 
+// if our browser (appears to) support indexeddb, use an indexeddb crypto store.
 if (indexedDB) {
-  matrixcs.setCryptoStoreFactory(function () {
-    return new matrixcs.IndexedDBCryptoStore(indexedDB, "matrix-js-sdk:crypto");
-  });
-} // We export 3 things to make browserify happy as well as downstream projects.
-// It's awkward, but required.
-
+  matrixcs.setCryptoStoreFactory(() => new matrixcs.IndexedDBCryptoStore(indexedDB, "matrix-js-sdk:crypto"));
+}
 
+// We export 3 things to make browserify happy as well as downstream projects.
+// It's awkward, but required.
 var _default = matrixcs; // keep export for browserify package deps
-
 exports.default = _default;
 global.matrixcs = matrixcs;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/client.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/client.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/client.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/client.js	2023-04-11 06:11:52.000000000 +0000
@@ -3,138 +3,96 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.RoomVersionStability = exports.PendingEventOrdering = exports.MatrixClient = exports.ClientEvent = exports.CRYPTO_ENABLED = void 0;
-
-var _matrixEventsSdk = require("matrix-events-sdk");
-
+exports.UNSTABLE_MSC3852_LAST_SEEN_UA = exports.RoomVersionStability = exports.PendingEventOrdering = exports.MatrixClient = exports.M_AUTHENTICATION = exports.ClientEvent = exports.CRYPTO_ENABLED = void 0;
+exports.fixNotificationCountOnDecryption = fixNotificationCountOnDecryption;
 var _sync = require("./sync");
-
 var _event = require("./models/event");
-
 var _stub = require("./store/stub");
-
 var _call = require("./webrtc/call");
-
 var _filter = require("./filter");
-
 var _callEventHandler = require("./webrtc/callEventHandler");
-
 var utils = _interopRequireWildcard(require("./utils"));
-
 var _eventTimeline = require("./models/event-timeline");
-
 var _pushprocessor = require("./pushprocessor");
-
 var _autodiscovery = require("./autodiscovery");
-
 var olmlib = _interopRequireWildcard(require("./crypto/olmlib"));
-
 var _ReEmitter = require("./ReEmitter");
-
 var _RoomList = require("./crypto/RoomList");
-
 var _logger = require("./logger");
-
 var _serviceTypes = require("./service-types");
-
 var _httpApi = require("./http-api");
-
 var _crypto = require("./crypto");
-
 var _recoverykey = require("./crypto/recoverykey");
-
 var _key_passphrase = require("./crypto/key_passphrase");
-
 var _user = require("./models/user");
-
 var _contentRepo = require("./content-repo");
-
 var _searchResult = require("./models/search-result");
-
 var _dehydration = require("./crypto/dehydration");
-
-var _matrix = require("./matrix");
-
 var _api = require("./crypto/api");
-
 var ContentHelpers = _interopRequireWildcard(require("./content-helpers"));
-
+var _room = require("./models/room");
+var _roomMember = require("./models/room-member");
 var _event2 = require("./@types/event");
-
 var _partials = require("./@types/partials");
-
 var _eventMapper = require("./event-mapper");
-
 var _randomstring = require("./randomstring");
-
 var _backup = require("./crypto/backup");
-
 var _MSC3089TreeSpace = require("./models/MSC3089TreeSpace");
-
 var _search = require("./@types/search");
-
 var _PushRules = require("./@types/PushRules");
-
+var _groupCall = require("./webrtc/groupCall");
 var _mediaHandler = require("./webrtc/mediaHandler");
-
+var _groupCallEventHandler = require("./webrtc/groupCallEventHandler");
 var _typedEventEmitter = require("./models/typed-event-emitter");
-
 var _read_receipts = require("./@types/read_receipts");
-
 var _slidingSyncSdk = require("./sliding-sync-sdk");
-
 var _thread = require("./models/thread");
-
 var _beacon = require("./@types/beacon");
-
 var _NamespacedValue = require("./NamespacedValue");
-
 var _ToDeviceMessageQueue = require("./ToDeviceMessageQueue");
-
 var _invitesIgnorer = require("./models/invites-ignorer");
-
-function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
-function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
+var _feature = require("./feature");
+var _constants = require("./rust-crypto/constants");
+const _excluded = ["server", "limit", "since"];
+function _objectWithoutProperties(source, excluded) { if (source == null) return {}; var target = _objectWithoutPropertiesLoose(source, excluded); var key, i; if (Object.getOwnPropertySymbols) { var sourceSymbolKeys = Object.getOwnPropertySymbols(source); for (i = 0; i < sourceSymbolKeys.length; i++) { key = sourceSymbolKeys[i]; if (excluded.indexOf(key) >= 0) continue; if (!Object.prototype.propertyIsEnumerable.call(source, key)) continue; target[key] = source[key]; } } return target; }
+function _objectWithoutPropertiesLoose(source, excluded) { if (source == null) return {}; var target = {}; var sourceKeys = Object.keys(source); var key, i; for (i = 0; i < sourceKeys.length; i++) { key = sourceKeys[i]; if (excluded.indexOf(key) >= 0) continue; target[key] = source[key]; } return target; }
 function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
-
 function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
+function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 const SCROLLBACK_DELAY_MS = 3000;
 const CRYPTO_ENABLED = (0, _crypto.isCryptoAvailable)();
 exports.CRYPTO_ENABLED = CRYPTO_ENABLED;
 const CAPABILITIES_CACHE_MS = 21600000; // 6 hours - an arbitrary value
-
 const TURN_CHECK_INTERVAL = 10 * 60 * 1000; // poll for turn credentials every 10 minutes
 
+const UNSTABLE_MSC3852_LAST_SEEN_UA = new _NamespacedValue.UnstableValue("last_seen_user_agent", "org.matrix.msc3852.last_seen_user_agent");
+exports.UNSTABLE_MSC3852_LAST_SEEN_UA = UNSTABLE_MSC3852_LAST_SEEN_UA;
 let PendingEventOrdering;
 exports.PendingEventOrdering = PendingEventOrdering;
-
 (function (PendingEventOrdering) {
   PendingEventOrdering["Chronological"] = "chronological";
   PendingEventOrdering["Detached"] = "detached";
 })(PendingEventOrdering || (exports.PendingEventOrdering = PendingEventOrdering = {}));
-
 let RoomVersionStability;
 exports.RoomVersionStability = RoomVersionStability;
-
 (function (RoomVersionStability) {
   RoomVersionStability["Stable"] = "stable";
   RoomVersionStability["Unstable"] = "unstable";
 })(RoomVersionStability || (exports.RoomVersionStability = RoomVersionStability = {}));
-
 var CrossSigningKeyType;
-
 (function (CrossSigningKeyType) {
   CrossSigningKeyType["MasterKey"] = "master_key";
   CrossSigningKeyType["SelfSigningKey"] = "self_signing_key";
   CrossSigningKeyType["UserSigningKey"] = "user_signing_key";
 })(CrossSigningKeyType || (CrossSigningKeyType = {}));
-
+const M_AUTHENTICATION = new _NamespacedValue.UnstableValue("m.authentication", "org.matrix.msc2965.authentication");
+exports.M_AUTHENTICATION = M_AUTHENTICATION;
 /* eslint-enable camelcase */
+
 // We're using this constant for methods overloading and inspect whether a variable
 // contains an eventId or not. This was required to ensure backwards compatibility
 // of methods for threads
@@ -142,7 +100,6 @@
 const EVENT_ID_PREFIX = "$";
 let ClientEvent;
 exports.ClientEvent = ClientEvent;
-
 (function (ClientEvent) {
   ClientEvent["Sync"] = "sync";
   ClientEvent["Event"] = "event";
@@ -152,218 +109,186 @@
   ClientEvent["DeleteRoom"] = "deleteRoom";
   ClientEvent["SyncUnexpectedError"] = "sync.unexpectedError";
   ClientEvent["ClientWellKnown"] = "WellKnown.client";
+  ClientEvent["ReceivedVoipEvent"] = "received_voip_event";
+  ClientEvent["UndecryptableToDeviceEvent"] = "toDeviceEvent.undecryptable";
   ClientEvent["TurnServers"] = "turnServers";
   ClientEvent["TurnServersError"] = "turnServers.error";
 })(ClientEvent || (exports.ClientEvent = ClientEvent = {}));
-
 const SSO_ACTION_PARAM = new _NamespacedValue.UnstableValue("action", "org.matrix.msc3824.action");
+
 /**
  * Represents a Matrix Client. Only directly construct this if you want to use
  * custom modules. Normally, {@link createClient} should be used
  * as it specifies 'sensible' defaults for these modules.
  */
-
 class MatrixClient extends _typedEventEmitter.TypedEventEmitter {
   // populated after initCrypto
+
   // XXX: Intended private, used in code.
+  // libolm crypto implementation. XXX: Intended private, used in code. Being replaced by cryptoBackend
+  // one of crypto or rustCrypto
   // XXX: Intended private, used in code.
   // XXX: Intended private, used in code.
+
   // XXX: Intended private, used in code.
   // XXX: Intended private, used in code.
   // XXX: Intended private, used in code.
-  // XXX: Intended private, used in code.
+
   // Note: these are all `protected` to let downstream consumers make mistakes if they want to.
   // We don't technically support this usage, but have reasons to do this.
+
   // The pushprocessor caches useful things, so keep one and re-use it
+
   // Promise to a response of the server's /versions response
   // TODO: This should expire: https://github.com/matrix-org/matrix-js-sdk/issues/1020
+
   // A manager for determining which invites should be ignored.
+
   constructor(opts) {
     super();
-
     _defineProperty(this, "reEmitter", new _ReEmitter.TypedReEmitter(this));
-
     _defineProperty(this, "olmVersion", null);
-
     _defineProperty(this, "usingExternalCrypto", false);
-
     _defineProperty(this, "store", void 0);
-
     _defineProperty(this, "deviceId", void 0);
-
     _defineProperty(this, "credentials", void 0);
-
     _defineProperty(this, "pickleKey", void 0);
-
     _defineProperty(this, "scheduler", void 0);
-
     _defineProperty(this, "clientRunning", false);
-
     _defineProperty(this, "timelineSupport", false);
-
     _defineProperty(this, "urlPreviewCache", {});
-
     _defineProperty(this, "identityServer", void 0);
-
     _defineProperty(this, "http", void 0);
-
     _defineProperty(this, "crypto", void 0);
-
+    _defineProperty(this, "cryptoBackend", void 0);
     _defineProperty(this, "cryptoCallbacks", void 0);
-
     _defineProperty(this, "callEventHandler", void 0);
-
+    _defineProperty(this, "groupCallEventHandler", void 0);
     _defineProperty(this, "supportsCallTransfer", false);
-
     _defineProperty(this, "forceTURN", false);
-
     _defineProperty(this, "iceCandidatePoolSize", 0);
-
     _defineProperty(this, "idBaseUrl", void 0);
-
     _defineProperty(this, "baseUrl", void 0);
-
+    _defineProperty(this, "isVoipWithNoMediaAllowed", void 0);
     _defineProperty(this, "canSupportVoip", false);
-
     _defineProperty(this, "peekSync", null);
-
     _defineProperty(this, "isGuestAccount", false);
-
     _defineProperty(this, "ongoingScrollbacks", {});
-
     _defineProperty(this, "notifTimelineSet", null);
-
     _defineProperty(this, "cryptoStore", void 0);
-
     _defineProperty(this, "verificationMethods", void 0);
-
     _defineProperty(this, "fallbackICEServerAllowed", false);
-
     _defineProperty(this, "roomList", void 0);
-
     _defineProperty(this, "syncApi", void 0);
-
     _defineProperty(this, "roomNameGenerator", void 0);
-
     _defineProperty(this, "pushRules", void 0);
-
     _defineProperty(this, "syncLeftRoomsPromise", void 0);
-
     _defineProperty(this, "syncedLeftRooms", false);
-
     _defineProperty(this, "clientOpts", void 0);
-
     _defineProperty(this, "clientWellKnownIntervalID", void 0);
-
     _defineProperty(this, "canResetTimelineCallback", void 0);
-
+    _defineProperty(this, "canSupport", new Map());
     _defineProperty(this, "pushProcessor", new _pushprocessor.PushProcessor(this));
-
     _defineProperty(this, "serverVersionsPromise", void 0);
-
     _defineProperty(this, "cachedCapabilities", void 0);
-
     _defineProperty(this, "clientWellKnown", void 0);
-
     _defineProperty(this, "clientWellKnownPromise", void 0);
-
     _defineProperty(this, "turnServers", []);
-
     _defineProperty(this, "turnServersExpiry", 0);
-
-    _defineProperty(this, "checkTurnServersIntervalID", null);
-
+    _defineProperty(this, "checkTurnServersIntervalID", void 0);
     _defineProperty(this, "exportedOlmDeviceToImport", void 0);
-
     _defineProperty(this, "txnCtr", 0);
-
     _defineProperty(this, "mediaHandler", new _mediaHandler.MediaHandler(this));
-
+    _defineProperty(this, "sessionId", void 0);
     _defineProperty(this, "pendingEventEncryption", new Map());
-
+    _defineProperty(this, "useE2eForGroupCall", true);
     _defineProperty(this, "toDeviceMessageQueue", void 0);
-
     _defineProperty(this, "ignoredInvites", void 0);
-
     _defineProperty(this, "startCallEventHandler", () => {
       if (this.isInitialSyncComplete()) {
         this.callEventHandler.start();
+        this.groupCallEventHandler.start();
         this.off(ClientEvent.Sync, this.startCallEventHandler);
       }
     });
-
+    _defineProperty(this, "fixupRoomNotifications", () => {
+      if (this.isInitialSyncComplete()) {
+        const unreadRooms = (this.getRooms() ?? []).filter(room => {
+          return room.getUnreadNotificationCount(_room.NotificationCountType.Total) > 0;
+        });
+        for (const room of unreadRooms) {
+          const currentUserId = this.getSafeUserId();
+          room.fixupNotifications(currentUserId);
+        }
+        this.off(ClientEvent.Sync, this.fixupRoomNotifications);
+      }
+    });
     opts.baseUrl = utils.ensureNoTrailingSlash(opts.baseUrl);
     opts.idBaseUrl = utils.ensureNoTrailingSlash(opts.idBaseUrl);
     this.baseUrl = opts.baseUrl;
     this.idBaseUrl = opts.idBaseUrl;
     this.identityServer = opts.identityServer;
-    this.usingExternalCrypto = opts.usingExternalCrypto;
+    this.usingExternalCrypto = opts.usingExternalCrypto ?? false;
     this.store = opts.store || new _stub.StubStore();
     this.deviceId = opts.deviceId || null;
+    this.sessionId = (0, _randomstring.randomString)(10);
     const userId = opts.userId || null;
     this.credentials = {
       userId
     };
     this.http = new _httpApi.MatrixHttpApi(this, {
+      fetchFn: opts.fetchFn,
       baseUrl: opts.baseUrl,
       idBaseUrl: opts.idBaseUrl,
       accessToken: opts.accessToken,
-      request: opts.request,
-      prefix: _httpApi.PREFIX_R0,
+      prefix: _httpApi.ClientPrefix.R0,
       onlyData: true,
       extraParams: opts.queryParams,
       localTimeoutMs: opts.localTimeoutMs,
       useAuthorizationHeader: opts.useAuthorizationHeader
     });
-
     if (opts.deviceToImport) {
       if (this.deviceId) {
-        _logger.logger.warn('not importing device because device ID is provided to ' + 'constructor independently of exported data');
+        _logger.logger.warn("not importing device because device ID is provided to " + "constructor independently of exported data");
       } else if (this.credentials.userId) {
-        _logger.logger.warn('not importing device because user ID is provided to ' + 'constructor independently of exported data');
+        _logger.logger.warn("not importing device because user ID is provided to " + "constructor independently of exported data");
       } else if (!opts.deviceToImport.deviceId) {
-        _logger.logger.warn('not importing device because no device ID in exported data');
+        _logger.logger.warn("not importing device because no device ID in exported data");
       } else {
         this.deviceId = opts.deviceToImport.deviceId;
-        this.credentials.userId = opts.deviceToImport.userId; // will be used during async initialization of the crypto
-
+        this.credentials.userId = opts.deviceToImport.userId;
+        // will be used during async initialization of the crypto
         this.exportedOlmDeviceToImport = opts.deviceToImport.olmDevice;
       }
     } else if (opts.pickleKey) {
       this.pickleKey = opts.pickleKey;
     }
-
     this.scheduler = opts.scheduler;
-
     if (this.scheduler) {
       this.scheduler.setProcessFunction(async eventToSend => {
         const room = this.getRoom(eventToSend.getRoomId());
-
         if (eventToSend.status !== _event.EventStatus.SENDING) {
           this.updatePendingEventStatus(room, eventToSend, _event.EventStatus.SENDING);
         }
-
         const res = await this.sendEventHttpRequest(eventToSend);
-
         if (room) {
           // ensure we update pending event before the next scheduler run so that any listeners to event id
           // updates on the synchronous event emitter get a chance to run first.
           room.updatePendingEvent(eventToSend, _event.EventStatus.SENT, res.event_id);
         }
-
         return res;
       });
     }
-
     if ((0, _call.supportsMatrixCall)()) {
       this.callEventHandler = new _callEventHandler.CallEventHandler(this);
-      this.canSupportVoip = true; // Start listening for calls after the initial sync is done
+      this.groupCallEventHandler = new _groupCallEventHandler.GroupCallEventHandler(this);
+      this.canSupportVoip = true;
+      // Start listening for calls after the initial sync is done
       // We do not need to backfill the call event buffer
       // with encrypted events that might never get decrypted
-
       this.on(ClientEvent.Sync, this.startCallEventHandler);
     }
-
+    this.on(ClientEvent.Sync, this.fixupRoomNotifications);
     this.timelineSupport = Boolean(opts.timelineSupport);
     this.cryptoStore = opts.cryptoStore;
     this.verificationMethods = opts.verificationMethods;
@@ -371,50 +296,29 @@
     this.forceTURN = opts.forceTURN || false;
     this.iceCandidatePoolSize = opts.iceCandidatePoolSize === undefined ? 0 : opts.iceCandidatePoolSize;
     this.supportsCallTransfer = opts.supportsCallTransfer || false;
-    this.fallbackICEServerAllowed = opts.fallbackICEServerAllowed || false; // List of which rooms have encryption enabled: separate from crypto because
+    this.fallbackICEServerAllowed = opts.fallbackICEServerAllowed || false;
+    this.isVoipWithNoMediaAllowed = opts.isVoipWithNoMediaAllowed || false;
+    if (opts.useE2eForGroupCall !== undefined) this.useE2eForGroupCall = opts.useE2eForGroupCall;
+
+    // List of which rooms have encryption enabled: separate from crypto because
     // we still want to know which rooms are encrypted even if crypto is disabled:
     // we don't want to start sending unencrypted events to them.
-
     this.roomList = new _RoomList.RoomList(this.cryptoStore);
     this.roomNameGenerator = opts.roomNameGenerator;
-    this.toDeviceMessageQueue = new _ToDeviceMessageQueue.ToDeviceMessageQueue(this); // The SDK doesn't really provide a clean way for events to recalculate the push
+    this.toDeviceMessageQueue = new _ToDeviceMessageQueue.ToDeviceMessageQueue(this);
+
+    // The SDK doesn't really provide a clean way for events to recalculate the push
     // actions for themselves, so we have to kinda help them out when they are encrypted.
     // We do this so that push rules are correctly executed on events in their decrypted
     // state, such as highlights when the user's name is mentioned.
-
     this.on(_event.MatrixEventEvent.Decrypted, event => {
-      const oldActions = event.getPushActions();
-      const actions = this.getPushActionsForEvent(event, true);
-      const room = this.getRoom(event.getRoomId());
-      if (!room) return;
-      const currentCount = room.getUnreadNotificationCount(_matrix.NotificationCountType.Highlight); // Ensure the unread counts are kept up to date if the event is encrypted
-      // We also want to make sure that the notification count goes up if we already
-      // have encrypted events to avoid other code from resetting 'highlight' to zero.
-
-      const oldHighlight = !!oldActions?.tweaks?.highlight;
-      const newHighlight = !!actions?.tweaks?.highlight;
-
-      if (oldHighlight !== newHighlight || currentCount > 0) {
-        // TODO: Handle mentions received while the client is offline
-        // See also https://github.com/vector-im/element-web/issues/9069
-        if (!room.hasUserReadEvent(this.getUserId(), event.getId())) {
-          let newCount = currentCount;
-          if (newHighlight && !oldHighlight) newCount++;
-          if (!newHighlight && oldHighlight) newCount--;
-          room.setUnreadNotificationCount(_matrix.NotificationCountType.Highlight, newCount); // Fix 'Mentions Only' rooms from not having the right badge count
-
-          const totalCount = room.getUnreadNotificationCount(_matrix.NotificationCountType.Total);
+      fixNotificationCountOnDecryption(this, event);
+    });
 
-          if (totalCount < newCount) {
-            room.setUnreadNotificationCount(_matrix.NotificationCountType.Total, newCount);
-          }
-        }
-      }
-    }); // Like above, we have to listen for read receipts from ourselves in order to
+    // Like above, we have to listen for read receipts from ourselves in order to
     // correctly handle notification counts on encrypted rooms.
     // This fixes https://github.com/vector-im/element-web/issues/9421
-
-    this.on(_matrix.RoomEvent.Receipt, (event, room) => {
+    this.on(_room.RoomEvent.Receipt, (event, room) => {
       if (room && this.isRoomEncrypted(room.roomId)) {
         // Figure out if we've read something or if it's just informational
         const content = event.getContent();
@@ -424,224 +328,205 @@
             if (!value) continue;
             if (Object.keys(value).includes(this.getUserId())) return true;
           }
-
           return false;
         }).length > 0;
-        if (!isSelf) return; // Work backwards to determine how many events are unread. We also set
+        if (!isSelf) return;
+
+        // Work backwards to determine how many events are unread. We also set
         // a limit for how back we'll look to avoid spinning CPU for too long.
         // If we hit the limit, we assume the count is unchanged.
-
         const maxHistory = 20;
         const events = room.getLiveTimeline().getEvents();
         let highlightCount = 0;
-
         for (let i = events.length - 1; i >= 0; i--) {
           if (i === events.length - maxHistory) return; // limit reached
 
           const event = events[i];
-
           if (room.hasUserReadEvent(this.getUserId(), event.getId())) {
             // If the user has read the event, then the counting is done.
             break;
           }
-
           const pushActions = this.getPushActionsForEvent(event);
-          highlightCount += pushActions.tweaks && pushActions.tweaks.highlight ? 1 : 0;
-        } // Note: we don't need to handle 'total' notifications because the counts
-        // will come from the server.
-
+          highlightCount += pushActions?.tweaks?.highlight ? 1 : 0;
+        }
 
-        room.setUnreadNotificationCount(_matrix.NotificationCountType.Highlight, highlightCount);
+        // Note: we don't need to handle 'total' notifications because the counts
+        // will come from the server.
+        room.setUnreadNotificationCount(_room.NotificationCountType.Highlight, highlightCount);
       }
     });
     this.ignoredInvites = new _invitesIgnorer.IgnoredInvites(this);
   }
+
   /**
    * High level helper method to begin syncing and poll for new events. To listen for these
-   * events, add a listener for {@link module:client~MatrixClient#event:"event"}
-   * via {@link module:client~MatrixClient#on}. Alternatively, listen for specific
+   * events, add a listener for {@link ClientEvent.Event}
+   * via {@link MatrixClient#on}. Alternatively, listen for specific
    * state change events.
-   * @param {Object=} opts Options to apply when syncing.
+   * @param opts - Options to apply when syncing.
    */
-
-
   async startClient(opts) {
     if (this.clientRunning) {
       // client is already running.
       return;
     }
-
-    this.clientRunning = true; // backwards compat for when 'opts' was 'historyLen'.
-
+    this.clientRunning = true;
+    // backwards compat for when 'opts' was 'historyLen'.
     if (typeof opts === "number") {
       opts = {
         initialSyncLimit: opts
       };
-    } // Create our own user object artificially (instead of waiting for sync)
-    // so it's always available, even if the user is not in any rooms etc.
-
+    }
 
+    // Create our own user object artificially (instead of waiting for sync)
+    // so it's always available, even if the user is not in any rooms etc.
     const userId = this.getUserId();
-
     if (userId) {
       this.store.storeUser(new _user.User(userId));
     }
 
-    if (this.crypto) {
-      this.crypto.uploadDeviceKeys();
-      this.crypto.start();
-    } // periodically poll for turn servers if we support voip
-
-
+    // periodically poll for turn servers if we support voip
     if (this.canSupportVoip) {
       this.checkTurnServersIntervalID = setInterval(() => {
         this.checkTurnServers();
-      }, TURN_CHECK_INTERVAL); // noinspection ES6MissingAwait
-
+      }, TURN_CHECK_INTERVAL);
+      // noinspection ES6MissingAwait
       this.checkTurnServers();
     }
-
     if (this.syncApi) {
       // This shouldn't happen since we thought the client was not running
       _logger.logger.error("Still have sync object whilst not running: stopping old one");
-
       this.syncApi.stop();
     }
-
     try {
+      await this.getVersions();
+
+      // This should be done with `canSupport`
+      // TODO: https://github.com/vector-im/element-web/issues/23643
       const {
-        serverSupport,
-        stable
+        threads,
+        list,
+        fwdPagination
       } = await this.doesServerSupportThread();
-
-      _thread.Thread.setServerSideSupport(serverSupport, stable);
+      _thread.Thread.setServerSideSupport(threads);
+      _thread.Thread.setServerSideListSupport(list);
+      _thread.Thread.setServerSideFwdPaginationSupport(fwdPagination);
     } catch (e) {
-      // Most likely cause is that `doesServerSupportThread` returned `null` (as it
-      // is allowed to do) and thus we enter "degraded mode" on threads.
-      _thread.Thread.setServerSideSupport(false, true);
-    } // shallow-copy the opts dict before modifying and storing it
-
-
-    this.clientOpts = Object.assign({}, opts);
-    this.clientOpts.crypto = this.crypto;
-
-    this.clientOpts.canResetEntireTimeline = roomId => {
-      if (!this.canResetTimelineCallback) {
-        return false;
-      }
-
-      return this.canResetTimelineCallback(roomId);
-    };
-
+      _logger.logger.error("Can't fetch server versions, continuing to initialise sync, this will be retried later", e);
+    }
+    this.clientOpts = opts ?? {};
     if (this.clientOpts.slidingSync) {
-      this.syncApi = new _slidingSyncSdk.SlidingSyncSdk(this.clientOpts.slidingSync, this, this.clientOpts);
+      this.syncApi = new _slidingSyncSdk.SlidingSyncSdk(this.clientOpts.slidingSync, this, this.clientOpts, this.buildSyncApiOptions());
     } else {
-      this.syncApi = new _sync.SyncApi(this, this.clientOpts);
+      this.syncApi = new _sync.SyncApi(this, this.clientOpts, this.buildSyncApiOptions());
+    }
+    if (this.clientOpts.hasOwnProperty("experimentalThreadSupport")) {
+      _logger.logger.warn("`experimentalThreadSupport` has been deprecated, use `threadSupport` instead");
     }
 
+    // If `threadSupport` is omitted and the deprecated `experimentalThreadSupport` has been passed
+    // We should fallback to that value for backwards compatibility purposes
+    if (!this.clientOpts.hasOwnProperty("threadSupport") && this.clientOpts.hasOwnProperty("experimentalThreadSupport")) {
+      this.clientOpts.threadSupport = this.clientOpts.experimentalThreadSupport;
+    }
     this.syncApi.sync();
-
     if (this.clientOpts.clientWellKnownPollPeriod !== undefined) {
       this.clientWellKnownIntervalID = setInterval(() => {
         this.fetchClientWellKnown();
       }, 1000 * this.clientOpts.clientWellKnownPollPeriod);
       this.fetchClientWellKnown();
     }
-
     this.toDeviceMessageQueue.start();
   }
+
+  /**
+   * Construct a SyncApiOptions for this client, suitable for passing into the SyncApi constructor
+   */
+  buildSyncApiOptions() {
+    return {
+      crypto: this.crypto,
+      cryptoCallbacks: this.cryptoBackend,
+      canResetEntireTimeline: roomId => {
+        if (!this.canResetTimelineCallback) {
+          return false;
+        }
+        return this.canResetTimelineCallback(roomId);
+      }
+    };
+  }
+
   /**
    * High level helper method to stop the client from polling and allow a
    * clean shutdown.
    */
-
-
   stopClient() {
-    this.crypto?.stop(); // crypto might have been initialised even if the client wasn't fully started
+    this.cryptoBackend?.stop(); // crypto might have been initialised even if the client wasn't fully started
 
     if (!this.clientRunning) return; // already stopped
 
-    _logger.logger.log('stopping MatrixClient');
-
+    _logger.logger.log("stopping MatrixClient");
     this.clientRunning = false;
     this.syncApi?.stop();
-    this.syncApi = null;
+    this.syncApi = undefined;
     this.peekSync?.stopPeeking();
     this.callEventHandler?.stop();
-    this.callEventHandler = null;
+    this.groupCallEventHandler?.stop();
+    this.callEventHandler = undefined;
+    this.groupCallEventHandler = undefined;
     global.clearInterval(this.checkTurnServersIntervalID);
-    this.checkTurnServersIntervalID = null;
-
+    this.checkTurnServersIntervalID = undefined;
     if (this.clientWellKnownIntervalID !== undefined) {
       global.clearInterval(this.clientWellKnownIntervalID);
     }
-
     this.toDeviceMessageQueue.stop();
   }
+
   /**
    * Try to rehydrate a device if available.  The client must have been
    * initialized with a `cryptoCallback.getDehydrationKey` option, and this
    * function must be called before initCrypto and startClient are called.
    *
-   * @return {Promise<string>} Resolves to undefined if a device could not be dehydrated, or
+   * @returns Promise which resolves to undefined if a device could not be dehydrated, or
    *     to the new device ID if the dehydration was successful.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Rejects: with an error response.
    */
-
-
   async rehydrateDevice() {
     if (this.crypto) {
       throw new Error("Cannot rehydrate device after crypto is initialized");
     }
-
     if (!this.cryptoCallbacks.getDehydrationKey) {
       return;
     }
-
     const getDeviceResult = await this.getDehydratedDevice();
-
     if (!getDeviceResult) {
       return;
     }
-
     if (!getDeviceResult.device_data || !getDeviceResult.device_id) {
       _logger.logger.info("no dehydrated device found");
-
       return;
     }
-
     const account = new global.Olm.Account();
-
     try {
       const deviceData = getDeviceResult.device_data;
-
       if (deviceData.algorithm !== _dehydration.DEHYDRATION_ALGORITHM) {
         _logger.logger.warn("Wrong algorithm for dehydrated device");
-
         return;
       }
-
       _logger.logger.log("unpickling dehydrated device");
-
       const key = await this.cryptoCallbacks.getDehydrationKey(deviceData, k => {
         // copy the key so that it doesn't get clobbered
         account.unpickle(new Uint8Array(k), deviceData.account);
       });
       account.unpickle(key, deviceData.account);
-
       _logger.logger.log("unpickled device");
-
-      const rehydrateResult = await this.http.authedRequest(undefined, _httpApi.Method.Post, "/dehydrated_device/claim", undefined, {
+      const rehydrateResult = await this.http.authedRequest(_httpApi.Method.Post, "/dehydrated_device/claim", undefined, {
         device_id: getDeviceResult.device_id
       }, {
         prefix: "/_matrix/client/unstable/org.matrix.msc2697.v2"
       });
-
-      if (rehydrateResult.success === true) {
+      if (rehydrateResult.success) {
         this.deviceId = getDeviceResult.device_id;
-
         _logger.logger.info("using dehydrated device");
-
         const pickleKey = this.pickleKey || "DEFAULT_KEY";
         this.exportedOlmDeviceToImport = {
           pickledAccount: account.pickle(pickleKey),
@@ -652,85 +537,71 @@
         return this.deviceId;
       } else {
         account.free();
-
         _logger.logger.info("not using dehydrated device");
-
         return;
       }
     } catch (e) {
       account.free();
-
       _logger.logger.warn("could not unpickle", e);
     }
   }
+
   /**
    * Get the current dehydrated device, if any
-   * @return {Promise} A promise of an object containing the dehydrated device
+   * @returns A promise of an object containing the dehydrated device
    */
-
-
   async getDehydratedDevice() {
     try {
-      return await this.http.authedRequest(undefined, _httpApi.Method.Get, "/dehydrated_device", undefined, undefined, {
+      return await this.http.authedRequest(_httpApi.Method.Get, "/dehydrated_device", undefined, undefined, {
         prefix: "/_matrix/client/unstable/org.matrix.msc2697.v2"
       });
     } catch (e) {
-      _logger.logger.info("could not get dehydrated device", e.toString());
-
+      _logger.logger.info("could not get dehydrated device", e);
       return;
     }
   }
+
   /**
    * Set the dehydration key.  This will also periodically dehydrate devices to
    * the server.
    *
-   * @param {Uint8Array} key the dehydration key
-   * @param {IDehydratedDeviceKeyInfo} [keyInfo] Information about the key.  Primarily for
+   * @param key - the dehydration key
+   * @param keyInfo - Information about the key.  Primarily for
    *     information about how to generate the key from a passphrase.
-   * @param {string} [deviceDisplayName] The device display name for the
+   * @param deviceDisplayName - The device display name for the
    *     dehydrated device.
-   * @return {Promise} A promise that resolves when the dehydrated device is stored.
+   * @returns A promise that resolves when the dehydrated device is stored.
    */
-
-
-  setDehydrationKey(key, keyInfo, deviceDisplayName) {
+  async setDehydrationKey(key, keyInfo, deviceDisplayName) {
     if (!this.crypto) {
-      _logger.logger.warn('not dehydrating device if crypto is not enabled');
-
+      _logger.logger.warn("not dehydrating device if crypto is not enabled");
       return;
     }
-
     return this.crypto.dehydrationManager.setKeyAndQueueDehydration(key, keyInfo, deviceDisplayName);
   }
+
   /**
    * Creates a new dehydrated device (without queuing periodic dehydration)
-   * @param {Uint8Array} key the dehydration key
-   * @param {IDehydratedDeviceKeyInfo} [keyInfo] Information about the key.  Primarily for
+   * @param key - the dehydration key
+   * @param keyInfo - Information about the key.  Primarily for
    *     information about how to generate the key from a passphrase.
-   * @param {string} [deviceDisplayName] The device display name for the
+   * @param deviceDisplayName - The device display name for the
    *     dehydrated device.
-   * @return {Promise<String>} the device id of the newly created dehydrated device
+   * @returns the device id of the newly created dehydrated device
    */
-
-
   async createDehydratedDevice(key, keyInfo, deviceDisplayName) {
     if (!this.crypto) {
-      _logger.logger.warn('not dehydrating device if crypto is not enabled');
-
+      _logger.logger.warn("not dehydrating device if crypto is not enabled");
       return;
     }
-
     await this.crypto.dehydrationManager.setKey(key, keyInfo, deviceDisplayName);
     return this.crypto.dehydrationManager.dehydrateDevice();
   }
-
   async exportDevice() {
     if (!this.crypto) {
-      _logger.logger.warn('not exporting device if crypto is not enabled');
-
+      _logger.logger.warn("not exporting device if crypto is not enabled");
       return;
     }
-
     return {
       userId: this.credentials.userId,
       deviceId: this.deviceId,
@@ -738,187 +609,267 @@
       olmDevice: await this.crypto.olmDevice.export()
     };
   }
+
   /**
    * Clear any data out of the persistent stores used by the client.
    *
-   * @returns {Promise} Promise which resolves when the stores have been cleared.
+   * @returns Promise which resolves when the stores have been cleared.
    */
-
-
   clearStores() {
     if (this.clientRunning) {
       throw new Error("Cannot clear stores while client is running");
     }
-
     const promises = [];
     promises.push(this.store.deleteAllData());
-
     if (this.cryptoStore) {
       promises.push(this.cryptoStore.deleteAllData());
     }
 
-    return Promise.all(promises).then(); // .then to fix types
+    // delete the stores used by the rust matrix-sdk-crypto, in case they were used
+    const deleteRustSdkStore = async () => {
+      let indexedDB;
+      try {
+        indexedDB = global.indexedDB;
+      } catch (e) {
+        // No indexeddb support
+        return;
+      }
+      for (const dbname of [`${_constants.RUST_SDK_STORE_PREFIX}::matrix-sdk-crypto`, `${_constants.RUST_SDK_STORE_PREFIX}::matrix-sdk-crypto-meta`]) {
+        const prom = new Promise((resolve, reject) => {
+          _logger.logger.info(`Removing IndexedDB instance ${dbname}`);
+          const req = indexedDB.deleteDatabase(dbname);
+          req.onsuccess = _ => {
+            _logger.logger.info(`Removed IndexedDB instance ${dbname}`);
+            resolve(0);
+          };
+          req.onerror = e => {
+            // In private browsing, Firefox has a global.indexedDB, but attempts to delete an indexeddb
+            // (even a non-existent one) fail with "DOMException: A mutation operation was attempted on a
+            // database that did not allow mutations."
+            //
+            // it seems like the only thing we can really do is ignore the error.
+            _logger.logger.warn(`Failed to remove IndexedDB instance ${dbname}:`, e);
+            resolve(0);
+          };
+          req.onblocked = e => {
+            _logger.logger.info(`cannot yet remove IndexedDB instance ${dbname}`);
+          };
+        });
+        await prom;
+      }
+    };
+    promises.push(deleteRustSdkStore());
+    return Promise.all(promises).then(); // .then to fix types
   }
+
   /**
    * Get the user-id of the logged-in user
    *
-   * @return {?string} MXID for the logged-in user, or null if not logged in
+   * @returns MXID for the logged-in user, or null if not logged in
    */
-
-
   getUserId() {
     if (this.credentials && this.credentials.userId) {
       return this.credentials.userId;
     }
-
     return null;
   }
+
+  /**
+   * Get the user-id of the logged-in user
+   *
+   * @returns MXID for the logged-in user
+   * @throws Error if not logged in
+   */
+  getSafeUserId() {
+    const userId = this.getUserId();
+    if (!userId) {
+      throw new Error("Expected logged in user but found none.");
+    }
+    return userId;
+  }
+
   /**
    * Get the domain for this client's MXID
-   * @return {?string} Domain of this MXID
+   * @returns Domain of this MXID
    */
-
-
   getDomain() {
     if (this.credentials && this.credentials.userId) {
-      return this.credentials.userId.replace(/^.*?:/, '');
+      return this.credentials.userId.replace(/^.*?:/, "");
     }
-
     return null;
   }
+
   /**
-   * Get the local part of the current user ID e.g. "foo" in "@foo:bar".
-   * @return {?string} The user ID localpart or null.
+   * Get the local part of the current user ID e.g. "foo" in "\@foo:bar".
+   * @returns The user ID localpart or null.
    */
-
-
   getUserIdLocalpart() {
     if (this.credentials && this.credentials.userId) {
       return this.credentials.userId.split(":")[0].substring(1);
     }
-
     return null;
   }
+
   /**
    * Get the device ID of this client
-   * @return {?string} device ID
+   * @returns device ID
    */
-
-
   getDeviceId() {
     return this.deviceId;
   }
+
   /**
-   * Check if the runtime environment supports VoIP calling.
-   * @return {boolean} True if VoIP is supported.
+   * Get the session ID of this client
+   * @returns session ID
    */
+  getSessionId() {
+    return this.sessionId;
+  }
 
-
+  /**
+   * Check if the runtime environment supports VoIP calling.
+   * @returns True if VoIP is supported.
+   */
   supportsVoip() {
     return this.canSupportVoip;
   }
+
   /**
-   * @returns {MediaHandler}
+   * @returns
    */
-
-
   getMediaHandler() {
     return this.mediaHandler;
   }
+
   /**
    * Set whether VoIP calls are forced to use only TURN
    * candidates. This is the same as the forceTURN option
    * when creating the client.
-   * @param {boolean} force True to force use of TURN servers
+   * @param force - True to force use of TURN servers
    */
-
-
   setForceTURN(force) {
     this.forceTURN = force;
   }
+
   /**
    * Set whether to advertise transfer support to other parties on Matrix calls.
-   * @param {boolean} support True to advertise the 'm.call.transferee' capability
+   * @param support - True to advertise the 'm.call.transferee' capability
    */
-
-
   setSupportsCallTransfer(support) {
     this.supportsCallTransfer = support;
   }
+
+  /**
+   * Returns true if to-device signalling for group calls will be encrypted with Olm.
+   * If false, it will be sent unencrypted.
+   * @returns boolean Whether group call signalling will be encrypted
+   */
+  getUseE2eForGroupCall() {
+    return this.useE2eForGroupCall;
+  }
+
   /**
    * Creates a new call.
    * The place*Call methods on the returned call can be used to actually place a call
    *
-   * @param {string} roomId The room the call is to be placed in.
-   * @return {MatrixCall} the call or null if the browser doesn't support calling.
+   * @param roomId - The room the call is to be placed in.
+   * @returns the call or null if the browser doesn't support calling.
    */
-
-
   createCall(roomId) {
     return (0, _call.createNewMatrixCall)(this, roomId);
   }
+
   /**
-   * Get the current sync state.
-   * @return {?SyncState} the sync state, which may be null.
-   * @see module:client~MatrixClient#event:"sync"
+   * Creates a new group call and sends the associated state event
+   * to alert other members that the room now has a group call.
+   *
+   * @param roomId - The room the call is to be placed in.
+   */
+  async createGroupCall(roomId, type, isPtt, intent, dataChannelsEnabled, dataChannelOptions) {
+    if (this.getGroupCallForRoom(roomId)) {
+      throw new Error(`${roomId} already has an existing group call`);
+    }
+    const room = this.getRoom(roomId);
+    if (!room) {
+      throw new Error(`Cannot find room ${roomId}`);
+    }
+
+    // Because without Media section a WebRTC connection is not possible, so need a RTCDataChannel to set up a
+    // no media WebRTC connection anyway.
+    return new _groupCall.GroupCall(this, room, type, isPtt, intent, undefined, dataChannelsEnabled || this.isVoipWithNoMediaAllowed, dataChannelOptions, this.isVoipWithNoMediaAllowed).create();
+  }
+
+  /**
+   * Wait until an initial state for the given room has been processed by the
+   * client and the client is aware of any ongoing group calls. Awaiting on
+   * the promise returned by this method before calling getGroupCallForRoom()
+   * avoids races where getGroupCallForRoom is called before the state for that
+   * room has been processed. It does not, however, fix other races, eg. two
+   * clients both creating a group call at the same time.
+   * @param roomId - The room ID to wait for
+   * @returns A promise that resolves once existing group calls in the room
+   *          have been processed.
    */
+  waitUntilRoomReadyForGroupCalls(roomId) {
+    return this.groupCallEventHandler.waitUntilRoomReadyForGroupCalls(roomId);
+  }
 
+  /**
+   * Get an existing group call for the provided room.
+   * @returns The group call or null if it doesn't already exist.
+   */
+  getGroupCallForRoom(roomId) {
+    return this.groupCallEventHandler.groupCalls.get(roomId) || null;
+  }
 
+  /**
+   * Get the current sync state.
+   * @returns the sync state, which may be null.
+   * @see MatrixClient#event:"sync"
+   */
   getSyncState() {
-    if (!this.syncApi) {
-      return null;
-    }
-
-    return this.syncApi.getSyncState();
+    return this.syncApi?.getSyncState() ?? null;
   }
+
   /**
    * Returns the additional data object associated with
    * the current sync state, or null if there is no
    * such data.
    * Sync errors, if available, are put in the 'error' key of
    * this object.
-   * @return {?Object}
    */
-
-
   getSyncStateData() {
     if (!this.syncApi) {
       return null;
     }
-
     return this.syncApi.getSyncStateData();
   }
+
   /**
    * Whether the initial sync has completed.
-   * @return {boolean} True if at least one sync has happened.
+   * @returns True if at least one sync has happened.
    */
-
-
   isInitialSyncComplete() {
     const state = this.getSyncState();
-
     if (!state) {
       return false;
     }
-
     return state === _sync.SyncState.Prepared || state === _sync.SyncState.Syncing;
   }
+
   /**
    * Return whether the client is configured for a guest account.
-   * @return {boolean} True if this is a guest access_token (or no token is supplied).
+   * @returns True if this is a guest access_token (or no token is supplied).
    */
-
-
   isGuest() {
     return this.isGuestAccount;
   }
+
   /**
    * Set whether this client is a guest account. <b>This method is experimental
    * and may change without warning.</b>
-   * @param {boolean} guest True if this is a guest account.
+   * @param guest - True if this is a guest account.
    */
-
-
   setGuest(guest) {
     // EXPERIMENTAL:
     // If the token is a macaroon, it should be encoded in it that it is a 'guest'
@@ -926,89 +877,81 @@
     // the dev manually flipping this flag.
     this.isGuestAccount = guest;
   }
+
   /**
    * Return the provided scheduler, if any.
-   * @return {?module:scheduler~MatrixScheduler} The scheduler or null
+   * @returns The scheduler or undefined
    */
-
-
   getScheduler() {
     return this.scheduler;
   }
+
   /**
    * Retry a backed off syncing request immediately. This should only be used when
    * the user <b>explicitly</b> attempts to retry their lost connection.
    * Will also retry any outbound to-device messages currently in the queue to be sent
    * (retries of regular outgoing events are handled separately, per-event).
-   * @return {boolean} True if this resulted in a request being retried.
+   * @returns True if this resulted in a request being retried.
    */
-
-
   retryImmediately() {
     // don't await for this promise: we just want to kick it off
     this.toDeviceMessageQueue.sendQueue();
-    return this.syncApi.retryImmediately();
+    return this.syncApi?.retryImmediately() ?? false;
   }
+
   /**
    * Return the global notification EventTimelineSet, if any
    *
-   * @return {EventTimelineSet} the globl notification EventTimelineSet
+   * @returns the globl notification EventTimelineSet
    */
-
-
   getNotifTimelineSet() {
     return this.notifTimelineSet;
   }
+
   /**
    * Set the global notification EventTimelineSet
    *
-   * @param {EventTimelineSet} set
    */
-
-
   setNotifTimelineSet(set) {
     this.notifTimelineSet = set;
   }
+
   /**
    * Gets the capabilities of the homeserver. Always returns an object of
    * capability keys and their options, which may be empty.
-   * @param {boolean} fresh True to ignore any cached values.
-   * @return {Promise} Resolves to the capabilities of the homeserver
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param fresh - True to ignore any cached values.
+   * @returns Promise which resolves to the capabilities of the homeserver
+   * @returns Rejects: with an error response.
    */
-
-
   getCapabilities(fresh = false) {
     const now = new Date().getTime();
-
     if (this.cachedCapabilities && !fresh) {
       if (now < this.cachedCapabilities.expiration) {
         _logger.logger.log("Returning cached capabilities");
-
         return Promise.resolve(this.cachedCapabilities.capabilities);
       }
     }
-
-    return this.http.authedRequest(undefined, _httpApi.Method.Get, "/capabilities").catch(e => {
+    return this.http.authedRequest(_httpApi.Method.Get, "/capabilities").catch(e => {
       // We swallow errors because we need a default object anyhow
       _logger.logger.error(e);
+      return {};
     }).then((r = {}) => {
-      const capabilities = r["capabilities"] || {}; // If the capabilities missed the cache, cache it for a shorter amount
-      // of time to try and refresh them later.
+      const capabilities = r["capabilities"] || {};
 
+      // If the capabilities missed the cache, cache it for a shorter amount
+      // of time to try and refresh them later.
       const cacheMs = Object.keys(capabilities).length ? CAPABILITIES_CACHE_MS : 60000 + Math.random() * 5000;
       this.cachedCapabilities = {
         capabilities,
         expiration: now + cacheMs
       };
-
       _logger.logger.log("Caching capabilities: ", capabilities);
-
       return capabilities;
     });
   }
+
   /**
-   * Initialise support for end-to-end encryption in this client
+   * Initialise support for end-to-end encryption in this client, using libolm.
    *
    * You should call this method after creating the matrixclient, but *before*
    * calling `startClient`, if you want to support end-to-end encryption.
@@ -1016,350 +959,348 @@
    * It will return a Promise which will resolve when the crypto layer has been
    * successfully initialised.
    */
-
-
   async initCrypto() {
     if (!(0, _crypto.isCryptoAvailable)()) {
       throw new Error(`End-to-end encryption not supported in this js-sdk build: did ` + `you remember to load the olm library?`);
     }
-
-    if (this.crypto) {
+    if (this.cryptoBackend) {
       _logger.logger.warn("Attempt to re-initialise e2e encryption on MatrixClient");
-
       return;
     }
-
     if (!this.cryptoStore) {
       // the cryptostore is provided by sdk.createClient, so this shouldn't happen
       throw new Error(`Cannot enable encryption: no cryptoStore provided`);
     }
-
     _logger.logger.log("Crypto: Starting up crypto store...");
+    await this.cryptoStore.startup();
 
-    await this.cryptoStore.startup(); // initialise the list of encrypted rooms (whether or not crypto is enabled)
-
+    // initialise the list of encrypted rooms (whether or not crypto is enabled)
     _logger.logger.log("Crypto: initialising roomlist...");
-
     await this.roomList.init();
     const userId = this.getUserId();
-
     if (userId === null) {
       throw new Error(`Cannot enable encryption on MatrixClient with unknown userId: ` + `ensure userId is passed in createClient().`);
     }
-
     if (this.deviceId === null) {
       throw new Error(`Cannot enable encryption on MatrixClient with unknown deviceId: ` + `ensure deviceId is passed in createClient().`);
     }
-
     const crypto = new _crypto.Crypto(this, userId, this.deviceId, this.store, this.cryptoStore, this.roomList, this.verificationMethods);
     this.reEmitter.reEmit(crypto, [_crypto.CryptoEvent.KeyBackupFailed, _crypto.CryptoEvent.KeyBackupSessionsRemaining, _crypto.CryptoEvent.RoomKeyRequest, _crypto.CryptoEvent.RoomKeyRequestCancellation, _crypto.CryptoEvent.Warning, _crypto.CryptoEvent.DevicesUpdated, _crypto.CryptoEvent.WillUpdateDevices, _crypto.CryptoEvent.DeviceVerificationChanged, _crypto.CryptoEvent.UserTrustStatusChanged, _crypto.CryptoEvent.KeysChanged]);
-
     _logger.logger.log("Crypto: initialising crypto object...");
-
     await crypto.init({
       exportedOlmDevice: this.exportedOlmDeviceToImport,
       pickleKey: this.pickleKey
     });
     delete this.exportedOlmDeviceToImport;
-    this.olmVersion = _crypto.Crypto.getOlmVersion(); // if crypto initialisation was successful, tell it to attach its event handlers.
+    this.olmVersion = _crypto.Crypto.getOlmVersion();
 
+    // if crypto initialisation was successful, tell it to attach its event handlers.
     crypto.registerEventHandlers(this);
-    this.crypto = crypto;
+    this.cryptoBackend = this.crypto = crypto;
+
+    // upload our keys in the background
+    this.crypto.uploadDeviceKeys().catch(e => {
+      // TODO: throwing away this error is a really bad idea.
+      _logger.logger.error("Error uploading device keys", e);
+    });
   }
+
   /**
-   * Is end-to-end crypto enabled for this client.
-   * @return {boolean} True if end-to-end is enabled.
+   * Initialise support for end-to-end encryption in this client, using the rust matrix-sdk-crypto.
+   *
+   * An alternative to {@link initCrypto}.
+   *
+   * *WARNING*: this API is very experimental, should not be used in production, and may change without notice!
+   *    Eventually it will be deprecated and `initCrypto` will do the same thing.
+   *
+   * @experimental
+   *
+   * @returns a Promise which will resolve when the crypto layer has been
+   *    successfully initialised.
    */
+  async initRustCrypto() {
+    if (this.cryptoBackend) {
+      _logger.logger.warn("Attempt to re-initialise e2e encryption on MatrixClient");
+      return;
+    }
+    const userId = this.getUserId();
+    if (userId === null) {
+      throw new Error(`Cannot enable encryption on MatrixClient with unknown userId: ` + `ensure userId is passed in createClient().`);
+    }
+    const deviceId = this.getDeviceId();
+    if (deviceId === null) {
+      throw new Error(`Cannot enable encryption on MatrixClient with unknown deviceId: ` + `ensure deviceId is passed in createClient().`);
+    }
+
+    // importing rust-crypto will download the webassembly, so we delay it until we know it will be
+    // needed.
+    const RustCrypto = await Promise.resolve().then(() => _interopRequireWildcard(require("./rust-crypto")));
+    const rustCrypto = await RustCrypto.initRustCrypto(this.http, userId, deviceId);
+    this.cryptoBackend = rustCrypto;
 
+    // attach the event listeners needed by RustCrypto
+    this.on(_roomMember.RoomMemberEvent.Membership, rustCrypto.onRoomMembership.bind(rustCrypto));
+  }
 
+  /**
+   * Is end-to-end crypto enabled for this client.
+   * @returns True if end-to-end is enabled.
+   */
   isCryptoEnabled() {
-    return !!this.crypto;
+    return !!this.cryptoBackend;
   }
+
   /**
    * Get the Ed25519 key for this device
    *
-   * @return {?string} base64-encoded ed25519 key. Null if crypto is
+   * @returns base64-encoded ed25519 key. Null if crypto is
    *    disabled.
    */
-
-
   getDeviceEd25519Key() {
-    if (!this.crypto) return null;
-    return this.crypto.getDeviceEd25519Key();
+    return this.crypto?.getDeviceEd25519Key() ?? null;
   }
+
   /**
    * Get the Curve25519 key for this device
    *
-   * @return {?string} base64-encoded curve25519 key. Null if crypto is
+   * @returns base64-encoded curve25519 key. Null if crypto is
    *    disabled.
    */
-
-
   getDeviceCurve25519Key() {
-    if (!this.crypto) return null;
-    return this.crypto.getDeviceCurve25519Key();
+    return this.crypto?.getDeviceCurve25519Key() ?? null;
   }
+
   /**
-   * Upload the device keys to the homeserver.
-   * @return {Promise<void>} A promise that will resolve when the keys are uploaded.
+   * @deprecated Does nothing.
    */
-
-
   async uploadKeys() {
-    if (!this.crypto) {
-      throw new Error("End-to-end encryption disabled");
-    }
-
-    await this.crypto.uploadDeviceKeys();
+    _logger.logger.warn("MatrixClient.uploadKeys is deprecated");
   }
+
   /**
    * Download the keys for a list of users and stores the keys in the session
    * store.
-   * @param {Array} userIds The users to fetch.
-   * @param {boolean} forceDownload Always download the keys even if cached.
+   * @param userIds - The users to fetch.
+   * @param forceDownload - Always download the keys even if cached.
    *
-   * @return {Promise} A promise which resolves to a map userId->deviceId->{@link
-      * module:crypto~DeviceInfo|DeviceInfo}.
+   * @returns A promise which resolves to a map userId-\>deviceId-\>{@link DeviceInfo}
    */
-
-
   downloadKeys(userIds, forceDownload) {
     if (!this.crypto) {
       return Promise.reject(new Error("End-to-end encryption disabled"));
     }
-
     return this.crypto.downloadKeys(userIds, forceDownload);
   }
+
   /**
    * Get the stored device keys for a user id
    *
-   * @param {string} userId the user to list keys for.
+   * @param userId - the user to list keys for.
    *
-   * @return {module:crypto/deviceinfo[]} list of devices
+   * @returns list of devices
    */
-
-
   getStoredDevicesForUser(userId) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.getStoredDevicesForUser(userId) || [];
   }
+
   /**
    * Get the stored device key for a user id and device id
    *
-   * @param {string} userId the user to list keys for.
-   * @param {string} deviceId unique identifier for the device
+   * @param userId - the user to list keys for.
+   * @param deviceId - unique identifier for the device
    *
-   * @return {module:crypto/deviceinfo} device or null
+   * @returns device or null
    */
-
-
   getStoredDevice(userId, deviceId) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.getStoredDevice(userId, deviceId) || null;
   }
+
   /**
    * Mark the given device as verified
    *
-   * @param {string} userId owner of the device
-   * @param {string} deviceId unique identifier for the device or user's
+   * @param userId - owner of the device
+   * @param deviceId - unique identifier for the device or user's
    * cross-signing public key ID.
    *
-   * @param {boolean=} verified whether to mark the device as verified. defaults
+   * @param verified - whether to mark the device as verified. defaults
    *   to 'true'.
    *
-   * @returns {Promise}
+   * @returns
    *
-   * @fires module:client~event:MatrixClient"deviceVerificationChanged"
+   * @remarks
+   * Fires {@link CryptoEvent#DeviceVerificationChanged}
    */
-
-
   setDeviceVerified(userId, deviceId, verified = true) {
-    const prom = this.setDeviceVerification(userId, deviceId, verified, null, null); // if one of the user's own devices is being marked as verified / unverified,
+    const prom = this.setDeviceVerification(userId, deviceId, verified, null, null);
+
+    // if one of the user's own devices is being marked as verified / unverified,
     // check the key backup status, since whether or not we use this depends on
     // whether it has a signature from a verified device
-
     if (userId == this.credentials.userId) {
       this.checkKeyBackup();
     }
-
     return prom;
   }
+
   /**
    * Mark the given device as blocked/unblocked
    *
-   * @param {string} userId owner of the device
-   * @param {string} deviceId unique identifier for the device or user's
+   * @param userId - owner of the device
+   * @param deviceId - unique identifier for the device or user's
    * cross-signing public key ID.
    *
-   * @param {boolean=} blocked whether to mark the device as blocked. defaults
+   * @param blocked - whether to mark the device as blocked. defaults
    *   to 'true'.
    *
-   * @returns {Promise}
+   * @returns
    *
-   * @fires module:client~event:MatrixClient"deviceVerificationChanged"
+   * @remarks
+   * Fires {@link CryptoEvent.DeviceVerificationChanged}
    */
-
-
   setDeviceBlocked(userId, deviceId, blocked = true) {
     return this.setDeviceVerification(userId, deviceId, null, blocked, null);
   }
+
   /**
    * Mark the given device as known/unknown
    *
-   * @param {string} userId owner of the device
-   * @param {string} deviceId unique identifier for the device or user's
+   * @param userId - owner of the device
+   * @param deviceId - unique identifier for the device or user's
    * cross-signing public key ID.
    *
-   * @param {boolean=} known whether to mark the device as known. defaults
+   * @param known - whether to mark the device as known. defaults
    *   to 'true'.
    *
-   * @returns {Promise}
+   * @returns
    *
-   * @fires module:client~event:MatrixClient"deviceVerificationChanged"
+   * @remarks
+   * Fires {@link CryptoEvent#DeviceVerificationChanged}
    */
-
-
   setDeviceKnown(userId, deviceId, known = true) {
     return this.setDeviceVerification(userId, deviceId, null, null, known);
   }
-
   async setDeviceVerification(userId, deviceId, verified, blocked, known) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     await this.crypto.setDeviceVerification(userId, deviceId, verified, blocked, known);
   }
+
   /**
    * Request a key verification from another user, using a DM.
    *
-   * @param {string} userId the user to request verification with
-   * @param {string} roomId the room to use for verification
+   * @param userId - the user to request verification with
+   * @param roomId - the room to use for verification
    *
-   * @returns {Promise<module:crypto/verification/request/VerificationRequest>} resolves to a VerificationRequest
+   * @returns resolves to a VerificationRequest
    *    when the request has been sent to the other party.
    */
-
-
   requestVerificationDM(userId, roomId) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.requestVerificationDM(userId, roomId);
   }
+
   /**
    * Finds a DM verification request that is already in progress for the given room id
    *
-   * @param {string} roomId the room to use for verification
+   * @param roomId - the room to use for verification
    *
-   * @returns {module:crypto/verification/request/VerificationRequest?} the VerificationRequest that is in progress, if any
+   * @returns the VerificationRequest that is in progress, if any
    */
-
-
   findVerificationRequestDMInProgress(roomId) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.findVerificationRequestDMInProgress(roomId);
   }
+
   /**
    * Returns all to-device verification requests that are already in progress for the given user id
    *
-   * @param {string} userId the ID of the user to query
+   * @param userId - the ID of the user to query
    *
-   * @returns {module:crypto/verification/request/VerificationRequest[]} the VerificationRequests that are in progress
+   * @returns the VerificationRequests that are in progress
    */
-
-
   getVerificationRequestsToDeviceInProgress(userId) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.getVerificationRequestsToDeviceInProgress(userId);
   }
+
   /**
    * Request a key verification from another user.
    *
-   * @param {string} userId the user to request verification with
-   * @param {Array} devices array of device IDs to send requests to.  Defaults to
+   * @param userId - the user to request verification with
+   * @param devices - array of device IDs to send requests to.  Defaults to
    *    all devices owned by the user
    *
-   * @returns {Promise<module:crypto/verification/request/VerificationRequest>} resolves to a VerificationRequest
+   * @returns resolves to a VerificationRequest
    *    when the request has been sent to the other party.
    */
-
-
   requestVerification(userId, devices) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.requestVerification(userId, devices);
   }
+
   /**
    * Begin a key verification.
    *
-   * @param {string} method the verification method to use
-   * @param {string} userId the user to verify keys with
-   * @param {string} deviceId the device to verify
+   * @param method - the verification method to use
+   * @param userId - the user to verify keys with
+   * @param deviceId - the device to verify
    *
-   * @returns {Verification} a verification object
+   * @returns a verification object
    * @deprecated Use `requestVerification` instead.
    */
-
-
   beginKeyVerification(method, userId, deviceId) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.beginKeyVerification(method, userId, deviceId);
   }
-
   checkSecretStorageKey(key, info) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.checkSecretStorageKey(key, info);
   }
+
   /**
    * Set the global override for whether the client should ever send encrypted
    * messages to unverified devices.  This provides the default for rooms which
    * do not specify a value.
    *
-   * @param {boolean} value whether to blacklist all unverified devices by default
+   * @param value - whether to blacklist all unverified devices by default
    */
-
-
   setGlobalBlacklistUnverifiedDevices(value) {
-    if (!this.crypto) {
+    if (!this.cryptoBackend) {
       throw new Error("End-to-end encryption disabled");
     }
-
-    return this.crypto.setGlobalBlacklistUnverifiedDevices(value);
+    this.cryptoBackend.globalBlacklistUnverifiedDevices = value;
+    return value;
   }
+
   /**
-   * @return {boolean} whether to blacklist all unverified devices by default
+   * @returns whether to blacklist all unverified devices by default
    */
-
-
   getGlobalBlacklistUnverifiedDevices() {
-    if (!this.crypto) {
+    if (!this.cryptoBackend) {
       throw new Error("End-to-end encryption disabled");
     }
-
-    return this.crypto.getGlobalBlacklistUnverifiedDevices();
+    return this.cryptoBackend.globalBlacklistUnverifiedDevices;
   }
+
   /**
    * Set whether sendMessage in a room with unknown and unverified devices
    * should throw an error and not send them message. This has 'Global' for
@@ -1368,177 +1309,166 @@
    *
    * This API is currently UNSTABLE and may change or be removed without notice.
    *
-   * @param {boolean} value whether error on unknown devices
+   * @param value - whether error on unknown devices
    */
-
-
   setGlobalErrorOnUnknownDevices(value) {
-    if (!this.crypto) {
+    if (!this.cryptoBackend) {
       throw new Error("End-to-end encryption disabled");
     }
-
-    return this.crypto.setGlobalErrorOnUnknownDevices(value);
+    this.cryptoBackend.globalErrorOnUnknownDevices = value;
   }
+
   /**
-   * @return {boolean} whether to error on unknown devices
+   * @returns whether to error on unknown devices
    *
    * This API is currently UNSTABLE and may change or be removed without notice.
    */
-
-
   getGlobalErrorOnUnknownDevices() {
-    if (!this.crypto) {
+    if (!this.cryptoBackend) {
       throw new Error("End-to-end encryption disabled");
     }
-
-    return this.crypto.getGlobalErrorOnUnknownDevices();
+    return this.cryptoBackend.globalErrorOnUnknownDevices;
   }
+
   /**
    * Get the user's cross-signing key ID.
    *
    * The cross-signing API is currently UNSTABLE and may change without notice.
    *
-   * @param {CrossSigningKey} [type=master] The type of key to get the ID of.  One of
+   * @param type - The type of key to get the ID of.  One of
    *     "master", "self_signing", or "user_signing".  Defaults to "master".
    *
-   * @returns {string} the key ID
+   * @returns the key ID
    */
-
-
   getCrossSigningId(type = _api.CrossSigningKey.Master) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.getCrossSigningId(type);
   }
+
   /**
    * Get the cross signing information for a given user.
    *
    * The cross-signing API is currently UNSTABLE and may change without notice.
    *
-   * @param {string} userId the user ID to get the cross-signing info for.
+   * @param userId - the user ID to get the cross-signing info for.
    *
-   * @returns {CrossSigningInfo} the cross signing information for the user.
+   * @returns the cross signing information for the user.
    */
-
-
   getStoredCrossSigningForUser(userId) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.getStoredCrossSigningForUser(userId);
   }
+
   /**
    * Check whether a given user is trusted.
    *
    * The cross-signing API is currently UNSTABLE and may change without notice.
    *
-   * @param {string} userId The ID of the user to check.
+   * @param userId - The ID of the user to check.
    *
-   * @returns {UserTrustLevel}
+   * @returns
    */
-
-
   checkUserTrust(userId) {
-    if (!this.crypto) {
+    if (!this.cryptoBackend) {
       throw new Error("End-to-end encryption disabled");
     }
-
-    return this.crypto.checkUserTrust(userId);
+    return this.cryptoBackend.checkUserTrust(userId);
   }
+
   /**
    * Check whether a given device is trusted.
    *
    * The cross-signing API is currently UNSTABLE and may change without notice.
    *
-   * @function module:client~MatrixClient#checkDeviceTrust
-   * @param {string} userId The ID of the user whose devices is to be checked.
-   * @param {string} deviceId The ID of the device to check
-   *
-   * @returns {DeviceTrustLevel}
+   * @param userId - The ID of the user whose devices is to be checked.
+   * @param deviceId - The ID of the device to check
    */
-
-
   checkDeviceTrust(userId, deviceId) {
-    if (!this.crypto) {
+    if (!this.cryptoBackend) {
       throw new Error("End-to-end encryption disabled");
     }
-
-    return this.crypto.checkDeviceTrust(userId, deviceId);
+    return this.cryptoBackend.checkDeviceTrust(userId, deviceId);
   }
+
   /**
    * Check whether one of our own devices is cross-signed by our
    * user's stored keys, regardless of whether we trust those keys yet.
    *
-   * @param {string} deviceId The ID of the device to check
+   * @param deviceId - The ID of the device to check
    *
-   * @returns {boolean} true if the device is cross-signed
+   * @returns true if the device is cross-signed
    */
-
-
   checkIfOwnDeviceCrossSigned(deviceId) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.checkIfOwnDeviceCrossSigned(deviceId);
   }
+
   /**
    * Check the copy of our cross-signing key that we have in the device list and
    * see if we can get the private key. If so, mark it as trusted.
-   * @param {Object} opts ICheckOwnCrossSigningTrustOpts object
+   * @param opts - ICheckOwnCrossSigningTrustOpts object
    */
-
-
   checkOwnCrossSigningTrust(opts) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.checkOwnCrossSigningTrust(opts);
   }
+
   /**
    * Checks that a given cross-signing private key matches a given public key.
    * This can be used by the getCrossSigningKey callback to verify that the
    * private key it is about to supply is the one that was requested.
-   * @param {Uint8Array} privateKey The private key
-   * @param {string} expectedPublicKey The public key
-   * @returns {boolean} true if the key matches, otherwise false
+   * @param privateKey - The private key
+   * @param expectedPublicKey - The public key
+   * @returns true if the key matches, otherwise false
    */
-
-
   checkCrossSigningPrivateKey(privateKey, expectedPublicKey) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.checkCrossSigningPrivateKey(privateKey, expectedPublicKey);
-  } // deprecated: use requestVerification instead
-
+  }
 
+  // deprecated: use requestVerification instead
   legacyDeviceVerification(userId, deviceId, method) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.legacyDeviceVerification(userId, deviceId, method);
   }
+
   /**
    * Perform any background tasks that can be done before a message is ready to
    * send, in order to speed up sending of the message.
-   * @param {module:models/room} room the room the event is in
+   * @param room - the room the event is in
    */
-
-
   prepareToEncrypt(room) {
-    if (!this.crypto) {
+    if (!this.cryptoBackend) {
       throw new Error("End-to-end encryption disabled");
     }
+    this.cryptoBackend.prepareToEncrypt(room);
+  }
 
-    return this.crypto.prepareToEncrypt(room);
+  /**
+   * Checks if the user has previously published cross-signing keys
+   *
+   * This means downloading the devicelist for the user and checking if the list includes
+   * the cross-signing pseudo-device.
+   */
+  userHasCrossSigningKeys() {
+    if (!this.cryptoBackend) {
+      throw new Error("End-to-end encryption disabled");
+    }
+    return this.cryptoBackend.userHasCrossSigningKeys();
   }
+
   /**
    * Checks whether cross signing:
    * - is enabled on this account and trusted by this device
@@ -1548,17 +1478,15 @@
    * to fix things such that it returns true. That is to say, after
    * bootstrapCrossSigning() completes successfully, this function should
    * return true.
-   * @return {boolean} True if cross-signing is ready to be used on this device
+   * @returns True if cross-signing is ready to be used on this device
    */
-
-
   isCrossSigningReady() {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.isCrossSigningReady();
   }
+
   /**
    * Bootstrap cross-signing by creating keys if needed. If everything is already
    * set up, then no changes are made, so this is safe to run to ensure
@@ -1569,25 +1497,14 @@
    *   secret storage (if it has been setup)
    *
    * The cross-signing API is currently UNSTABLE and may change without notice.
-   *
-   * @param {function} opts.authUploadDeviceSigningKeys Function
-   * called to await an interactive auth flow when uploading device signing keys.
-   * @param {boolean} [opts.setupNewCrossSigning] Optional. Reset even if keys
-   * already exist.
-   * Args:
-   *     {function} A function that makes the request requiring auth. Receives the
-   *     auth data as an object. Can be called multiple times, first with an empty
-   *     authDict, to obtain the flows.
    */
-
-
   bootstrapCrossSigning(opts) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.bootstrapCrossSigning(opts);
   }
+
   /**
    * Whether to trust a others users signatures of their devices.
    * If false, devices will only be considered 'verified' if we have
@@ -1595,81 +1512,70 @@
    *
    * Default: true
    *
-   * @return {boolean} True if trusting cross-signed devices
+   * @returns True if trusting cross-signed devices
    */
-
-
   getCryptoTrustCrossSignedDevices() {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.getCryptoTrustCrossSignedDevices();
   }
+
   /**
    * See getCryptoTrustCrossSignedDevices
-    * This may be set before initCrypto() is called to ensure no races occur.
    *
-   * @param {boolean} val True to trust cross-signed devices
+   * @param val - True to trust cross-signed devices
    */
-
-
   setCryptoTrustCrossSignedDevices(val) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
-    return this.crypto.setCryptoTrustCrossSignedDevices(val);
+    this.crypto.setCryptoTrustCrossSignedDevices(val);
   }
+
   /**
    * Counts the number of end to end session keys that are waiting to be backed up
-   * @returns {Promise<int>} Resolves to the number of sessions requiring backup
+   * @returns Promise which resolves to the number of sessions requiring backup
    */
-
-
   countSessionsNeedingBackup() {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.countSessionsNeedingBackup();
   }
+
   /**
    * Get information about the encryption of an event
    *
-   * @param {module:models/event.MatrixEvent} event event to be checked
-   * @returns {IEncryptedEventInfo} The event information.
+   * @param event - event to be checked
+   * @returns The event information.
    */
-
-
   getEventEncryptionInfo(event) {
-    if (!this.crypto) {
+    if (!this.cryptoBackend) {
       throw new Error("End-to-end encryption disabled");
     }
-
-    return this.crypto.getEventEncryptionInfo(event);
+    return this.cryptoBackend.getEventEncryptionInfo(event);
   }
+
   /**
    * Create a recovery key from a user-supplied passphrase.
    *
    * The Secure Secret Storage API is currently UNSTABLE and may change without notice.
    *
-   * @param {string} password Passphrase string that can be entered by the user
+   * @param password - Passphrase string that can be entered by the user
    *     when restoring the backup as an alternative to entering the recovery key.
    *     Optional.
-   * @returns {Promise<Object>} Object with public key metadata, encoded private
+   * @returns Object with public key metadata, encoded private
    *     recovery key which should be disposed of after displaying to the user,
    *     and raw private key to avoid round tripping if needed.
    */
-
-
   createRecoveryKeyFromPassphrase(password) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.createRecoveryKeyFromPassphrase(password);
   }
+
   /**
    * Checks whether secret storage:
    * - is enabled on this account
@@ -1683,17 +1589,15 @@
    *
    * The Secure Secret Storage API is currently UNSTABLE and may change without notice.
    *
-   * @return {boolean} True if secret storage is ready to be used on this device
+   * @returns True if secret storage is ready to be used on this device
    */
-
-
   isSecretStorageReady() {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.isSecretStorageReady();
   }
+
   /**
    * Bootstrap Secure Secret Storage if needed by creating a default key. If everything is
    * already set up, then no changes are made, so this is safe to run to ensure secret
@@ -1707,165 +1611,146 @@
    * - migrates Secure Secret Storage to use the latest algorithm, if an outdated
    *   algorithm is found
    *
-   * @param opts
    */
-
-
   bootstrapSecretStorage(opts) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.bootstrapSecretStorage(opts);
   }
+
   /**
    * Add a key for encrypting secrets.
    *
    * The Secure Secret Storage API is currently UNSTABLE and may change without notice.
    *
-   * @param {string} algorithm the algorithm used by the key
-   * @param {object} opts the options for the algorithm.  The properties used
+   * @param algorithm - the algorithm used by the key
+   * @param opts - the options for the algorithm.  The properties used
    *     depend on the algorithm given.
-   * @param {string} [keyName] the name of the key.  If not given, a random name will be generated.
+   * @param keyName - the name of the key.  If not given, a random name will be generated.
    *
-   * @return {object} An object with:
-   *     keyId: {string} the ID of the key
-   *     keyInfo: {object} details about the key (iv, mac, passphrase)
+   * @returns An object with:
+   *     keyId: the ID of the key
+   *     keyInfo: details about the key (iv, mac, passphrase)
    */
-
-
   addSecretStorageKey(algorithm, opts, keyName) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.addSecretStorageKey(algorithm, opts, keyName);
   }
+
   /**
    * Check whether we have a key with a given ID.
    *
    * The Secure Secret Storage API is currently UNSTABLE and may change without notice.
    *
-   * @param {string} [keyId = default key's ID] The ID of the key to check
+   * @param keyId - The ID of the key to check
    *     for. Defaults to the default key ID if not provided.
-   * @return {boolean} Whether we have the key.
+   * @returns Whether we have the key.
    */
-
-
   hasSecretStorageKey(keyId) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.hasSecretStorageKey(keyId);
   }
+
   /**
    * Store an encrypted secret on the server.
    *
    * The Secure Secret Storage API is currently UNSTABLE and may change without notice.
    *
-   * @param {string} name The name of the secret
-   * @param {string} secret The secret contents.
-   * @param {Array} keys The IDs of the keys to use to encrypt the secret or null/undefined
+   * @param name - The name of the secret
+   * @param secret - The secret contents.
+   * @param keys - The IDs of the keys to use to encrypt the secret or null/undefined
    *     to use the default (will throw if no default key is set).
    */
-
-
   storeSecret(name, secret, keys) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.storeSecret(name, secret, keys);
   }
+
   /**
    * Get a secret from storage.
    *
    * The Secure Secret Storage API is currently UNSTABLE and may change without notice.
    *
-   * @param {string} name the name of the secret
+   * @param name - the name of the secret
    *
-   * @return {string} the contents of the secret
+   * @returns the contents of the secret
    */
-
-
   getSecret(name) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.getSecret(name);
   }
+
   /**
    * Check if a secret is stored on the server.
    *
    * The Secure Secret Storage API is currently UNSTABLE and may change without notice.
    *
-   * @param {string} name the name of the secret
-   * @return {object?} map of key name to key info the secret is encrypted
+   * @param name - the name of the secret
+   * @returns map of key name to key info the secret is encrypted
    *     with, or null if it is not present or not encrypted with a trusted
    *     key
    */
-
-
   isSecretStored(name) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.isSecretStored(name);
   }
+
   /**
    * Request a secret from another device.
    *
    * The Secure Secret Storage API is currently UNSTABLE and may change without notice.
    *
-   * @param {string} name the name of the secret to request
-   * @param {string[]} devices the devices to request the secret from
+   * @param name - the name of the secret to request
+   * @param devices - the devices to request the secret from
    *
-   * @return {ISecretRequest} the secret request object
+   * @returns the secret request object
    */
-
-
   requestSecret(name, devices) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.requestSecret(name, devices);
   }
+
   /**
    * Get the current default key ID for encrypting secrets.
    *
    * The Secure Secret Storage API is currently UNSTABLE and may change without notice.
    *
-   * @return {string} The default key ID or null if no default key ID is set
+   * @returns The default key ID or null if no default key ID is set
    */
-
-
   getDefaultSecretStorageKeyId() {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.getDefaultSecretStorageKeyId();
   }
+
   /**
    * Set the current default key ID for encrypting secrets.
    *
    * The Secure Secret Storage API is currently UNSTABLE and may change without notice.
    *
-   * @param {string} keyId The new default key ID
+   * @param keyId - The new default key ID
    */
-
-
   setDefaultSecretStorageKeyId(keyId) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.setDefaultSecretStorageKeyId(keyId);
   }
+
   /**
    * Checks that a given secret storage private key matches a given public key.
    * This can be used by the getSecretStorageKey callback to verify that the
@@ -1873,368 +1758,341 @@
    *
    * The Secure Secret Storage API is currently UNSTABLE and may change without notice.
    *
-   * @param {Uint8Array} privateKey The private key
-   * @param {string} expectedPublicKey The public key
-   * @returns {boolean} true if the key matches, otherwise false
+   * @param privateKey - The private key
+   * @param expectedPublicKey - The public key
+   * @returns true if the key matches, otherwise false
    */
-
-
   checkSecretStoragePrivateKey(privateKey, expectedPublicKey) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.checkSecretStoragePrivateKey(privateKey, expectedPublicKey);
   }
+
   /**
    * Get e2e information on the device that sent an event
    *
-   * @param {MatrixEvent} event event to be checked
-   *
-   * @return {Promise<module:crypto/deviceinfo?>}
+   * @param event - event to be checked
    */
-
-
   async getEventSenderDeviceInfo(event) {
     if (!this.crypto) {
       return null;
     }
-
     return this.crypto.getEventSenderDeviceInfo(event);
   }
+
   /**
    * Check if the sender of an event is verified
    *
-   * @param {MatrixEvent} event event to be checked
+   * @param event - event to be checked
    *
-   * @return {boolean} true if the sender of this event has been verified using
-   * {@link module:client~MatrixClient#setDeviceVerified|setDeviceVerified}.
+   * @returns true if the sender of this event has been verified using
+   * {@link MatrixClient#setDeviceVerified}.
    */
-
-
   async isEventSenderVerified(event) {
     const device = await this.getEventSenderDeviceInfo(event);
-
     if (!device) {
       return false;
     }
-
     return device.isVerified();
   }
+
+  /**
+   * Get outgoing room key request for this event if there is one.
+   * @param event - The event to check for
+   *
+   * @returns A room key request, or null if there is none
+   */
+  getOutgoingRoomKeyRequest(event) {
+    if (!this.crypto) {
+      throw new Error("End-to-End encryption disabled");
+    }
+    const wireContent = event.getWireContent();
+    const requestBody = {
+      session_id: wireContent.session_id,
+      sender_key: wireContent.sender_key,
+      algorithm: wireContent.algorithm,
+      room_id: event.getRoomId()
+    };
+    if (!requestBody.session_id || !requestBody.sender_key || !requestBody.algorithm || !requestBody.room_id) {
+      return Promise.resolve(null);
+    }
+    return this.crypto.cryptoStore.getOutgoingRoomKeyRequest(requestBody);
+  }
+
   /**
    * Cancel a room key request for this event if one is ongoing and resend the
    * request.
-   * @param  {MatrixEvent} event event of which to cancel and resend the room
+   * @param event - event of which to cancel and resend the room
    *                            key request.
-   * @return {Promise} A promise that will resolve when the key request is queued
+   * @returns A promise that will resolve when the key request is queued
    */
-
-
   cancelAndResendEventRoomKeyRequest(event) {
+    if (!this.crypto) {
+      throw new Error("End-to-End encryption disabled");
+    }
     return event.cancelAndResendKeyRequest(this.crypto, this.getUserId());
   }
+
   /**
    * Enable end-to-end encryption for a room. This does not modify room state.
    * Any messages sent before the returned promise resolves will be sent unencrypted.
-   * @param {string} roomId The room ID to enable encryption in.
-   * @param {object} config The encryption config for the room.
-   * @return {Promise} A promise that will resolve when encryption is set up.
+   * @param roomId - The room ID to enable encryption in.
+   * @param config - The encryption config for the room.
+   * @returns A promise that will resolve when encryption is set up.
    */
-
-
   setRoomEncryption(roomId, config) {
     if (!this.crypto) {
       throw new Error("End-to-End encryption disabled");
     }
-
     return this.crypto.setRoomEncryption(roomId, config);
   }
+
   /**
    * Whether encryption is enabled for a room.
-   * @param {string} roomId the room id to query.
-   * @return {boolean} whether encryption is enabled.
+   * @param roomId - the room id to query.
+   * @returns whether encryption is enabled.
    */
-
-
   isRoomEncrypted(roomId) {
     const room = this.getRoom(roomId);
-
     if (!room) {
       // we don't know about this room, so can't determine if it should be
       // encrypted. Let's assume not.
       return false;
-    } // if there is an 'm.room.encryption' event in this room, it should be
-    // encrypted (independently of whether we actually support encryption)
-
+    }
 
+    // if there is an 'm.room.encryption' event in this room, it should be
+    // encrypted (independently of whether we actually support encryption)
     const ev = room.currentState.getStateEvents(_event2.EventType.RoomEncryption, "");
-
     if (ev) {
       return true;
-    } // we don't have an m.room.encrypted event, but that might be because
+    }
+
+    // we don't have an m.room.encrypted event, but that might be because
     // the server is hiding it from us. Check the store to see if it was
     // previously encrypted.
-
-
     return this.roomList.isRoomEncrypted(roomId);
   }
+
   /**
    * Encrypts and sends a given object via Olm to-device messages to a given
    * set of devices.
    *
-   * @param {object[]} userDeviceInfoArr
-   *   mapping from userId to deviceInfo
+   * @param userDeviceMap - mapping from userId to deviceInfo
+   *
+   * @param payload - fields to include in the encrypted payload
    *
-   * @param {object} payload fields to include in the encrypted payload
-   *      *
-   * @return {Promise<{contentMap, deviceInfoByDeviceId}>} Promise which
+   * @returns Promise which
    *     resolves once the message has been encrypted and sent to the given
-   *     userDeviceMap, and returns the { contentMap, deviceInfoByDeviceId }
+   *     userDeviceMap, and returns the `{ contentMap, deviceInfoByDeviceId }`
    *     of the successfully sent messages.
    */
-
-
   encryptAndSendToDevices(userDeviceInfoArr, payload) {
     if (!this.crypto) {
       throw new Error("End-to-End encryption disabled");
     }
-
     return this.crypto.encryptAndSendToDevices(userDeviceInfoArr, payload);
   }
+
   /**
    * Forces the current outbound group session to be discarded such
    * that another one will be created next time an event is sent.
    *
-   * @param {string} roomId The ID of the room to discard the session for
+   * @param roomId - The ID of the room to discard the session for
    *
    * This should not normally be necessary.
    */
-
-
   forceDiscardSession(roomId) {
     if (!this.crypto) {
       throw new Error("End-to-End encryption disabled");
     }
-
     this.crypto.forceDiscardSession(roomId);
   }
+
   /**
    * Get a list containing all of the room keys
    *
    * This should be encrypted before returning it to the user.
    *
-   * @return {Promise} a promise which resolves to a list of
+   * @returns a promise which resolves to a list of
    *    session export objects
    */
-
-
   exportRoomKeys() {
-    if (!this.crypto) {
+    if (!this.cryptoBackend) {
       return Promise.reject(new Error("End-to-end encryption disabled"));
     }
-
-    return this.crypto.exportRoomKeys();
+    return this.cryptoBackend.exportRoomKeys();
   }
+
   /**
    * Import a list of room keys previously exported by exportRoomKeys
    *
-   * @param {Object[]} keys a list of session export objects
-   * @param {Object} opts
-   * @param {Function} opts.progressCallback called with an object that has a "stage" param
+   * @param keys - a list of session export objects
    *
-   * @return {Promise} a promise which resolves when the keys
-   *    have been imported
+   * @returns a promise which resolves when the keys have been imported
    */
-
-
   importRoomKeys(keys, opts) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.importRoomKeys(keys, opts);
   }
+
   /**
    * Force a re-check of the local key backup status against
    * what's on the server.
    *
-   * @returns {Object} Object with backup info (as returned by
+   * @returns Object with backup info (as returned by
    *     getKeyBackupVersion) in backupInfo and
    *     trust information (as returned by isKeyBackupTrusted)
    *     in trustInfo.
    */
-
-
   checkKeyBackup() {
+    if (!this.crypto) {
+      throw new Error("End-to-end encryption disabled");
+    }
     return this.crypto.backupManager.checkKeyBackup();
   }
+
   /**
    * Get information about the current key backup.
-   * @returns {Promise<IKeyBackupInfo | null>} Information object from API or null
+   * @returns Information object from API or null
    */
-
-
   async getKeyBackupVersion() {
     let res;
-
     try {
-      res = await this.http.authedRequest(undefined, _httpApi.Method.Get, "/room_keys/version", undefined, undefined, {
-        prefix: _httpApi.PREFIX_UNSTABLE
+      res = await this.http.authedRequest(_httpApi.Method.Get, "/room_keys/version", undefined, undefined, {
+        prefix: _httpApi.ClientPrefix.V3
       });
     } catch (e) {
-      if (e.errcode === 'M_NOT_FOUND') {
+      if (e.errcode === "M_NOT_FOUND") {
         return null;
       } else {
         throw e;
       }
     }
-
     _backup.BackupManager.checkBackupVersion(res);
-
     return res;
   }
+
   /**
-   * @param {object} info key backup info dict from getKeyBackupVersion()
-   * @return {object} {
-   *     usable: [bool], // is the backup trusted, true iff there is a sig that is valid & from a trusted device
-   *     sigs: [
-   *         valid: [bool],
-   *         device: [DeviceInfo],
-   *     ]
-   * }
+   * @param info - key backup info dict from getKeyBackupVersion()
    */
-
-
   isKeyBackupTrusted(info) {
+    if (!this.crypto) {
+      throw new Error("End-to-end encryption disabled");
+    }
     return this.crypto.backupManager.isKeyBackupTrusted(info);
   }
+
   /**
-   * @returns {boolean} true if the client is configured to back up keys to
+   * @returns true if the client is configured to back up keys to
    *     the server, otherwise false. If we haven't completed a successful check
    *     of key backup status yet, returns null.
    */
-
-
   getKeyBackupEnabled() {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.backupManager.getKeyBackupEnabled();
   }
+
   /**
    * Enable backing up of keys, using data previously returned from
    * getKeyBackupVersion.
    *
-   * @param {object} info Backup information object as returned by getKeyBackupVersion
-   * @returns {Promise<void>} Resolves when complete.
+   * @param info - Backup information object as returned by getKeyBackupVersion
+   * @returns Promise which resolves when complete.
    */
-
-
   enableKeyBackup(info) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.backupManager.enableKeyBackup(info);
   }
+
   /**
    * Disable backing up of keys.
    */
-
-
   disableKeyBackup() {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     this.crypto.backupManager.disableKeyBackup();
   }
+
   /**
    * Set up the data required to create a new backup version.  The backup version
    * will not be created and enabled until createKeyBackupVersion is called.
    *
-   * @param {string} password Passphrase string that can be entered by the user
+   * @param password - Passphrase string that can be entered by the user
    *     when restoring the backup as an alternative to entering the recovery key.
    *     Optional.
-   * @param {boolean} [opts.secureSecretStorage = false] Whether to use Secure
-   *     Secret Storage to store the key encrypting key backups.
-   *     Optional, defaults to false.
    *
-   * @returns {Promise<object>} Object that can be passed to createKeyBackupVersion and
+   * @returns Object that can be passed to createKeyBackupVersion and
    *     additionally has a 'recovery_key' member with the user-facing recovery key string.
    */
-  // TODO: Verify types
-
-
   async prepareKeyBackupVersion(password, opts = {
     secureSecretStorage: false
   }) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
-    } // eslint-disable-next-line camelcase
-
+    }
 
+    // eslint-disable-next-line camelcase
     const {
       algorithm,
       auth_data,
       recovery_key,
       privateKey
     } = await this.crypto.backupManager.prepareKeyBackupVersion(password);
-
     if (opts.secureSecretStorage) {
       await this.storeSecret("m.megolm_backup.v1", (0, olmlib.encodeBase64)(privateKey));
-
       _logger.logger.info("Key backup private key stored in secret storage");
     }
-
     return {
       algorithm,
-
       /* eslint-disable camelcase */
       auth_data,
       recovery_key
       /* eslint-enable camelcase */
-
     };
   }
+
   /**
    * Check whether the key backup private key is stored in secret storage.
-   * @return {Promise<object?>} map of key name to key info the secret is
+   * @returns map of key name to key info the secret is
    *     encrypted with, or null if it is not present or not encrypted with a
    *     trusted key
    */
-
-
   isKeyBackupKeyStored() {
     return Promise.resolve(this.isSecretStored("m.megolm_backup.v1"));
   }
+
   /**
    * Create a new key backup version and enable it, using the information return
    * from prepareKeyBackupVersion.
    *
-   * @param {object} info Info object from prepareKeyBackupVersion
-   * @returns {Promise<object>} Object with 'version' param indicating the version created
+   * @param info - Info object from prepareKeyBackupVersion
+   * @returns Object with 'version' param indicating the version created
    */
-
-
   async createKeyBackupVersion(info) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     await this.crypto.backupManager.createKeyBackupVersion(info);
     const data = {
       algorithm: info.algorithm,
       auth_data: info.auth_data
-    }; // Sign the backup auth data with the device key for backwards compat with
+    };
+
+    // Sign the backup auth data with the device key for backwards compat with
     // older devices with cross-signing. This can probably go away very soon in
     // favour of just signing with the cross-singing master key.
     // XXX: Private member access
-
     await this.crypto.signObject(data.auth_data);
-
-    if (this.cryptoCallbacks.getCrossSigningKey && // XXX: Private member access
+    if (this.cryptoCallbacks.getCrossSigningKey &&
+    // XXX: Private member access
     this.crypto.crossSigningInfo.getId()) {
       // now also sign the auth data with the cross-signing master key
       // we check for the callback explicitly here because we still want to be able
@@ -2243,45 +2101,39 @@
       // XXX: Private member access
       await this.crypto.crossSigningInfo.signObject(data.auth_data, "master");
     }
+    const res = await this.http.authedRequest(_httpApi.Method.Post, "/room_keys/version", undefined, data, {
+      prefix: _httpApi.ClientPrefix.V3
+    });
 
-    const res = await this.http.authedRequest(undefined, _httpApi.Method.Post, "/room_keys/version", undefined, data, {
-      prefix: _httpApi.PREFIX_UNSTABLE
-    }); // We could assume everything's okay and enable directly, but this ensures
+    // We could assume everything's okay and enable directly, but this ensures
     // we run the same signature verification that will be used for future
     // sessions.
-
     await this.checkKeyBackup();
-
     if (!this.getKeyBackupEnabled()) {
       _logger.logger.error("Key backup not usable even though we just created it");
     }
-
     return res;
   }
-
-  deleteKeyBackupVersion(version) {
+  async deleteKeyBackupVersion(version) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
-    } // If we're currently backing up to this backup... stop.
+    }
+
+    // If we're currently backing up to this backup... stop.
     // (We start using it automatically in createKeyBackupVersion
     // so this is symmetrical).
-
-
     if (this.crypto.backupManager.version) {
       this.crypto.backupManager.disableKeyBackup();
     }
-
     const path = utils.encodeUri("/room_keys/version/$version", {
       $version: version
     });
-    return this.http.authedRequest(undefined, _httpApi.Method.Delete, path, undefined, undefined, {
-      prefix: _httpApi.PREFIX_UNSTABLE
+    await this.http.authedRequest(_httpApi.Method.Delete, path, undefined, undefined, {
+      prefix: _httpApi.ClientPrefix.V3
     });
   }
-
   makeKeyBackupPath(roomId, sessionId, version) {
     let path;
-
     if (sessionId !== undefined) {
       path = utils.encodeUri("/room_keys/keys/$roomId/$sessionId", {
         $roomId: roomId,
@@ -2294,7 +2146,6 @@
     } else {
       path = "/room_keys/keys";
     }
-
     const queryData = version === undefined ? undefined : {
       version
     };
@@ -2303,55 +2154,49 @@
       queryData
     };
   }
+
   /**
    * Back up session keys to the homeserver.
-   * @param {string} roomId ID of the room that the keys are for Optional.
-   * @param {string} sessionId ID of the session that the keys are for Optional.
-   * @param {number} version backup version Optional.
-   * @param {object} data Object keys to send
-   * @return {Promise} a promise that will resolve when the keys
+   * @param roomId - ID of the room that the keys are for Optional.
+   * @param sessionId - ID of the session that the keys are for Optional.
+   * @param version - backup version Optional.
+   * @param data - Object keys to send
+   * @returns a promise that will resolve when the keys
    * are uploaded
    */
 
-
-  sendKeyBackup(roomId, sessionId, version, data) {
+  async sendKeyBackup(roomId, sessionId, version, data) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     const path = this.makeKeyBackupPath(roomId, sessionId, version);
-    return this.http.authedRequest(undefined, _httpApi.Method.Put, path.path, path.queryData, data, {
-      prefix: _httpApi.PREFIX_UNSTABLE
+    await this.http.authedRequest(_httpApi.Method.Put, path.path, path.queryData, data, {
+      prefix: _httpApi.ClientPrefix.V3
     });
   }
+
   /**
    * Marks all group sessions as needing to be backed up and schedules them to
    * upload in the background as soon as possible.
    */
-
-
   async scheduleAllGroupSessionsForBackup() {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     await this.crypto.backupManager.scheduleAllGroupSessionsForBackup();
   }
+
   /**
    * Marks all group sessions as needing to be backed up without scheduling
    * them to upload in the background.
-   * @returns {Promise<int>} Resolves to the number of sessions requiring a backup.
+   * @returns Promise which resolves to the number of sessions requiring a backup.
    */
-
-
   flagAllGroupSessionsForBackup() {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     return this.crypto.backupManager.flagAllGroupSessionsForBackup();
   }
-
   isValidRecoveryKey(recoveryKey) {
     try {
       (0, _recoverykey.decodeRecoveryKey)(recoveryKey);
@@ -2360,121 +2205,117 @@
       return false;
     }
   }
+
   /**
    * Get the raw key for a key backup from the password
    * Used when migrating key backups into SSSS
    *
    * The cross-signing API is currently UNSTABLE and may change without notice.
    *
-   * @param {string} password Passphrase
-   * @param {object} backupInfo Backup metadata from `checkKeyBackup`
-   * @return {Promise<Uint8Array>} key backup key
+   * @param password - Passphrase
+   * @param backupInfo - Backup metadata from `checkKeyBackup`
+   * @returns key backup key
    */
-
-
   keyBackupKeyFromPassword(password, backupInfo) {
     return (0, _key_passphrase.keyFromAuthData)(backupInfo.auth_data, password);
   }
+
   /**
    * Get the raw key for a key backup from the recovery key
    * Used when migrating key backups into SSSS
    *
    * The cross-signing API is currently UNSTABLE and may change without notice.
    *
-   * @param {string} recoveryKey The recovery key
-   * @return {Uint8Array} key backup key
+   * @param recoveryKey - The recovery key
+   * @returns key backup key
    */
-
-
   keyBackupKeyFromRecoveryKey(recoveryKey) {
     return (0, _recoverykey.decodeRecoveryKey)(recoveryKey);
   }
+
   /**
    * Restore from an existing key backup via a passphrase.
    *
-   * @param {string} password Passphrase
-   * @param {string} [targetRoomId] Room ID to target a specific room.
+   * @param password - Passphrase
+   * @param targetRoomId - Room ID to target a specific room.
    * Restores all rooms if omitted.
-   * @param {string} [targetSessionId] Session ID to target a specific session.
+   * @param targetSessionId - Session ID to target a specific session.
    * Restores all sessions if omitted.
-   * @param {object} backupInfo Backup metadata from `checkKeyBackup`
-   * @param {object} opts Optional params such as callbacks
-   * @return {Promise<object>} Status of restoration with `total` and `imported`
+   * @param backupInfo - Backup metadata from `checkKeyBackup`
+   * @param opts - Optional params such as callbacks
+   * @returns Status of restoration with `total` and `imported`
    * key counts.
    */
 
-
   async restoreKeyBackupWithPassword(password, targetRoomId, targetSessionId, backupInfo, opts) {
     const privKey = await (0, _key_passphrase.keyFromAuthData)(backupInfo.auth_data, password);
     return this.restoreKeyBackup(privKey, targetRoomId, targetSessionId, backupInfo, opts);
   }
+
   /**
    * Restore from an existing key backup via a private key stored in secret
    * storage.
    *
-   * @param {object} backupInfo Backup metadata from `checkKeyBackup`
-   * @param {string} [targetRoomId] Room ID to target a specific room.
+   * @param backupInfo - Backup metadata from `checkKeyBackup`
+   * @param targetRoomId - Room ID to target a specific room.
    * Restores all rooms if omitted.
-   * @param {string} [targetSessionId] Session ID to target a specific session.
+   * @param targetSessionId - Session ID to target a specific session.
    * Restores all sessions if omitted.
-   * @param {object} opts Optional params such as callbacks
-   * @return {Promise<object>} Status of restoration with `total` and `imported`
+   * @param opts - Optional params such as callbacks
+   * @returns Status of restoration with `total` and `imported`
    * key counts.
    */
-
-
   async restoreKeyBackupWithSecretStorage(backupInfo, targetRoomId, targetSessionId, opts) {
-    const storedKey = await this.getSecret("m.megolm_backup.v1"); // ensure that the key is in the right format.  If not, fix the key and
-    // store the fixed version
+    if (!this.crypto) {
+      throw new Error("End-to-end encryption disabled");
+    }
+    const storedKey = await this.getSecret("m.megolm_backup.v1");
 
+    // ensure that the key is in the right format.  If not, fix the key and
+    // store the fixed version
     const fixedKey = (0, _crypto.fixBackupKey)(storedKey);
-
     if (fixedKey) {
-      const [keyId] = await this.crypto.getSecretStorageKey();
-      await this.storeSecret("m.megolm_backup.v1", fixedKey, [keyId]);
+      const keys = await this.crypto.getSecretStorageKey();
+      await this.storeSecret("m.megolm_backup.v1", fixedKey, [keys[0]]);
     }
-
     const privKey = (0, olmlib.decodeBase64)(fixedKey || storedKey);
     return this.restoreKeyBackup(privKey, targetRoomId, targetSessionId, backupInfo, opts);
   }
+
   /**
    * Restore from an existing key backup via an encoded recovery key.
    *
-   * @param {string} recoveryKey Encoded recovery key
-   * @param {string} [targetRoomId] Room ID to target a specific room.
+   * @param recoveryKey - Encoded recovery key
+   * @param targetRoomId - Room ID to target a specific room.
    * Restores all rooms if omitted.
-   * @param {string} [targetSessionId] Session ID to target a specific session.
+   * @param targetSessionId - Session ID to target a specific session.
    * Restores all sessions if omitted.
-   * @param {object} backupInfo Backup metadata from `checkKeyBackup`
-   * @param {object} opts Optional params such as callbacks
-    * @return {Promise<object>} Status of restoration with `total` and `imported`
+   * @param backupInfo - Backup metadata from `checkKeyBackup`
+   * @param opts - Optional params such as callbacks
+    * @returns Status of restoration with `total` and `imported`
    * key counts.
    */
 
-
   restoreKeyBackupWithRecoveryKey(recoveryKey, targetRoomId, targetSessionId, backupInfo, opts) {
     const privKey = (0, _recoverykey.decodeRecoveryKey)(recoveryKey);
     return this.restoreKeyBackup(privKey, targetRoomId, targetSessionId, backupInfo, opts);
   }
-
   async restoreKeyBackupWithCache(targetRoomId, targetSessionId, backupInfo, opts) {
+    if (!this.crypto) {
+      throw new Error("End-to-end encryption disabled");
+    }
     const privKey = await this.crypto.getSessionBackupPrivateKey();
-
     if (!privKey) {
       throw new Error("Couldn't get key");
     }
-
     return this.restoreKeyBackup(privKey, targetRoomId, targetSessionId, backupInfo, opts);
   }
-
   async restoreKeyBackup(privKey, targetRoomId, targetSessionId, backupInfo, opts) {
     const cacheCompleteCallback = opts?.cacheCompleteCallback;
     const progressCallback = opts?.progressCallback;
-
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     let totalKeyCount = 0;
     let keys = [];
     const path = this.makeKeyBackupPath(targetRoomId, targetSessionId, backupInfo.version);
@@ -2482,7 +2323,6 @@
       return privKey;
     });
     const untrusted = algorithm.untrusted;
-
     try {
       // If the pubkey computed from the private data we've been given
       // doesn't match the one in the auth_data, the user has entered
@@ -2491,32 +2331,27 @@
         return Promise.reject(new _httpApi.MatrixError({
           errcode: MatrixClient.RESTORE_BACKUP_ERROR_BAD_KEY
         }));
-      } // Cache the key, if possible.
-      // This is async.
-
+      }
 
+      // Cache the key, if possible.
+      // This is async.
       this.crypto.storeSessionBackupPrivateKey(privKey).catch(e => {
         _logger.logger.warn("Error caching session backup key:", e);
       }).then(cacheCompleteCallback);
-
       if (progressCallback) {
         progressCallback({
           stage: "fetch"
         });
       }
-
-      const res = await this.http.authedRequest(undefined, _httpApi.Method.Get, path.path, path.queryData, undefined, {
-        prefix: _httpApi.PREFIX_UNSTABLE
+      const res = await this.http.authedRequest(_httpApi.Method.Get, path.path, path.queryData, undefined, {
+        prefix: _httpApi.ClientPrefix.V3
       });
-
       if (res.rooms) {
         const rooms = res.rooms;
-
         for (const [roomId, roomData] of Object.entries(rooms)) {
           if (!roomData.sessions) continue;
           totalKeyCount += Object.keys(roomData.sessions).length;
           const roomKeys = await algorithm.decryptSessions(roomData.sessions);
-
           for (const k of roomKeys) {
             k.room_id = roomId;
             keys.push(k);
@@ -2526,13 +2361,11 @@
         const sessions = res.sessions;
         totalKeyCount = Object.keys(sessions).length;
         keys = await algorithm.decryptSessions(sessions);
-
         for (const k of keys) {
           k.room_id = targetRoomId;
         }
       } else {
         totalKeyCount = 1;
-
         try {
           const [key] = await algorithm.decryptSessions({
             [targetSessionId]: res
@@ -2547,7 +2380,6 @@
     } finally {
       algorithm.free();
     }
-
     await this.importRoomKeys(keys, {
       progressCallback,
       untrusted,
@@ -2559,606 +2391,504 @@
       imported: keys.length
     };
   }
-
-  deleteKeysFromBackup(roomId, sessionId, version) {
+  async deleteKeysFromBackup(roomId, sessionId, version) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     const path = this.makeKeyBackupPath(roomId, sessionId, version);
-    return this.http.authedRequest(undefined, _httpApi.Method.Delete, path.path, path.queryData, undefined, {
-      prefix: _httpApi.PREFIX_UNSTABLE
+    await this.http.authedRequest(_httpApi.Method.Delete, path.path, path.queryData, undefined, {
+      prefix: _httpApi.ClientPrefix.V3
     });
   }
+
   /**
    * Share shared-history decryption keys with the given users.
    *
-   * @param {string} roomId the room for which keys should be shared.
-   * @param {array} userIds a list of users to share with.  The keys will be sent to
+   * @param roomId - the room for which keys should be shared.
+   * @param userIds - a list of users to share with.  The keys will be sent to
    *     all of the user's current devices.
    */
-
-
   async sendSharedHistoryKeys(roomId, userIds) {
     if (!this.crypto) {
       throw new Error("End-to-end encryption disabled");
     }
-
     const roomEncryption = this.roomList.getRoomEncryption(roomId);
-
     if (!roomEncryption) {
       // unknown room, or unencrypted room
       _logger.logger.error("Unknown room.  Not sharing decryption keys");
-
       return;
     }
-
     const deviceInfos = await this.crypto.downloadKeys(userIds);
-    const devicesByUser = {};
-
-    for (const [userId, devices] of Object.entries(deviceInfos)) {
-      devicesByUser[userId] = Object.values(devices);
-    } // XXX: Private member access
-
+    const devicesByUser = new Map();
+    for (const [userId, devices] of deviceInfos) {
+      devicesByUser.set(userId, Array.from(devices.values()));
+    }
 
+    // XXX: Private member access
     const alg = this.crypto.getRoomDecryptor(roomId, roomEncryption.algorithm);
-
     if (alg.sendSharedHistoryInboundSessions) {
       await alg.sendSharedHistoryInboundSessions(devicesByUser);
     } else {
       _logger.logger.warn("Algorithm does not support sharing previous keys", roomEncryption.algorithm);
     }
   }
+
   /**
    * Get the config for the media repository.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves with an object containing the config.
+   * @returns Promise which resolves with an object containing the config.
    */
-
-
-  getMediaConfig(callback) {
-    return this.http.authedRequest(callback, _httpApi.Method.Get, "/config", undefined, undefined, {
-      prefix: _httpApi.PREFIX_MEDIA_R0
+  getMediaConfig() {
+    return this.http.authedRequest(_httpApi.Method.Get, "/config", undefined, undefined, {
+      prefix: _httpApi.MediaPrefix.R0
     });
   }
+
   /**
    * Get the room for the given room ID.
    * This function will return a valid room for any room for which a Room event
    * has been emitted. Note in particular that other events, eg. RoomState.members
    * will be emitted for a room before this function will return the given room.
-   * @param {string} roomId The room ID
-   * @return {Room|null} The Room or null if it doesn't exist or there is no data store.
+   * @param roomId - The room ID
+   * @returns The Room or null if it doesn't exist or there is no data store.
    */
-
-
   getRoom(roomId) {
+    if (!roomId) {
+      return null;
+    }
     return this.store.getRoom(roomId);
   }
+
   /**
    * Retrieve all known rooms.
-   * @return {Room[]} A list of rooms, or an empty list if there is no data store.
+   * @returns A list of rooms, or an empty list if there is no data store.
    */
-
-
   getRooms() {
     return this.store.getRooms();
   }
+
   /**
    * Retrieve all rooms that should be displayed to the user
    * This is essentially getRooms() with some rooms filtered out, eg. old versions
    * of rooms that have been replaced or (in future) other rooms that have been
    * marked at the protocol level as not to be displayed to the user.
-   * @return {Room[]} A list of rooms, or an empty list if there is no data store.
+   *
+   * @param msc3946ProcessDynamicPredecessor - if true, look for an
+   *                                           m.room.predecessor state event and
+   *                                           use it if found (MSC3946).
+   * @returns A list of rooms, or an empty list if there is no data store.
    */
-
-
-  getVisibleRooms() {
+  getVisibleRooms(msc3946ProcessDynamicPredecessor = false) {
     const allRooms = this.store.getRooms();
     const replacedRooms = new Set();
-
     for (const r of allRooms) {
-      const createEvent = r.currentState.getStateEvents(_event2.EventType.RoomCreate, ''); // invites are included in this list and we don't know their create events yet
-
-      if (createEvent) {
-        const predecessor = createEvent.getContent()['predecessor'];
-
-        if (predecessor && predecessor['room_id']) {
-          replacedRooms.add(predecessor['room_id']);
-        }
+      const predecessor = r.findPredecessor(msc3946ProcessDynamicPredecessor)?.roomId;
+      if (predecessor) {
+        replacedRooms.add(predecessor);
       }
     }
-
     return allRooms.filter(r => {
-      const tombstone = r.currentState.getStateEvents(_event2.EventType.RoomTombstone, '');
-
+      const tombstone = r.currentState.getStateEvents(_event2.EventType.RoomTombstone, "");
       if (tombstone && replacedRooms.has(r.roomId)) {
         return false;
       }
-
       return true;
     });
   }
+
   /**
    * Retrieve a user.
-   * @param {string} userId The user ID to retrieve.
-   * @return {?User} A user or null if there is no data store or the user does
+   * @param userId - The user ID to retrieve.
+   * @returns A user or null if there is no data store or the user does
    * not exist.
    */
-
-
   getUser(userId) {
     return this.store.getUser(userId);
   }
+
   /**
    * Retrieve all known users.
-   * @return {User[]} A list of users, or an empty list if there is no data store.
+   * @returns A list of users, or an empty list if there is no data store.
    */
-
-
   getUsers() {
     return this.store.getUsers();
   }
+
   /**
    * Set account data event for the current user.
    * It will retry the request up to 5 times.
-   * @param {string} eventType The event type
-   * @param {Object} content the contents object for the event
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: an empty object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param eventType - The event type
+   * @param content - the contents object for the event
+   * @returns Promise which resolves: an empty object
+   * @returns Rejects: with an error response.
    */
-
-
-  setAccountData(eventType, content, callback) {
+  setAccountData(eventType, content) {
     const path = utils.encodeUri("/user/$userId/account_data/$type", {
       $userId: this.credentials.userId,
       $type: eventType
     });
-    const promise = (0, _httpApi.retryNetworkOperation)(5, () => {
-      return this.http.authedRequest(undefined, _httpApi.Method.Put, path, undefined, content);
+    return (0, _httpApi.retryNetworkOperation)(5, () => {
+      return this.http.authedRequest(_httpApi.Method.Put, path, undefined, content);
     });
-
-    if (callback) {
-      promise.then(result => callback(null, result), callback);
-    }
-
-    return promise;
   }
+
   /**
    * Get account data event of given type for the current user.
-   * @param {string} eventType The event type
-   * @return {?object} The contents of the given account data event
+   * @param eventType - The event type
+   * @returns The contents of the given account data event
    */
-
-
   getAccountData(eventType) {
     return this.store.getAccountData(eventType);
   }
+
   /**
    * Get account data event of given type for the current user. This variant
    * gets account data directly from the homeserver if the local store is not
    * ready, which can be useful very early in startup before the initial sync.
-   * @param {string} eventType The event type
-   * @return {Promise} Resolves: The contents of the given account
-   * data event.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param eventType - The event type
+   * @returns Promise which resolves: The contents of the given account data event.
+   * @returns Rejects: with an error response.
    */
-
-
   async getAccountDataFromServer(eventType) {
     if (this.isInitialSyncComplete()) {
       const event = this.store.getAccountData(eventType);
-
       if (!event) {
         return null;
-      } // The network version below returns just the content, so this branch
+      }
+      // The network version below returns just the content, so this branch
       // does the same to match.
-
-
       return event.getContent();
     }
-
     const path = utils.encodeUri("/user/$userId/account_data/$type", {
       $userId: this.credentials.userId,
       $type: eventType
     });
-
     try {
-      return await this.http.authedRequest(undefined, _httpApi.Method.Get, path);
+      return await this.http.authedRequest(_httpApi.Method.Get, path);
     } catch (e) {
-      if (e.data?.errcode === 'M_NOT_FOUND') {
+      if (e.data?.errcode === "M_NOT_FOUND") {
         return null;
       }
-
       throw e;
     }
   }
+  async deleteAccountData(eventType) {
+    const msc3391DeleteAccountDataServerSupport = this.canSupport.get(_feature.Feature.AccountDataDeletion);
+    // if deletion is not supported overwrite with empty content
+    if (msc3391DeleteAccountDataServerSupport === _feature.ServerSupport.Unsupported) {
+      await this.setAccountData(eventType, {});
+      return;
+    }
+    const path = utils.encodeUri("/user/$userId/account_data/$type", {
+      $userId: this.getSafeUserId(),
+      $type: eventType
+    });
+    const options = msc3391DeleteAccountDataServerSupport === _feature.ServerSupport.Unstable ? {
+      prefix: "/_matrix/client/unstable/org.matrix.msc3391"
+    } : undefined;
+    return await this.http.authedRequest(_httpApi.Method.Delete, path, undefined, undefined, options);
+  }
+
   /**
    * Gets the users that are ignored by this client
-   * @returns {string[]} The array of users that are ignored (empty if none)
+   * @returns The array of users that are ignored (empty if none)
    */
-
-
   getIgnoredUsers() {
     const event = this.getAccountData("m.ignored_user_list");
     if (!event || !event.getContent() || !event.getContent()["ignored_users"]) return [];
     return Object.keys(event.getContent()["ignored_users"]);
   }
+
   /**
    * Sets the users that the current user should ignore.
-   * @param {string[]} userIds the user IDs to ignore
-   * @param {module:client.callback} [callback] Optional.
-   * @return {Promise} Resolves: an empty object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param userIds - the user IDs to ignore
+   * @returns Promise which resolves: an empty object
+   * @returns Rejects: with an error response.
    */
-
-
-  setIgnoredUsers(userIds, callback) {
+  setIgnoredUsers(userIds) {
     const content = {
       ignored_users: {}
     };
     userIds.forEach(u => {
       content.ignored_users[u] = {};
     });
-    return this.setAccountData("m.ignored_user_list", content, callback);
+    return this.setAccountData("m.ignored_user_list", content);
   }
+
   /**
    * Gets whether or not a specific user is being ignored by this client.
-   * @param {string} userId the user ID to check
-   * @returns {boolean} true if the user is ignored, false otherwise
+   * @param userId - the user ID to check
+   * @returns true if the user is ignored, false otherwise
    */
-
-
   isUserIgnored(userId) {
     return this.getIgnoredUsers().includes(userId);
   }
+
   /**
    * Join a room. If you have already joined the room, this will no-op.
-   * @param {string} roomIdOrAlias The room ID or room alias to join.
-   * @param {Object} opts Options when joining the room.
-   * @param {boolean} opts.syncRoom True to do a room initial sync on the resulting
-   * room. If false, the <strong>returned Room object will have no current state.
-   * </strong> Default: true.
-   * @param {boolean} opts.inviteSignUrl If the caller has a keypair 3pid invite, the signing URL is passed in this parameter.
-   * @param {string[]} opts.viaServers The server names to try and join through in addition to those that are automatically chosen.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: Room object.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param roomIdOrAlias - The room ID or room alias to join.
+   * @param opts - Options when joining the room.
+   * @returns Promise which resolves: Room object.
+   * @returns Rejects: with an error response.
    */
-
-
-  async joinRoom(roomIdOrAlias, opts, callback) {
-    // to help people when upgrading..
-    if (utils.isFunction(opts)) {
-      throw new Error("Expected 'opts' object, got function.");
-    }
-
-    opts = opts || {};
-
+  async joinRoom(roomIdOrAlias, opts = {}) {
     if (opts.syncRoom === undefined) {
       opts.syncRoom = true;
     }
-
     const room = this.getRoom(roomIdOrAlias);
-
-    if (room && room.hasMembershipState(this.credentials.userId, "join")) {
+    if (room?.hasMembershipState(this.credentials.userId, "join")) {
       return Promise.resolve(room);
     }
-
     let signPromise = Promise.resolve();
-
     if (opts.inviteSignUrl) {
-      signPromise = this.http.requestOtherUrl(undefined, _httpApi.Method.Post, opts.inviteSignUrl, {
-        mxid: this.credentials.userId
-      });
+      const url = new URL(opts.inviteSignUrl);
+      url.searchParams.set("mxid", this.credentials.userId);
+      signPromise = this.http.requestOtherUrl(_httpApi.Method.Post, url);
     }
-
     const queryString = {};
-
     if (opts.viaServers) {
       queryString["server_name"] = opts.viaServers;
     }
-
-    const reqOpts = {
-      qsStringifyOptions: {
-        arrayFormat: 'repeat'
-      }
-    };
-
     try {
       const data = {};
       const signedInviteObj = await signPromise;
-
       if (signedInviteObj) {
         data.third_party_signed = signedInviteObj;
       }
-
       const path = utils.encodeUri("/join/$roomid", {
         $roomid: roomIdOrAlias
       });
-      const res = await this.http.authedRequest(undefined, _httpApi.Method.Post, path, queryString, data, reqOpts);
-      const roomId = res['room_id'];
-      const syncApi = new _sync.SyncApi(this, this.clientOpts);
+      const res = await this.http.authedRequest(_httpApi.Method.Post, path, queryString, data);
+      const roomId = res.room_id;
+      const syncApi = new _sync.SyncApi(this, this.clientOpts, this.buildSyncApiOptions());
       const room = syncApi.createRoom(roomId);
-
-      if (opts.syncRoom) {// v2 will do this for us
+      if (opts.syncRoom) {
+        // v2 will do this for us
         // return syncApi.syncRoom(room);
       }
-
-      callback?.(null, room);
       return room;
     } catch (e) {
-      callback?.(e);
       throw e; // rethrow for reject
     }
   }
+
   /**
    * Resend an event. Will also retry any to-device messages waiting to be sent.
-   * @param {MatrixEvent} event The event to resend.
-   * @param {Room} room Optional. The room the event is in. Will update the
+   * @param event - The event to resend.
+   * @param room - Optional. The room the event is in. Will update the
    * timeline entry if provided.
-   * @return {Promise} Resolves: to an ISendEventResponse object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: to an ISendEventResponse object
+   * @returns Rejects: with an error response.
    */
-
-
   resendEvent(event, room) {
     // also kick the to-device queue to retry
     this.toDeviceMessageQueue.sendQueue();
     this.updatePendingEventStatus(room, event, _event.EventStatus.SENDING);
     return this.encryptAndSendEvent(room, event);
   }
+
   /**
    * Cancel a queued or unsent event.
    *
-   * @param {MatrixEvent} event   Event to cancel
+   * @param event -   Event to cancel
    * @throws Error if the event is not in QUEUED, NOT_SENT or ENCRYPTING state
    */
-
-
   cancelPendingEvent(event) {
     if (![_event.EventStatus.QUEUED, _event.EventStatus.NOT_SENT, _event.EventStatus.ENCRYPTING].includes(event.status)) {
       throw new Error("cannot cancel an event with status " + event.status);
-    } // if the event is currently being encrypted then
-
+    }
 
+    // if the event is currently being encrypted then
     if (event.status === _event.EventStatus.ENCRYPTING) {
       this.pendingEventEncryption.delete(event.getId());
     } else if (this.scheduler && event.status === _event.EventStatus.QUEUED) {
       // tell the scheduler to forget about it, if it's queued
       this.scheduler.removeEventFromQueue(event);
-    } // then tell the room about the change of state, which will remove it
-    // from the room's list of pending events.
-
+    }
 
+    // then tell the room about the change of state, which will remove it
+    // from the room's list of pending events.
     const room = this.getRoom(event.getRoomId());
     this.updatePendingEventStatus(room, event, _event.EventStatus.CANCELLED);
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} name
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: TODO
+   * @returns Rejects: with an error response.
    */
-
-
-  setRoomName(roomId, name, callback) {
+  setRoomName(roomId, name) {
     return this.sendStateEvent(roomId, _event2.EventType.RoomName, {
       name: name
-    }, undefined, callback);
+    });
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} topic
-   * @param {string} htmlTopic Optional.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param htmlTopic - Optional.
+   * @returns Promise which resolves: TODO
+   * @returns Rejects: with an error response.
    */
-
-
-  setRoomTopic(roomId, topic, htmlTopicOrCallback) {
-    const isCallback = typeof htmlTopicOrCallback === 'function';
-    const htmlTopic = isCallback ? undefined : htmlTopicOrCallback;
-    const callback = isCallback ? htmlTopicOrCallback : undefined;
+  setRoomTopic(roomId, topic, htmlTopic) {
     const content = ContentHelpers.makeTopicContent(topic, htmlTopic);
-    return this.sendStateEvent(roomId, _event2.EventType.RoomTopic, content, undefined, callback);
+    return this.sendStateEvent(roomId, _event2.EventType.RoomTopic, content);
   }
+
   /**
-   * @param {string} roomId
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: to an object keyed by tagId with objects containing a numeric order field.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: to an object keyed by tagId with objects containing a numeric order field.
+   * @returns Rejects: with an error response.
    */
-
-
-  getRoomTags(roomId, callback) {
+  getRoomTags(roomId) {
     const path = utils.encodeUri("/user/$userId/rooms/$roomId/tags", {
       $userId: this.credentials.userId,
       $roomId: roomId
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Get, path);
+    return this.http.authedRequest(_httpApi.Method.Get, path);
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} tagName name of room tag to be set
-   * @param {object} metadata associated with that tag to be stored
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: to an empty object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param tagName - name of room tag to be set
+   * @param metadata - associated with that tag to be stored
+   * @returns Promise which resolves: to an empty object
+   * @returns Rejects: with an error response.
    */
-
-
-  setRoomTag(roomId, tagName, metadata, callback) {
+  setRoomTag(roomId, tagName, metadata) {
     const path = utils.encodeUri("/user/$userId/rooms/$roomId/tags/$tag", {
       $userId: this.credentials.userId,
       $roomId: roomId,
       $tag: tagName
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Put, path, undefined, metadata);
+    return this.http.authedRequest(_httpApi.Method.Put, path, undefined, metadata);
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} tagName name of room tag to be removed
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: void
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param tagName - name of room tag to be removed
+   * @returns Promise which resolves: to an empty object
+   * @returns Rejects: with an error response.
    */
-
-
-  deleteRoomTag(roomId, tagName, callback) {
+  deleteRoomTag(roomId, tagName) {
     const path = utils.encodeUri("/user/$userId/rooms/$roomId/tags/$tag", {
       $userId: this.credentials.userId,
       $roomId: roomId,
       $tag: tagName
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Delete, path);
+    return this.http.authedRequest(_httpApi.Method.Delete, path);
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} eventType event type to be set
-   * @param {object} content event content
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: to an empty object {}
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param eventType - event type to be set
+   * @param content - event content
+   * @returns Promise which resolves: to an empty object `{}`
+   * @returns Rejects: with an error response.
    */
-
-
-  setRoomAccountData(roomId, eventType, content, callback) {
+  setRoomAccountData(roomId, eventType, content) {
     const path = utils.encodeUri("/user/$userId/rooms/$roomId/account_data/$type", {
       $userId: this.credentials.userId,
       $roomId: roomId,
       $type: eventType
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Put, path, undefined, content);
+    return this.http.authedRequest(_httpApi.Method.Put, path, undefined, content);
   }
+
   /**
-   * Set a user's power level.
-   * @param {string} roomId
-   * @param {string} userId
-   * @param {Number} powerLevel
-   * @param {MatrixEvent} event
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: to an ISendEventResponse object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * Set a power level to one or multiple users.
+   * @returns Promise which resolves: to an ISendEventResponse object
+   * @returns Rejects: with an error response.
    */
-
-
-  setPowerLevel(roomId, userId, powerLevel, event, callback) {
+  setPowerLevel(roomId, userId, powerLevel, event) {
     let content = {
       users: {}
     };
-
     if (event?.getType() === _event2.EventType.RoomPowerLevels) {
       // take a copy of the content to ensure we don't corrupt
       // existing client state with a failed power level change
       content = utils.deepCopy(event.getContent());
     }
-
-    content.users[userId] = powerLevel;
+    const users = Array.isArray(userId) ? userId : [userId];
+    for (const user of users) {
+      if (powerLevel == null) {
+        delete content.users[user];
+      } else {
+        content.users[user] = powerLevel;
+      }
+    }
     const path = utils.encodeUri("/rooms/$roomId/state/m.room.power_levels", {
       $roomId: roomId
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Put, path, undefined, content);
+    return this.http.authedRequest(_httpApi.Method.Put, path, undefined, content);
   }
+
   /**
    * Create an m.beacon_info event
-   * @param {string} roomId
-   * @param {MBeaconInfoEventContent} beaconInfoContent
-   * @returns {ISendEventResponse}
+   * @returns
    */
   // eslint-disable-next-line @typescript-eslint/naming-convention
-
-
   async unstable_createLiveBeacon(roomId, beaconInfoContent) {
     return this.unstable_setLiveBeacon(roomId, beaconInfoContent);
   }
+
   /**
    * Upsert a live beacon event
    * using a specific m.beacon_info.* event variable type
-   * @param {string} roomId string
-   * @param {MBeaconInfoEventContent} beaconInfoContent
-   * @returns {ISendEventResponse}
+   * @param roomId - string
+   * @returns
    */
   // eslint-disable-next-line @typescript-eslint/naming-convention
-
-
   async unstable_setLiveBeacon(roomId, beaconInfoContent) {
-    const userId = this.getUserId();
-    return this.sendStateEvent(roomId, _beacon.M_BEACON_INFO.name, beaconInfoContent, userId);
+    return this.sendStateEvent(roomId, _beacon.M_BEACON_INFO.name, beaconInfoContent, this.getUserId());
   }
-  /**
-   * @param {string} roomId
-   * @param {string} threadId
-   * @param {string} eventType
-   * @param {Object} content
-   * @param {string} txnId Optional.
-   * @param {module:client.callback} callback Optional. Deprecated
-   * @return {Promise} Resolves: to an empty object {}
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
-   */
-
-
-  sendEvent(roomId, threadId, eventType, content, txnId, callback) {
-    if (!threadId?.startsWith(EVENT_ID_PREFIX) && threadId !== null) {
-      callback = txnId;
-      txnId = content;
-      content = eventType;
-      eventType = threadId;
+  sendEvent(roomId, threadIdOrEventType, eventTypeOrContent, contentOrTxnId, txnIdOrVoid) {
+    let threadId;
+    let eventType;
+    let content;
+    let txnId;
+    if (!threadIdOrEventType?.startsWith(EVENT_ID_PREFIX) && threadIdOrEventType !== null) {
+      txnId = contentOrTxnId;
+      content = eventTypeOrContent;
+      eventType = threadIdOrEventType;
       threadId = null;
-    } // If we expect that an event is part of a thread but is missing the relation
-    // we need to add it manually, as well as the reply fallback
-
+    } else {
+      txnId = txnIdOrVoid;
+      content = contentOrTxnId;
+      eventType = eventTypeOrContent;
+      threadId = threadIdOrEventType;
+    }
 
+    // If we expect that an event is part of a thread but is missing the relation
+    // we need to add it manually, as well as the reply fallback
     if (threadId && !content["m.relates_to"]?.rel_type) {
       const isReply = !!content["m.relates_to"]?.["m.in_reply_to"];
       content["m.relates_to"] = _objectSpread(_objectSpread({}, content["m.relates_to"]), {}, {
-        "rel_type": _thread.THREAD_RELATION_TYPE.name,
-        "event_id": threadId,
+        rel_type: _thread.THREAD_RELATION_TYPE.name,
+        event_id: threadId,
         // Set is_falling_back to true unless this is actually intended to be a reply
-        "is_falling_back": !isReply
+        is_falling_back: !isReply
       });
       const thread = this.getRoom(roomId)?.getThread(threadId);
-
       if (thread && !isReply) {
         content["m.relates_to"]["m.in_reply_to"] = {
-          "event_id": thread.lastReply(ev => {
+          event_id: thread.lastReply(ev => {
             return ev.isRelation(_thread.THREAD_RELATION_TYPE.name) && !ev.status;
           })?.getId() ?? threadId
         };
       }
     }
-
     return this.sendCompleteEvent(roomId, threadId, {
       type: eventType,
       content
-    }, txnId, callback);
+    }, txnId);
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} threadId
-   * @param {object} eventObject An object with the partial structure of an event, to which event_id, user_id, room_id and origin_server_ts will be added.
-   * @param {string} txnId Optional.
-   * @param {module:client.callback} callback Optional. Deprecated
-   * @return {Promise} Resolves: to an empty object {}
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param eventObject - An object with the partial structure of an event, to which event_id, user_id, room_id and origin_server_ts will be added.
+   * @param txnId - Optional.
+   * @returns Promise which resolves: to an empty object `{}`
+   * @returns Rejects: with an error response.
    */
-
-
-  sendCompleteEvent(roomId, threadId, eventObject, txnId, callback) {
-    if (utils.isFunction(txnId)) {
-      callback = txnId; // convert for legacy
-
-      txnId = undefined;
-    }
-
+  sendCompleteEvent(roomId, threadId, eventObject, txnId) {
     if (!txnId) {
       txnId = this.makeTxnId();
-    } // We always construct a MatrixEvent when sending because the store and scheduler use them.
-    // We'll extract the params back out if it turns out the client has no scheduler or store.
-
+    }
 
+    // We always construct a MatrixEvent when sending because the store and scheduler use them.
+    // We'll extract the params back out if it turns out the client has no scheduler or store.
     const localEvent = new _event.MatrixEvent(Object.assign(eventObject, {
       event_id: "~" + roomId + ":" + txnId,
       user_id: this.credentials.userId,
@@ -3167,62 +2897,54 @@
       origin_server_ts: new Date().getTime()
     }));
     const room = this.getRoom(roomId);
-    const thread = room?.getThread(threadId);
-
+    const thread = threadId ? room?.getThread(threadId) : undefined;
     if (thread) {
       localEvent.setThread(thread);
-    } // set up re-emitter for this new event - this is normally the job of EventMapper but we don't use it here
-
+    }
 
+    // set up re-emitter for this new event - this is normally the job of EventMapper but we don't use it here
     this.reEmitter.reEmit(localEvent, [_event.MatrixEventEvent.Replaced, _event.MatrixEventEvent.VisibilityChange]);
-    room?.reEmitter.reEmit(localEvent, [_event.MatrixEventEvent.BeforeRedaction]); // if this is a relation or redaction of an event
+    room?.reEmitter.reEmit(localEvent, [_event.MatrixEventEvent.BeforeRedaction]);
+
+    // if this is a relation or redaction of an event
     // that hasn't been sent yet (e.g. with a local id starting with a ~)
     // then listen for the remote echo of that event so that by the time
     // this event does get sent, we have the correct event_id
-
     const targetId = localEvent.getAssociatedId();
-
     if (targetId?.startsWith("~")) {
-      const target = room.getPendingEvents().find(e => e.getId() === targetId);
-      target.once(_event.MatrixEventEvent.LocalEventIdReplaced, () => {
+      const target = room?.getPendingEvents().find(e => e.getId() === targetId);
+      target?.once(_event.MatrixEventEvent.LocalEventIdReplaced, () => {
         localEvent.updateAssociatedId(target.getId());
       });
     }
-
     const type = localEvent.getType();
-
     _logger.logger.log(`sendEvent of type ${type} in ${roomId} with txnId ${txnId}`);
-
     localEvent.setTxnId(txnId);
-    localEvent.setStatus(_event.EventStatus.SENDING); // add this event immediately to the local store as 'sending'.
+    localEvent.setStatus(_event.EventStatus.SENDING);
 
-    room?.addPendingEvent(localEvent, txnId); // addPendingEvent can change the state to NOT_SENT if it believes
+    // add this event immediately to the local store as 'sending'.
+    room?.addPendingEvent(localEvent, txnId);
+
+    // addPendingEvent can change the state to NOT_SENT if it believes
     // that there's other events that have failed. We won't bother to
     // try sending the event if the state has changed as such.
-
     if (localEvent.status === _event.EventStatus.NOT_SENT) {
       return Promise.reject(new Error("Event blocked by other events not yet sent"));
     }
-
-    return this.encryptAndSendEvent(room, localEvent, callback);
+    return this.encryptAndSendEvent(room, localEvent);
   }
+
   /**
    * encrypts the event if necessary; adds the event to the queue, or sends it; marks the event as sent/unsent
-   * @param room
-   * @param event
-   * @param callback
-   * @returns {Promise} returns a promise which resolves with the result of the send request
-   * @private
+   * @returns returns a promise which resolves with the result of the send request
    */
-
-
-  encryptAndSendEvent(room, event, callback) {
-    let cancelled = false; // Add an extra Promise.resolve() to turn synchronous exceptions into promise rejections,
+  encryptAndSendEvent(room, event) {
+    let cancelled = false;
+    // Add an extra Promise.resolve() to turn synchronous exceptions into promise rejections,
     // so that we can handle synchronous and asynchronous exceptions with the
     // same code path.
-
     return Promise.resolve().then(() => {
-      const encryptionPromise = this.encryptEventIfNeeded(event, room);
+      const encryptionPromise = this.encryptEventIfNeeded(event, room ?? undefined);
       if (!encryptionPromise) return null; // doesn't need encryption
 
       this.pendingEventEncryption.set(event.getId(), encryptionPromise);
@@ -3233,63 +2955,50 @@
           cancelled = true;
           return;
         }
-
         this.updatePendingEventStatus(room, event, _event.EventStatus.SENDING);
       });
     }).then(() => {
       if (cancelled) return {};
-      let promise;
-
+      let promise = null;
       if (this.scheduler) {
         // if this returns a promise then the scheduler has control now and will
         // resolve/reject when it is done. Internally, the scheduler will invoke
         // processFn which is set to this._sendEventHttpRequest so the same code
         // path is executed regardless.
         promise = this.scheduler.queueEvent(event);
-
         if (promise && this.scheduler.getQueueForEvent(event).length > 1) {
           // event is processed FIFO so if the length is 2 or more we know
           // this event is stuck behind an earlier event.
           this.updatePendingEventStatus(room, event, _event.EventStatus.QUEUED);
         }
       }
-
       if (!promise) {
         promise = this.sendEventHttpRequest(event);
-
         if (room) {
           promise = promise.then(res => {
-            room.updatePendingEvent(event, _event.EventStatus.SENT, res['event_id']);
+            room.updatePendingEvent(event, _event.EventStatus.SENT, res["event_id"]);
             return res;
           });
         }
       }
-
       return promise;
-    }).then(res => {
-      callback?.(null, res);
-      return res;
     }).catch(err => {
       _logger.logger.error("Error sending event", err.stack || err);
-
       try {
         // set the error on the event before we update the status:
         // updating the status emits the event, so the state should be
         // consistent at that point.
         event.error = err;
-        this.updatePendingEventStatus(room, event, _event.EventStatus.NOT_SENT); // also put the event object on the error: the caller will need this
-        // to resend or cancel the event
-
-        err.event = event;
-        callback?.(err);
+        this.updatePendingEventStatus(room, event, _event.EventStatus.NOT_SENT);
       } catch (e) {
         _logger.logger.error("Exception in error handler!", e.stack || err);
       }
-
+      if (err instanceof _httpApi.MatrixError) {
+        err.event = event;
+      }
       throw err;
     });
   }
-
   encryptEventIfNeeded(event, room) {
     if (event.isEncrypted()) {
       // this event has already been encrypted; this happens if the
@@ -3297,24 +3006,20 @@
       // attempt.
       return null;
     }
-
     if (event.isRedaction()) {
       // Redactions do not support encryption in the spec at this time,
       // whilst it mostly worked in some clients, it wasn't compliant.
       return null;
     }
-
-    if (!this.isRoomEncrypted(event.getRoomId())) {
+    if (!room || !this.isRoomEncrypted(event.getRoomId())) {
       return null;
     }
-
-    if (!this.crypto && this.usingExternalCrypto) {
+    if (!this.cryptoBackend && this.usingExternalCrypto) {
       // The client has opted to allow sending messages to encrypted
       // rooms even if the room is encrypted, and we haven't setup
       // crypto. This is useful for users of matrix-org/pantalaimon
       return null;
     }
-
     if (event.getType() === _event2.EventType.Reaction) {
       // For reactions, there is a very little gained by encrypting the entire
       // event, as relation data is already kept in the clear. Event
@@ -3328,27 +3033,23 @@
       // See https://github.com/matrix-org/matrix-doc/pull/1849#pullrequestreview-248763642
       return null;
     }
-
-    if (!this.crypto) {
-      throw new Error("This room is configured to use encryption, but your client does " + "not support encryption.");
+    if (!this.cryptoBackend) {
+      throw new Error("This room is configured to use encryption, but your client does not support encryption.");
     }
-
-    return this.crypto.encryptEvent(event, room);
+    return this.cryptoBackend.encryptEvent(event, room);
   }
+
   /**
    * Returns the eventType that should be used taking encryption into account
    * for a given eventType.
-   * @param {string} roomId the room for the events `eventType` relates to
-   * @param {string} eventType the event type
-   * @return {string} the event type taking encryption into account
+   * @param roomId - the room for the events `eventType` relates to
+   * @param eventType - the event type
+   * @returns the event type taking encryption into account
    */
-
-
   getEncryptedIfNeededEventType(roomId, eventType) {
     if (eventType === _event2.EventType.Reaction) return eventType;
     return this.isRoomEncrypted(roomId) ? _event2.EventType.RoomMessageEncrypted : eventType;
   }
-
   updatePendingEventStatus(room, event, newStatus) {
     if (room) {
       room.updatePendingEvent(event, newStatus);
@@ -3356,15 +3057,12 @@
       event.setStatus(newStatus);
     }
   }
-
   sendEventHttpRequest(event) {
     let txnId = event.getTxnId();
-
     if (!txnId) {
       txnId = this.makeTxnId();
       event.setTxnId(txnId);
     }
-
     const pathParams = {
       $roomId: event.getRoomId(),
       $eventType: event.getWireType(),
@@ -3372,351 +3070,220 @@
       $txnId: txnId
     };
     let path;
-
     if (event.isState()) {
       let pathTemplate = "/rooms/$roomId/state/$eventType";
-
       if (event.getStateKey() && event.getStateKey().length > 0) {
         pathTemplate = "/rooms/$roomId/state/$eventType/$stateKey";
       }
-
       path = utils.encodeUri(pathTemplate, pathParams);
     } else if (event.isRedaction()) {
       const pathTemplate = `/rooms/$roomId/redact/$redactsEventId/$txnId`;
-      path = utils.encodeUri(pathTemplate, Object.assign({
+      path = utils.encodeUri(pathTemplate, _objectSpread({
         $redactsEventId: event.event.redacts
       }, pathParams));
     } else {
       path = utils.encodeUri("/rooms/$roomId/send/$eventType/$txnId", pathParams);
     }
-
-    return this.http.authedRequest(undefined, _httpApi.Method.Put, path, undefined, event.getWireContent()).then(res => {
+    return this.http.authedRequest(_httpApi.Method.Put, path, undefined, event.getWireContent()).then(res => {
       _logger.logger.log(`Event sent to ${event.getRoomId()} with event id ${res.event_id}`);
-
       return res;
     });
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} eventId
-   * @param {string} [txnId]  transaction id. One will be made up if not
-   *    supplied.
-   * @param {object|module:client.callback} cbOrOpts
-   *    Options to pass on, may contain `reason`.
-   *    Can be callback for backwards compatibility. Deprecated
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param txnId -  transaction id. One will be made up if not supplied.
+   * @param opts - Options to pass on, may contain `reason` and `with_relations` (MSC3912)
+   * @returns Promise which resolves: TODO
+   * @returns Rejects: with an error response.
+   * @throws Error if called with `with_relations` (MSC3912) but the server does not support it.
+   *         Callers should check whether the server supports MSC3912 via `MatrixClient.canSupport`.
    */
 
-
-  redactEvent(roomId, threadId, eventId, txnId, cbOrOpts) {
+  redactEvent(roomId, threadId, eventId, txnId, opts) {
     if (!eventId?.startsWith(EVENT_ID_PREFIX)) {
-      cbOrOpts = txnId;
+      opts = txnId;
       txnId = eventId;
       eventId = threadId;
       threadId = null;
     }
-
-    const opts = typeof cbOrOpts === 'object' ? cbOrOpts : {};
-    const reason = opts.reason;
-    const callback = typeof cbOrOpts === 'function' ? cbOrOpts : undefined;
+    const reason = opts?.reason;
+    if (opts?.with_relations && this.canSupport.get(_feature.Feature.RelationBasedRedactions) === _feature.ServerSupport.Unsupported) {
+      throw new Error("Server does not support relation based redactions " + `roomId ${roomId} eventId ${eventId} txnId: ${txnId} threadId ${threadId}`);
+    }
+    const withRelations = opts?.with_relations ? {
+      [this.canSupport.get(_feature.Feature.RelationBasedRedactions) === _feature.ServerSupport.Stable ? _event2.MSC3912_RELATION_BASED_REDACTIONS_PROP.stable : _event2.MSC3912_RELATION_BASED_REDACTIONS_PROP.unstable]: opts?.with_relations
+    } : {};
     return this.sendCompleteEvent(roomId, threadId, {
       type: _event2.EventType.RoomRedaction,
-      content: {
+      content: _objectSpread(_objectSpread({}, withRelations), {}, {
         reason
-      },
+      }),
       redacts: eventId
-    }, txnId, callback);
+    }, txnId);
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} threadId
-   * @param {Object} content
-   * @param {string} txnId Optional.
-   * @param {module:client.callback} callback Optional. Deprecated
-   * @return {Promise} Resolves: to an ISendEventResponse object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param txnId - Optional.
+   * @returns Promise which resolves: to an ISendEventResponse object
+   * @returns Rejects: with an error response.
    */
 
-
-  sendMessage(roomId, threadId, content, txnId, callback) {
+  sendMessage(roomId, threadId, content, txnId) {
     if (typeof threadId !== "string" && threadId !== null) {
-      callback = txnId;
       txnId = content;
       content = threadId;
       threadId = null;
     }
+    const eventType = _event2.EventType.RoomMessage;
+    const sendContent = content;
+    return this.sendEvent(roomId, threadId, eventType, sendContent, txnId);
+  }
 
-    if (utils.isFunction(txnId)) {
-      callback = txnId; // for legacy
-
-      txnId = undefined;
-    } // Populate all outbound events with Extensible Events metadata to ensure there's a
-    // reasonably large pool of messages to parse.
-
-
-    let eventType = _event2.EventType.RoomMessage;
-    let sendContent = content;
-
-    const makeContentExtensible = (content = {}, recurse = true) => {
-      let newEvent = null;
+  /**
+   * @param txnId - Optional.
+   * @returns
+   * @returns Rejects: with an error response.
+   */
 
-      if (content['msgtype'] === _event2.MsgType.Text) {
-        newEvent = _matrixEventsSdk.MessageEvent.from(content['body'], content['formatted_body']).serialize();
-      } else if (content['msgtype'] === _event2.MsgType.Emote) {
-        newEvent = _matrixEventsSdk.EmoteEvent.from(content['body'], content['formatted_body']).serialize();
-      } else if (content['msgtype'] === _event2.MsgType.Notice) {
-        newEvent = _matrixEventsSdk.NoticeEvent.from(content['body'], content['formatted_body']).serialize();
-      }
-
-      if (newEvent && content['m.new_content'] && recurse) {
-        const newContent = makeContentExtensible(content['m.new_content'], false);
-
-        if (newContent) {
-          newEvent.content['m.new_content'] = newContent.content;
-        }
-      }
-
-      if (newEvent) {
-        // copy over all other fields we don't know about
-        for (const [k, v] of Object.entries(content)) {
-          if (!newEvent.content.hasOwnProperty(k)) {
-            newEvent.content[k] = v;
-          }
-        }
-      }
-
-      return newEvent;
-    };
-
-    const result = makeContentExtensible(sendContent);
-
-    if (result) {
-      eventType = result.type;
-      sendContent = result.content;
-    }
-
-    return this.sendEvent(roomId, threadId, eventType, sendContent, txnId, callback);
-  }
-  /**
-   * @param {string} roomId
-   * @param {string} threadId
-   * @param {string} body
-   * @param {string} txnId Optional.
-   * @param {module:client.callback} callback Optional. Deprecated
-   * @return {Promise} Resolves: to an empty object {}
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
-   */
-
-
-  sendTextMessage(roomId, threadId, body, txnId, callback) {
+  sendTextMessage(roomId, threadId, body, txnId) {
     if (!threadId?.startsWith(EVENT_ID_PREFIX) && threadId !== null) {
-      callback = txnId;
       txnId = body;
       body = threadId;
       threadId = null;
     }
-
     const content = ContentHelpers.makeTextMessage(body);
-    return this.sendMessage(roomId, threadId, content, txnId, callback);
+    return this.sendMessage(roomId, threadId, content, txnId);
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} threadId
-   * @param {string} body
-   * @param {string} txnId Optional.
-   * @param {module:client.callback} callback Optional. Deprecated
-   * @return {Promise} Resolves: to a ISendEventResponse object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param txnId - Optional.
+   * @returns Promise which resolves: to a ISendEventResponse object
+   * @returns Rejects: with an error response.
    */
 
-
-  sendNotice(roomId, threadId, body, txnId, callback) {
+  sendNotice(roomId, threadId, body, txnId) {
     if (!threadId?.startsWith(EVENT_ID_PREFIX) && threadId !== null) {
-      callback = txnId;
       txnId = body;
       body = threadId;
       threadId = null;
     }
-
     const content = ContentHelpers.makeNotice(body);
-    return this.sendMessage(roomId, threadId, content, txnId, callback);
+    return this.sendMessage(roomId, threadId, content, txnId);
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} threadId
-   * @param {string} body
-   * @param {string} txnId Optional.
-   * @param {module:client.callback} callback Optional. Deprecated
-   * @return {Promise} Resolves: to a ISendEventResponse object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param txnId - Optional.
+   * @returns Promise which resolves: to a ISendEventResponse object
+   * @returns Rejects: with an error response.
    */
 
-
-  sendEmoteMessage(roomId, threadId, body, txnId, callback) {
+  sendEmoteMessage(roomId, threadId, body, txnId) {
     if (!threadId?.startsWith(EVENT_ID_PREFIX) && threadId !== null) {
-      callback = txnId;
       txnId = body;
       body = threadId;
       threadId = null;
     }
-
     const content = ContentHelpers.makeEmoteMessage(body);
-    return this.sendMessage(roomId, threadId, content, txnId, callback);
+    return this.sendMessage(roomId, threadId, content, txnId);
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} threadId
-   * @param {string} url
-   * @param {Object} info
-   * @param {string} text
-   * @param {module:client.callback} callback Optional. Deprecated
-   * @return {Promise} Resolves: to a ISendEventResponse object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: to a ISendEventResponse object
+   * @returns Rejects: with an error response.
    */
 
-
-  sendImageMessage(roomId, threadId, url, info, text = "Image", callback) {
+  sendImageMessage(roomId, threadId, url, info, text = "Image") {
     if (!threadId?.startsWith(EVENT_ID_PREFIX) && threadId !== null) {
-      callback = text;
       text = info || "Image";
       info = url;
       url = threadId;
       threadId = null;
     }
-
-    if (utils.isFunction(text)) {
-      callback = text; // legacy
-
-      text = undefined;
-    }
-
     const content = {
       msgtype: _event2.MsgType.Image,
       url: url,
       info: info,
       body: text
     };
-    return this.sendMessage(roomId, threadId, content, undefined, callback);
+    return this.sendMessage(roomId, threadId, content);
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} threadId
-   * @param {string} url
-   * @param {Object} info
-   * @param {string} text
-   * @param {module:client.callback} callback Optional. Deprecated
-   * @return {Promise} Resolves: to a ISendEventResponse object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: to a ISendEventResponse object
+   * @returns Rejects: with an error response.
    */
 
-
-  sendStickerMessage(roomId, threadId, url, info, text = "Sticker", callback) {
+  sendStickerMessage(roomId, threadId, url, info, text = "Sticker") {
     if (!threadId?.startsWith(EVENT_ID_PREFIX) && threadId !== null) {
-      callback = text;
       text = info || "Sticker";
       info = url;
       url = threadId;
       threadId = null;
     }
-
-    if (utils.isFunction(text)) {
-      callback = text; // legacy
-
-      text = undefined;
-    }
-
     const content = {
       url: url,
       info: info,
       body: text
     };
-    return this.sendEvent(roomId, threadId, _event2.EventType.Sticker, content, undefined, callback);
+    return this.sendEvent(roomId, threadId, _event2.EventType.Sticker, content);
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} threadId
-   * @param {string} body
-   * @param {string} htmlBody
-   * @param {module:client.callback} callback Optional. Deprecated
-   * @return {Promise} Resolves: to a ISendEventResponse object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: to a ISendEventResponse object
+   * @returns Rejects: with an error response.
    */
 
-
-  sendHtmlMessage(roomId, threadId, body, htmlBody, callback) {
+  sendHtmlMessage(roomId, threadId, body, htmlBody) {
     if (!threadId?.startsWith(EVENT_ID_PREFIX) && threadId !== null) {
-      callback = htmlBody;
       htmlBody = body;
       body = threadId;
       threadId = null;
     }
-
     const content = ContentHelpers.makeHtmlMessage(body, htmlBody);
-    return this.sendMessage(roomId, threadId, content, undefined, callback);
+    return this.sendMessage(roomId, threadId, content);
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} body
-   * @param {string} htmlBody
-   * @param {module:client.callback} callback Optional. Deprecated
-   * @return {Promise} Resolves: to a ISendEventResponse object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: to a ISendEventResponse object
+   * @returns Rejects: with an error response.
    */
 
-
-  sendHtmlNotice(roomId, threadId, body, htmlBody, callback) {
+  sendHtmlNotice(roomId, threadId, body, htmlBody) {
     if (!threadId?.startsWith(EVENT_ID_PREFIX) && threadId !== null) {
-      callback = htmlBody;
       htmlBody = body;
       body = threadId;
       threadId = null;
     }
-
     const content = ContentHelpers.makeHtmlNotice(body, htmlBody);
-    return this.sendMessage(roomId, threadId, content, undefined, callback);
+    return this.sendMessage(roomId, threadId, content);
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} threadId
-   * @param {string} body
-   * @param {string} htmlBody
-   * @param {module:client.callback} callback Optional. Deprecated
-   * @return {Promise} Resolves: to a ISendEventResponse object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: to a ISendEventResponse object
+   * @returns Rejects: with an error response.
    */
 
-
-  sendHtmlEmote(roomId, threadId, body, htmlBody, callback) {
+  sendHtmlEmote(roomId, threadId, body, htmlBody) {
     if (!threadId?.startsWith(EVENT_ID_PREFIX) && threadId !== null) {
-      callback = htmlBody;
       htmlBody = body;
       body = threadId;
       threadId = null;
     }
-
     const content = ContentHelpers.makeHtmlEmote(body, htmlBody);
-    return this.sendMessage(roomId, threadId, content, undefined, callback);
+    return this.sendMessage(roomId, threadId, content);
   }
+
   /**
    * Send a receipt.
-   * @param {Event} event The event being acknowledged
-   * @param {ReceiptType} receiptType The kind of receipt e.g. "m.read". Other than
+   * @param event - The event being acknowledged
+   * @param receiptType - The kind of receipt e.g. "m.read". Other than
    * ReceiptType.Read are experimental!
-   * @param {object} body Additional content to send alongside the receipt.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: to an empty object {}
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param body - Additional content to send alongside the receipt.
+   * @param unthreaded - An unthreaded receipt will clear room+thread notifications
+   * @returns Promise which resolves: to an empty object `{}`
+   * @returns Rejects: with an error response.
    */
-
-
-  sendReceipt(event, receiptType, body, callback) {
-    if (typeof body === 'function') {
-      callback = body; // legacy
-
-      body = {};
-    }
-
+  async sendReceipt(event, receiptType, body, unthreaded = false) {
     if (this.isGuest()) {
       return Promise.resolve({}); // guests cannot send receipts so don't bother.
     }
@@ -3726,416 +3293,353 @@
       $receiptType: receiptType,
       $eventId: event.getId()
     });
-    const promise = this.http.authedRequest(callback, _httpApi.Method.Post, path, undefined, body || {});
+    if (!unthreaded) {
+      const isThread = !!event.threadRootId;
+      body = _objectSpread(_objectSpread({}, body), {}, {
+        thread_id: isThread ? event.threadRootId : _read_receipts.MAIN_ROOM_TIMELINE
+      });
+    }
+    const promise = this.http.authedRequest(_httpApi.Method.Post, path, undefined, body || {});
     const room = this.getRoom(event.getRoomId());
-
-    if (room) {
+    if (room && this.credentials.userId) {
       room.addLocalEchoReceipt(this.credentials.userId, event, receiptType);
     }
-
     return promise;
   }
+
   /**
    * Send a read receipt.
-   * @param {Event} event The event that has been read.
-   * @param {ReceiptType} receiptType other than ReceiptType.Read are experimental! Optional.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: to an empty object {}
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param event - The event that has been read.
+   * @param receiptType - other than ReceiptType.Read are experimental! Optional.
+   * @returns Promise which resolves: to an empty object `{}`
+   * @returns Rejects: with an error response.
    */
-
-
-  async sendReadReceipt(event, receiptType = _read_receipts.ReceiptType.Read, callback) {
+  async sendReadReceipt(event, receiptType = _read_receipts.ReceiptType.Read, unthreaded = false) {
+    if (!event) return;
     const eventId = event.getId();
     const room = this.getRoom(event.getRoomId());
-
-    if (room && room.hasPendingEvent(eventId)) {
+    if (room?.hasPendingEvent(eventId)) {
       throw new Error(`Cannot set read receipt to a pending event (${eventId})`);
     }
-
-    return this.sendReceipt(event, receiptType, {}, callback);
+    return this.sendReceipt(event, receiptType, {}, unthreaded);
   }
+
   /**
    * Set a marker to indicate the point in a room before which the user has read every
    * event. This can be retrieved from room account data (the event type is `m.fully_read`)
    * and displayed as a horizontal line in the timeline that is visually distinct to the
    * position of the user's own read receipt.
-   * @param {string} roomId ID of the room that has been read
-   * @param {string} rmEventId ID of the event that has been read
-   * @param {MatrixEvent} rrEvent the event tracked by the read receipt. This is here for
+   * @param roomId - ID of the room that has been read
+   * @param rmEventId - ID of the event that has been read
+   * @param rrEvent - the event tracked by the read receipt. This is here for
    * convenience because the RR and the RM are commonly updated at the same time as each
    * other. The local echo of this receipt will be done if set. Optional.
-   * @param {MatrixEvent} rpEvent the m.read.private read receipt event for when we don't
+   * @param rpEvent - the m.read.private read receipt event for when we don't
    * want other users to see the read receipts. This is experimental. Optional.
-   * @return {Promise} Resolves: the empty object, {}.
+   * @returns Promise which resolves: the empty object, `{}`.
    */
-
-
   async setRoomReadMarkers(roomId, rmEventId, rrEvent, rpEvent) {
     const room = this.getRoom(roomId);
-
     if (room && room.hasPendingEvent(rmEventId)) {
       throw new Error(`Cannot set read marker to a pending event (${rmEventId})`);
-    } // Add the optional RR update, do local echo like `sendReceipt`
-
+    }
 
+    // Add the optional RR update, do local echo like `sendReceipt`
     let rrEventId;
-
     if (rrEvent) {
       rrEventId = rrEvent.getId();
-
       if (room?.hasPendingEvent(rrEventId)) {
         throw new Error(`Cannot set read receipt to a pending event (${rrEventId})`);
       }
-
       room?.addLocalEchoReceipt(this.credentials.userId, rrEvent, _read_receipts.ReceiptType.Read);
-    } // Add the optional private RR update, do local echo like `sendReceipt`
-
+    }
 
+    // Add the optional private RR update, do local echo like `sendReceipt`
     let rpEventId;
-
     if (rpEvent) {
       rpEventId = rpEvent.getId();
-
       if (room?.hasPendingEvent(rpEventId)) {
         throw new Error(`Cannot set read receipt to a pending event (${rpEventId})`);
       }
-
       room?.addLocalEchoReceipt(this.credentials.userId, rpEvent, _read_receipts.ReceiptType.ReadPrivate);
     }
-
     return await this.setRoomReadMarkersHttpRequest(roomId, rmEventId, rrEventId, rpEventId);
   }
+
   /**
    * Get a preview of the given URL as of (roughly) the given point in time,
    * described as an object with OpenGraph keys and associated values.
    * Attributes may be synthesized where actual OG metadata is lacking.
    * Caches results to prevent hammering the server.
-   * @param {string} url The URL to get preview data for
-   * @param {Number} ts The preferred point in time that the preview should
+   * @param url - The URL to get preview data for
+   * @param ts - The preferred point in time that the preview should
    * describe (ms since epoch).  The preview returned will either be the most
    * recent one preceding this timestamp if available, or failing that the next
    * most recent available preview.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: Object of OG metadata.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: Object of OG metadata.
+   * @returns Rejects: with an error response.
    * May return synthesized attributes if the URL lacked OG meta.
    */
-
-
-  getUrlPreview(url, ts, callback) {
+  getUrlPreview(url, ts) {
     // bucket the timestamp to the nearest minute to prevent excessive spam to the server
     // Surely 60-second accuracy is enough for anyone.
     ts = Math.floor(ts / 60000) * 60000;
     const parsed = new URL(url);
     parsed.hash = ""; // strip the hash as it won't affect the preview
-
     url = parsed.toString();
-    const key = ts + "_" + url; // If there's already a request in flight (or we've handled it), return that instead.
+    const key = ts + "_" + url;
 
+    // If there's already a request in flight (or we've handled it), return that instead.
     const cachedPreview = this.urlPreviewCache[key];
-
     if (cachedPreview) {
-      if (callback) {
-        cachedPreview.then(callback).catch(callback);
-      }
-
       return cachedPreview;
     }
-
-    const resp = this.http.authedRequest(callback, _httpApi.Method.Get, "/preview_url", {
+    const resp = this.http.authedRequest(_httpApi.Method.Get, "/preview_url", {
       url,
       ts: ts.toString()
     }, undefined, {
-      prefix: _httpApi.PREFIX_MEDIA_R0
-    }); // TODO: Expire the URL preview cache sometimes
-
+      prefix: _httpApi.MediaPrefix.R0
+    });
+    // TODO: Expire the URL preview cache sometimes
     this.urlPreviewCache[key] = resp;
     return resp;
   }
+
   /**
-   * @param {string} roomId
-   * @param {boolean} isTyping
-   * @param {Number} timeoutMs
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: to an empty object {}
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: to an empty object `{}`
+   * @returns Rejects: with an error response.
    */
-
-
-  sendTyping(roomId, isTyping, timeoutMs, callback) {
+  sendTyping(roomId, isTyping, timeoutMs) {
     if (this.isGuest()) {
       return Promise.resolve({}); // guests cannot send typing notifications so don't bother.
     }
 
     const path = utils.encodeUri("/rooms/$roomId/typing/$userId", {
       $roomId: roomId,
-      $userId: this.credentials.userId
+      $userId: this.getUserId()
     });
     const data = {
       typing: isTyping
     };
-
     if (isTyping) {
       data.timeout = timeoutMs ? timeoutMs : 20000;
     }
-
-    return this.http.authedRequest(callback, _httpApi.Method.Put, path, undefined, data);
+    return this.http.authedRequest(_httpApi.Method.Put, path, undefined, data);
   }
+
   /**
    * Determines the history of room upgrades for a given room, as far as the
    * client can see. Returns an array of Rooms where the first entry is the
    * oldest and the last entry is the newest (likely current) room. If the
    * provided room is not found, this returns an empty list. This works in
    * both directions, looking for older and newer rooms of the given room.
-   * @param {string} roomId The room ID to search from
-   * @param {boolean} verifyLinks If true, the function will only return rooms
+   * @param roomId - The room ID to search from
+   * @param verifyLinks - If true, the function will only return rooms
    * which can be proven to be linked. For example, rooms which have a create
    * event pointing to an old room which the client is not aware of or doesn't
    * have a matching tombstone would not be returned.
-   * @return {Room[]} An array of rooms representing the upgrade
+   * @param msc3946ProcessDynamicPredecessor - if true, look for
+   * m.room.predecessor state events as well as create events, and prefer
+   * predecessor events where they exist (MSC3946).
+   * @returns An array of rooms representing the upgrade
    * history.
    */
-
-
-  getRoomUpgradeHistory(roomId, verifyLinks = false) {
-    let currentRoom = this.getRoom(roomId);
+  getRoomUpgradeHistory(roomId, verifyLinks = false, msc3946ProcessDynamicPredecessor = false) {
+    const currentRoom = this.getRoom(roomId);
     if (!currentRoom) return [];
-    const upgradeHistory = [currentRoom]; // Work backwards first, looking at create events.
-
-    let createEvent = currentRoom.currentState.getStateEvents(_event2.EventType.RoomCreate, "");
-
-    while (createEvent) {
-      const predecessor = createEvent.getContent()['predecessor'];
-
-      if (predecessor && predecessor['room_id']) {
-        const refRoom = this.getRoom(predecessor['room_id']);
-        if (!refRoom) break; // end of the chain
-
-        if (verifyLinks) {
-          const tombstone = refRoom.currentState.getStateEvents(_event2.EventType.RoomTombstone, "");
-
-          if (!tombstone || tombstone.getContent()['replacement_room'] !== refRoom.roomId) {
-            break;
-          }
-        } // Insert at the front because we're working backwards from the currentRoom
-
-
-        upgradeHistory.splice(0, 0, refRoom);
-        createEvent = refRoom.currentState.getStateEvents(_event2.EventType.RoomCreate, "");
-      } else {
-        // No further create events to look at
+    const before = this.findPredecessorRooms(currentRoom, verifyLinks, msc3946ProcessDynamicPredecessor);
+    const after = this.findSuccessorRooms(currentRoom, verifyLinks, msc3946ProcessDynamicPredecessor);
+    return [...before, currentRoom, ...after];
+  }
+  findPredecessorRooms(room, verifyLinks, msc3946ProcessDynamicPredecessor) {
+    const ret = [];
+
+    // Work backwards from newer to older rooms
+    let predecessorRoomId = room.findPredecessor(msc3946ProcessDynamicPredecessor)?.roomId;
+    while (predecessorRoomId !== null) {
+      const predecessorRoom = this.getRoom(predecessorRoomId);
+      if (predecessorRoom === null) {
         break;
       }
-    } // Work forwards next, looking at tombstone events
-
+      if (verifyLinks) {
+        const tombstone = predecessorRoom.currentState.getStateEvents(_event2.EventType.RoomTombstone, "");
+        if (!tombstone || tombstone.getContent()["replacement_room"] !== room.roomId) {
+          break;
+        }
+      }
 
-    let tombstoneEvent = currentRoom.currentState.getStateEvents(_event2.EventType.RoomTombstone, "");
+      // Insert at the front because we're working backwards from the currentRoom
+      ret.splice(0, 0, predecessorRoom);
+      room = predecessorRoom;
+      predecessorRoomId = room.findPredecessor(msc3946ProcessDynamicPredecessor)?.roomId;
+    }
+    return ret;
+  }
+  findSuccessorRooms(room, verifyLinks, msc3946ProcessDynamicPredecessor) {
+    const ret = [];
 
+    // Work forwards, looking at tombstone events
+    let tombstoneEvent = room.currentState.getStateEvents(_event2.EventType.RoomTombstone, "");
     while (tombstoneEvent) {
-      const refRoom = this.getRoom(tombstoneEvent.getContent()['replacement_room']);
-      if (!refRoom) break; // end of the chain
-
-      if (refRoom.roomId === currentRoom.roomId) break; // Tombstone is referencing it's own room
+      const successorRoom = this.getRoom(tombstoneEvent.getContent()["replacement_room"]);
+      if (!successorRoom) break; // end of the chain
+      if (successorRoom.roomId === room.roomId) break; // Tombstone is referencing its own room
 
       if (verifyLinks) {
-        createEvent = refRoom.currentState.getStateEvents(_event2.EventType.RoomCreate, "");
-        if (!createEvent || !createEvent.getContent()['predecessor']) break;
-        const predecessor = createEvent.getContent()['predecessor'];
-        if (predecessor['room_id'] !== currentRoom.roomId) break;
-      } // Push to the end because we're looking forwards
-
-
-      upgradeHistory.push(refRoom);
-      const roomIds = new Set(upgradeHistory.map(ref => ref.roomId));
+        const predecessorRoomId = successorRoom.findPredecessor(msc3946ProcessDynamicPredecessor)?.roomId;
+        if (!predecessorRoomId || predecessorRoomId !== room.roomId) {
+          break;
+        }
+      }
 
-      if (roomIds.size < upgradeHistory.length) {
+      // Push to the end because we're looking forwards
+      ret.push(successorRoom);
+      const roomIds = new Set(ret.map(ref => ref.roomId));
+      if (roomIds.size < ret.length) {
         // The last room added to the list introduced a previous roomId
         // To avoid recursion, return the last rooms - 1
-        return upgradeHistory.slice(0, upgradeHistory.length - 1);
-      } // Set the current room to the reference room so we know where we're at
-
+        return ret.slice(0, ret.length - 1);
+      }
 
-      currentRoom = refRoom;
-      tombstoneEvent = currentRoom.currentState.getStateEvents(_event2.EventType.RoomTombstone, "");
+      // Set the current room to the reference room so we know where we're at
+      room = successorRoom;
+      tombstoneEvent = room.currentState.getStateEvents(_event2.EventType.RoomTombstone, "");
     }
-
-    return upgradeHistory;
+    return ret;
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} userId
-   * @param {module:client.callback} callback Optional.
-   * @param {string} reason Optional.
-   * @return {Promise} Resolves: {} an empty object.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param reason - Optional.
+   * @returns Promise which resolves: `{}` an empty object.
+   * @returns Rejects: with an error response.
    */
-
-
-  invite(roomId, userId, callback, reason) {
-    return this.membershipChange(roomId, userId, "invite", reason, callback);
+  invite(roomId, userId, reason) {
+    return this.membershipChange(roomId, userId, "invite", reason);
   }
+
   /**
    * Invite a user to a room based on their email address.
-   * @param {string} roomId The room to invite the user to.
-   * @param {string} email The email address to invite.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: {} an empty object.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param roomId - The room to invite the user to.
+   * @param email - The email address to invite.
+   * @returns Promise which resolves: `{}` an empty object.
+   * @returns Rejects: with an error response.
    */
-
-
-  inviteByEmail(roomId, email, callback) {
-    return this.inviteByThreePid(roomId, "email", email, callback);
+  inviteByEmail(roomId, email) {
+    return this.inviteByThreePid(roomId, "email", email);
   }
+
   /**
    * Invite a user to a room based on a third-party identifier.
-   * @param {string} roomId The room to invite the user to.
-   * @param {string} medium The medium to invite the user e.g. "email".
-   * @param {string} address The address for the specified medium.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: {} an empty object.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param roomId - The room to invite the user to.
+   * @param medium - The medium to invite the user e.g. "email".
+   * @param address - The address for the specified medium.
+   * @returns Promise which resolves: `{}` an empty object.
+   * @returns Rejects: with an error response.
    */
-
-
-  async inviteByThreePid(roomId, medium, address, callback) {
+  async inviteByThreePid(roomId, medium, address) {
     const path = utils.encodeUri("/rooms/$roomId/invite", {
       $roomId: roomId
     });
     const identityServerUrl = this.getIdentityServerUrl(true);
-
     if (!identityServerUrl) {
       return Promise.reject(new _httpApi.MatrixError({
         error: "No supplied identity server URL",
         errcode: "ORG.MATRIX.JSSDK_MISSING_PARAM"
       }));
     }
-
     const params = {
       id_server: identityServerUrl,
       medium: medium,
       address: address
     };
-
     if (this.identityServer?.getAccessToken && (await this.doesServerAcceptIdentityAccessToken())) {
       const identityAccessToken = await this.identityServer.getAccessToken();
-
       if (identityAccessToken) {
-        params['id_access_token'] = identityAccessToken;
+        params["id_access_token"] = identityAccessToken;
       }
     }
-
-    return this.http.authedRequest(callback, _httpApi.Method.Post, path, undefined, params);
+    return this.http.authedRequest(_httpApi.Method.Post, path, undefined, params);
   }
+
   /**
-   * @param {string} roomId
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: {} an empty object.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: `{}` an empty object.
+   * @returns Rejects: with an error response.
    */
-
-
-  leave(roomId, callback) {
-    return this.membershipChange(roomId, undefined, "leave", undefined, callback);
+  leave(roomId) {
+    return this.membershipChange(roomId, undefined, "leave");
   }
+
   /**
    * Leaves all rooms in the chain of room upgrades based on the given room. By
    * default, this will leave all the previous and upgraded rooms, including the
    * given room. To only leave the given room and any previous rooms, keeping the
    * upgraded (modern) rooms untouched supply `false` to `includeFuture`.
-   * @param {string} roomId The room ID to start leaving at
-   * @param {boolean} includeFuture If true, the whole chain (past and future) of
+   * @param roomId - The room ID to start leaving at
+   * @param includeFuture - If true, the whole chain (past and future) of
    * upgraded rooms will be left.
-   * @return {Promise} Resolves when completed with an object keyed
+   * @returns Promise which resolves when completed with an object keyed
    * by room ID and value of the error encountered when leaving or null.
    */
-
-
   leaveRoomChain(roomId, includeFuture = true) {
     const upgradeHistory = this.getRoomUpgradeHistory(roomId);
     let eligibleToLeave = upgradeHistory;
-
     if (!includeFuture) {
       eligibleToLeave = [];
-
       for (const room of upgradeHistory) {
         eligibleToLeave.push(room);
-
         if (room.roomId === roomId) {
           break;
         }
       }
     }
-
     const populationResults = {};
     const promises = [];
-
     const doLeave = roomId => {
       return this.leave(roomId).then(() => {
-        populationResults[roomId] = null;
+        delete populationResults[roomId];
       }).catch(err => {
+        // suppress error
         populationResults[roomId] = err;
-        return null; // suppress error
       });
     };
-
     for (const room of eligibleToLeave) {
       promises.push(doLeave(room.roomId));
     }
-
     return Promise.all(promises).then(() => populationResults);
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} userId
-   * @param {string} reason Optional.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param reason - Optional.
+   * @returns Promise which resolves: TODO
+   * @returns Rejects: with an error response.
    */
-
-
-  ban(roomId, userId, reason, callback) {
-    return this.membershipChange(roomId, userId, "ban", reason, callback);
+  ban(roomId, userId, reason) {
+    return this.membershipChange(roomId, userId, "ban", reason);
   }
+
   /**
-   * @param {string} roomId
-   * @param {boolean} deleteRoom True to delete the room from the store on success.
+   * @param deleteRoom - True to delete the room from the store on success.
    * Default: true.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: {} an empty object.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: `{}` an empty object.
+   * @returns Rejects: with an error response.
    */
-
-
-  forget(roomId, deleteRoom, callback) {
-    if (deleteRoom === undefined) {
-      deleteRoom = true;
-    }
-
-    const promise = this.membershipChange(roomId, undefined, "forget", undefined, callback);
-
+  forget(roomId, deleteRoom = true) {
+    const promise = this.membershipChange(roomId, undefined, "forget");
     if (!deleteRoom) {
       return promise;
     }
-
     return promise.then(response => {
       this.store.removeRoom(roomId);
       this.emit(ClientEvent.DeleteRoom, roomId);
       return response;
     });
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} userId
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: Object (currently empty)
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: Object (currently empty)
+   * @returns Rejects: with an error response.
    */
-
-
-  unban(roomId, userId, callback) {
+  unban(roomId, userId) {
     // unbanning != set their state to leave: this used to be
     // the case, but was then changed so that leaving was always
     // a revoking of privilege, otherwise two people racing to
@@ -4147,19 +3651,15 @@
     const data = {
       user_id: userId
     };
-    return this.http.authedRequest(callback, _httpApi.Method.Post, path, undefined, data);
+    return this.http.authedRequest(_httpApi.Method.Post, path, undefined, data);
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} userId
-   * @param {string} reason Optional.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: {} an empty object.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param reason - Optional.
+   * @returns Promise which resolves: `{}` an empty object.
+   * @returns Rejects: with an error response.
    */
-
-
-  kick(roomId, userId, reason, callback) {
+  kick(roomId, userId, reason) {
     const path = utils.encodeUri("/rooms/$roomId/kick", {
       $roomId: roomId
     });
@@ -4167,167 +3667,132 @@
       user_id: userId,
       reason: reason
     };
-    return this.http.authedRequest(callback, _httpApi.Method.Post, path, undefined, data);
+    return this.http.authedRequest(_httpApi.Method.Post, path, undefined, data);
   }
-
-  membershipChange(roomId, userId, membership, reason, callback) {
+  membershipChange(roomId, userId, membership, reason) {
     // API returns an empty object
-    if (utils.isFunction(reason)) {
-      callback = reason; // legacy
-
-      reason = undefined;
-    }
-
     const path = utils.encodeUri("/rooms/$room_id/$membership", {
       $room_id: roomId,
       $membership: membership
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Post, path, undefined, {
+    return this.http.authedRequest(_httpApi.Method.Post, path, undefined, {
       user_id: userId,
       // may be undefined e.g. on leave
       reason: reason
     });
   }
+
   /**
    * Obtain a dict of actions which should be performed for this event according
    * to the push rules for this user.  Caches the dict on the event.
-   * @param {MatrixEvent} event The event to get push actions for.
-   * @param {boolean} forceRecalculate forces to recalculate actions for an event
+   * @param event - The event to get push actions for.
+   * @param forceRecalculate - forces to recalculate actions for an event
    * Useful when an event just got decrypted
-   * @return {module:pushprocessor~PushAction} A dict of actions to perform.
+   * @returns A dict of actions to perform.
    */
-
-
   getPushActionsForEvent(event, forceRecalculate = false) {
     if (!event.getPushActions() || forceRecalculate) {
       event.setPushActions(this.pushProcessor.actionsForEvent(event));
     }
-
     return event.getPushActions();
   }
+
   /**
-   * @param {string} info The kind of info to set (e.g. 'avatar_url')
-   * @param {Object} data The JSON object to set.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: to an empty object {}
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param info - The kind of info to set (e.g. 'avatar_url')
+   * @param data - The JSON object to set.
+   * @returns
+   * @returns Rejects: with an error response.
    */
   // eslint-disable-next-line camelcase
 
-
-  setProfileInfo(info, data, callback) {
+  setProfileInfo(info, data) {
     const path = utils.encodeUri("/profile/$userId/$info", {
       $userId: this.credentials.userId,
       $info: info
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Put, path, undefined, data);
+    return this.http.authedRequest(_httpApi.Method.Put, path, undefined, data);
   }
+
   /**
-   * @param {string} name
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: {} an empty object.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: `{}` an empty object.
+   * @returns Rejects: with an error response.
    */
-
-
-  async setDisplayName(name, callback) {
+  async setDisplayName(name) {
     const prom = await this.setProfileInfo("displayname", {
       displayname: name
-    }, callback); // XXX: synthesise a profile update for ourselves because Synapse is broken and won't
-
+    });
+    // XXX: synthesise a profile update for ourselves because Synapse is broken and won't
     const user = this.getUser(this.getUserId());
-
     if (user) {
       user.displayName = name;
       user.emit(_user.UserEvent.DisplayName, user.events.presence, user);
     }
-
     return prom;
   }
+
   /**
-   * @param {string} url
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: {} an empty object.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: `{}` an empty object.
+   * @returns Rejects: with an error response.
    */
-
-
-  async setAvatarUrl(url, callback) {
+  async setAvatarUrl(url) {
     const prom = await this.setProfileInfo("avatar_url", {
       avatar_url: url
-    }, callback); // XXX: synthesise a profile update for ourselves because Synapse is broken and won't
-
+    });
+    // XXX: synthesise a profile update for ourselves because Synapse is broken and won't
     const user = this.getUser(this.getUserId());
-
     if (user) {
       user.avatarUrl = url;
       user.emit(_user.UserEvent.AvatarUrl, user.events.presence, user);
     }
-
     return prom;
   }
+
   /**
    * Turn an MXC URL into an HTTP one. <strong>This method is experimental and
    * may change.</strong>
-   * @param {string} mxcUrl The MXC URL
-   * @param {Number} width The desired width of the thumbnail.
-   * @param {Number} height The desired height of the thumbnail.
-   * @param {string} resizeMethod The thumbnail resize method to use, either
+   * @param mxcUrl - The MXC URL
+   * @param width - The desired width of the thumbnail.
+   * @param height - The desired height of the thumbnail.
+   * @param resizeMethod - The thumbnail resize method to use, either
    * "crop" or "scale".
-   * @param {Boolean} allowDirectLinks If true, return any non-mxc URLs
+   * @param allowDirectLinks - If true, return any non-mxc URLs
    * directly. Fetching such URLs will leak information about the user to
    * anyone they share a room with. If false, will return null for such URLs.
-   * @return {?string} the avatar URL or null.
+   * @returns the avatar URL or null.
    */
-
-
   mxcUrlToHttp(mxcUrl, width, height, resizeMethod, allowDirectLinks) {
     return (0, _contentRepo.getHttpUriForMxc)(this.baseUrl, mxcUrl, width, height, resizeMethod, allowDirectLinks);
   }
+
   /**
-   * @param {Object} opts Options to apply
-   * @param {string} opts.presence One of "online", "offline" or "unavailable"
-   * @param {string} opts.status_msg The status message to attach.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param opts - Options to apply
+   * @returns Promise which resolves
+   * @returns Rejects: with an error response.
    * @throws If 'presence' isn't a valid presence enum value.
    */
-
-
-  setPresence(opts, callback) {
+  async setPresence(opts) {
     const path = utils.encodeUri("/presence/$userId/status", {
       $userId: this.credentials.userId
     });
-
-    if (typeof opts === "string") {
-      opts = {
-        presence: opts
-      }; // legacy
-    }
-
     const validStates = ["offline", "online", "unavailable"];
-
     if (validStates.indexOf(opts.presence) === -1) {
       throw new Error("Bad presence value: " + opts.presence);
     }
-
-    return this.http.authedRequest(callback, _httpApi.Method.Put, path, undefined, opts);
+    await this.http.authedRequest(_httpApi.Method.Put, path, undefined, opts);
   }
+
   /**
-   * @param {string} userId The user to get presence for
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: The presence state for this user.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param userId - The user to get presence for
+   * @returns Promise which resolves: The presence state for this user.
+   * @returns Rejects: with an error response.
    */
-
-
-  getPresence(userId, callback) {
+  getPresence(userId) {
     const path = utils.encodeUri("/presence/$userId/status", {
       $userId: userId
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Get, path);
+    return this.http.authedRequest(_httpApi.Method.Get, path);
   }
+
   /**
    * Retrieve older messages from the given room and put them in the timeline.
    *
@@ -4336,102 +3801,73 @@
    * will be a small delay before another request can be made (to prevent tight-looping
    * when there is no connection).
    *
-   * @param {Room} room The room to get older messages in.
-   * @param {number} limit Optional. The maximum number of previous events to
+   * @param room - The room to get older messages in.
+   * @param limit - Optional. The maximum number of previous events to
    * pull in. Default: 30.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: Room. If you are at the beginning
-   * of the timeline, <code>Room.oldState.paginationToken</code> will be
-   * <code>null</code>.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: Room. If you are at the beginning
+   * of the timeline, `Room.oldState.paginationToken` will be
+   * `null`.
+   * @returns Rejects: with an error response.
    */
-
-
-  scrollback(room, limit = 30, callback) {
-    if (utils.isFunction(limit)) {
-      callback = limit; // legacy
-
-      limit = undefined;
-    }
-
+  scrollback(room, limit = 30) {
     let timeToWaitMs = 0;
     let info = this.ongoingScrollbacks[room.roomId] || {};
-
     if (info.promise) {
       return info.promise;
     } else if (info.errorTs) {
       const timeWaitedMs = Date.now() - info.errorTs;
       timeToWaitMs = Math.max(SCROLLBACK_DELAY_MS - timeWaitedMs, 0);
     }
-
     if (room.oldState.paginationToken === null) {
       return Promise.resolve(room); // already at the start.
-    } // attempt to grab more events from the store first
-
-
+    }
+    // attempt to grab more events from the store first
     const numAdded = this.store.scrollback(room, limit).length;
-
     if (numAdded === limit) {
       // store contained everything we needed.
       return Promise.resolve(room);
-    } // reduce the required number of events appropriately
-
-
+    }
+    // reduce the required number of events appropriately
     limit = limit - numAdded;
-    const prom = new Promise((resolve, reject) => {
+    const promise = new Promise((resolve, reject) => {
       // wait for a time before doing this request
       // (which may be 0 in order not to special case the code paths)
       (0, utils.sleep)(timeToWaitMs).then(() => {
         return this.createMessagesRequest(room.roomId, room.oldState.paginationToken, limit, _eventTimeline.Direction.Backward);
       }).then(res => {
         const matrixEvents = res.chunk.map(this.getEventMapper());
-
         if (res.state) {
           const stateEvents = res.state.map(this.getEventMapper());
           room.currentState.setUnknownStateEvents(stateEvents);
         }
-
         const [timelineEvents, threadedEvents] = room.partitionThreadedEvents(matrixEvents);
-        this.processBeaconEvents(room, timelineEvents);
+        this.processAggregatedTimelineEvents(room, timelineEvents);
         room.addEventsToTimeline(timelineEvents, true, room.getLiveTimeline());
         this.processThreadEvents(room, threadedEvents, true);
-        room.oldState.paginationToken = res.end;
-
+        room.oldState.paginationToken = res.end ?? null;
         if (res.chunk.length === 0) {
           room.oldState.paginationToken = null;
         }
-
-        this.store.storeEvents(room, matrixEvents, res.end, true);
-        this.ongoingScrollbacks[room.roomId] = null;
-        callback?.(null, room);
+        this.store.storeEvents(room, matrixEvents, res.end ?? null, true);
+        delete this.ongoingScrollbacks[room.roomId];
         resolve(room);
       }).catch(err => {
         this.ongoingScrollbacks[room.roomId] = {
           errorTs: Date.now()
         };
-        callback?.(err);
         reject(err);
       });
     });
     info = {
-      promise: prom,
-      errorTs: null
+      promise
     };
     this.ongoingScrollbacks[room.roomId] = info;
-    return prom;
+    return promise;
   }
-  /**
-   * @param {object} [options]
-   * @param {boolean} options.preventReEmit don't re-emit events emitted on an event mapped by this mapper on the client
-   * @param {boolean} options.decrypt decrypt event proactively
-   * @param {boolean} options.toDevice the event is a to_device event
-   * @return {Function}
-   */
-
-
   getEventMapper(options) {
     return (0, _eventMapper.eventMapperFor)(this, options || {});
   }
+
   /**
    * Get an EventTimeline for the given event
    *
@@ -4440,90 +3876,61 @@
    * made, and used to construct an EventTimeline.
    * If the event does not belong to this EventTimelineSet then undefined will be returned.
    *
-   * @param {EventTimelineSet} timelineSet  The timelineSet to look for the event in, must be bound to a room
-   * @param {string} eventId  The ID of the event to look for
+   * @param timelineSet -  The timelineSet to look for the event in, must be bound to a room
+   * @param eventId -  The ID of the event to look for
    *
-   * @return {Promise} Resolves:
-   *    {@link module:models/event-timeline~EventTimeline} including the given event
+   * @returns Promise which resolves:
+   *    {@link EventTimeline} including the given event
    */
-
-
   async getEventTimeline(timelineSet, eventId) {
     // don't allow any timeline support unless it's been enabled.
     if (!this.timelineSupport) {
       throw new Error("timeline support is disabled. Set the 'timelineSupport'" + " parameter to true when creating MatrixClient to enable it.");
     }
-
+    if (!timelineSet?.room) {
+      throw new Error("getEventTimeline only supports room timelines");
+    }
     if (timelineSet.getTimelineForEvent(eventId)) {
       return timelineSet.getTimelineForEvent(eventId);
     }
-
+    if (timelineSet.thread && this.supportsThreads()) {
+      return this.getThreadTimeline(timelineSet, eventId);
+    }
     const path = utils.encodeUri("/rooms/$roomId/context/$eventId", {
       $roomId: timelineSet.room.roomId,
       $eventId: eventId
     });
     let params = undefined;
-
-    if (this.clientOpts.lazyLoadMembers) {
+    if (this.clientOpts?.lazyLoadMembers) {
       params = {
         filter: JSON.stringify(_filter.Filter.LAZY_LOADING_MESSAGES_FILTER)
       };
-    } // TODO: we should implement a backoff (as per scrollback()) to deal more nicely with HTTP errors.
-
-
-    const res = await this.http.authedRequest(undefined, _httpApi.Method.Get, path, params);
+    }
 
+    // TODO: we should implement a backoff (as per scrollback()) to deal more nicely with HTTP errors.
+    const res = await this.http.authedRequest(_httpApi.Method.Get, path, params);
     if (!res.event) {
       throw new Error("'event' not in '/context' result - homeserver too old?");
-    } // by the time the request completes, the event might have ended up in the timeline.
-
+    }
 
+    // by the time the request completes, the event might have ended up in the timeline.
     if (timelineSet.getTimelineForEvent(eventId)) {
       return timelineSet.getTimelineForEvent(eventId);
     }
-
     const mapper = this.getEventMapper();
     const event = mapper(res.event);
-    const events = [// Order events from most recent to oldest (reverse-chronological).
+    if (event.isRelation(_thread.THREAD_RELATION_TYPE.name)) {
+      _logger.logger.warn("Tried loading a regular timeline at the position of a thread event");
+      return undefined;
+    }
+    const events = [
+    // Order events from most recent to oldest (reverse-chronological).
     // We start with the last event, since that's the point at which we have known state.
     // events_after is already backwards; events_before is forwards.
     ...res.events_after.reverse().map(mapper), event, ...res.events_before.map(mapper)];
 
-    if (this.supportsExperimentalThreads()) {
-      if (!timelineSet.canContain(event)) {
-        return undefined;
-      } // Where the event is a thread reply (not a root) and running in MSC-enabled mode the Thread timeline only
-      // functions contiguously, so we have to jump through some hoops to get our target event in it.
-      // XXX: workaround for https://github.com/vector-im/element-meta/issues/150
-
-
-      if (_thread.Thread.hasServerSideSupport && timelineSet.thread) {
-        const thread = timelineSet.thread;
-        const opts = {
-          direction: _eventTimeline.Direction.Backward,
-          limit: 50
-        };
-        await thread.fetchInitialEvents();
-        let nextBatch = thread.liveTimeline.getPaginationToken(_eventTimeline.Direction.Backward); // Fetch events until we find the one we were asked for, or we run out of pages
-
-        while (!thread.findEventById(eventId)) {
-          if (nextBatch) {
-            opts.from = nextBatch;
-          }
-
-          ({
-            nextBatch
-          } = await thread.fetchEvents(opts));
-          if (!nextBatch) break;
-        }
-
-        return thread.liveTimeline;
-      }
-    } // Here we handle non-thread timelines only, but still process any thread events to populate thread summaries.
-
-
+    // Here we handle non-thread timelines only, but still process any thread events to populate thread summaries.
     let timeline = timelineSet.getTimelineForEvent(events[0].getId());
-
     if (timeline) {
       timeline.getState(_eventTimeline.EventTimeline.BACKWARDS).setUnknownStateEvents(res.state.map(mapper));
     } else {
@@ -4531,71 +3938,194 @@
       timeline.initialiseState(res.state.map(mapper));
       timeline.getState(_eventTimeline.EventTimeline.FORWARDS).paginationToken = res.end;
     }
-
     const [timelineEvents, threadedEvents] = timelineSet.room.partitionThreadedEvents(events);
-    timelineSet.addEventsToTimeline(timelineEvents, true, timeline, res.start); // The target event is not in a thread but process the contextual events, so we can show any threads around it.
-
+    timelineSet.addEventsToTimeline(timelineEvents, true, timeline, res.start);
+    // The target event is not in a thread but process the contextual events, so we can show any threads around it.
     this.processThreadEvents(timelineSet.room, threadedEvents, true);
-    this.processBeaconEvents(timelineSet.room, timelineEvents); // There is no guarantee that the event ended up in "timeline" (we might have switched to a neighbouring
+    this.processAggregatedTimelineEvents(timelineSet.room, timelineEvents);
+
+    // There is no guarantee that the event ended up in "timeline" (we might have switched to a neighbouring
     // timeline) - so check the room's index again. On the other hand, there's no guarantee the event ended up
     // anywhere, if it was later redacted, so we just return the timeline we first thought of.
+    return timelineSet.getTimelineForEvent(eventId) ?? timelineSet.room.findThreadForEvent(event)?.liveTimeline ??
+    // for Threads degraded support
+    timeline;
+  }
+  async getThreadTimeline(timelineSet, eventId) {
+    if (!this.supportsThreads()) {
+      throw new Error("could not get thread timeline: no client support");
+    }
+    if (!timelineSet.room) {
+      throw new Error("could not get thread timeline: not a room timeline");
+    }
+    if (!timelineSet.thread) {
+      throw new Error("could not get thread timeline: not a thread timeline");
+    }
+    const path = utils.encodeUri("/rooms/$roomId/context/$eventId", {
+      $roomId: timelineSet.room.roomId,
+      $eventId: eventId
+    });
+    const params = {
+      limit: "0"
+    };
+    if (this.clientOpts?.lazyLoadMembers) {
+      params.filter = JSON.stringify(_filter.Filter.LAZY_LOADING_MESSAGES_FILTER);
+    }
 
-    return timelineSet.getTimelineForEvent(eventId) ?? timelineSet.room.findThreadForEvent(event)?.liveTimeline // for Threads degraded support
-    ?? timeline;
+    // TODO: we should implement a backoff (as per scrollback()) to deal more nicely with HTTP errors.
+    const res = await this.http.authedRequest(_httpApi.Method.Get, path, params);
+    const mapper = this.getEventMapper();
+    const event = mapper(res.event);
+    if (!timelineSet.canContain(event)) {
+      return undefined;
+    }
+    if (_thread.Thread.hasServerSideSupport) {
+      if (_thread.Thread.hasServerSideFwdPaginationSupport) {
+        if (!timelineSet.thread) {
+          throw new Error("could not get thread timeline: not a thread timeline");
+        }
+        const thread = timelineSet.thread;
+        const resOlder = await this.fetchRelations(timelineSet.room.roomId, thread.id, _thread.THREAD_RELATION_TYPE.name, null, {
+          dir: _eventTimeline.Direction.Backward,
+          from: res.start
+        });
+        const resNewer = await this.fetchRelations(timelineSet.room.roomId, thread.id, _thread.THREAD_RELATION_TYPE.name, null, {
+          dir: _eventTimeline.Direction.Forward,
+          from: res.end
+        });
+        const events = [
+        // Order events from most recent to oldest (reverse-chronological).
+        // We start with the last event, since that's the point at which we have known state.
+        // events_after is already backwards; events_before is forwards.
+        ...resNewer.chunk.reverse().map(mapper), event, ...resOlder.chunk.map(mapper)];
+        for (const event of events) {
+          await timelineSet.thread?.processEvent(event);
+        }
+
+        // Here we handle non-thread timelines only, but still process any thread events to populate thread summaries.
+        let timeline = timelineSet.getTimelineForEvent(event.getId());
+        if (timeline) {
+          timeline.getState(_eventTimeline.EventTimeline.BACKWARDS).setUnknownStateEvents(res.state.map(mapper));
+        } else {
+          timeline = timelineSet.addTimeline();
+          timeline.initialiseState(res.state.map(mapper));
+        }
+        timelineSet.addEventsToTimeline(events, true, timeline, resNewer.next_batch);
+        if (!resOlder.next_batch) {
+          const originalEvent = await this.fetchRoomEvent(timelineSet.room.roomId, thread.id);
+          timelineSet.addEventsToTimeline([mapper(originalEvent)], true, timeline, null);
+        }
+        timeline.setPaginationToken(resOlder.next_batch ?? null, _eventTimeline.Direction.Backward);
+        timeline.setPaginationToken(resNewer.next_batch ?? null, _eventTimeline.Direction.Forward);
+        this.processAggregatedTimelineEvents(timelineSet.room, events);
+
+        // There is no guarantee that the event ended up in "timeline" (we might have switched to a neighbouring
+        // timeline) - so check the room's index again. On the other hand, there's no guarantee the event ended up
+        // anywhere, if it was later redacted, so we just return the timeline we first thought of.
+        return timelineSet.getTimelineForEvent(eventId) ?? timeline;
+      } else {
+        // Where the event is a thread reply (not a root) and running in MSC-enabled mode the Thread timeline only
+        // functions contiguously, so we have to jump through some hoops to get our target event in it.
+        // XXX: workaround for https://github.com/vector-im/element-meta/issues/150
+
+        const thread = timelineSet.thread;
+        const resOlder = await this.fetchRelations(timelineSet.room.roomId, thread.id, _thread.THREAD_RELATION_TYPE.name, null, {
+          dir: _eventTimeline.Direction.Backward,
+          from: res.start
+        });
+        const eventsNewer = [];
+        let nextBatch = res.end;
+        while (nextBatch) {
+          const resNewer = await this.fetchRelations(timelineSet.room.roomId, thread.id, _thread.THREAD_RELATION_TYPE.name, null, {
+            dir: _eventTimeline.Direction.Forward,
+            from: nextBatch
+          });
+          nextBatch = resNewer.next_batch ?? null;
+          eventsNewer.push(...resNewer.chunk);
+        }
+        const events = [
+        // Order events from most recent to oldest (reverse-chronological).
+        // We start with the last event, since that's the point at which we have known state.
+        // events_after is already backwards; events_before is forwards.
+        ...eventsNewer.reverse().map(mapper), event, ...resOlder.chunk.map(mapper)];
+        for (const event of events) {
+          await timelineSet.thread?.processEvent(event);
+        }
+
+        // Here we handle non-thread timelines only, but still process any thread events to populate thread
+        // summaries.
+        const timeline = timelineSet.getLiveTimeline();
+        timeline.getState(_eventTimeline.EventTimeline.BACKWARDS).setUnknownStateEvents(res.state.map(mapper));
+        timelineSet.addEventsToTimeline(events, true, timeline, null);
+        if (!resOlder.next_batch) {
+          const originalEvent = await this.fetchRoomEvent(timelineSet.room.roomId, thread.id);
+          timelineSet.addEventsToTimeline([mapper(originalEvent)], true, timeline, null);
+        }
+        timeline.setPaginationToken(resOlder.next_batch ?? null, _eventTimeline.Direction.Backward);
+        timeline.setPaginationToken(null, _eventTimeline.Direction.Forward);
+        this.processAggregatedTimelineEvents(timelineSet.room, events);
+        return timeline;
+      }
+    }
   }
+
   /**
    * Get an EventTimeline for the latest events in the room. This will just
    * call `/messages` to get the latest message in the room, then use
    * `client.getEventTimeline(...)` to construct a new timeline from it.
    *
-   * @param {EventTimelineSet} timelineSet  The timelineSet to find or add the timeline to
+   * @param timelineSet -  The timelineSet to find or add the timeline to
    *
-   * @return {Promise} Resolves:
-   *    {@link module:models/event-timeline~EventTimeline} timeline with the latest events in the room
+   * @returns Promise which resolves:
+   *    {@link EventTimeline} timeline with the latest events in the room
    */
-
-
   async getLatestTimeline(timelineSet) {
     // don't allow any timeline support unless it's been enabled.
     if (!this.timelineSupport) {
       throw new Error("timeline support is disabled. Set the 'timelineSupport'" + " parameter to true when creating MatrixClient to enable it.");
     }
-
-    const messagesPath = utils.encodeUri("/rooms/$roomId/messages", {
-      $roomId: timelineSet.room.roomId
-    });
-    const params = {
-      dir: 'b'
-    };
-
-    if (this.clientOpts.lazyLoadMembers) {
-      params.filter = JSON.stringify(_filter.Filter.LAZY_LOADING_MESSAGES_FILTER);
+    if (!timelineSet.room) {
+      throw new Error("getLatestTimeline only supports room timelines");
+    }
+    let event;
+    if (timelineSet.threadListType !== null) {
+      const res = await this.createThreadListMessagesRequest(timelineSet.room.roomId, null, 1, _eventTimeline.Direction.Backward, timelineSet.threadListType, timelineSet.getFilter());
+      event = res.chunk?.[0];
+    } else if (timelineSet.thread && _thread.Thread.hasServerSideSupport) {
+      const res = await this.fetchRelations(timelineSet.room.roomId, timelineSet.thread.id, _thread.THREAD_RELATION_TYPE.name, null, {
+        dir: _eventTimeline.Direction.Backward,
+        limit: 1
+      });
+      event = res.chunk?.[0];
+    } else {
+      const messagesPath = utils.encodeUri("/rooms/$roomId/messages", {
+        $roomId: timelineSet.room.roomId
+      });
+      const params = {
+        dir: "b"
+      };
+      if (this.clientOpts?.lazyLoadMembers) {
+        params.filter = JSON.stringify(_filter.Filter.LAZY_LOADING_MESSAGES_FILTER);
+      }
+      const res = await this.http.authedRequest(_httpApi.Method.Get, messagesPath, params);
+      event = res.chunk?.[0];
     }
-
-    const res = await this.http.authedRequest(undefined, _httpApi.Method.Get, messagesPath, params);
-    const event = res.chunk?.[0];
-
     if (!event) {
-      throw new Error("No message returned from /messages when trying to construct getLatestTimeline");
+      throw new Error("No message returned when trying to construct getLatestTimeline");
     }
-
     return this.getEventTimeline(timelineSet, event.event_id);
   }
+
   /**
    * Makes a request to /messages with the appropriate lazy loading filter set.
    * XXX: if we do get rid of scrollback (as it's not used at the moment),
    * we could inline this method again in paginateEventTimeline as that would
    * then be the only call-site
-   * @param {string} roomId
-   * @param {string} fromToken
-   * @param {number} limit the maximum amount of events the retrieve
-   * @param {string} dir 'f' or 'b'
-   * @param {Filter} timelineFilter the timeline filter to pass
-   * @return {Promise}
+   * @param limit - the maximum amount of events the retrieve
+   * @param dir - 'f' or 'b'
+   * @param timelineFilter - the timeline filter to pass
    */
   // XXX: Intended private, used in code.
-
-
   createMessagesRequest(roomId, fromToken, limit = 30, dir, timelineFilter) {
     const path = utils.encodeUri("/rooms/$roomId/messages", {
       $roomId: roomId
@@ -4604,176 +4134,275 @@
       limit: limit.toString(),
       dir: dir
     };
-
     if (fromToken) {
       params.from = fromToken;
     }
-
     let filter = null;
-
-    if (this.clientOpts.lazyLoadMembers) {
+    if (this.clientOpts?.lazyLoadMembers) {
       // create a shallow copy of LAZY_LOADING_MESSAGES_FILTER,
       // so the timelineFilter doesn't get written into it below
       filter = Object.assign({}, _filter.Filter.LAZY_LOADING_MESSAGES_FILTER);
     }
-
     if (timelineFilter) {
       // XXX: it's horrific that /messages' filter parameter doesn't match
       // /sync's one - see https://matrix.org/jira/browse/SPEC-451
       filter = filter || {};
       Object.assign(filter, timelineFilter.getRoomTimelineFilterComponent()?.toJSON());
     }
-
     if (filter) {
       params.filter = JSON.stringify(filter);
     }
+    return this.http.authedRequest(_httpApi.Method.Get, path, params);
+  }
 
-    return this.http.authedRequest(undefined, _httpApi.Method.Get, path, params);
+  /**
+   * Makes a request to /messages with the appropriate lazy loading filter set.
+   * XXX: if we do get rid of scrollback (as it's not used at the moment),
+   * we could inline this method again in paginateEventTimeline as that would
+   * then be the only call-site
+   * @param limit - the maximum amount of events the retrieve
+   * @param dir - 'f' or 'b'
+   * @param timelineFilter - the timeline filter to pass
+   */
+  // XXX: Intended private, used by room.fetchRoomThreads
+  createThreadListMessagesRequest(roomId, fromToken, limit = 30, dir = _eventTimeline.Direction.Backward, threadListType = _thread.ThreadFilterType.All, timelineFilter) {
+    const path = utils.encodeUri("/rooms/$roomId/threads", {
+      $roomId: roomId
+    });
+    const params = {
+      limit: limit.toString(),
+      dir: dir,
+      include: (0, _thread.threadFilterTypeToFilter)(threadListType)
+    };
+    if (fromToken) {
+      params.from = fromToken;
+    }
+    let filter = {};
+    if (this.clientOpts?.lazyLoadMembers) {
+      // create a shallow copy of LAZY_LOADING_MESSAGES_FILTER,
+      // so the timelineFilter doesn't get written into it below
+      filter = _objectSpread({}, _filter.Filter.LAZY_LOADING_MESSAGES_FILTER);
+    }
+    if (timelineFilter) {
+      // XXX: it's horrific that /messages' filter parameter doesn't match
+      // /sync's one - see https://matrix.org/jira/browse/SPEC-451
+      filter = _objectSpread(_objectSpread({}, filter), timelineFilter.getRoomTimelineFilterComponent()?.toJSON());
+    }
+    if (Object.keys(filter).length) {
+      params.filter = JSON.stringify(filter);
+    }
+    const opts = {
+      prefix: _thread.Thread.hasServerSideListSupport === _thread.FeatureSupport.Stable ? "/_matrix/client/v1" : "/_matrix/client/unstable/org.matrix.msc3856"
+    };
+    return this.http.authedRequest(_httpApi.Method.Get, path, params, undefined, opts).then(res => _objectSpread(_objectSpread({}, res), {}, {
+      chunk: res.chunk?.reverse(),
+      start: res.prev_batch,
+      end: res.next_batch
+    }));
   }
+
   /**
    * Take an EventTimeline, and back/forward-fill results.
    *
-   * @param {module:models/event-timeline~EventTimeline} eventTimeline timeline
-   *    object to be updated
-   * @param {Object}   [opts]
-   * @param {boolean}     [opts.backwards = false]  true to fill backwards,
-   *    false to go forwards
-   * @param {number}   [opts.limit = 30]         number of events to request
+   * @param eventTimeline - timeline object to be updated
    *
-   * @return {Promise} Resolves to a boolean: false if there are no
+   * @returns Promise which resolves to a boolean: false if there are no
    *    events and we reached either end of the timeline; else true.
    */
-
-
   paginateEventTimeline(eventTimeline, opts) {
-    const isNotifTimeline = eventTimeline.getTimelineSet() === this.notifTimelineSet; // TODO: we should implement a backoff (as per scrollback()) to deal more
-    // nicely with HTTP errors.
+    const isNotifTimeline = eventTimeline.getTimelineSet() === this.notifTimelineSet;
+    const room = this.getRoom(eventTimeline.getRoomId());
+    const threadListType = eventTimeline.getTimelineSet().threadListType;
+    const thread = eventTimeline.getTimelineSet().thread;
 
+    // TODO: we should implement a backoff (as per scrollback()) to deal more
+    // nicely with HTTP errors.
     opts = opts || {};
     const backwards = opts.backwards || false;
-
     if (isNotifTimeline) {
       if (!backwards) {
         throw new Error("paginateNotifTimeline can only paginate backwards");
       }
     }
-
     const dir = backwards ? _eventTimeline.EventTimeline.BACKWARDS : _eventTimeline.EventTimeline.FORWARDS;
     const token = eventTimeline.getPaginationToken(dir);
     const pendingRequest = eventTimeline.paginationRequests[dir];
-
     if (pendingRequest) {
       // already a request in progress - return the existing promise
       return pendingRequest;
     }
-
     let path;
     let params;
     let promise;
-
     if (isNotifTimeline) {
       path = "/notifications";
       params = {
         limit: (opts.limit ?? 30).toString(),
-        only: 'highlight'
+        only: "highlight"
       };
-
-      if (token !== "end") {
+      if (token && token !== "end") {
         params.from = token;
       }
-
-      promise = this.http.authedRequest(undefined, _httpApi.Method.Get, path, params).then(async res => {
+      promise = this.http.authedRequest(_httpApi.Method.Get, path, params).then(async res => {
         const token = res.next_token;
         const matrixEvents = [];
-
+        res.notifications = res.notifications.filter(utils.noUnsafeEventProps);
         for (let i = 0; i < res.notifications.length; i++) {
           const notification = res.notifications[i];
           const event = this.getEventMapper()(notification.event);
           event.setPushActions(_pushprocessor.PushProcessor.actionListToActionsObject(notification.actions));
           event.event.room_id = notification.room_id; // XXX: gutwrenching
-
           matrixEvents[i] = event;
-        } // No need to partition events for threads here, everything lives
-        // in the notification timeline set
-
+        }
 
+        // No need to partition events for threads here, everything lives
+        // in the notification timeline set
         const timelineSet = eventTimeline.getTimelineSet();
         timelineSet.addEventsToTimeline(matrixEvents, backwards, eventTimeline, token);
-        this.processBeaconEvents(timelineSet.room, matrixEvents); // if we've hit the end of the timeline, we need to stop trying to
+        this.processAggregatedTimelineEvents(timelineSet.room, matrixEvents);
+
+        // if we've hit the end of the timeline, we need to stop trying to
         // paginate. We need to keep the 'forwards' token though, to make sure
         // we can recover from gappy syncs.
-
         if (backwards && !res.next_token) {
           eventTimeline.setPaginationToken(null, dir);
         }
-
-        return res.next_token ? true : false;
+        return Boolean(res.next_token);
       }).finally(() => {
         eventTimeline.paginationRequests[dir] = null;
       });
       eventTimeline.paginationRequests[dir] = promise;
-    } else {
-      const room = this.getRoom(eventTimeline.getRoomId());
+    } else if (threadListType !== null) {
+      if (!room) {
+        throw new Error("Unknown room " + eventTimeline.getRoomId());
+      }
+      if (!_thread.Thread.hasServerSideFwdPaginationSupport && dir === _eventTimeline.Direction.Forward) {
+        throw new Error("Cannot paginate threads forwards without server-side support for MSC 3715");
+      }
+      promise = this.createThreadListMessagesRequest(eventTimeline.getRoomId(), token, opts.limit, dir, threadListType, eventTimeline.getFilter()).then(res => {
+        if (res.state) {
+          const roomState = eventTimeline.getState(dir);
+          const stateEvents = res.state.filter(utils.noUnsafeEventProps).map(this.getEventMapper());
+          roomState.setUnknownStateEvents(stateEvents);
+        }
+        const token = res.end;
+        const matrixEvents = res.chunk.filter(utils.noUnsafeEventProps).map(this.getEventMapper());
+        const timelineSet = eventTimeline.getTimelineSet();
+        timelineSet.addEventsToTimeline(matrixEvents, backwards, eventTimeline, token);
+        this.processAggregatedTimelineEvents(room, matrixEvents);
+        this.processThreadRoots(room, matrixEvents, backwards);
 
+        // if we've hit the end of the timeline, we need to stop trying to
+        // paginate. We need to keep the 'forwards' token though, to make sure
+        // we can recover from gappy syncs.
+        if (backwards && res.end == res.start) {
+          eventTimeline.setPaginationToken(null, dir);
+        }
+        return res.end !== res.start;
+      }).finally(() => {
+        eventTimeline.paginationRequests[dir] = null;
+      });
+      eventTimeline.paginationRequests[dir] = promise;
+    } else if (thread) {
+      const room = this.getRoom(eventTimeline.getRoomId() ?? undefined);
       if (!room) {
         throw new Error("Unknown room " + eventTimeline.getRoomId());
       }
+      promise = this.fetchRelations(eventTimeline.getRoomId() ?? "", thread.id, _thread.THREAD_RELATION_TYPE.name, null, {
+        dir,
+        limit: opts.limit,
+        from: token ?? undefined
+      }).then(async res => {
+        const mapper = this.getEventMapper();
+        const matrixEvents = res.chunk.filter(utils.noUnsafeEventProps).map(mapper);
+
+        // Process latest events first
+        for (const event of matrixEvents.slice().reverse()) {
+          await thread?.processEvent(event);
+          const sender = event.getSender();
+          if (!backwards || thread?.getEventReadUpTo(sender) === null) {
+            room.addLocalEchoReceipt(sender, event, _read_receipts.ReceiptType.Read);
+          }
+        }
+        const newToken = res.next_batch;
+        const timelineSet = eventTimeline.getTimelineSet();
+        timelineSet.addEventsToTimeline(matrixEvents, backwards, eventTimeline, newToken ?? null);
+        if (!newToken && backwards) {
+          const originalEvent = await this.fetchRoomEvent(eventTimeline.getRoomId() ?? "", thread.id);
+          timelineSet.addEventsToTimeline([mapper(originalEvent)], true, eventTimeline, null);
+        }
+        this.processAggregatedTimelineEvents(timelineSet.room, matrixEvents);
 
+        // if we've hit the end of the timeline, we need to stop trying to
+        // paginate. We need to keep the 'forwards' token though, to make sure
+        // we can recover from gappy syncs.
+        if (backwards && !newToken) {
+          eventTimeline.setPaginationToken(null, dir);
+        }
+        return Boolean(newToken);
+      }).finally(() => {
+        eventTimeline.paginationRequests[dir] = null;
+      });
+      eventTimeline.paginationRequests[dir] = promise;
+    } else {
+      if (!room) {
+        throw new Error("Unknown room " + eventTimeline.getRoomId());
+      }
       promise = this.createMessagesRequest(eventTimeline.getRoomId(), token, opts.limit, dir, eventTimeline.getFilter()).then(res => {
         if (res.state) {
           const roomState = eventTimeline.getState(dir);
-          const stateEvents = res.state.map(this.getEventMapper());
+          const stateEvents = res.state.filter(utils.noUnsafeEventProps).map(this.getEventMapper());
           roomState.setUnknownStateEvents(stateEvents);
         }
-
         const token = res.end;
-        const matrixEvents = res.chunk.map(this.getEventMapper());
+        const matrixEvents = res.chunk.filter(utils.noUnsafeEventProps).map(this.getEventMapper());
         const timelineSet = eventTimeline.getTimelineSet();
-        const [timelineEvents, threadedEvents] = timelineSet.room.partitionThreadedEvents(matrixEvents);
+        const [timelineEvents] = room.partitionThreadedEvents(matrixEvents);
         timelineSet.addEventsToTimeline(timelineEvents, backwards, eventTimeline, token);
-        this.processBeaconEvents(timelineSet.room, timelineEvents);
-        this.processThreadEvents(room, threadedEvents, backwards); // if we've hit the end of the timeline, we need to stop trying to
+        this.processAggregatedTimelineEvents(room, timelineEvents);
+        this.processThreadRoots(room, timelineEvents.filter(it => it.getServerAggregatedRelation(_thread.THREAD_RELATION_TYPE.name)), false);
+        const atEnd = res.end === undefined || res.end === res.start;
+
+        // if we've hit the end of the timeline, we need to stop trying to
         // paginate. We need to keep the 'forwards' token though, to make sure
         // we can recover from gappy syncs.
-
-        if (backwards && res.end == res.start) {
+        if (backwards && atEnd) {
           eventTimeline.setPaginationToken(null, dir);
         }
-
-        return res.end != res.start;
+        return !atEnd;
       }).finally(() => {
         eventTimeline.paginationRequests[dir] = null;
       });
       eventTimeline.paginationRequests[dir] = promise;
     }
-
     return promise;
   }
+
   /**
    * Reset the notifTimelineSet entirely, paginating in some historical notifs as
    * a starting point for subsequent pagination.
    */
-
-
   resetNotifTimelineSet() {
     if (!this.notifTimelineSet) {
       return;
-    } // FIXME: This thing is a total hack, and results in duplicate events being
+    }
+
+    // FIXME: This thing is a total hack, and results in duplicate events being
     // added to the timeline both from /sync and /notifications, and lots of
     // slow and wasteful processing and pagination.  The correct solution is to
     // extend /messages or /search or something to filter on notifications.
+
     // use the fictitious token 'end'. in practice we would ideally give it
     // the oldest backwards pagination token from /sync, but /sync doesn't
     // know about /notifications, so we have no choice but to start paginating
     // from the current point in time.  This may well overlap with historical
     // notifs which are then inserted into the timeline by /sync responses.
+    this.notifTimelineSet.resetLiveTimeline("end");
 
-
-    this.notifTimelineSet.resetLiveTimeline('end', null); // we could try to paginate a single event at this point in order to get
+    // we could try to paginate a single event at this point in order to get
     // a more valid pagination token, but it just ends up with an out of order
     // timeline. given what a mess this is and given we're going to have duplicate
     // events anyway, just leave it with the dummy token for now.
-
     /*
     this.paginateNotifTimeline(this._notifTimelineSet.getLiveTimeline(), {
         backwards: true,
@@ -4781,63 +4410,50 @@
     });
     */
   }
+
   /**
    * Peek into a room and receive updates about the room. This only works if the
    * history visibility for the room is world_readable.
-   * @param {String} roomId The room to attempt to peek into.
-   * @return {Promise} Resolves: Room object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param roomId - The room to attempt to peek into.
+   * @returns Promise which resolves: Room object
+   * @returns Rejects: with an error response.
    */
-
-
   peekInRoom(roomId) {
-    if (this.peekSync) {
-      this.peekSync.stopPeeking();
-    }
-
-    this.peekSync = new _sync.SyncApi(this, this.clientOpts);
+    this.peekSync?.stopPeeking();
+    this.peekSync = new _sync.SyncApi(this, this.clientOpts, this.buildSyncApiOptions());
     return this.peekSync.peek(roomId);
   }
+
   /**
    * Stop any ongoing room peeking.
    */
-
-
   stopPeeking() {
     if (this.peekSync) {
       this.peekSync.stopPeeking();
       this.peekSync = null;
     }
   }
+
   /**
    * Set r/w flags for guest access in a room.
-   * @param {string} roomId The room to configure guest access in.
-   * @param {Object} opts Options
-   * @param {boolean} opts.allowJoin True to allow guests to join this room. This
-   * implicitly gives guests write access. If false or not given, guests are
-   * explicitly forbidden from joining the room.
-   * @param {boolean} opts.allowRead True to set history visibility to
-   * be world_readable. This gives guests read access *from this point forward*.
-   * If false or not given, history visibility is not modified.
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param roomId - The room to configure guest access in.
+   * @param opts - Options
+   * @returns Promise which resolves
+   * @returns Rejects: with an error response.
    */
-
-
   setGuestAccess(roomId, opts) {
     const writePromise = this.sendStateEvent(roomId, _event2.EventType.RoomGuestAccess, {
       guest_access: opts.allowJoin ? "can_join" : "forbidden"
     }, "");
     let readPromise = Promise.resolve(undefined);
-
     if (opts.allowRead) {
       readPromise = this.sendStateEvent(roomId, _event2.EventType.RoomHistoryVisibility, {
         history_visibility: "world_readable"
       }, "");
     }
-
     return Promise.all([readPromise, writePromise]).then(); // .then() to hide results for contract
   }
+
   /**
    * Requests an email verification token for the purposes of registration.
    * This API requests a token from the homeserver.
@@ -4845,14 +4461,12 @@
    * the server requires the id_server parameter to be provided.
    *
    * Parameters and return value are as for requestEmailToken
-    * @param {string} email As requestEmailToken
-   * @param {string} clientSecret As requestEmailToken
-   * @param {number} sendAttempt As requestEmailToken
-   * @param {string} nextLink As requestEmailToken
-   * @return {Promise} Resolves: As requestEmailToken
-   */
-
-
+    * @param email - As requestEmailToken
+   * @param clientSecret - As requestEmailToken
+   * @param sendAttempt - As requestEmailToken
+   * @param nextLink - As requestEmailToken
+   * @returns Promise which resolves: As requestEmailToken
+   */
   requestRegisterEmailToken(email, clientSecret, sendAttempt, nextLink) {
     return this.requestTokenFromEndpoint("/register/email/requestToken", {
       email: email,
@@ -4861,22 +4475,21 @@
       next_link: nextLink
     });
   }
+
   /**
    * Requests a text message verification token for the purposes of registration.
    * This API requests a token from the homeserver.
    * The doesServerRequireIdServerParam() method can be used to determine if
    * the server requires the id_server parameter to be provided.
    *
-   * @param {string} phoneCountry The ISO 3166-1 alpha-2 code for the country in which
+   * @param phoneCountry - The ISO 3166-1 alpha-2 code for the country in which
    *    phoneNumber should be parsed relative to.
-   * @param {string} phoneNumber The phone number, in national or international format
-   * @param {string} clientSecret As requestEmailToken
-   * @param {number} sendAttempt As requestEmailToken
-   * @param {string} nextLink As requestEmailToken
-   * @return {Promise} Resolves: As requestEmailToken
+   * @param phoneNumber - The phone number, in national or international format
+   * @param clientSecret - As requestEmailToken
+   * @param sendAttempt - As requestEmailToken
+   * @param nextLink - As requestEmailToken
+   * @returns Promise which resolves: As requestEmailToken
    */
-
-
   requestRegisterMsisdnToken(phoneCountry, phoneNumber, clientSecret, sendAttempt, nextLink) {
     return this.requestTokenFromEndpoint("/register/msisdn/requestToken", {
       country: phoneCountry,
@@ -4886,6 +4499,7 @@
       next_link: nextLink
     });
   }
+
   /**
    * Requests an email verification token for the purposes of adding a
    * third party identifier to an account.
@@ -4897,14 +4511,12 @@
    * it will either send an email to the address informing them of this
    * or return M_THREEPID_IN_USE (which one is up to the homeserver).
    *
-   * @param {string} email As requestEmailToken
-   * @param {string} clientSecret As requestEmailToken
-   * @param {number} sendAttempt As requestEmailToken
-   * @param {string} nextLink As requestEmailToken
-   * @return {Promise} Resolves: As requestEmailToken
+   * @param email - As requestEmailToken
+   * @param clientSecret - As requestEmailToken
+   * @param sendAttempt - As requestEmailToken
+   * @param nextLink - As requestEmailToken
+   * @returns Promise which resolves: As requestEmailToken
    */
-
-
   requestAdd3pidEmailToken(email, clientSecret, sendAttempt, nextLink) {
     return this.requestTokenFromEndpoint("/account/3pid/email/requestToken", {
       email: email,
@@ -4913,6 +4525,7 @@
       next_link: nextLink
     });
   }
+
   /**
    * Requests a text message verification token for the purposes of adding a
    * third party identifier to an account.
@@ -4920,15 +4533,13 @@
    * adding specific behaviour for the addition of phone numbers to an
    * account, as requestAdd3pidEmailToken.
    *
-   * @param {string} phoneCountry As requestRegisterMsisdnToken
-   * @param {string} phoneNumber As requestRegisterMsisdnToken
-   * @param {string} clientSecret As requestEmailToken
-   * @param {number} sendAttempt As requestEmailToken
-   * @param {string} nextLink As requestEmailToken
-   * @return {Promise} Resolves: As requestEmailToken
+   * @param phoneCountry - As requestRegisterMsisdnToken
+   * @param phoneNumber - As requestRegisterMsisdnToken
+   * @param clientSecret - As requestEmailToken
+   * @param sendAttempt - As requestEmailToken
+   * @param nextLink - As requestEmailToken
+   * @returns Promise which resolves: As requestEmailToken
    */
-
-
   requestAdd3pidMsisdnToken(phoneCountry, phoneNumber, clientSecret, sendAttempt, nextLink) {
     return this.requestTokenFromEndpoint("/account/3pid/msisdn/requestToken", {
       country: phoneCountry,
@@ -4938,6 +4549,7 @@
       next_link: nextLink
     });
   }
+
   /**
    * Requests an email verification token for the purposes of resetting
    * the password on an account.
@@ -4950,15 +4562,12 @@
    * requestEmailToken calls the equivalent API directly on the identity server,
    * therefore bypassing the password reset specific logic.
    *
-   * @param {string} email As requestEmailToken
-   * @param {string} clientSecret As requestEmailToken
-   * @param {number} sendAttempt As requestEmailToken
-   * @param {string} nextLink As requestEmailToken
-   * @param {module:client.callback} callback Optional. As requestEmailToken
-   * @return {Promise} Resolves: As requestEmailToken
+   * @param email - As requestEmailToken
+   * @param clientSecret - As requestEmailToken
+   * @param sendAttempt - As requestEmailToken
+   * @param nextLink - As requestEmailToken
+   * @returns Promise which resolves: As requestEmailToken
    */
-
-
   requestPasswordEmailToken(email, clientSecret, sendAttempt, nextLink) {
     return this.requestTokenFromEndpoint("/account/password/email/requestToken", {
       email: email,
@@ -4967,21 +4576,20 @@
       next_link: nextLink
     });
   }
+
   /**
    * Requests a text message verification token for the purposes of resetting
    * the password on an account.
    * This API proxies the identity server /validate/email/requestToken API,
    * adding specific behaviour for the password resetting, as requestPasswordEmailToken.
    *
-   * @param {string} phoneCountry As requestRegisterMsisdnToken
-   * @param {string} phoneNumber As requestRegisterMsisdnToken
-   * @param {string} clientSecret As requestEmailToken
-   * @param {number} sendAttempt As requestEmailToken
-   * @param {string} nextLink As requestEmailToken
-   * @return {Promise} Resolves: As requestEmailToken
+   * @param phoneCountry - As requestRegisterMsisdnToken
+   * @param phoneNumber - As requestRegisterMsisdnToken
+   * @param clientSecret - As requestEmailToken
+   * @param sendAttempt - As requestEmailToken
+   * @param nextLink - As requestEmailToken
+   * @returns Promise which resolves: As requestEmailToken
    */
-
-
   requestPasswordMsisdnToken(phoneCountry, phoneNumber, clientSecret, sendAttempt, nextLink) {
     return this.requestTokenFromEndpoint("/account/password/msisdn/requestToken", {
       country: phoneCountry,
@@ -4991,83 +4599,67 @@
       next_link: nextLink
     });
   }
+
   /**
    * Internal utility function for requesting validation tokens from usage-specific
    * requestToken endpoints.
    *
-   * @param {string} endpoint The endpoint to send the request to
-   * @param {object} params Parameters for the POST request
-   * @return {Promise} Resolves: As requestEmailToken
+   * @param endpoint - The endpoint to send the request to
+   * @param params - Parameters for the POST request
+   * @returns Promise which resolves: As requestEmailToken
    */
-
-
   async requestTokenFromEndpoint(endpoint, params) {
-    const postParams = Object.assign({}, params); // If the HS supports separate add and bind, then requestToken endpoints
-    // don't need an IS as they are all validated by the HS directly.
+    const postParams = Object.assign({}, params);
 
+    // If the HS supports separate add and bind, then requestToken endpoints
+    // don't need an IS as they are all validated by the HS directly.
     if (!(await this.doesServerSupportSeparateAddAndBind()) && this.idBaseUrl) {
       const idServerUrl = new URL(this.idBaseUrl);
       postParams.id_server = idServerUrl.host;
-
       if (this.identityServer?.getAccessToken && (await this.doesServerAcceptIdentityAccessToken())) {
         const identityAccessToken = await this.identityServer.getAccessToken();
-
         if (identityAccessToken) {
           postParams.id_access_token = identityAccessToken;
         }
       }
     }
-
-    return this.http.request(undefined, _httpApi.Method.Post, endpoint, undefined, postParams);
+    return this.http.request(_httpApi.Method.Post, endpoint, undefined, postParams);
   }
+
   /**
    * Get the room-kind push rule associated with a room.
-   * @param {string} scope "global" or device-specific.
-   * @param {string} roomId the id of the room.
-   * @return {object} the rule or undefined.
+   * @param scope - "global" or device-specific.
+   * @param roomId - the id of the room.
+   * @returns the rule or undefined.
    */
-
-
   getRoomPushRule(scope, roomId) {
     // There can be only room-kind push rule per room
     // and its id is the room id.
     if (this.pushRules) {
-      if (!this.pushRules[scope] || !this.pushRules[scope].room) {
-        return;
-      }
-
-      for (let i = 0; i < this.pushRules[scope].room.length; i++) {
-        const rule = this.pushRules[scope].room[i];
-
-        if (rule.rule_id === roomId) {
-          return rule;
-        }
-      }
+      return this.pushRules[scope]?.room?.find(rule => rule.rule_id === roomId);
     } else {
       throw new Error("SyncApi.sync() must be done before accessing to push rules.");
     }
   }
+
   /**
    * Set a room-kind muting push rule in a room.
    * The operation also updates MatrixClient.pushRules at the end.
-   * @param {string} scope "global" or device-specific.
-   * @param {string} roomId the id of the room.
-   * @param {boolean} mute the mute state.
-   * @return {Promise} Resolves: result object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param scope - "global" or device-specific.
+   * @param roomId - the id of the room.
+   * @param mute - the mute state.
+   * @returns Promise which resolves: result object
+   * @returns Rejects: with an error response.
    */
-
-
   setRoomMutePushRule(scope, roomId, mute) {
     let promise;
-    let hasDontNotifyRule = false; // Get the existing room-kind push rule if any
+    let hasDontNotifyRule = false;
 
+    // Get the existing room-kind push rule if any
     const roomPushRule = this.getRoomPushRule(scope, roomId);
-
-    if (roomPushRule?.actions.includes(_matrix.PushRuleActionName.DontNotify)) {
+    if (roomPushRule?.actions.includes(_PushRules.PushRuleActionName.DontNotify)) {
       hasDontNotifyRule = true;
     }
-
     if (!mute) {
       // Remove the rule only if it is a muting rule
       if (hasDontNotifyRule) {
@@ -5076,7 +4668,7 @@
     } else {
       if (!roomPushRule) {
         promise = this.addPushRule(scope, _PushRules.PushRuleKind.RoomSpecific, roomId, {
-          actions: [_matrix.PushRuleActionName.DontNotify]
+          actions: [_PushRules.PushRuleActionName.DontNotify]
         });
       } else if (!hasDontNotifyRule) {
         // Remove the existing one before setting the mute push rule
@@ -5084,7 +4676,7 @@
         const deferred = utils.defer();
         this.deletePushRule(scope, _PushRules.PushRuleKind.RoomSpecific, roomPushRule.rule_id).then(() => {
           this.addPushRule(scope, _PushRules.PushRuleKind.RoomSpecific, roomId, {
-            actions: [_matrix.PushRuleActionName.DontNotify]
+            actions: [_PushRules.PushRuleActionName.DontNotify]
           }).then(() => {
             deferred.resolve();
           }).catch(err => {
@@ -5096,7 +4688,6 @@
         promise = deferred.promise;
       }
     }
-
     if (promise) {
       return new Promise((resolve, reject) => {
         // Update this.pushRules when the operation completes
@@ -5120,48 +4711,40 @@
       });
     }
   }
-
-  searchMessageText(opts, callback) {
+  searchMessageText(opts) {
     const roomEvents = {
       search_term: opts.query
     };
-
-    if ('keys' in opts) {
+    if ("keys" in opts) {
       roomEvents.keys = opts.keys;
     }
-
     return this.search({
       body: {
         search_categories: {
           room_events: roomEvents
         }
       }
-    }, callback);
+    });
   }
+
   /**
    * Perform a server-side search for room events.
    *
    * The returned promise resolves to an object containing the fields:
    *
-   *  * {number}  count:       estimate of the number of results
-   *  * {string}  next_batch:  token for back-pagination; if undefined, there are
-   *                           no more results
-   *  * {Array}   highlights:  a list of words to highlight from the stemming
-   *                           algorithm
-   *  * {Array}   results:     a list of results
-   *
-   * Each entry in the results list is a {module:models/search-result.SearchResult}.
-   *
-   * @param {Object} opts
-   * @param {string} opts.term     the term to search for
-   * @param {Object} opts.filter   a JSON filter object to pass in the request
-   * @return {Promise} Resolves: result object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   *  * count:       estimate of the number of results
+   *  * next_batch:  token for back-pagination; if undefined, there are no more results
+   *  * highlights:  a list of words to highlight from the stemming algorithm
+   *  * results:     a list of results
+   *
+   * Each entry in the results list is a SearchResult.
+   *
+   * @returns Promise which resolves: result object
+   * @returns Rejects: with an error response.
    */
-
-
   searchRoomEvents(opts) {
     // TODO: support search groups
+
     const body = {
       search_categories: {
         room_events: {
@@ -5185,69 +4768,64 @@
       body: body
     }).then(res => this.processRoomEventsSearch(searchResults, res));
   }
+
   /**
    * Take a result from an earlier searchRoomEvents call, and backfill results.
    *
-   * @param  {object} searchResults  the results object to be updated
-   * @return {Promise} Resolves: updated result object
-   * @return {Error} Rejects: with an error response.
+   * @param searchResults -  the results object to be updated
+   * @returns Promise which resolves: updated result object
+   * @returns Rejects: with an error response.
    */
-
-
   backPaginateRoomEventsSearch(searchResults) {
     // TODO: we should implement a backoff (as per scrollback()) to deal more
     // nicely with HTTP errors.
+
     if (!searchResults.next_batch) {
       return Promise.reject(new Error("Cannot backpaginate event search any further"));
     }
-
     if (searchResults.pendingRequest) {
       // already a request in progress - return the existing promise
       return searchResults.pendingRequest;
     }
-
     const searchOpts = {
       body: searchResults._query,
       next_batch: searchResults.next_batch
     };
-    const promise = this.search(searchOpts).then(res => this.processRoomEventsSearch(searchResults, res)).finally(() => {
-      searchResults.pendingRequest = null;
+    const promise = this.search(searchOpts, searchResults.abortSignal).then(res => this.processRoomEventsSearch(searchResults, res)).finally(() => {
+      searchResults.pendingRequest = undefined;
     });
     searchResults.pendingRequest = promise;
     return promise;
   }
+
   /**
    * helper for searchRoomEvents and backPaginateRoomEventsSearch. Processes the
    * response from the API call and updates the searchResults
    *
-   * @param {Object} searchResults
-   * @param {Object} response
-   * @return {Object} searchResults
-   * @private
+   * @returns searchResults
+   * @internal
    */
   // XXX: Intended private, used in code
-
-
   processRoomEventsSearch(searchResults, response) {
     const roomEvents = response.search_categories.room_events;
     searchResults.count = roomEvents.count;
-    searchResults.next_batch = roomEvents.next_batch; // combine the highlight list with our existing list;
+    searchResults.next_batch = roomEvents.next_batch;
 
+    // combine the highlight list with our existing list;
     const highlights = new Set(roomEvents.highlights);
     searchResults.highlights.forEach(hl => {
       highlights.add(hl);
-    }); // turn it back into a list.
+    });
 
+    // turn it back into a list.
     searchResults.highlights = Array.from(highlights);
-    const mapper = this.getEventMapper(); // append the new results to our existing results
+    const mapper = this.getEventMapper();
 
+    // append the new results to our existing results
     const resultsLength = roomEvents.results?.length ?? 0;
-
     for (let i = 0; i < resultsLength; i++) {
       const sr = _searchResult.SearchResult.fromJson(roomEvents.results[i], mapper);
-
       const room = this.getRoom(sr.context.getEvent().getRoomId());
-
       if (room) {
         // Copy over a known event sender if we can
         for (const ev of sr.context.getTimeline()) {
@@ -5255,20 +4833,17 @@
           if (!ev.sender && sender) ev.sender = sender;
         }
       }
-
       searchResults.results.push(sr);
     }
-
     return searchResults;
   }
+
   /**
    * Populate the store with rooms the user has left.
-   * @return {Promise} Resolves: TODO - Resolved when the rooms have
+   * @returns Promise which resolves: TODO - Resolved when the rooms have
    * been added to the data store.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Rejects: with an error response.
    */
-
-
   syncLeftRooms() {
     // Guard against multiple calls whilst ongoing and multiple calls post success
     if (this.syncedLeftRooms) {
@@ -5279,90 +4854,79 @@
       return this.syncLeftRoomsPromise; // return the ongoing request
     }
 
-    const syncApi = new _sync.SyncApi(this, this.clientOpts);
-    this.syncLeftRoomsPromise = syncApi.syncLeftRooms(); // cleanup locks
+    const syncApi = new _sync.SyncApi(this, this.clientOpts, this.buildSyncApiOptions());
+    this.syncLeftRoomsPromise = syncApi.syncLeftRooms();
 
+    // cleanup locks
     this.syncLeftRoomsPromise.then(() => {
       _logger.logger.log("Marking success of sync left room request");
-
       this.syncedLeftRooms = true; // flip the bit on success
     }).finally(() => {
-      this.syncLeftRoomsPromise = null; // cleanup ongoing request state
+      this.syncLeftRoomsPromise = undefined; // cleanup ongoing request state
     });
+
     return this.syncLeftRoomsPromise;
   }
+
   /**
    * Create a new filter.
-   * @param {Object} content The HTTP body for the request
-   * @return {Filter} Resolves to a Filter object.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param content - The HTTP body for the request
+   * @returns Promise which resolves to a Filter object.
+   * @returns Rejects: with an error response.
    */
-
-
   createFilter(content) {
     const path = utils.encodeUri("/user/$userId/filter", {
       $userId: this.credentials.userId
     });
-    return this.http.authedRequest(undefined, _httpApi.Method.Post, path, undefined, content).then(response => {
+    return this.http.authedRequest(_httpApi.Method.Post, path, undefined, content).then(response => {
       // persist the filter
       const filter = _filter.Filter.fromJson(this.credentials.userId, response.filter_id, content);
-
       this.store.storeFilter(filter);
       return filter;
     });
   }
+
   /**
    * Retrieve a filter.
-   * @param {string} userId The user ID of the filter owner
-   * @param {string} filterId The filter ID to retrieve
-   * @param {boolean} allowCached True to allow cached filters to be returned.
+   * @param userId - The user ID of the filter owner
+   * @param filterId - The filter ID to retrieve
+   * @param allowCached - True to allow cached filters to be returned.
    * Default: True.
-   * @return {Promise} Resolves: a Filter object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: a Filter object
+   * @returns Rejects: with an error response.
    */
-
-
   getFilter(userId, filterId, allowCached) {
     if (allowCached) {
       const filter = this.store.getFilter(userId, filterId);
-
       if (filter) {
         return Promise.resolve(filter);
       }
     }
-
     const path = utils.encodeUri("/user/$userId/filter/$filterId", {
       $userId: userId,
       $filterId: filterId
     });
-    return this.http.authedRequest(undefined, _httpApi.Method.Get, path).then(response => {
+    return this.http.authedRequest(_httpApi.Method.Get, path).then(response => {
       // persist the filter
       const filter = _filter.Filter.fromJson(userId, filterId, response);
-
       this.store.storeFilter(filter);
       return filter;
     });
   }
+
   /**
-   * @param {string} filterName
-   * @param {Filter} filter
-   * @return {Promise<String>} Filter ID
+   * @returns Filter ID
    */
-
-
   async getOrCreateFilter(filterName, filter) {
     const filterId = this.store.getFilterIdByName(filterName);
-    let existingId = undefined;
-
+    let existingId;
     if (filterId) {
       // check that the existing filter matches our expectations
       try {
         const existingFilter = await this.getFilter(this.credentials.userId, filterId, true);
-
         if (existingFilter) {
           const oldDef = existingFilter.getDefinition();
           const newDef = filter.getDefinition();
-
           if (utils.deepCompare(oldDef, newDef)) {
             // super, just use that.
             // debuglog("Using existing filter ID %s: %s", filterId,
@@ -5380,116 +4944,98 @@
         if (error.errcode !== "M_UNKNOWN" && error.errcode !== "M_NOT_FOUND") {
           throw error;
         }
-      } // if the filter doesn't exist anymore on the server, remove from store
-
-
+      }
+      // if the filter doesn't exist anymore on the server, remove from store
       if (!existingId) {
         this.store.setFilterIdByName(filterName, undefined);
       }
     }
-
     if (existingId) {
       return existingId;
-    } // create a new filter
-
-
-    const createdFilter = await this.createFilter(filter.getDefinition()); // debuglog("Created new filter ID %s: %s", createdFilter.filterId,
-    //          JSON.stringify(createdFilter.getDefinition()));
+    }
 
+    // create a new filter
+    const createdFilter = await this.createFilter(filter.getDefinition());
     this.store.setFilterIdByName(filterName, createdFilter.filterId);
     return createdFilter.filterId;
   }
+
   /**
    * Gets a bearer token from the homeserver that the user can
    * present to a third party in order to prove their ownership
    * of the Matrix account they are logged into.
-   * @return {Promise} Resolves: Token object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: Token object
+   * @returns Rejects: with an error response.
    */
-
-
   getOpenIdToken() {
     const path = utils.encodeUri("/user/$userId/openid/request_token", {
       $userId: this.credentials.userId
     });
-    return this.http.authedRequest(undefined, _httpApi.Method.Post, path, undefined, {});
+    return this.http.authedRequest(_httpApi.Method.Post, path, undefined, {});
   }
-
   /**
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: ITurnServerResponse object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: ITurnServerResponse object
+   * @returns Rejects: with an error response.
    */
-  turnServer(callback) {
-    return this.http.authedRequest(callback, _httpApi.Method.Get, "/voip/turnServer");
+  turnServer() {
+    return this.http.authedRequest(_httpApi.Method.Get, "/voip/turnServer");
   }
+
   /**
    * Get the TURN servers for this homeserver.
-   * @return {Array<Object>} The servers or an empty list.
+   * @returns The servers or an empty list.
    */
-
-
   getTurnServers() {
     return this.turnServers || [];
   }
+
   /**
    * Get the unix timestamp (in milliseconds) at which the current
    * TURN credentials (from getTurnServers) expire
-   * @return {number} The expiry timestamp, in milliseconds, or null if no credentials
+   * @returns The expiry timestamp in milliseconds
    */
-
-
   getTurnServersExpiry() {
     return this.turnServersExpiry;
   }
-
   get pollingTurnServers() {
-    return this.checkTurnServersIntervalID !== null;
-  } // XXX: Intended private, used in code.
-
+    return this.checkTurnServersIntervalID !== undefined;
+  }
 
+  // XXX: Intended private, used in code.
   async checkTurnServers() {
     if (!this.canSupportVoip) {
       return;
     }
-
     let credentialsGood = false;
     const remainingTime = this.turnServersExpiry - Date.now();
-
     if (remainingTime > TURN_CHECK_INTERVAL) {
       _logger.logger.debug("TURN creds are valid for another " + remainingTime + " ms: not fetching new ones.");
-
       credentialsGood = true;
     } else {
       _logger.logger.debug("Fetching new TURN credentials");
-
       try {
         const res = await this.turnServer();
-
         if (res.uris) {
-          _logger.logger.log("Got TURN URIs: " + res.uris + " refresh in " + res.ttl + " secs"); // map the response to a format that can be fed to RTCPeerConnection
-
-
+          _logger.logger.log("Got TURN URIs: " + res.uris + " refresh in " + res.ttl + " secs");
+          // map the response to a format that can be fed to RTCPeerConnection
           const servers = {
             urls: res.uris,
             username: res.username,
             credential: res.password
           };
-          this.turnServers = [servers]; // The TTL is in seconds but we work in ms
-
+          this.turnServers = [servers];
+          // The TTL is in seconds but we work in ms
           this.turnServersExpiry = Date.now() + res.ttl * 1000;
           credentialsGood = true;
           this.emit(ClientEvent.TurnServers, this.turnServers);
         }
       } catch (err) {
         _logger.logger.error("Failed to get TURN URIs", err);
-
         if (err.httpStatus === 403) {
           // We got a 403, so there's no point in looping forever.
           _logger.logger.info("TURN access unavailable for this account: stopping credentials checks");
-
           if (this.checkTurnServersIntervalID !== null) global.clearInterval(this.checkTurnServersIntervalID);
-          this.checkTurnServersIntervalID = null;
+          this.checkTurnServersIntervalID = undefined;
           this.emit(ClientEvent.TurnServersError, err, true); // fatal
         } else {
           // otherwise, if we failed for whatever reason, try again the next time we're called.
@@ -5500,105 +5046,98 @@
 
     return credentialsGood;
   }
+
   /**
    * Set whether to allow a fallback ICE server should be used for negotiating a
    * WebRTC connection if the homeserver doesn't provide any servers. Defaults to
    * false.
    *
-   * @param {boolean} allow
    */
-
-
   setFallbackICEServerAllowed(allow) {
     this.fallbackICEServerAllowed = allow;
   }
+
   /**
    * Get whether to allow a fallback ICE server should be used for negotiating a
    * WebRTC connection if the homeserver doesn't provide any servers. Defaults to
    * false.
    *
-   * @returns {boolean}
+   * @returns
    */
-
-
   isFallbackICEServerAllowed() {
     return this.fallbackICEServerAllowed;
   }
+
   /**
    * Determines if the current user is an administrator of the Synapse homeserver.
    * Returns false if untrue or the homeserver does not appear to be a Synapse
    * homeserver. <strong>This function is implementation specific and may change
    * as a result.</strong>
-   * @return {boolean} true if the user appears to be a Synapse administrator.
+   * @returns true if the user appears to be a Synapse administrator.
    */
-
-
   isSynapseAdministrator() {
     const path = utils.encodeUri("/_synapse/admin/v1/users/$userId/admin", {
       $userId: this.getUserId()
     });
-    return this.http.authedRequest(undefined, _httpApi.Method.Get, path, undefined, undefined, {
-      prefix: ''
-    }).then(r => r['admin']); // pull out the specific boolean we want
+    return this.http.authedRequest(_httpApi.Method.Get, path, undefined, undefined, {
+      prefix: ""
+    }).then(r => r.admin); // pull out the specific boolean we want
   }
+
   /**
    * Performs a whois lookup on a user using Synapse's administrator API.
    * <strong>This function is implementation specific and may change as a
    * result.</strong>
-   * @param {string} userId the User ID to look up.
-   * @return {object} the whois response - see Synapse docs for information.
+   * @param userId - the User ID to look up.
+   * @returns the whois response - see Synapse docs for information.
    */
-
-
   whoisSynapseUser(userId) {
     const path = utils.encodeUri("/_synapse/admin/v1/whois/$userId", {
       $userId: userId
     });
-    return this.http.authedRequest(undefined, _httpApi.Method.Get, path, undefined, undefined, {
-      prefix: ''
+    return this.http.authedRequest(_httpApi.Method.Get, path, undefined, undefined, {
+      prefix: ""
     });
   }
+
   /**
    * Deactivates a user using Synapse's administrator API. <strong>This
    * function is implementation specific and may change as a result.</strong>
-   * @param {string} userId the User ID to deactivate.
-   * @return {object} the deactivate response - see Synapse docs for information.
+   * @param userId - the User ID to deactivate.
+   * @returns the deactivate response - see Synapse docs for information.
    */
-
-
   deactivateSynapseUser(userId) {
     const path = utils.encodeUri("/_synapse/admin/v1/deactivate/$userId", {
       $userId: userId
     });
-    return this.http.authedRequest(undefined, _httpApi.Method.Post, path, undefined, undefined, {
-      prefix: ''
+    return this.http.authedRequest(_httpApi.Method.Post, path, undefined, undefined, {
+      prefix: ""
     });
   }
-
   async fetchClientWellKnown() {
     // `getRawClientConfig` does not throw or reject on network errors, instead
     // it absorbs errors and returns `{}`.
-    this.clientWellKnownPromise = _autodiscovery.AutoDiscovery.getRawClientConfig(this.getDomain());
+    this.clientWellKnownPromise = _autodiscovery.AutoDiscovery.getRawClientConfig(this.getDomain() ?? undefined);
     this.clientWellKnown = await this.clientWellKnownPromise;
     this.emit(ClientEvent.ClientWellKnown, this.clientWellKnown);
   }
-
   getClientWellKnown() {
     return this.clientWellKnown;
   }
-
   waitForClientWellKnown() {
+    if (!this.clientRunning) {
+      throw new Error("Client is not running");
+    }
     return this.clientWellKnownPromise;
   }
+
   /**
    * store client options with boolean/string/numeric values
    * to know in the next session what flags the sync data was
    * created with (e.g. lazy loading)
-   * @param {object} opts the complete set of client options
-   * @return {Promise} for store operation
+   * @param opts - the complete set of client options
+   * @returns for store operation
    */
-
-
   storeClientOptions() {
     // XXX: Intended private, used in code
     const primTypes = ["boolean", "string", "number"];
@@ -5610,75 +5149,71 @@
     }, {});
     return this.store.storeClientOptions(serializableOpts);
   }
+
   /**
    * Gets a set of room IDs in common with another user
-   * @param {string} userId The userId to check.
-   * @return {Promise<string[]>} Resolves to a set of rooms
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param userId - The userId to check.
+   * @returns Promise which resolves to a set of rooms
+   * @returns Rejects: with an error response.
    */
-
-
+  // eslint-disable-next-line
   async _unstable_getSharedRooms(userId) {
-    // eslint-disable-line
     const sharedRoomsSupport = await this.doesServerSupportUnstableFeature("uk.half-shot.msc2666");
     const mutualRoomsSupport = await this.doesServerSupportUnstableFeature("uk.half-shot.msc2666.mutual_rooms");
-
     if (!sharedRoomsSupport && !mutualRoomsSupport) {
-      throw Error('Server does not support mutual_rooms API');
+      throw Error("Server does not support mutual_rooms API");
     }
-
-    const path = utils.encodeUri(`/uk.half-shot.msc2666/user/${mutualRoomsSupport ? 'mutual_rooms' : 'shared_rooms'}/$userId`, {
+    const path = utils.encodeUri(`/uk.half-shot.msc2666/user/${mutualRoomsSupport ? "mutual_rooms" : "shared_rooms"}/$userId`, {
       $userId: userId
     });
-    const res = await this.http.authedRequest(undefined, _httpApi.Method.Get, path, undefined, undefined, {
-      prefix: _httpApi.PREFIX_UNSTABLE
+    const res = await this.http.authedRequest(_httpApi.Method.Get, path, undefined, undefined, {
+      prefix: _httpApi.ClientPrefix.Unstable
     });
     return res.joined;
   }
+
   /**
    * Get the API versions supported by the server, along with any
    * unstable APIs it supports
-   * @return {Promise<object>} The server /versions response
+   * @returns The server /versions response
    */
-
-
-  getVersions() {
+  async getVersions() {
     if (this.serverVersionsPromise) {
       return this.serverVersionsPromise;
     }
-
-    this.serverVersionsPromise = this.http.request(undefined, // callback
-    _httpApi.Method.Get, "/_matrix/client/versions", undefined, // queryParams
-    undefined, // data
+    this.serverVersionsPromise = this.http.request(_httpApi.Method.Get, "/_matrix/client/versions", undefined,
+    // queryParams
+    undefined,
+    // data
     {
-      prefix: ''
+      prefix: ""
     }).catch(e => {
       // Need to unset this if it fails, otherwise we'll never retry
-      this.serverVersionsPromise = null; // but rethrow the exception to anything that was waiting
-
+      this.serverVersionsPromise = undefined;
+      // but rethrow the exception to anything that was waiting
       throw e;
     });
+    const serverVersions = await this.serverVersionsPromise;
+    this.canSupport = await (0, _feature.buildFeatureSupportMap)(serverVersions);
     return this.serverVersionsPromise;
   }
+
   /**
    * Check if a particular spec version is supported by the server.
-   * @param {string} version The spec version (such as "r0.5.0") to check for.
-   * @return {Promise<boolean>} Whether it is supported
+   * @param version - The spec version (such as "r0.5.0") to check for.
+   * @returns Whether it is supported
    */
-
-
   async isVersionSupported(version) {
     const {
       versions
     } = await this.getVersions();
     return versions && versions.includes(version);
   }
+
   /**
    * Query the server to see if it supports members lazy loading
-   * @return {Promise<boolean>} true if server supports lazy loading
+   * @returns true if server supports lazy loading
    */
-
-
   async doesServerSupportLazyLoading() {
     const response = await this.getVersions();
     if (!response) return false;
@@ -5686,39 +5221,36 @@
     const unstableFeatures = response["unstable_features"];
     return versions && versions.includes("r0.5.0") || unstableFeatures && unstableFeatures["m.lazy_load_members"];
   }
+
   /**
    * Query the server to see if the `id_server` parameter is required
    * when registering with an 3pid, adding a 3pid or resetting password.
-   * @return {Promise<boolean>} true if id_server parameter is required
+   * @returns true if id_server parameter is required
    */
-
-
   async doesServerRequireIdServerParam() {
     const response = await this.getVersions();
     if (!response) return true;
-    const versions = response["versions"]; // Supporting r0.6.0 is the same as having the flag set to false
+    const versions = response["versions"];
 
+    // Supporting r0.6.0 is the same as having the flag set to false
     if (versions && versions.includes("r0.6.0")) {
       return false;
     }
-
     const unstableFeatures = response["unstable_features"];
     if (!unstableFeatures) return true;
-
     if (unstableFeatures["m.require_identity_server"] === undefined) {
       return true;
     } else {
       return unstableFeatures["m.require_identity_server"];
     }
   }
+
   /**
    * Query the server to see if the `id_access_token` parameter can be safely
    * passed to the homeserver. Some homeservers may trigger errors if they are not
    * prepared for the new parameter.
-   * @return {Promise<boolean>} true if id_access_token can be sent
+   * @returns true if id_access_token can be sent
    */
-
-
   async doesServerAcceptIdentityAccessToken() {
     const response = await this.getVersions();
     if (!response) return false;
@@ -5726,14 +5258,13 @@
     const unstableFeatures = response["unstable_features"];
     return versions && versions.includes("r0.6.0") || unstableFeatures && unstableFeatures["m.id_access_token"];
   }
+
   /**
    * Query the server to see if it supports separate 3PID add and bind functions.
    * This affects the sequence of API calls clients should use for these operations,
    * so it's helpful to be able to check for support.
-   * @return {Promise<boolean>} true if separate functions are supported
+   * @returns true if separate functions are supported
    */
-
-
   async doesServerSupportSeparateAddAndBind() {
     const response = await this.getVersions();
     if (!response) return false;
@@ -5741,71 +5272,76 @@
     const unstableFeatures = response["unstable_features"];
     return versions?.includes("r0.6.0") || unstableFeatures?.["m.separate_add_and_bind"];
   }
+
   /**
    * Query the server to see if it lists support for an unstable feature
    * in the /versions response
-   * @param {string} feature the feature name
-   * @return {Promise<boolean>} true if the feature is supported
+   * @param feature - the feature name
+   * @returns true if the feature is supported
    */
-
-
   async doesServerSupportUnstableFeature(feature) {
     const response = await this.getVersions();
     if (!response) return false;
     const unstableFeatures = response["unstable_features"];
     return unstableFeatures && !!unstableFeatures[feature];
   }
+
   /**
    * Query the server to see if it is forcing encryption to be enabled for
    * a given room preset, based on the /versions response.
-   * @param {Preset} presetName The name of the preset to check.
-   * @returns {Promise<boolean>} true if the server is forcing encryption
+   * @param presetName - The name of the preset to check.
+   * @returns true if the server is forcing encryption
    * for the preset.
    */
-
-
   async doesServerForceEncryptionForPreset(presetName) {
     const response = await this.getVersions();
     if (!response) return false;
-    const unstableFeatures = response["unstable_features"]; // The preset name in the versions response will be without the _chat suffix.
+    const unstableFeatures = response["unstable_features"];
 
+    // The preset name in the versions response will be without the _chat suffix.
     const versionsPresetName = presetName.includes("_chat") ? presetName.substring(0, presetName.indexOf("_chat")) : presetName;
     return unstableFeatures && !!unstableFeatures[`io.element.e2ee_forced.${versionsPresetName}`];
   }
-
   async doesServerSupportThread() {
+    if (await this.isVersionSupported("v1.4")) {
+      return {
+        threads: _thread.FeatureSupport.Stable,
+        list: _thread.FeatureSupport.Stable,
+        fwdPagination: _thread.FeatureSupport.Stable
+      };
+    }
     try {
-      const hasUnstableSupport = await this.doesServerSupportUnstableFeature("org.matrix.msc3440");
-      const hasStableSupport = await this.doesServerSupportUnstableFeature("org.matrix.msc3440.stable"); // TODO: Use `this.isVersionSupported("v1.3")` for whatever spec version includes MSC3440 formally.
-
+      const [threadUnstable, threadStable, listUnstable, listStable, fwdPaginationUnstable, fwdPaginationStable] = await Promise.all([this.doesServerSupportUnstableFeature("org.matrix.msc3440"), this.doesServerSupportUnstableFeature("org.matrix.msc3440.stable"), this.doesServerSupportUnstableFeature("org.matrix.msc3856"), this.doesServerSupportUnstableFeature("org.matrix.msc3856.stable"), this.doesServerSupportUnstableFeature("org.matrix.msc3715"), this.doesServerSupportUnstableFeature("org.matrix.msc3715.stable")]);
       return {
-        serverSupport: hasUnstableSupport || hasStableSupport,
-        stable: hasStableSupport
+        threads: (0, _thread.determineFeatureSupport)(threadStable, threadUnstable),
+        list: (0, _thread.determineFeatureSupport)(listStable, listUnstable),
+        fwdPagination: (0, _thread.determineFeatureSupport)(fwdPaginationStable, fwdPaginationUnstable)
       };
     } catch (e) {
-      // Assume server support and stability aren't available: null/no data return.
-      // XXX: This should just return an object with `false` booleans instead.
-      return null;
+      return {
+        threads: _thread.FeatureSupport.None,
+        list: _thread.FeatureSupport.None,
+        fwdPagination: _thread.FeatureSupport.None
+      };
     }
   }
+
   /**
    * Query the server to see if it supports the MSC2457 `logout_devices` parameter when setting password
-   * @return {Promise<boolean>} true if server supports the `logout_devices` parameter
+   * @returns true if server supports the `logout_devices` parameter
    */
-
-
   doesServerSupportLogoutDevices() {
     return this.isVersionSupported("r0.6.1");
   }
+
   /**
    * Get if lazy loading members is being used.
-   * @return {boolean} Whether or not members are lazy loaded by this client
+   * @returns Whether or not members are lazy loaded by this client
    */
-
-
   hasLazyLoadMembersEnabled() {
-    return !!this.clientOpts.lazyLoadMembers;
+    return !!this.clientOpts?.lazyLoadMembers;
   }
+
   /**
    * Set a function which is called when /sync returns a 'limited' response.
    * It is called with a room ID and returns a boolean. It should return 'true' if the SDK
@@ -5813,198 +5349,170 @@
    * are other references to the timelines for this room, e.g because the client is
    * actively viewing events in this room.
    * Default: returns false.
-   * @param {Function} cb The callback which will be invoked.
+   * @param cb - The callback which will be invoked.
    */
-
-
   setCanResetTimelineCallback(cb) {
     this.canResetTimelineCallback = cb;
   }
+
   /**
    * Get the callback set via `setCanResetTimelineCallback`.
-   * @return {?Function} The callback or null
+   * @returns The callback or null
    */
-
-
   getCanResetTimelineCallback() {
     return this.canResetTimelineCallback;
   }
+
   /**
    * Returns relations for a given event. Handles encryption transparently,
    * with the caveat that the amount of events returned might be 0, even though you get a nextBatch.
    * When the returned promise resolves, all messages should have finished trying to decrypt.
-   * @param {string} roomId the room of the event
-   * @param {string} eventId the id of the event
-   * @param {string} relationType the rel_type of the relations requested
-   * @param {string} eventType the event type of the relations requested
-   * @param {Object} opts options with optional values for the request.
-   * @return {Object} an object with `events` as `MatrixEvent[]` and optionally `nextBatch` if more relations are available.
+   * @param roomId - the room of the event
+   * @param eventId - the id of the event
+   * @param relationType - the rel_type of the relations requested
+   * @param eventType - the event type of the relations requested
+   * @param opts - options with optional values for the request.
+   * @returns an object with `events` as `MatrixEvent[]` and optionally `nextBatch` if more relations are available.
    */
-
-
   async relations(roomId, eventId, relationType, eventType, opts = {
-    direction: _eventTimeline.Direction.Backward
+    dir: _eventTimeline.Direction.Backward
   }) {
-    const fetchedEventType = this.getEncryptedIfNeededEventType(roomId, eventType);
-    const result = await this.fetchRelations(roomId, eventId, relationType, fetchedEventType, opts);
+    const fetchedEventType = eventType ? this.getEncryptedIfNeededEventType(roomId, eventType) : null;
+    const [eventResult, result] = await Promise.all([this.fetchRoomEvent(roomId, eventId), this.fetchRelations(roomId, eventId, relationType, fetchedEventType, opts)]);
     const mapper = this.getEventMapper();
-    const originalEvent = result.original_event ? mapper(result.original_event) : undefined;
+    const originalEvent = eventResult ? mapper(eventResult) : undefined;
     let events = result.chunk.map(mapper);
-
     if (fetchedEventType === _event2.EventType.RoomMessageEncrypted) {
       const allEvents = originalEvent ? events.concat(originalEvent) : events;
       await Promise.all(allEvents.map(e => this.decryptEventIfNeeded(e)));
-
       if (eventType !== null) {
         events = events.filter(e => e.getType() === eventType);
       }
     }
-
     if (originalEvent && relationType === _event2.RelationType.Replace) {
       events = events.filter(e => e.getSender() === originalEvent.getSender());
     }
-
     return {
-      originalEvent,
+      originalEvent: originalEvent ?? null,
       events,
-      nextBatch: result.next_batch,
-      prevBatch: result.prev_batch
+      nextBatch: result.next_batch ?? null,
+      prevBatch: result.prev_batch ?? null
     };
   }
+
   /**
    * The app may wish to see if we have a key cached without
    * triggering a user interaction.
-   * @return {object}
    */
-
-
   getCrossSigningCacheCallbacks() {
     // XXX: Private member access
     return this.crypto?.crossSigningInfo.getCacheCallbacks();
   }
+
   /**
    * Generates a random string suitable for use as a client secret. <strong>This
    * method is experimental and may change.</strong>
-   * @return {string} A new client secret
+   * @returns A new client secret
    */
-
-
   generateClientSecret() {
     return (0, _randomstring.randomString)(32);
   }
+
   /**
    * Attempts to decrypt an event
-   * @param {MatrixEvent} event The event to decrypt
-   * @returns {Promise<void>} A decryption promise
-   * @param {object} options
-   * @param {boolean} options.isRetry True if this is a retry (enables more logging)
-   * @param {boolean} options.emit Emits "event.decrypted" if set to true
+   * @param event - The event to decrypt
+   * @returns A decryption promise
    */
-
-
   decryptEventIfNeeded(event, options) {
-    if (event.shouldAttemptDecryption()) {
-      event.attemptDecryption(this.crypto, options);
+    if (event.shouldAttemptDecryption() && this.isCryptoEnabled()) {
+      event.attemptDecryption(this.cryptoBackend, options);
     }
-
     if (event.isBeingDecrypted()) {
       return event.getDecryptionPromise();
     } else {
       return Promise.resolve();
     }
   }
-
   termsUrlForService(serviceType, baseUrl) {
     switch (serviceType) {
       case _serviceTypes.SERVICE_TYPES.IS:
-        return baseUrl + _httpApi.PREFIX_IDENTITY_V2 + '/terms';
-
+        return this.http.getUrl("/terms", undefined, _httpApi.IdentityPrefix.V2, baseUrl);
       case _serviceTypes.SERVICE_TYPES.IM:
-        return baseUrl + '/_matrix/integrations/v1/terms';
-
+        return this.http.getUrl("/terms", undefined, "/_matrix/integrations/v1", baseUrl);
       default:
-        throw new Error('Unsupported service type');
+        throw new Error("Unsupported service type");
     }
   }
+
   /**
    * Get the Homeserver URL of this client
-   * @return {string} Homeserver URL of this client
+   * @returns Homeserver URL of this client
    */
-
-
   getHomeserverUrl() {
     return this.baseUrl;
   }
+
   /**
    * Get the identity server URL of this client
-   * @param {boolean} stripProto whether or not to strip the protocol from the URL
-   * @return {string} Identity server URL of this client
+   * @param stripProto - whether or not to strip the protocol from the URL
+   * @returns Identity server URL of this client
    */
-
-
   getIdentityServerUrl(stripProto = false) {
-    if (stripProto && (this.idBaseUrl.startsWith("http://") || this.idBaseUrl.startsWith("https://"))) {
+    if (stripProto && (this.idBaseUrl?.startsWith("http://") || this.idBaseUrl?.startsWith("https://"))) {
       return this.idBaseUrl.split("://")[1];
     }
-
     return this.idBaseUrl;
   }
+
   /**
    * Set the identity server URL of this client
-   * @param {string} url New identity server URL
+   * @param url - New identity server URL
    */
-
-
   setIdentityServerUrl(url) {
     this.idBaseUrl = utils.ensureNoTrailingSlash(url);
     this.http.setIdBaseUrl(this.idBaseUrl);
   }
+
   /**
    * Get the access token associated with this account.
-   * @return {?String} The access_token or null
+   * @returns The access_token or null
    */
-
-
   getAccessToken() {
     return this.http.opts.accessToken || null;
   }
+
   /**
    * Set the access token associated with this account.
-   * @param {string} token The new access token.
+   * @param token - The new access token.
    */
-
-
   setAccessToken(token) {
     this.http.opts.accessToken = token;
   }
+
   /**
-   * @return {boolean} true if there is a valid access_token for this client.
+   * @returns true if there is a valid access_token for this client.
    */
-
-
   isLoggedIn() {
     return this.http.opts.accessToken !== undefined;
   }
+
   /**
    * Make up a new transaction id
    *
-   * @return {string} a new, unique, transaction id
+   * @returns a new, unique, transaction id
    */
-
-
   makeTxnId() {
     return "m" + new Date().getTime() + "." + this.txnCtr++;
   }
+
   /**
    * Check whether a username is available prior to registration. An error response
    * indicates an invalid/unavailable username.
-   * @param {string} username The username to check the availability of.
-   * @return {Promise} Resolves: to boolean of whether the username is available.
+   * @param username - The username to check the availability of.
+   * @returns Promise which resolves: to boolean of whether the username is available.
    */
-
-
   isUsernameAvailable(username) {
-    return this.http.authedRequest(undefined, _httpApi.Method.Get, '/register/available', {
+    return this.http.authedRequest(_httpApi.Method.Get, "/register/available", {
       username
     }).then(response => {
       return response.available;
@@ -6012,27 +5520,18 @@
       if (response.errcode === "M_USER_IN_USE") {
         return false;
       }
-
       return Promise.reject(response);
     });
   }
+
   /**
-   * @param {string} username
-   * @param {string} password
-   * @param {string} sessionId
-   * @param {Object} auth
-   * @param {Object} bindThreepids Set key 'email' to true to bind any email
+   * @param bindThreepids - Set key 'email' to true to bind any email
    *     threepid uses during registration in the identity server. Set 'msisdn' to
    *     true to bind msisdn.
-   * @param {string} guestAccessToken
-   * @param {string} inhibitLogin
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: TODO
+   * @returns Rejects: with an error response.
    */
-
-
-  register(username, password, sessionId, auth, bindThreepids, guestAccessToken, inhibitLogin, callback) {
+  register(username, password, sessionId, auth, bindThreepids, guestAccessToken, inhibitLogin) {
     // backwards compat
     if (bindThreepids === true) {
       bindThreepids = {
@@ -6041,58 +5540,44 @@
     } else if (bindThreepids === null || bindThreepids === undefined || bindThreepids === false) {
       bindThreepids = {};
     }
-
-    if (typeof inhibitLogin === 'function') {
-      callback = inhibitLogin;
-      inhibitLogin = undefined;
-    }
-
     if (sessionId) {
       auth.session = sessionId;
     }
-
     const params = {
       auth: auth,
       refresh_token: true // always ask for a refresh token - does nothing if unsupported
-
     };
 
     if (username !== undefined && username !== null) {
       params.username = username;
     }
-
     if (password !== undefined && password !== null) {
       params.password = password;
     }
-
     if (bindThreepids.email) {
       params.bind_email = true;
     }
-
     if (bindThreepids.msisdn) {
       params.bind_msisdn = true;
     }
-
     if (guestAccessToken !== undefined && guestAccessToken !== null) {
       params.guest_access_token = guestAccessToken;
     }
-
     if (inhibitLogin !== undefined && inhibitLogin !== null) {
       params.inhibit_login = inhibitLogin;
-    } // Temporary parameter added to make the register endpoint advertise
+    }
+    // Temporary parameter added to make the register endpoint advertise
     // msisdn flows. This exists because there are clients that break
     // when given stages they don't recognise. This parameter will cease
     // to be necessary once these old clients are gone.
     // Only send it if we send any params at all (the password param is
     // mandatory, so if we send any params, we'll send the password param)
-
-
     if (password !== undefined && password !== null) {
       params.x_show_msisdn = true;
     }
-
-    return this.registerRequest(params, undefined, callback);
+    return this.registerRequest(params);
   }
+
   /**
    * Register a guest account.
    * This method returns the auth info needed to create a new authenticated client,
@@ -6109,39 +5594,32 @@
    * client.setGuest(true);
    * ```
    *
-   * @param {Object=} opts Registration options
-   * @param {Object} opts.body JSON HTTP body to provide.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: JSON object that contains:
-   *                   { user_id, device_id, access_token, home_server }
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
-   */
-
-
-  registerGuest(opts, callback) {
+   * @param body - JSON HTTP body to provide.
+   * @returns Promise which resolves: JSON object that contains:
+   *                   `{ user_id, device_id, access_token, home_server }`
+   * @returns Rejects: with an error response.
+   */
+  registerGuest({
+    body
+  } = {}) {
     // TODO: Types
-    opts = opts || {};
-    opts.body = opts.body || {};
-    return this.registerRequest(opts.body, "guest", callback);
+    return this.registerRequest(body || {}, "guest");
   }
+
   /**
-   * @param {Object} data   parameters for registration request
-   * @param {string=} kind  type of user to register. may be "guest"
-   * @param {module:client.callback=} callback
-   * @return {Promise} Resolves: to the /register response
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param data - parameters for registration request
+   * @param kind - type of user to register. may be "guest"
+   * @returns Promise which resolves: to the /register response
+   * @returns Rejects: with an error response.
    */
-
-
-  registerRequest(data, kind, callback) {
+  registerRequest(data, kind) {
     const params = {};
-
     if (kind) {
       params.kind = kind;
     }
-
-    return this.http.request(callback, _httpApi.Method.Post, "/register", params, data);
+    return this.http.request(_httpApi.Method.Post, "/register", params, data);
   }
+
   /**
    * Refreshes an access token using a provided refresh token. The refresh token
    * must be valid for the current access token known to the client instance.
@@ -6149,152 +5627,126 @@
    * Note that this function will not cause a logout if the token is deemed
    * unknown by the server - the caller is responsible for managing logout
    * actions on error.
-   * @param {string} refreshToken The refresh token.
-   * @return {Promise<IRefreshTokenResponse>} Resolves to the new token.
-   * @return {module:http-api.MatrixError} Rejects with an error response.
+   * @param refreshToken - The refresh token.
+   * @returns Promise which resolves to the new token.
+   * @returns Rejects with an error response.
    */
-
-
   refreshToken(refreshToken) {
-    return this.http.authedRequest(undefined, _httpApi.Method.Post, "/refresh", undefined, {
+    return this.http.authedRequest(_httpApi.Method.Post, "/refresh", undefined, {
       refresh_token: refreshToken
     }, {
-      prefix: _httpApi.PREFIX_V1,
+      prefix: _httpApi.ClientPrefix.V1,
       inhibitLogoutEmit: true // we don't want to cause logout loops
-
     });
   }
+
   /**
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves to the available login flows
+   * @returns Rejects: with an error response.
    */
-
-
-  loginFlows(callback) {
-    // TODO: Types
-    return this.http.request(callback, _httpApi.Method.Get, "/login");
+  loginFlows() {
+    return this.http.request(_httpApi.Method.Get, "/login");
   }
+
   /**
-   * @param {string} loginType
-   * @param {Object} data
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: TODO
+   * @returns Rejects: with an error response.
    */
-
-
-  login(loginType, data, callback) {
+  login(loginType, data) {
     // TODO: Types
     const loginData = {
       type: loginType
-    }; // merge data into loginData
+    };
 
+    // merge data into loginData
     Object.assign(loginData, data);
-    return this.http.authedRequest((error, response) => {
-      if (response && response.access_token && response.user_id) {
+    return this.http.authedRequest(_httpApi.Method.Post, "/login", undefined, loginData).then(response => {
+      if (response.access_token && response.user_id) {
         this.http.opts.accessToken = response.access_token;
         this.credentials = {
           userId: response.user_id
         };
       }
-
-      if (callback) {
-        callback(error, response);
-      }
-    }, _httpApi.Method.Post, "/login", undefined, loginData);
+      return response;
+    });
   }
+
   /**
-   * @param {string} user
-   * @param {string} password
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: TODO
+   * @returns Rejects: with an error response.
    */
-
-
-  loginWithPassword(user, password, callback) {
+  loginWithPassword(user, password) {
     // TODO: Types
     return this.login("m.login.password", {
       user: user,
       password: password
-    }, callback);
+    });
   }
+
   /**
-   * @param {string} relayState URL Callback after SAML2 Authentication
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param relayState - URL Callback after SAML2 Authentication
+   * @returns Promise which resolves: TODO
+   * @returns Rejects: with an error response.
    */
-
-
-  loginWithSAML2(relayState, callback) {
+  loginWithSAML2(relayState) {
     // TODO: Types
     return this.login("m.login.saml2", {
       relay_state: relayState
-    }, callback);
+    });
   }
+
   /**
-   * @param {string} redirectUrl The URL to redirect to after the HS
+   * @param redirectUrl - The URL to redirect to after the HS
    * authenticates with CAS.
-   * @return {string} The HS URL to hit to begin the CAS login process.
+   * @returns The HS URL to hit to begin the CAS login process.
    */
-
-
   getCasLoginUrl(redirectUrl) {
     return this.getSsoLoginUrl(redirectUrl, "cas");
   }
+
   /**
-   * @param {string} redirectUrl The URL to redirect to after the HS
+   * @param redirectUrl - The URL to redirect to after the HS
    *     authenticates with the SSO.
-   * @param {string} loginType The type of SSO login we are doing (sso or cas).
+   * @param loginType - The type of SSO login we are doing (sso or cas).
    *     Defaults to 'sso'.
-   * @param {string} idpId The ID of the Identity Provider being targeted, optional.
-   * @param {SSOAction} action the SSO flow to indicate to the IdP, optional.
-   * @return {string} The HS URL to hit to begin the SSO login process.
+   * @param idpId - The ID of the Identity Provider being targeted, optional.
+   * @param action - the SSO flow to indicate to the IdP, optional.
+   * @returns The HS URL to hit to begin the SSO login process.
    */
-
-
   getSsoLoginUrl(redirectUrl, loginType = "sso", idpId, action) {
     let url = "/login/" + loginType + "/redirect";
-
     if (idpId) {
       url += "/" + idpId;
     }
-
     const params = {
       redirectUrl,
       [SSO_ACTION_PARAM.unstable]: action
     };
-    return this.http.getUrl(url, params, _httpApi.PREFIX_R0);
+    return this.http.getUrl(url, params, _httpApi.ClientPrefix.R0).href;
   }
+
   /**
-   * @param {string} token Login token previously received from homeserver
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param token - Login token previously received from homeserver
+   * @returns Promise which resolves: TODO
+   * @returns Rejects: with an error response.
    */
-
-
-  loginWithToken(token, callback) {
+  loginWithToken(token) {
     // TODO: Types
     return this.login("m.login.token", {
       token: token
-    }, callback);
+    });
   }
+
   /**
    * Logs out the current session.
    * Obviously, further calls that require authorisation should fail after this
    * method is called. The state of the MatrixClient object is not affected:
    * it is up to the caller to either reset or destroy the MatrixClient after
    * this method succeeds.
-   * @param {module:client.callback} callback Optional.
-   * @param {boolean} stopClient whether to stop the client before calling /logout to prevent invalid token errors.
-   * @return {Promise} Resolves: On success, the empty object {}
+   * @param stopClient - whether to stop the client before calling /logout to prevent invalid token errors.
+   * @returns Promise which resolves: On success, the empty object `{}`
    */
-
-
-  async logout(callback, stopClient = false) {
+  async logout(stopClient = false) {
     if (this.crypto?.backupManager?.getKeyBackupEnabled()) {
       try {
         while ((await this.crypto.backupManager.backupPendingKeys(200)) > 0);
@@ -6302,306 +5754,264 @@
         _logger.logger.error("Key backup request failed when logging out. Some keys may be missing from backup", err);
       }
     }
-
     if (stopClient) {
       this.stopClient();
+      this.http.abort();
     }
-
-    return this.http.authedRequest(callback, _httpApi.Method.Post, '/logout');
+    return this.http.authedRequest(_httpApi.Method.Post, "/logout");
   }
+
   /**
    * Deactivates the logged-in account.
    * Obviously, further calls that require authorisation should fail after this
    * method is called. The state of the MatrixClient object is not affected:
    * it is up to the caller to either reset or destroy the MatrixClient after
    * this method succeeds.
-   * @param {object} auth Optional. Auth data to supply for User-Interactive auth.
-   * @param {boolean} erase Optional. If set, send as `erase` attribute in the
+   * @param auth - Optional. Auth data to supply for User-Interactive auth.
+   * @param erase - Optional. If set, send as `erase` attribute in the
    * JSON request body, indicating whether the account should be erased. Defaults
    * to false.
-   * @return {Promise} Resolves: On success, the empty object
+   * @returns Promise which resolves: On success, the empty object
    */
-
-
   deactivateAccount(auth, erase) {
-    if (typeof erase === 'function') {
-      throw new Error('deactivateAccount no longer accepts a callback parameter');
-    }
-
     const body = {};
-
     if (auth) {
       body.auth = auth;
     }
-
     if (erase !== undefined) {
       body.erase = erase;
     }
+    return this.http.authedRequest(_httpApi.Method.Post, "/account/deactivate", undefined, body);
+  }
 
-    return this.http.authedRequest(undefined, _httpApi.Method.Post, '/account/deactivate', undefined, body);
+  /**
+   * Make a request for an `m.login.token` to be issued as per
+   * [MSC3882](https://github.com/matrix-org/matrix-spec-proposals/pull/3882).
+   * The server may require User-Interactive auth.
+   * Note that this is UNSTABLE and subject to breaking changes without notice.
+   * @param auth - Optional. Auth data to supply for User-Interactive auth.
+   * @returns Promise which resolves: On success, the token response
+   * or UIA auth data.
+   */
+  requestLoginToken(auth) {
+    const body = {
+      auth
+    };
+    return this.http.authedRequest(_httpApi.Method.Post, "/org.matrix.msc3882/login/token", undefined,
+    // no query params
+    body, {
+      prefix: _httpApi.ClientPrefix.Unstable
+    });
   }
+
   /**
    * Get the fallback URL to use for unknown interactive-auth stages.
    *
-   * @param {string} loginType     the type of stage being attempted
-   * @param {string} authSessionId the auth session ID provided by the homeserver
+   * @param loginType -     the type of stage being attempted
+   * @param authSessionId - the auth session ID provided by the homeserver
    *
-   * @return {string} HS URL to hit to for the fallback interface
+   * @returns HS URL to hit to for the fallback interface
    */
-
-
   getFallbackAuthUrl(loginType, authSessionId) {
     const path = utils.encodeUri("/auth/$loginType/fallback/web", {
       $loginType: loginType
     });
     return this.http.getUrl(path, {
       session: authSessionId
-    }, _httpApi.PREFIX_R0);
+    }, _httpApi.ClientPrefix.R0).href;
   }
+
   /**
    * Create a new room.
-   * @param {Object} options a list of options to pass to the /createRoom API.
-   * @param {string} options.room_alias_name The alias localpart to assign to
-   * this room.
-   * @param {string} options.visibility Either 'public' or 'private'.
-   * @param {string[]} options.invite A list of user IDs to invite to this room.
-   * @param {string} options.name The name to give this room.
-   * @param {string} options.topic The topic to give this room.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: <code>{room_id: {string}}</code>
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param options - a list of options to pass to the /createRoom API.
+   * @returns Promise which resolves: `{room_id: {string}}`
+   * @returns Rejects: with an error response.
    */
-
-
-  async createRoom(options, callback) {
+  async createRoom(options) {
     // eslint-disable-line camelcase
     // some valid options include: room_alias_name, visibility, invite
+
     // inject the id_access_token if inviting 3rd party addresses
     const invitesNeedingToken = (options.invite_3pid || []).filter(i => !i.id_access_token);
-
     if (invitesNeedingToken.length > 0 && this.identityServer?.getAccessToken && (await this.doesServerAcceptIdentityAccessToken())) {
       const identityAccessToken = await this.identityServer.getAccessToken();
-
       if (identityAccessToken) {
         for (const invite of invitesNeedingToken) {
           invite.id_access_token = identityAccessToken;
         }
       }
     }
-
-    return this.http.authedRequest(callback, _httpApi.Method.Post, "/createRoom", undefined, options);
+    return this.http.authedRequest(_httpApi.Method.Post, "/createRoom", undefined, options);
   }
+
   /**
    * Fetches relations for a given event
-   * @param {string} roomId the room of the event
-   * @param {string} eventId the id of the event
-   * @param {string} [relationType] the rel_type of the relations requested
-   * @param {string} [eventType] the event type of the relations requested
-   * @param {Object} [opts] options with optional values for the request.
-  * @return {Object} the response, with chunk, prev_batch and, next_batch.
+   * @param roomId - the room of the event
+   * @param eventId - the id of the event
+   * @param relationType - the rel_type of the relations requested
+   * @param eventType - the event type of the relations requested
+   * @param opts - options with optional values for the request.
+   * @returns the response, with chunk, prev_batch and, next_batch.
    */
-
-
   fetchRelations(roomId, eventId, relationType, eventType, opts = {
-    direction: _eventTimeline.Direction.Backward
+    dir: _eventTimeline.Direction.Backward
   }) {
-    const queryString = utils.encodeParams(opts);
+    let params = opts;
+    if (_thread.Thread.hasServerSideFwdPaginationSupport === _thread.FeatureSupport.Experimental) {
+      params = (0, utils.replaceParam)("dir", "org.matrix.msc3715.dir", params);
+    }
+    const queryString = utils.encodeParams(params);
     let templatedUrl = "/rooms/$roomId/relations/$eventId";
-
     if (relationType !== null) {
       templatedUrl += "/$relationType";
-
       if (eventType !== null) {
         templatedUrl += "/$eventType";
       }
     } else if (eventType !== null) {
       _logger.logger.warn(`eventType: ${eventType} ignored when fetching
             relations as relationType is null`);
-
       eventType = null;
     }
-
     const path = utils.encodeUri(templatedUrl + "?" + queryString, {
       $roomId: roomId,
       $eventId: eventId,
       $relationType: relationType,
       $eventType: eventType
     });
-    return this.http.authedRequest(undefined, _httpApi.Method.Get, path, null, null, {
-      prefix: _httpApi.PREFIX_UNSTABLE
+    return this.http.authedRequest(_httpApi.Method.Get, path, undefined, undefined, {
+      prefix: _httpApi.ClientPrefix.V1
     });
   }
+
   /**
-   * @param {string} roomId
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: TODO
+   * @returns Rejects: with an error response.
    */
-
-
-  roomState(roomId, callback) {
+  roomState(roomId) {
     const path = utils.encodeUri("/rooms/$roomId/state", {
       $roomId: roomId
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Get, path);
+    return this.http.authedRequest(_httpApi.Method.Get, path);
   }
+
   /**
    * Get an event in a room by its event id.
-   * @param {string} roomId
-   * @param {string} eventId
-   * @param {module:client.callback} callback Optional.
    *
-   * @return {Promise} Resolves to an object containing the event.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves to an object containing the event.
+   * @returns Rejects: with an error response.
    */
-
-
-  fetchRoomEvent(roomId, eventId, callback) {
+  fetchRoomEvent(roomId, eventId) {
     const path = utils.encodeUri("/rooms/$roomId/event/$eventId", {
       $roomId: roomId,
       $eventId: eventId
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Get, path);
+    return this.http.authedRequest(_httpApi.Method.Get, path);
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} includeMembership the membership type to include in the response
-   * @param {string} excludeMembership the membership type to exclude from the response
-   * @param {string} atEventId the id of the event for which moment in the timeline the members should be returned for
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: dictionary of userid to profile information
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param includeMembership - the membership type to include in the response
+   * @param excludeMembership - the membership type to exclude from the response
+   * @param atEventId - the id of the event for which moment in the timeline the members should be returned for
+   * @returns Promise which resolves: dictionary of userid to profile information
+   * @returns Rejects: with an error response.
    */
-
-
-  members(roomId, includeMembership, excludeMembership, atEventId, callback) {
+  members(roomId, includeMembership, excludeMembership, atEventId) {
     const queryParams = {};
-
     if (includeMembership) {
       queryParams.membership = includeMembership;
     }
-
     if (excludeMembership) {
       queryParams.not_membership = excludeMembership;
     }
-
     if (atEventId) {
       queryParams.at = atEventId;
     }
-
     const queryString = utils.encodeParams(queryParams);
     const path = utils.encodeUri("/rooms/$roomId/members?" + queryString, {
       $roomId: roomId
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Get, path);
+    return this.http.authedRequest(_httpApi.Method.Get, path);
   }
+
   /**
    * Upgrades a room to a new protocol version
-   * @param {string} roomId
-   * @param {string} newVersion The target version to upgrade to
-   * @return {Promise} Resolves: Object with key 'replacement_room'
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param newVersion - The target version to upgrade to
+   * @returns Promise which resolves: Object with key 'replacement_room'
+   * @returns Rejects: with an error response.
    */
-
-
   upgradeRoom(roomId, newVersion) {
     // eslint-disable-line camelcase
     const path = utils.encodeUri("/rooms/$roomId/upgrade", {
       $roomId: roomId
     });
-    return this.http.authedRequest(undefined, _httpApi.Method.Post, path, undefined, {
+    return this.http.authedRequest(_httpApi.Method.Post, path, undefined, {
       new_version: newVersion
     });
   }
+
   /**
    * Retrieve a state event.
-   * @param {string} roomId
-   * @param {string} eventType
-   * @param {string} stateKey
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: TODO
+   * @returns Rejects: with an error response.
    */
-
-
-  getStateEvent(roomId, eventType, stateKey, callback) {
+  getStateEvent(roomId, eventType, stateKey) {
     const pathParams = {
       $roomId: roomId,
       $eventType: eventType,
       $stateKey: stateKey
     };
     let path = utils.encodeUri("/rooms/$roomId/state/$eventType", pathParams);
-
     if (stateKey !== undefined) {
       path = utils.encodeUri(path + "/$stateKey", pathParams);
     }
-
-    return this.http.authedRequest(callback, _httpApi.Method.Get, path);
+    return this.http.authedRequest(_httpApi.Method.Get, path);
   }
+
   /**
-   * @param {string} roomId
-   * @param {string} eventType
-   * @param {Object} content
-   * @param {string} stateKey
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param opts - Options for the request function.
+   * @returns Promise which resolves: TODO
+   * @returns Rejects: with an error response.
    */
-
-
-  sendStateEvent(roomId, eventType, content, stateKey = "", callback) {
+  sendStateEvent(roomId, eventType, content, stateKey = "", opts = {}) {
     const pathParams = {
       $roomId: roomId,
       $eventType: eventType,
       $stateKey: stateKey
     };
     let path = utils.encodeUri("/rooms/$roomId/state/$eventType", pathParams);
-
     if (stateKey !== undefined) {
       path = utils.encodeUri(path + "/$stateKey", pathParams);
     }
-
-    return this.http.authedRequest(callback, _httpApi.Method.Put, path, undefined, content);
+    return this.http.authedRequest(_httpApi.Method.Put, path, undefined, content, opts);
   }
+
   /**
-   * @param {string} roomId
-   * @param {Number} limit
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: TODO
+   * @returns Rejects: with an error response.
    */
-
-
-  roomInitialSync(roomId, limit, callback) {
-    if (utils.isFunction(limit)) {
-      callback = limit; // legacy
-
-      limit = undefined;
-    }
-
+  roomInitialSync(roomId, limit) {
     const path = utils.encodeUri("/rooms/$roomId/initialSync", {
       $roomId: roomId
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Get, path, {
+    return this.http.authedRequest(_httpApi.Method.Get, path, {
       limit: limit?.toString() ?? "30"
     });
   }
+
   /**
    * Set a marker to indicate the point in a room before which the user has read every
    * event. This can be retrieved from room account data (the event type is `m.fully_read`)
    * and displayed as a horizontal line in the timeline that is visually distinct to the
    * position of the user's own read receipt.
-   * @param {string} roomId ID of the room that has been read
-   * @param {string} rmEventId ID of the event that has been read
-   * @param {string} rrEventId ID of the event tracked by the read receipt. This is here
+   * @param roomId - ID of the room that has been read
+   * @param rmEventId - ID of the event that has been read
+   * @param rrEventId - ID of the event tracked by the read receipt. This is here
    * for convenience because the RR and the RM are commonly updated at the same time as
    * each other. Optional.
-   * @param {string} rpEventId rpEvent the m.read.private read receipt event for when we
+   * @param rpEventId - rpEvent the m.read.private read receipt event for when we
    * don't want other users to see the read receipts. This is experimental. Optional.
-   * @return {Promise} Resolves: the empty object, {}.
+   * @returns Promise which resolves: the empty object, `{}`.
    */
-
-
   async setRoomReadMarkersHttpRequest(roomId, rmEventId, rrEventId, rpEventId) {
     const path = utils.encodeUri("/rooms/$roomId/read_markers", {
       $roomId: roomId
@@ -6610,347 +6020,275 @@
       [_read_receipts.ReceiptType.FullyRead]: rmEventId,
       [_read_receipts.ReceiptType.Read]: rrEventId
     };
-
-    if (await this.doesServerSupportUnstableFeature("org.matrix.msc2285.stable")) {
+    if ((await this.doesServerSupportUnstableFeature("org.matrix.msc2285.stable")) || (await this.isVersionSupported("v1.4"))) {
       content[_read_receipts.ReceiptType.ReadPrivate] = rpEventId;
     }
-
-    return this.http.authedRequest(undefined, _httpApi.Method.Post, path, undefined, content);
+    return this.http.authedRequest(_httpApi.Method.Post, path, undefined, content);
   }
+
   /**
-   * @return {Promise} Resolves: A list of the user's current rooms
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: A list of the user's current rooms
+   * @returns Rejects: with an error response.
    */
-
-
   getJoinedRooms() {
     const path = utils.encodeUri("/joined_rooms", {});
-    return this.http.authedRequest(undefined, _httpApi.Method.Get, path);
+    return this.http.authedRequest(_httpApi.Method.Get, path);
   }
+
   /**
    * Retrieve membership info. for a room.
-   * @param {string} roomId ID of the room to get membership for
-   * @return {Promise} Resolves: A list of currently joined users
+   * @param roomId - ID of the room to get membership for
+   * @returns Promise which resolves: A list of currently joined users
    *                                 and their profile data.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Rejects: with an error response.
    */
-
-
   getJoinedRoomMembers(roomId) {
     const path = utils.encodeUri("/rooms/$roomId/joined_members", {
       $roomId: roomId
     });
-    return this.http.authedRequest(undefined, _httpApi.Method.Get, path);
+    return this.http.authedRequest(_httpApi.Method.Get, path);
   }
+
   /**
-   * @param {Object} options Options for this request
-   * @param {string} options.server The remote server to query for the room list.
+   * @param options - Options for this request
+   * @param server - The remote server to query for the room list.
    *                                Optional. If unspecified, get the local home
    *                                server's public room list.
-   * @param {number} options.limit Maximum number of entries to return
-   * @param {string} options.since Token to paginate from
-   * @param {object} options.filter Filter parameters
-   * @param {string} options.filter.generic_search_term String to search for
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
-   */
-
-
-  publicRooms(options, callback) {
-    if (typeof options == 'function') {
-      callback = options;
-      options = {};
-    }
-
-    if (options === undefined) {
-      options = {};
-    }
-
-    const queryParams = {};
-
-    if (options.server) {
-      queryParams.server = options.server;
-      delete options.server;
-    }
-
-    if (Object.keys(options).length === 0 && Object.keys(queryParams).length === 0) {
-      return this.http.authedRequest(callback, _httpApi.Method.Get, "/publicRooms");
+   * @param limit - Maximum number of entries to return
+   * @param since - Token to paginate from
+   * @returns Promise which resolves: IPublicRoomsResponse
+   * @returns Rejects: with an error response.
+   */
+  publicRooms(_ref = {}) {
+    let {
+        server,
+        limit,
+        since
+      } = _ref,
+      options = _objectWithoutProperties(_ref, _excluded);
+    const queryParams = {
+      server,
+      limit,
+      since
+    };
+    if (Object.keys(options).length === 0) {
+      return this.http.authedRequest(_httpApi.Method.Get, "/publicRooms", queryParams);
     } else {
-      return this.http.authedRequest(callback, _httpApi.Method.Post, "/publicRooms", queryParams, options);
+      return this.http.authedRequest(_httpApi.Method.Post, "/publicRooms", queryParams, options);
     }
   }
+
   /**
    * Create an alias to room ID mapping.
-   * @param {string} alias The room alias to create.
-   * @param {string} roomId The room ID to link the alias to.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: an empty object {}
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param alias - The room alias to create.
+   * @param roomId - The room ID to link the alias to.
+   * @returns Promise which resolves: an empty object `{}`
+   * @returns Rejects: with an error response.
    */
-
-
-  createAlias(alias, roomId, callback) {
+  createAlias(alias, roomId) {
     const path = utils.encodeUri("/directory/room/$alias", {
       $alias: alias
     });
     const data = {
       room_id: roomId
     };
-    return this.http.authedRequest(callback, _httpApi.Method.Put, path, undefined, data);
+    return this.http.authedRequest(_httpApi.Method.Put, path, undefined, data);
   }
+
   /**
    * Delete an alias to room ID mapping. This alias must be on your local server,
    * and you must have sufficient access to do this operation.
-   * @param {string} alias The room alias to delete.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: an empty object {}.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param alias - The room alias to delete.
+   * @returns Promise which resolves: an empty object `{}`.
+   * @returns Rejects: with an error response.
    */
-
-
-  deleteAlias(alias, callback) {
+  deleteAlias(alias) {
     const path = utils.encodeUri("/directory/room/$alias", {
       $alias: alias
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Delete, path);
+    return this.http.authedRequest(_httpApi.Method.Delete, path);
   }
+
   /**
    * Gets the local aliases for the room. Note: this includes all local aliases, unlike the
    * curated list from the m.room.canonical_alias state event.
-   * @param {string} roomId The room ID to get local aliases for.
-   * @return {Promise} Resolves: an object with an `aliases` property, containing an array of local aliases
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param roomId - The room ID to get local aliases for.
+   * @returns Promise which resolves: an object with an `aliases` property, containing an array of local aliases
+   * @returns Rejects: with an error response.
    */
-
-
   getLocalAliases(roomId) {
     const path = utils.encodeUri("/rooms/$roomId/aliases", {
       $roomId: roomId
     });
-    const prefix = _httpApi.PREFIX_V3;
-    return this.http.authedRequest(undefined, _httpApi.Method.Get, path, null, null, {
+    const prefix = _httpApi.ClientPrefix.V3;
+    return this.http.authedRequest(_httpApi.Method.Get, path, undefined, undefined, {
       prefix
     });
   }
+
   /**
    * Get room info for the given alias.
-   * @param {string} alias The room alias to resolve.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: Object with room_id and servers.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param alias - The room alias to resolve.
+   * @returns Promise which resolves: Object with room_id and servers.
+   * @returns Rejects: with an error response.
    */
-
-
-  getRoomIdForAlias(alias, callback) {
+  getRoomIdForAlias(alias) {
     // eslint-disable-line camelcase
     // TODO: deprecate this or resolveRoomAlias
     const path = utils.encodeUri("/directory/room/$alias", {
       $alias: alias
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Get, path);
+    return this.http.authedRequest(_httpApi.Method.Get, path);
   }
+
   /**
-   * @param {string} roomAlias
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: Object with room_id and servers.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: Object with room_id and servers.
+   * @returns Rejects: with an error response.
    */
   // eslint-disable-next-line camelcase
-
-
-  resolveRoomAlias(roomAlias, callback) {
+  resolveRoomAlias(roomAlias) {
     // TODO: deprecate this or getRoomIdForAlias
     const path = utils.encodeUri("/directory/room/$alias", {
       $alias: roomAlias
     });
-    return this.http.request(callback, _httpApi.Method.Get, path);
+    return this.http.request(_httpApi.Method.Get, path);
   }
+
   /**
    * Get the visibility of a room in the current HS's room directory
-   * @param {string} roomId
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: TODO
+   * @returns Rejects: with an error response.
    */
-
-
-  getRoomDirectoryVisibility(roomId, callback) {
+  getRoomDirectoryVisibility(roomId) {
     const path = utils.encodeUri("/directory/list/room/$roomId", {
       $roomId: roomId
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Get, path);
+    return this.http.authedRequest(_httpApi.Method.Get, path);
   }
+
   /**
    * Set the visbility of a room in the current HS's room directory
-   * @param {string} roomId
-   * @param {string} visibility "public" to make the room visible
+   * @param visibility - "public" to make the room visible
    *                 in the public directory, or "private" to make
    *                 it invisible.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: to an empty object {}
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: to an empty object `{}`
+   * @returns Rejects: with an error response.
    */
-
-
-  setRoomDirectoryVisibility(roomId, visibility, callback) {
+  setRoomDirectoryVisibility(roomId, visibility) {
     const path = utils.encodeUri("/directory/list/room/$roomId", {
       $roomId: roomId
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Put, path, undefined, {
+    return this.http.authedRequest(_httpApi.Method.Put, path, undefined, {
       visibility
     });
   }
+
   /**
    * Set the visbility of a room bridged to a 3rd party network in
    * the current HS's room directory.
-   * @param {string} networkId the network ID of the 3rd party
+   * @param networkId - the network ID of the 3rd party
    *                 instance under which this room is published under.
-   * @param {string} roomId
-   * @param {string} visibility "public" to make the room visible
+   * @param visibility - "public" to make the room visible
    *                 in the public directory, or "private" to make
    *                 it invisible.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: result object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: result object
+   * @returns Rejects: with an error response.
    */
-
-
-  setRoomDirectoryVisibilityAppService(networkId, roomId, visibility, callback) {
+  setRoomDirectoryVisibilityAppService(networkId, roomId, visibility) {
     // TODO: Types
     const path = utils.encodeUri("/directory/list/appservice/$networkId/$roomId", {
       $networkId: networkId,
       $roomId: roomId
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Put, path, undefined, {
-      "visibility": visibility
+    return this.http.authedRequest(_httpApi.Method.Put, path, undefined, {
+      visibility: visibility
     });
   }
+
   /**
    * Query the user directory with a term matching user IDs, display names and domains.
-   * @param {object} opts options
-   * @param {string} opts.term the term with which to search.
-   * @param {number} opts.limit the maximum number of results to return. The server will
+   * @param term - the term with which to search.
+   * @param limit - the maximum number of results to return. The server will
    *                 apply a limit if unspecified.
-   * @return {Promise} Resolves: an array of results.
+   * @returns Promise which resolves: an array of results.
    */
-
-
-  searchUserDirectory(opts) {
+  searchUserDirectory({
+    term,
+    limit
+  }) {
     const body = {
-      search_term: opts.term
+      search_term: term
     };
-
-    if (opts.limit !== undefined) {
-      body.limit = opts.limit;
+    if (limit !== undefined) {
+      body.limit = limit;
     }
-
-    return this.http.authedRequest(undefined, _httpApi.Method.Post, "/user_directory/search", undefined, body);
+    return this.http.authedRequest(_httpApi.Method.Post, "/user_directory/search", undefined, body);
   }
+
   /**
    * Upload a file to the media repository on the homeserver.
    *
-   * @param {object} file The object to upload. On a browser, something that
+   * @param file - The object to upload. On a browser, something that
    *   can be sent to XMLHttpRequest.send (typically a File).  Under node.js,
    *   a a Buffer, String or ReadStream.
    *
-   * @param {object} opts  options object
-   *
-   * @param {string=} opts.name   Name to give the file on the server. Defaults
-   *   to <tt>file.name</tt>.
-   *
-   * @param {boolean=} opts.includeFilename if false will not send the filename,
-   *   e.g for encrypted file uploads where filename leaks are undesirable.
-   *   Defaults to true.
-   *
-   * @param {string=} opts.type   Content-type for the upload. Defaults to
-   *   <tt>file.type</tt>, or <tt>applicaton/octet-stream</tt>.
-   *
-   * @param {boolean=} opts.rawResponse Return the raw body, rather than
-   *   parsing the JSON. Defaults to false (except on node.js, where it
-   *   defaults to true for backwards compatibility).
+   * @param opts -  options object
    *
-   * @param {boolean=} opts.onlyContentUri Just return the content URI,
-   *   rather than the whole body. Defaults to false (except on browsers,
-   *   where it defaults to true for backwards compatibility). Ignored if
-   *   opts.rawResponse is true.
-   *
-   * @param {Function=} opts.callback Deprecated. Optional. The callback to
-   *    invoke on success/failure. See the promise return values for more
-   *    information.
-   *
-   * @param {Function=} opts.progressHandler Optional. Called when a chunk of
-   *    data has been uploaded, with an object containing the fields `loaded`
-   *    (number of bytes transferred) and `total` (total size, if known).
-   *
-   * @return {Promise} Resolves to response object, as
+   * @returns Promise which resolves to response object, as
    *    determined by this.opts.onlyData, opts.rawResponse, and
    *    opts.onlyContentUri.  Rejects with an error (usually a MatrixError).
    */
-
-
   uploadContent(file, opts) {
     return this.http.uploadContent(file, opts);
   }
+
   /**
    * Cancel a file upload in progress
-   * @param {Promise} promise The promise returned from uploadContent
-   * @return {boolean} true if canceled, otherwise false
+   * @param upload - The object returned from uploadContent
+   * @returns true if canceled, otherwise false
    */
-
-
-  cancelUpload(promise) {
-    return this.http.cancelUpload(promise);
+  cancelUpload(upload) {
+    return this.http.cancelUpload(upload);
   }
+
   /**
    * Get a list of all file uploads in progress
-   * @return {array} Array of objects representing current uploads.
+   * @returns Array of objects representing current uploads.
    * Currently in progress is element 0. Keys:
    *  - promise: The promise associated with the upload
    *  - loaded: Number of bytes uploaded
    *  - total: Total number of bytes to upload
    */
-
-
   getCurrentUploads() {
     return this.http.getCurrentUploads();
   }
+
   /**
-   * @param {string} userId
-   * @param {string} info The kind of info to retrieve (e.g. 'displayname',
+   * @param info - The kind of info to retrieve (e.g. 'displayname',
    * 'avatar_url').
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: TODO
+   * @returns Rejects: with an error response.
    */
-
-
-  getProfileInfo(userId, info, callback // eslint-disable-next-line camelcase
+  getProfileInfo(userId, info
+  // eslint-disable-next-line camelcase
   ) {
-    if (utils.isFunction(info)) {
-      callback = info; // legacy
-
-      info = undefined;
-    }
-
     const path = info ? utils.encodeUri("/profile/$userId/$info", {
       $userId: userId,
       $info: info
     }) : utils.encodeUri("/profile/$userId", {
       $userId: userId
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Get, path);
+    return this.http.authedRequest(_httpApi.Method.Get, path);
   }
+
   /**
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves to a list of the user's threepids.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves to a list of the user's threepids.
+   * @returns Rejects: with an error response.
    */
-
-
-  getThreePids(callback) {
-    return this.http.authedRequest(callback, _httpApi.Method.Get, "/account/3pid");
+  getThreePids() {
+    return this.http.authedRequest(_httpApi.Method.Get, "/account/3pid");
   }
+
   /**
    * Add a 3PID to your homeserver account and optionally bind it to an identity
    * server as well. An identity server is required as part of the `creds` object.
@@ -6958,23 +6296,19 @@
    * This API is deprecated, and you should instead use `addThreePidOnly`
    * for homeservers that support it.
    *
-   * @param {Object} creds
-   * @param {boolean} bind
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: on success
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: on success
+   * @returns Rejects: with an error response.
    */
-
-
-  addThreePid(creds, bind, callback) {
+  addThreePid(creds, bind) {
     // TODO: Types
     const path = "/account/3pid";
     const data = {
-      'threePidCreds': creds,
-      'bind': bind
+      threePidCreds: creds,
+      bind: bind
     };
-    return this.http.authedRequest(callback, _httpApi.Method.Post, path, null, data);
+    return this.http.authedRequest(_httpApi.Method.Post, path, undefined, data);
   }
+
   /**
    * Add a 3PID to your homeserver account. This API does not use an identity
    * server, as the homeserver is expected to handle 3PID ownership validation.
@@ -6982,20 +6316,19 @@
    * You can check whether a homeserver supports this API via
    * `doesServerSupportSeparateAddAndBind`.
    *
-   * @param {Object} data A object with 3PID validation data from having called
+   * @param data - A object with 3PID validation data from having called
    * `account/3pid/<medium>/requestToken` on the homeserver.
-   * @return {Promise} Resolves: to an empty object {}
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: to an empty object `{}`
+   * @returns Rejects: with an error response.
    */
-
-
   async addThreePidOnly(data) {
     const path = "/account/3pid/add";
-    const prefix = (await this.isVersionSupported("r0.6.0")) ? _httpApi.PREFIX_R0 : _httpApi.PREFIX_UNSTABLE;
-    return this.http.authedRequest(undefined, _httpApi.Method.Post, path, null, data, {
+    const prefix = (await this.isVersionSupported("r0.6.0")) ? _httpApi.ClientPrefix.R0 : _httpApi.ClientPrefix.Unstable;
+    return this.http.authedRequest(_httpApi.Method.Post, path, undefined, data, {
       prefix
     });
   }
+
   /**
    * Bind a 3PID for discovery onto an identity server via the homeserver. The
    * identity server handles 3PID ownership validation and the homeserver records
@@ -7004,35 +6337,33 @@
    * You can check whether a homeserver supports this API via
    * `doesServerSupportSeparateAddAndBind`.
    *
-   * @param {Object} data A object with 3PID validation data from having called
+   * @param data - A object with 3PID validation data from having called
    * `validate/<medium>/requestToken` on the identity server. It should also
    * contain `id_server` and `id_access_token` fields as well.
-   * @return {Promise} Resolves: to an empty object {}
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: to an empty object `{}`
+   * @returns Rejects: with an error response.
    */
-
-
   async bindThreePid(data) {
     const path = "/account/3pid/bind";
-    const prefix = (await this.isVersionSupported("r0.6.0")) ? _httpApi.PREFIX_R0 : _httpApi.PREFIX_UNSTABLE;
-    return this.http.authedRequest(undefined, _httpApi.Method.Post, path, null, data, {
+    const prefix = (await this.isVersionSupported("r0.6.0")) ? _httpApi.ClientPrefix.R0 : _httpApi.ClientPrefix.Unstable;
+    return this.http.authedRequest(_httpApi.Method.Post, path, undefined, data, {
       prefix
     });
   }
+
   /**
    * Unbind a 3PID for discovery on an identity server via the homeserver. The
    * homeserver removes its record of the binding to keep an updated record of
    * where all 3PIDs for the account are bound.
    *
-   * @param {string} medium The threepid medium (eg. 'email')
-   * @param {string} address The threepid address (eg. 'bob@example.com')
+   * @param medium - The threepid medium (eg. 'email')
+   * @param address - The threepid address (eg. 'bob\@example.com')
    *        this must be as returned by getThreePids.
-   * @return {Promise} Resolves: on success
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: on success
+   * @returns Rejects: with an error response.
    */
-
-
-  async unbindThreePid(medium, address // eslint-disable-next-line camelcase
+  async unbindThreePid(medium, address
+  // eslint-disable-next-line camelcase
   ) {
     const path = "/account/3pid/unbind";
     const data = {
@@ -7040,437 +6371,392 @@
       address,
       id_server: this.getIdentityServerUrl(true)
     };
-    const prefix = (await this.isVersionSupported("r0.6.0")) ? _httpApi.PREFIX_R0 : _httpApi.PREFIX_UNSTABLE;
-    return this.http.authedRequest(undefined, _httpApi.Method.Post, path, null, data, {
+    const prefix = (await this.isVersionSupported("r0.6.0")) ? _httpApi.ClientPrefix.R0 : _httpApi.ClientPrefix.Unstable;
+    return this.http.authedRequest(_httpApi.Method.Post, path, undefined, data, {
       prefix
     });
   }
+
   /**
-   * @param {string} medium The threepid medium (eg. 'email')
-   * @param {string} address The threepid address (eg. 'bob@example.com')
+   * @param medium - The threepid medium (eg. 'email')
+   * @param address - The threepid address (eg. 'bob\@example.com')
    *        this must be as returned by getThreePids.
-   * @return {Promise} Resolves: The server response on success
+   * @returns Promise which resolves: The server response on success
    *     (generally the empty JSON object)
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Rejects: with an error response.
    */
-
-
-  deleteThreePid(medium, address // eslint-disable-next-line camelcase
+  deleteThreePid(medium, address
+  // eslint-disable-next-line camelcase
   ) {
     const path = "/account/3pid/delete";
-    return this.http.authedRequest(undefined, _httpApi.Method.Post, path, null, {
+    return this.http.authedRequest(_httpApi.Method.Post, path, undefined, {
       medium,
       address
     });
   }
+
   /**
    * Make a request to change your password.
-   * @param {Object} authDict
-   * @param {string} newPassword The new desired password.
-   * @param {boolean} logoutDevices Should all sessions be logged out after the password change. Defaults to true.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: to an empty object {}
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param newPassword - The new desired password.
+   * @param logoutDevices - Should all sessions be logged out after the password change. Defaults to true.
+   * @returns Promise which resolves: to an empty object `{}`
+   * @returns Rejects: with an error response.
    */
-
-
-  setPassword(authDict, newPassword, logoutDevices, callback) {
-    if (typeof logoutDevices === 'function') {
-      callback = logoutDevices;
-    }
-
-    if (typeof logoutDevices !== 'boolean') {
-      // Use backwards compatible behaviour of not specifying logout_devices
-      // This way it is left up to the server:
-      logoutDevices = undefined;
-    }
-
+  setPassword(authDict, newPassword, logoutDevices) {
     const path = "/account/password";
     const data = {
-      'auth': authDict,
-      'new_password': newPassword,
-      'logout_devices': logoutDevices
+      auth: authDict,
+      new_password: newPassword,
+      logout_devices: logoutDevices
     };
-    return this.http.authedRequest(callback, _httpApi.Method.Post, path, null, data);
+    return this.http.authedRequest(_httpApi.Method.Post, path, undefined, data);
   }
+
   /**
    * Gets all devices recorded for the logged-in user
-   * @return {Promise} Resolves: result object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: result object
+   * @returns Rejects: with an error response.
    */
-
-
   getDevices() {
-    return this.http.authedRequest(undefined, _httpApi.Method.Get, "/devices");
+    return this.http.authedRequest(_httpApi.Method.Get, "/devices");
   }
+
   /**
    * Gets specific device details for the logged-in user
-   * @param {string} deviceId  device to query
-   * @return {Promise} Resolves: result object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param deviceId -  device to query
+   * @returns Promise which resolves: result object
+   * @returns Rejects: with an error response.
    */
-
-
   getDevice(deviceId) {
     const path = utils.encodeUri("/devices/$device_id", {
       $device_id: deviceId
     });
-    return this.http.authedRequest(undefined, _httpApi.Method.Get, path);
+    return this.http.authedRequest(_httpApi.Method.Get, path);
   }
+
   /**
    * Update the given device
    *
-   * @param {string} deviceId  device to update
-   * @param {Object} body       body of request
-   * @return {Promise} Resolves: to an empty object {}
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param deviceId -  device to update
+   * @param body -       body of request
+   * @returns Promise which resolves: to an empty object `{}`
+   * @returns Rejects: with an error response.
    */
   // eslint-disable-next-line camelcase
-
-
   setDeviceDetails(deviceId, body) {
     const path = utils.encodeUri("/devices/$device_id", {
       $device_id: deviceId
     });
-    return this.http.authedRequest(undefined, _httpApi.Method.Put, path, undefined, body);
+    return this.http.authedRequest(_httpApi.Method.Put, path, undefined, body);
   }
+
   /**
    * Delete the given device
    *
-   * @param {string} deviceId  device to delete
-   * @param {object} auth Optional. Auth data to supply for User-Interactive auth.
-   * @return {Promise} Resolves: result object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param deviceId -  device to delete
+   * @param auth - Optional. Auth data to supply for User-Interactive auth.
+   * @returns Promise which resolves: result object
+   * @returns Rejects: with an error response.
    */
-
-
   deleteDevice(deviceId, auth) {
     const path = utils.encodeUri("/devices/$device_id", {
       $device_id: deviceId
     });
     const body = {};
-
     if (auth) {
       body.auth = auth;
     }
-
-    return this.http.authedRequest(undefined, _httpApi.Method.Delete, path, undefined, body);
+    return this.http.authedRequest(_httpApi.Method.Delete, path, undefined, body);
   }
+
   /**
    * Delete multiple device
    *
-   * @param {string[]} devices IDs of the devices to delete
-   * @param {object} auth Optional. Auth data to supply for User-Interactive auth.
-   * @return {Promise} Resolves: result object
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param devices - IDs of the devices to delete
+   * @param auth - Optional. Auth data to supply for User-Interactive auth.
+   * @returns Promise which resolves: result object
+   * @returns Rejects: with an error response.
    */
-
-
   deleteMultipleDevices(devices, auth) {
     const body = {
       devices
     };
-
     if (auth) {
       body.auth = auth;
     }
-
     const path = "/delete_devices";
-    return this.http.authedRequest(undefined, _httpApi.Method.Post, path, undefined, body);
+    return this.http.authedRequest(_httpApi.Method.Post, path, undefined, body);
   }
+
   /**
    * Gets all pushers registered for the logged-in user
    *
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: Array of objects representing pushers
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: Array of objects representing pushers
+   * @returns Rejects: with an error response.
    */
+  async getPushers() {
+    const response = await this.http.authedRequest(_httpApi.Method.Get, "/pushers");
 
-
-  getPushers(callback) {
-    return this.http.authedRequest(callback, _httpApi.Method.Get, "/pushers");
+    // Migration path for clients that connect to a homeserver that does not support
+    // MSC3881 yet, see https://github.com/matrix-org/matrix-spec-proposals/blob/kerry/remote-push-toggle/proposals/3881-remote-push-notification-toggling.md#migration
+    if (!(await this.doesServerSupportUnstableFeature("org.matrix.msc3881"))) {
+      response.pushers = response.pushers.map(pusher => {
+        if (!pusher.hasOwnProperty(_event2.PUSHER_ENABLED.name)) {
+          pusher[_event2.PUSHER_ENABLED.name] = true;
+        }
+        return pusher;
+      });
+    }
+    return response;
   }
+
   /**
    * Adds a new pusher or updates an existing pusher
    *
-   * @param {IPusherRequest} pusher Object representing a pusher
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: Empty json object on success
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @param pusher - Object representing a pusher
+   * @returns Promise which resolves: Empty json object on success
+   * @returns Rejects: with an error response.
    */
-
-
-  setPusher(pusher, callback) {
+  setPusher(pusher) {
     const path = "/pushers/set";
-    return this.http.authedRequest(callback, _httpApi.Method.Post, path, null, pusher);
+    return this.http.authedRequest(_httpApi.Method.Post, path, undefined, pusher);
   }
+
   /**
-   * Get the push rules for the account from the server.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves to the push rules.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * Persists local notification settings
+   * @returns Promise which resolves: an empty object
+   * @returns Rejects: with an error response.
    */
+  setLocalNotificationSettings(deviceId, notificationSettings) {
+    const key = `${_event2.LOCAL_NOTIFICATION_SETTINGS_PREFIX.name}.${deviceId}`;
+    return this.setAccountData(key, notificationSettings);
+  }
 
-
-  getPushRules(callback) {
-    return this.http.authedRequest(callback, _httpApi.Method.Get, "/pushrules/").then(rules => {
-      return _pushprocessor.PushProcessor.rewriteDefaultRules(rules);
+  /**
+   * Get the push rules for the account from the server.
+   * @returns Promise which resolves to the push rules.
+   * @returns Rejects: with an error response.
+   */
+  getPushRules() {
+    return this.http.authedRequest(_httpApi.Method.Get, "/pushrules/").then(rules => {
+      this.setPushRules(rules);
+      return this.pushRules;
     });
   }
+
   /**
-   * @param {string} scope
-   * @param {string} kind
-   * @param {string} ruleId
-   * @param {Object} body
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: an empty object {}
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * Update the push rules for the account. This should be called whenever
+   * updated push rules are available.
    */
+  setPushRules(rules) {
+    // Fix-up defaults, if applicable.
+    this.pushRules = _pushprocessor.PushProcessor.rewriteDefaultRules(rules);
+    // Pre-calculate any necessary caches.
+    this.pushProcessor.updateCachedPushRuleKeys(this.pushRules);
+  }
 
-
-  addPushRule(scope, kind, ruleId, body, callback) {
+  /**
+   * @returns Promise which resolves: an empty object `{}`
+   * @returns Rejects: with an error response.
+   */
+  addPushRule(scope, kind, ruleId, body) {
     // NB. Scope not uri encoded because devices need the '/'
     const path = utils.encodeUri("/pushrules/" + scope + "/$kind/$ruleId", {
       $kind: kind,
       $ruleId: ruleId
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Put, path, undefined, body);
+    return this.http.authedRequest(_httpApi.Method.Put, path, undefined, body);
   }
+
   /**
-   * @param {string} scope
-   * @param {string} kind
-   * @param {string} ruleId
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: an empty object {}
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: an empty object `{}`
+   * @returns Rejects: with an error response.
    */
-
-
-  deletePushRule(scope, kind, ruleId, callback) {
+  deletePushRule(scope, kind, ruleId) {
     // NB. Scope not uri encoded because devices need the '/'
     const path = utils.encodeUri("/pushrules/" + scope + "/$kind/$ruleId", {
       $kind: kind,
       $ruleId: ruleId
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Delete, path);
+    return this.http.authedRequest(_httpApi.Method.Delete, path);
   }
+
   /**
    * Enable or disable a push notification rule.
-   * @param {string} scope
-   * @param {string} kind
-   * @param {string} ruleId
-   * @param {boolean} enabled
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: to an empty object {}
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: to an empty object `{}`
+   * @returns Rejects: with an error response.
    */
-
-
-  setPushRuleEnabled(scope, kind, ruleId, enabled, callback) {
+  setPushRuleEnabled(scope, kind, ruleId, enabled) {
     const path = utils.encodeUri("/pushrules/" + scope + "/$kind/$ruleId/enabled", {
       $kind: kind,
       $ruleId: ruleId
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Put, path, undefined, {
-      "enabled": enabled
+    return this.http.authedRequest(_httpApi.Method.Put, path, undefined, {
+      enabled: enabled
     });
   }
+
   /**
    * Set the actions for a push notification rule.
-   * @param {string} scope
-   * @param {string} kind
-   * @param {string} ruleId
-   * @param {array} actions
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: to an empty object {}
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: to an empty object `{}`
+   * @returns Rejects: with an error response.
    */
-
-
-  setPushRuleActions(scope, kind, ruleId, actions, callback) {
+  setPushRuleActions(scope, kind, ruleId, actions) {
     const path = utils.encodeUri("/pushrules/" + scope + "/$kind/$ruleId/actions", {
       $kind: kind,
       $ruleId: ruleId
     });
-    return this.http.authedRequest(callback, _httpApi.Method.Put, path, undefined, {
-      "actions": actions
+    return this.http.authedRequest(_httpApi.Method.Put, path, undefined, {
+      actions: actions
     });
   }
+
   /**
    * Perform a server-side search.
-   * @param {Object} opts
-   * @param {string} opts.next_batch the batch token to pass in the query string
-   * @param {Object} opts.body the JSON object to pass to the request body.
-   * @param {module:client.callback} callback Optional.
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
-   */
-
-
-  search(opts, // eslint-disable-line camelcase
-  callback) {
+   * @param next_batch - the batch token to pass in the query string
+   * @param body - the JSON object to pass to the request body.
+   * @param abortSignal - optional signal used to cancel the http request.
+   * @returns Promise which resolves to the search response object.
+   * @returns Rejects: with an error response.
+   */
+  search({
+    body,
+    next_batch: nextBatch
+  }, abortSignal) {
     const queryParams = {};
-
-    if (opts.next_batch) {
-      queryParams.next_batch = opts.next_batch;
+    if (nextBatch) {
+      queryParams.next_batch = nextBatch;
     }
-
-    return this.http.authedRequest(callback, _httpApi.Method.Post, "/search", queryParams, opts.body);
+    return this.http.authedRequest(_httpApi.Method.Post, "/search", queryParams, body, {
+      abortSignal
+    });
   }
+
   /**
    * Upload keys
    *
-   * @param {Object} content  body of upload request
+   * @param content -  body of upload request
    *
-   * @param {Object=} opts this method no longer takes any opts,
+   * @param opts - this method no longer takes any opts,
    *  used to take opts.device_id but this was not removed from the spec as a redundant parameter
    *
-   * @param {module:client.callback=} callback
-   *
-   * @return {Promise} Resolves: result object. Rejects: with
-   *     an error response ({@link module:http-api.MatrixError}).
+   * @returns Promise which resolves: result object. Rejects: with
+   *     an error response ({@link MatrixError}).
    */
-
-
-  uploadKeysRequest(content, opts, callback) {
-    return this.http.authedRequest(callback, _httpApi.Method.Post, "/keys/upload", undefined, content);
+  uploadKeysRequest(content, opts) {
+    return this.http.authedRequest(_httpApi.Method.Post, "/keys/upload", undefined, content);
   }
-
   uploadKeySignatures(content) {
-    return this.http.authedRequest(undefined, _httpApi.Method.Post, '/keys/signatures/upload', undefined, content, {
-      prefix: _httpApi.PREFIX_UNSTABLE
+    return this.http.authedRequest(_httpApi.Method.Post, "/keys/signatures/upload", undefined, content, {
+      prefix: _httpApi.ClientPrefix.V3
     });
   }
+
   /**
    * Download device keys
    *
-   * @param {string[]} userIds  list of users to get keys for
+   * @param userIds -  list of users to get keys for
    *
-   * @param {Object=} opts
-   *
-   * @param {string=} opts.token   sync token to pass in the query request, to help
+   * @param token - sync token to pass in the query request, to help
    *   the HS give the most recent results
    *
-   * @return {Promise} Resolves: result object. Rejects: with
-   *     an error response ({@link module:http-api.MatrixError}).
+   * @returns Promise which resolves: result object. Rejects: with
+   *     an error response ({@link MatrixError}).
    */
-
-
-  downloadKeysForUsers(userIds, opts) {
-    if (utils.isFunction(opts)) {
-      // opts used to be 'callback'.
-      throw new Error('downloadKeysForUsers no longer accepts a callback parameter');
-    }
-
-    opts = opts || {};
+  downloadKeysForUsers(userIds, {
+    token
+  } = {}) {
     const content = {
       device_keys: {}
     };
-
-    if ('token' in opts) {
-      content.token = opts.token;
+    if (token !== undefined) {
+      content.token = token;
     }
-
     userIds.forEach(u => {
       content.device_keys[u] = [];
     });
-    return this.http.authedRequest(undefined, _httpApi.Method.Post, "/keys/query", undefined, content);
+    return this.http.authedRequest(_httpApi.Method.Post, "/keys/query", undefined, content);
   }
+
   /**
    * Claim one-time keys
    *
-   * @param {string[]} devices  a list of [userId, deviceId] pairs
+   * @param devices -  a list of [userId, deviceId] pairs
    *
-   * @param {string} [keyAlgorithm = signed_curve25519]  desired key type
+   * @param keyAlgorithm -  desired key type
    *
-   * @param {number} [timeout] the time (in milliseconds) to wait for keys from remote
+   * @param timeout - the time (in milliseconds) to wait for keys from remote
    *     servers
    *
-   * @return {Promise} Resolves: result object. Rejects: with
-   *     an error response ({@link module:http-api.MatrixError}).
+   * @returns Promise which resolves: result object. Rejects: with
+   *     an error response ({@link MatrixError}).
    */
-
-
   claimOneTimeKeys(devices, keyAlgorithm = "signed_curve25519", timeout) {
     const queries = {};
-
     if (keyAlgorithm === undefined) {
       keyAlgorithm = "signed_curve25519";
     }
-
-    for (let i = 0; i < devices.length; ++i) {
-      const userId = devices[i][0];
-      const deviceId = devices[i][1];
+    for (const [userId, deviceId] of devices) {
       const query = queries[userId] || {};
       queries[userId] = query;
       query[deviceId] = keyAlgorithm;
     }
-
     const content = {
       one_time_keys: queries
     };
-
     if (timeout) {
       content.timeout = timeout;
     }
-
     const path = "/keys/claim";
-    return this.http.authedRequest(undefined, _httpApi.Method.Post, path, undefined, content);
+    return this.http.authedRequest(_httpApi.Method.Post, path, undefined, content);
   }
+
   /**
    * Ask the server for a list of users who have changed their device lists
    * between a pair of sync tokens
    *
-   * @param {string} oldToken
-   * @param {string} newToken
    *
-   * @return {Promise} Resolves: result object. Rejects: with
-   *     an error response ({@link module:http-api.MatrixError}).
+   * @returns Promise which resolves: result object. Rejects: with
+   *     an error response ({@link MatrixError}).
    */
-
-
   getKeyChanges(oldToken, newToken) {
     const qps = {
       from: oldToken,
       to: newToken
     };
-    return this.http.authedRequest(undefined, _httpApi.Method.Get, "/keys/changes", qps);
+    return this.http.authedRequest(_httpApi.Method.Get, "/keys/changes", qps);
   }
-
   uploadDeviceSigningKeys(auth, keys) {
     // API returns empty object
     const data = Object.assign({}, keys);
     if (auth) Object.assign(data, {
       auth
     });
-    return this.http.authedRequest(undefined, _httpApi.Method.Post, "/keys/device_signing/upload", undefined, data, {
-      prefix: _httpApi.PREFIX_UNSTABLE
+    return this.http.authedRequest(_httpApi.Method.Post, "/keys/device_signing/upload", undefined, data, {
+      prefix: _httpApi.ClientPrefix.Unstable
     });
   }
+
   /**
    * Register with an identity server using the OpenID token from the user's
    * Homeserver, which can be retrieved via
-   * {@link module:client~MatrixClient#getOpenIdToken}.
+   * {@link MatrixClient#getOpenIdToken}.
    *
    * Note that the `/account/register` endpoint (as well as IS authentication in
    * general) was added as part of the v2 API version.
    *
-   * @param {object} hsOpenIdToken
-   * @return {Promise} Resolves: with object containing an Identity
+   * @returns Promise which resolves: with object containing an Identity
    * Server access token.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Rejects: with an error response.
    */
-
-
   registerWithIdentityServer(hsOpenIdToken) {
-    // TODO: Types
     if (!this.idBaseUrl) {
       throw new Error("No identity server base URL set");
     }
-
-    const uri = this.idBaseUrl + _httpApi.PREFIX_IDENTITY_V2 + "/account/register";
-    return this.http.requestOtherUrl(undefined, _httpApi.Method.Post, uri, null, hsOpenIdToken);
+    const uri = this.http.getUrl("/account/register", undefined, _httpApi.IdentityPrefix.V2, this.idBaseUrl);
+    return this.http.requestOtherUrl(_httpApi.Method.Post, uri, hsOpenIdToken);
   }
+
   /**
    * Requests an email verification token directly from an identity server.
    *
@@ -7478,35 +6764,34 @@
    * server. The validation data that results should be passed to the
    * `bindThreePid` method to complete the binding process.
    *
-   * @param {string} email The email address to request a token for
-   * @param {string} clientSecret A secret binary string generated by the client.
+   * @param email - The email address to request a token for
+   * @param clientSecret - A secret binary string generated by the client.
    *                 It is recommended this be around 16 ASCII characters.
-   * @param {number} sendAttempt If an identity server sees a duplicate request
+   * @param sendAttempt - If an identity server sees a duplicate request
    *                 with the same sendAttempt, it will not send another email.
    *                 To request another email to be sent, use a larger value for
    *                 the sendAttempt param as was used in the previous request.
-   * @param {string} nextLink Optional If specified, the client will be redirected
+   * @param nextLink - Optional If specified, the client will be redirected
    *                 to this link after validation.
-   * @param {module:client.callback} callback Optional.
-   * @param {string} identityAccessToken The `access_token` field of the identity
+   * @param identityAccessToken - The `access_token` field of the identity
    * server `/account/register` response (see {@link registerWithIdentityServer}).
    *
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: TODO
+   * @returns Rejects: with an error response.
    * @throws Error if no identity server is set
    */
-
-
-  requestEmailToken(email, clientSecret, sendAttempt, nextLink, callback, identityAccessToken) {
-    // TODO: Types
+  requestEmailToken(email, clientSecret, sendAttempt, nextLink, identityAccessToken) {
     const params = {
       client_secret: clientSecret,
       email: email,
-      send_attempt: sendAttempt?.toString(),
-      next_link: nextLink
+      send_attempt: sendAttempt?.toString()
     };
-    return this.http.idServerRequest(callback, _httpApi.Method.Post, "/validate/email/requestToken", params, _httpApi.PREFIX_IDENTITY_V2, identityAccessToken);
+    if (nextLink) {
+      params.next_link = nextLink;
+    }
+    return this.http.idServerRequest(_httpApi.Method.Post, "/validate/email/requestToken", params, _httpApi.IdentityPrefix.V2, identityAccessToken);
   }
+
   /**
    * Requests a MSISDN verification token directly from an identity server.
    *
@@ -7514,39 +6799,38 @@
    * server. The validation data that results should be passed to the
    * `bindThreePid` method to complete the binding process.
    *
-   * @param {string} phoneCountry The ISO 3166-1 alpha-2 code for the country in
+   * @param phoneCountry - The ISO 3166-1 alpha-2 code for the country in
    *                 which phoneNumber should be parsed relative to.
-   * @param {string} phoneNumber The phone number, in national or international
+   * @param phoneNumber - The phone number, in national or international
    *                 format
-   * @param {string} clientSecret A secret binary string generated by the client.
+   * @param clientSecret - A secret binary string generated by the client.
    *                 It is recommended this be around 16 ASCII characters.
-   * @param {number} sendAttempt If an identity server sees a duplicate request
+   * @param sendAttempt - If an identity server sees a duplicate request
    *                 with the same sendAttempt, it will not send another SMS.
    *                 To request another SMS to be sent, use a larger value for
    *                 the sendAttempt param as was used in the previous request.
-   * @param {string} nextLink Optional If specified, the client will be redirected
+   * @param nextLink - Optional If specified, the client will be redirected
    *                 to this link after validation.
-   * @param {module:client.callback} callback Optional.
-   * @param {string} identityAccessToken The `access_token` field of the Identity
+   * @param identityAccessToken - The `access_token` field of the Identity
    * Server `/account/register` response (see {@link registerWithIdentityServer}).
    *
-   * @return {Promise} Resolves: TODO
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves to an object with a sid string
+   * @returns Rejects: with an error response.
    * @throws Error if no identity server is set
    */
-
-
-  requestMsisdnToken(phoneCountry, phoneNumber, clientSecret, sendAttempt, nextLink, callback, identityAccessToken) {
-    // TODO: Types
+  requestMsisdnToken(phoneCountry, phoneNumber, clientSecret, sendAttempt, nextLink, identityAccessToken) {
     const params = {
       client_secret: clientSecret,
       country: phoneCountry,
       phone_number: phoneNumber,
-      send_attempt: sendAttempt?.toString(),
-      next_link: nextLink
+      send_attempt: sendAttempt?.toString()
     };
-    return this.http.idServerRequest(callback, _httpApi.Method.Post, "/validate/msisdn/requestToken", params, _httpApi.PREFIX_IDENTITY_V2, identityAccessToken);
+    if (nextLink) {
+      params.next_link = nextLink;
+    }
+    return this.http.idServerRequest(_httpApi.Method.Post, "/validate/msisdn/requestToken", params, _httpApi.IdentityPrefix.V2, identityAccessToken);
   }
+
   /**
    * Submits a MSISDN token to the identity server
    *
@@ -7555,19 +6839,17 @@
    * not expose this, since email is normally validated by the user clicking
    * a link rather than entering a code.
    *
-   * @param {string} sid The sid given in the response to requestToken
-   * @param {string} clientSecret A secret binary string generated by the client.
+   * @param sid - The sid given in the response to requestToken
+   * @param clientSecret - A secret binary string generated by the client.
    *                 This must be the same value submitted in the requestToken call.
-   * @param {string} msisdnToken The MSISDN token, as enetered by the user.
-   * @param {string} identityAccessToken The `access_token` field of the Identity
+   * @param msisdnToken - The MSISDN token, as enetered by the user.
+   * @param identityAccessToken - The `access_token` field of the Identity
    * Server `/account/register` response (see {@link registerWithIdentityServer}).
    *
-   * @return {Promise} Resolves: Object, currently with no parameters.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: Object, currently with no parameters.
+   * @returns Rejects: with an error response.
    * @throws Error if No identity server is set
    */
-
-
   submitMsisdnToken(sid, clientSecret, msisdnToken, identityAccessToken) {
     // TODO: Types
     const params = {
@@ -7575,8 +6857,9 @@
       client_secret: clientSecret,
       token: msisdnToken
     };
-    return this.http.idServerRequest(undefined, _httpApi.Method.Post, "/validate/msisdn/submitToken", params, _httpApi.PREFIX_IDENTITY_V2, identityAccessToken);
+    return this.http.idServerRequest(_httpApi.Method.Post, "/validate/msisdn/submitToken", params, _httpApi.IdentityPrefix.V2, identityAccessToken);
   }
+
   /**
    * Submits a MSISDN token to an arbitrary URL.
    *
@@ -7586,17 +6869,15 @@
    * `submit_url` to specify where the token should be sent, and this helper can
    * be used to pass the token to this URL.
    *
-   * @param {string} url The URL to submit the token to
-   * @param {string} sid The sid given in the response to requestToken
-   * @param {string} clientSecret A secret binary string generated by the client.
+   * @param url - The URL to submit the token to
+   * @param sid - The sid given in the response to requestToken
+   * @param clientSecret - A secret binary string generated by the client.
    *                 This must be the same value submitted in the requestToken call.
-   * @param {string} msisdnToken The MSISDN token, as enetered by the user.
+   * @param msisdnToken - The MSISDN token, as enetered by the user.
    *
-   * @return {Promise} Resolves: Object, currently with no parameters.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: Object, currently with no parameters.
+   * @returns Rejects: with an error response.
    */
-
-
   submitMsisdnTokenOtherUrl(url, sid, clientSecret, msisdnToken) {
     // TODO: Types
     const params = {
@@ -7604,72 +6885,69 @@
       client_secret: clientSecret,
       token: msisdnToken
     };
-    return this.http.requestOtherUrl(undefined, _httpApi.Method.Post, url, undefined, params);
+    return this.http.requestOtherUrl(_httpApi.Method.Post, url, params);
   }
+
   /**
    * Gets the V2 hashing information from the identity server. Primarily useful for
    * lookups.
-   * @param {string} identityAccessToken The access token for the identity server.
-   * @returns {Promise<object>} The hashing information for the identity server.
+   * @param identityAccessToken - The access token for the identity server.
+   * @returns The hashing information for the identity server.
    */
-
-
   getIdentityHashDetails(identityAccessToken) {
     // TODO: Types
-    return this.http.idServerRequest(undefined, _httpApi.Method.Get, "/hash_details", null, _httpApi.PREFIX_IDENTITY_V2, identityAccessToken);
+    return this.http.idServerRequest(_httpApi.Method.Get, "/hash_details", undefined, _httpApi.IdentityPrefix.V2, identityAccessToken);
   }
+
   /**
    * Performs a hashed lookup of addresses against the identity server. This is
    * only supported on identity servers which have at least the version 2 API.
-   * @param {Array<Array<string,string>>} addressPairs An array of 2 element arrays.
+   * @param addressPairs - An array of 2 element arrays.
    * The first element of each pair is the address, the second is the 3PID medium.
-   * Eg: ["email@example.org", "email"]
-   * @param {string} identityAccessToken The access token for the identity server.
-   * @returns {Promise<Array<{address, mxid}>>} A collection of address mappings to
+   * Eg: `["email@example.org", "email"]`
+   * @param identityAccessToken - The access token for the identity server.
+   * @returns A collection of address mappings to
    * found MXIDs. Results where no user could be found will not be listed.
    */
-
-
   async identityHashedLookup(addressPairs, identityAccessToken) {
-    const params = {// addresses: ["email@example.org", "10005550000"],
+    const params = {
+      // addresses: ["email@example.org", "10005550000"],
       // algorithm: "sha256",
       // pepper: "abc123"
-    }; // Get hash information first before trying to do a lookup
+    };
 
+    // Get hash information first before trying to do a lookup
     const hashes = await this.getIdentityHashDetails(identityAccessToken);
-
-    if (!hashes || !hashes['lookup_pepper'] || !hashes['algorithms']) {
+    if (!hashes || !hashes["lookup_pepper"] || !hashes["algorithms"]) {
       throw new Error("Unsupported identity server: bad response");
     }
-
-    params['pepper'] = hashes['lookup_pepper'];
-    const localMapping = {// hashed identifier => plain text address
+    params["pepper"] = hashes["lookup_pepper"];
+    const localMapping = {
+      // hashed identifier => plain text address
       // For use in this function's return format
-    }; // When picking an algorithm, we pick the hashed over no hashes
+    };
 
-    if (hashes['algorithms'].includes('sha256')) {
+    // When picking an algorithm, we pick the hashed over no hashes
+    if (hashes["algorithms"].includes("sha256")) {
       // Abuse the olm hashing
       const olmutil = new global.Olm.Utility();
       params["addresses"] = addressPairs.map(p => {
         const addr = p[0].toLowerCase(); // lowercase to get consistent hashes
-
         const med = p[1].toLowerCase();
-        const hashed = olmutil.sha256(`${addr} ${med} ${params['pepper']}`).replace(/\+/g, '-').replace(/\//g, '_'); // URL-safe base64
+        const hashed = olmutil.sha256(`${addr} ${med} ${params["pepper"]}`).replace(/\+/g, "-").replace(/\//g, "_"); // URL-safe base64
         // Map the hash to a known (case-sensitive) address. We use the case
         // sensitive version because the caller might be expecting that.
-
         localMapping[hashed] = p[0];
         return hashed;
       });
       params["algorithm"] = "sha256";
-    } else if (hashes['algorithms'].includes('none')) {
+    } else if (hashes["algorithms"].includes("none")) {
       params["addresses"] = addressPairs.map(p => {
         const addr = p[0].toLowerCase(); // lowercase to get consistent hashes
-
         const med = p[1].toLowerCase();
-        const unhashed = `${addr} ${med}`; // Map the unhashed values to a known (case-sensitive) address. We use
-        // the case sensitive version because the caller might be expecting that.
-
+        const unhashed = `${addr} ${med}`;
+        // Map the unhashed values to a known (case-sensitive) address. We use
+        // the case-sensitive version because the caller might be expecting that.
         localMapping[unhashed] = p[0];
         return unhashed;
       });
@@ -7677,272 +6955,243 @@
     } else {
       throw new Error("Unsupported identity server: unknown hash algorithm");
     }
+    const response = await this.http.idServerRequest(_httpApi.Method.Post, "/lookup", params, _httpApi.IdentityPrefix.V2, identityAccessToken);
+    if (!response?.["mappings"]) return []; // no results
 
-    const response = await this.http.idServerRequest(undefined, _httpApi.Method.Post, "/lookup", params, _httpApi.PREFIX_IDENTITY_V2, identityAccessToken);
-    if (!response || !response['mappings']) return []; // no results
-
-    const foundAddresses = [
-      /* {address: "plain@example.org", mxid} */
-    ];
-
-    for (const hashed of Object.keys(response['mappings'])) {
-      const mxid = response['mappings'][hashed];
+    const foundAddresses = [];
+    for (const hashed of Object.keys(response["mappings"])) {
+      const mxid = response["mappings"][hashed];
       const plainAddress = localMapping[hashed];
-
       if (!plainAddress) {
         throw new Error("Identity server returned more results than expected");
       }
-
       foundAddresses.push({
         address: plainAddress,
         mxid
       });
     }
-
     return foundAddresses;
   }
+
   /**
    * Looks up the public Matrix ID mapping for a given 3rd party
    * identifier from the identity server
    *
-   * @param {string} medium The medium of the threepid, eg. 'email'
-   * @param {string} address The textual address of the threepid
-   * @param {module:client.callback} callback Optional.
-   * @param {string} identityAccessToken The `access_token` field of the Identity
+   * @param medium - The medium of the threepid, eg. 'email'
+   * @param address - The textual address of the threepid
+   * @param identityAccessToken - The `access_token` field of the Identity
    * Server `/account/register` response (see {@link registerWithIdentityServer}).
    *
-   * @return {Promise} Resolves: A threepid mapping
+   * @returns Promise which resolves: A threepid mapping
    *                                 object or the empty object if no mapping
    *                                 exists
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Rejects: with an error response.
    */
-
-
-  async lookupThreePid(medium, address, callback, identityAccessToken) {
+  async lookupThreePid(medium, address, identityAccessToken) {
     // TODO: Types
     // Note: we're using the V2 API by calling this function, but our
     // function contract requires a V1 response. We therefore have to
     // convert it manually.
     const response = await this.identityHashedLookup([[address, medium]], identityAccessToken);
     const result = response.find(p => p.address === address);
-
     if (!result) {
-      if (callback) callback(null, {});
       return {};
     }
-
     const mapping = {
       address,
       medium,
-      mxid: result.mxid // We can't reasonably fill these parameters:
+      mxid: result.mxid
+
+      // We can't reasonably fill these parameters:
       // not_before
       // not_after
       // ts
       // signatures
-
     };
-    if (callback) callback(null, mapping);
+
     return mapping;
   }
+
   /**
    * Looks up the public Matrix ID mappings for multiple 3PIDs.
    *
-   * @param {Array.<Array.<string>>} query Array of arrays containing
+   * @param query - Array of arrays containing
    * [medium, address]
-   * @param {string} identityAccessToken The `access_token` field of the Identity
+   * @param identityAccessToken - The `access_token` field of the Identity
    * Server `/account/register` response (see {@link registerWithIdentityServer}).
    *
-   * @return {Promise} Resolves: Lookup results from IS.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: Lookup results from IS.
+   * @returns Rejects: with an error response.
    */
-
-
   async bulkLookupThreePids(query, identityAccessToken) {
     // TODO: Types
     // Note: we're using the V2 API by calling this function, but our
     // function contract requires a V1 response. We therefore have to
     // convert it manually.
-    const response = await this.identityHashedLookup( // We have to reverse the query order to get [address, medium] pairs
+    const response = await this.identityHashedLookup(
+    // We have to reverse the query order to get [address, medium] pairs
     query.map(p => [p[1], p[0]]), identityAccessToken);
     const v1results = [];
-
     for (const mapping of response) {
       const originalQuery = query.find(p => p[1] === mapping.address);
-
       if (!originalQuery) {
         throw new Error("Identity sever returned unexpected results");
       }
-
-      v1results.push([originalQuery[0], // medium
+      v1results.push([originalQuery[0],
+      // medium
       mapping.address, mapping.mxid]);
     }
-
     return {
       threepids: v1results
     };
   }
+
   /**
    * Get account info from the identity server. This is useful as a neutral check
    * to verify that other APIs are likely to approve access by testing that the
    * token is valid, terms have been agreed, etc.
    *
-   * @param {string} identityAccessToken The `access_token` field of the Identity
+   * @param identityAccessToken - The `access_token` field of the Identity
    * Server `/account/register` response (see {@link registerWithIdentityServer}).
    *
-   * @return {Promise} Resolves: an object with account info.
-   * @return {module:http-api.MatrixError} Rejects: with an error response.
+   * @returns Promise which resolves: an object with account info.
+   * @returns Rejects: with an error response.
    */
-
-
   getIdentityAccount(identityAccessToken) {
     // TODO: Types
-    return this.http.idServerRequest(undefined, _httpApi.Method.Get, "/account", undefined, _httpApi.PREFIX_IDENTITY_V2, identityAccessToken);
+    return this.http.idServerRequest(_httpApi.Method.Get, "/account", undefined, _httpApi.IdentityPrefix.V2, identityAccessToken);
   }
+
   /**
    * Send an event to a specific list of devices.
    * This is a low-level API that simply wraps the HTTP API
    * call to send to-device messages. We recommend using
    * queueToDevice() which is a higher level API.
    *
-   * @param {string} eventType  type of event to send
-   * @param {Object.<string, Object<string, Object>>} contentMap
+   * @param eventType -  type of event to send
    *    content to send. Map from user_id to device_id to content object.
-   * @param {string=} txnId     transaction id. One will be made up if not
+   * @param txnId -     transaction id. One will be made up if not
    *    supplied.
-   * @return {Promise} Resolves: to an empty object {}
+   * @returns Promise which resolves: to an empty object `{}`
    */
-
-
   sendToDevice(eventType, contentMap, txnId) {
     const path = utils.encodeUri("/sendToDevice/$eventType/$txnId", {
       $eventType: eventType,
       $txnId: txnId ? txnId : this.makeTxnId()
     });
     const body = {
-      messages: contentMap
+      messages: utils.recursiveMapToObject(contentMap)
     };
-    const targets = Object.keys(contentMap).reduce((obj, key) => {
-      obj[key] = Object.keys(contentMap[key]);
-      return obj;
-    }, {});
-
+    const targets = new Map();
+    for (const [userId, deviceMessages] of contentMap) {
+      targets.set(userId, Array.from(deviceMessages.keys()));
+    }
     _logger.logger.log(`PUT ${path}`, targets);
-
-    return this.http.authedRequest(undefined, _httpApi.Method.Put, path, undefined, body);
+    return this.http.authedRequest(_httpApi.Method.Put, path, undefined, body);
   }
+
   /**
    * Sends events directly to specific devices using Matrix's to-device
    * messaging system. The batch will be split up into appropriately sized
    * batches for sending and stored in the store so they can be retried
    * later if they fail to send. Retries will happen automatically.
-   * @param batch The to-device messages to send
+   * @param batch - The to-device messages to send
    */
-
-
   queueToDevice(batch) {
     return this.toDeviceMessageQueue.queueBatch(batch);
   }
+
   /**
    * Get the third party protocols that can be reached using
    * this HS
-   * @return {Promise} Resolves to the result object
+   * @returns Promise which resolves to the result object
    */
-
-
   getThirdpartyProtocols() {
-    return this.http.authedRequest(undefined, _httpApi.Method.Get, "/thirdparty/protocols").then(response => {
+    return this.http.authedRequest(_httpApi.Method.Get, "/thirdparty/protocols").then(response => {
       // sanity check
-      if (!response || typeof response !== 'object') {
+      if (!response || typeof response !== "object") {
         throw new Error(`/thirdparty/protocols did not return an object: ${response}`);
       }
-
       return response;
     });
   }
+
   /**
    * Get information on how a specific place on a third party protocol
    * may be reached.
-   * @param {string} protocol The protocol given in getThirdpartyProtocols()
-   * @param {object} params Protocol-specific parameters, as given in the
+   * @param protocol - The protocol given in getThirdpartyProtocols()
+   * @param params - Protocol-specific parameters, as given in the
    *                        response to getThirdpartyProtocols()
-   * @return {Promise} Resolves to the result object
+   * @returns Promise which resolves to the result object
    */
-
-
   getThirdpartyLocation(protocol, params) {
     const path = utils.encodeUri("/thirdparty/location/$protocol", {
       $protocol: protocol
     });
-    return this.http.authedRequest(undefined, _httpApi.Method.Get, path, params);
+    return this.http.authedRequest(_httpApi.Method.Get, path, params);
   }
+
   /**
    * Get information on how a specific user on a third party protocol
    * may be reached.
-   * @param {string} protocol The protocol given in getThirdpartyProtocols()
-   * @param {object} params Protocol-specific parameters, as given in the
+   * @param protocol - The protocol given in getThirdpartyProtocols()
+   * @param params - Protocol-specific parameters, as given in the
    *                        response to getThirdpartyProtocols()
-   * @return {Promise} Resolves to the result object
+   * @returns Promise which resolves to the result object
    */
-
-
   getThirdpartyUser(protocol, params) {
     // TODO: Types
     const path = utils.encodeUri("/thirdparty/user/$protocol", {
       $protocol: protocol
     });
-    return this.http.authedRequest(undefined, _httpApi.Method.Get, path, params);
+    return this.http.authedRequest(_httpApi.Method.Get, path, params);
   }
-
   getTerms(serviceType, baseUrl) {
     // TODO: Types
     const url = this.termsUrlForService(serviceType, baseUrl);
-    return this.http.requestOtherUrl(undefined, _httpApi.Method.Get, url);
+    return this.http.requestOtherUrl(_httpApi.Method.Get, url);
   }
-
   agreeToTerms(serviceType, baseUrl, accessToken, termsUrls) {
-    // TODO: Types
     const url = this.termsUrlForService(serviceType, baseUrl);
     const headers = {
       Authorization: "Bearer " + accessToken
     };
-    return this.http.requestOtherUrl(undefined, _httpApi.Method.Post, url, null, {
+    return this.http.requestOtherUrl(_httpApi.Method.Post, url, {
       user_accepts: termsUrls
     }, {
       headers
     });
   }
+
   /**
    * Reports an event as inappropriate to the server, which may then notify the appropriate people.
-   * @param {string} roomId The room in which the event being reported is located.
-   * @param {string} eventId The event to report.
-   * @param {number} score The score to rate this content as where -100 is most offensive and 0 is inoffensive.
-   * @param {string} reason The reason the content is being reported. May be blank.
-   * @returns {Promise} Resolves to an empty object if successful
+   * @param roomId - The room in which the event being reported is located.
+   * @param eventId - The event to report.
+   * @param score - The score to rate this content as where -100 is most offensive and 0 is inoffensive.
+   * @param reason - The reason the content is being reported. May be blank.
+   * @returns Promise which resolves to an empty object if successful
    */
-
-
   reportEvent(roomId, eventId, score, reason) {
     const path = utils.encodeUri("/rooms/$roomId/report/$eventId", {
       $roomId: roomId,
       $eventId: eventId
     });
-    return this.http.authedRequest(undefined, _httpApi.Method.Post, path, null, {
+    return this.http.authedRequest(_httpApi.Method.Post, path, undefined, {
       score,
       reason
     });
   }
+
   /**
    * Fetches or paginates a room hierarchy as defined by MSC2946.
    * Falls back gracefully to sourcing its data from `getSpaceSummary` if this API is not yet supported by the server.
-   * @param {string} roomId The ID of the space-room to use as the root of the summary.
-   * @param {number?} limit The maximum number of rooms to return per page.
-   * @param {number?} maxDepth The maximum depth in the tree from the root room to return.
-   * @param {boolean?} suggestedOnly Whether to only return rooms with suggested=true.
-   * @param {string?} fromToken The opaque token to paginate a previous request.
-   * @returns {Promise} the response, with next_batch & rooms fields.
+   * @param roomId - The ID of the space-room to use as the root of the summary.
+   * @param limit - The maximum number of rooms to return per page.
+   * @param maxDepth - The maximum depth in the tree from the root room to return.
+   * @param suggestedOnly - Whether to only return rooms with suggested=true.
+   * @param fromToken - The opaque token to paginate a previous request.
+   * @returns the response, with next_batch & rooms fields.
    */
-
-
   getRoomHierarchy(roomId, limit, maxDepth, suggestedOnly = false, fromToken) {
     const path = utils.encodeUri("/rooms/$roomId/hierarchy", {
       $roomId: roomId
@@ -7953,30 +7202,28 @@
       from: fromToken,
       limit: limit?.toString()
     };
-    return this.http.authedRequest(undefined, _httpApi.Method.Get, path, queryParams, undefined, {
-      prefix: _httpApi.PREFIX_V1
+    return this.http.authedRequest(_httpApi.Method.Get, path, queryParams, undefined, {
+      prefix: _httpApi.ClientPrefix.V1
     }).catch(e => {
       if (e.errcode === "M_UNRECOGNIZED") {
         // fall back to the prefixed hierarchy API.
-        return this.http.authedRequest(undefined, _httpApi.Method.Get, path, queryParams, undefined, {
+        return this.http.authedRequest(_httpApi.Method.Get, path, queryParams, undefined, {
           prefix: "/_matrix/client/unstable/org.matrix.msc2946"
         });
       }
-
       throw e;
     });
   }
+
   /**
    * Creates a new file tree space with the given name. The client will pick
    * defaults for how it expects to be able to support the remaining API offered
    * by the returned class.
    *
    * Note that this is UNSTABLE and may have breaking changes without notice.
-   * @param {string} name The name of the tree space.
-   * @returns {Promise<MSC3089TreeSpace>} Resolves to the created space.
+   * @param name - The name of the tree space.
+   * @returns Promise which resolves to the created space.
    */
-
-
   async unstableCreateFileTree(name) {
     const {
       room_id: roomId
@@ -8007,19 +7254,18 @@
     });
     return new _MSC3089TreeSpace.MSC3089TreeSpace(this, roomId);
   }
+
   /**
    * Gets a reference to a tree space, if the room ID given is a tree space. If the room
    * does not appear to be a tree space then null is returned.
    *
    * Note that this is UNSTABLE and may have breaking changes without notice.
-   * @param {string} roomId The room ID to get a tree space reference for.
-   * @returns {MSC3089TreeSpace} The tree space, or null if not a tree space.
+   * @param roomId - The room ID to get a tree space reference for.
+   * @returns The tree space, or null if not a tree space.
    */
-
-
   unstableGetFileTreeSpace(roomId) {
     const room = this.getRoom(roomId);
-    if (room?.getMyMembership() !== 'join') return null;
+    if (room?.getMyMembership() !== "join") return null;
     const createEvent = room.currentState.getStateEvents(_event2.EventType.RoomCreate, "");
     const purposeEvent = room.currentState.getStateEvents(_event2.UNSTABLE_MSC3088_PURPOSE.name, _event2.UNSTABLE_MSC3089_TREE_SUBTYPE.name);
     if (!createEvent) throw new Error("Expected single room create event");
@@ -8027,440 +7273,218 @@
     if (createEvent.getContent()?.[_event2.RoomCreateTypeField] !== _event2.RoomType.Space) return null;
     return new _MSC3089TreeSpace.MSC3089TreeSpace(this, roomId);
   }
+
   /**
    * Perform a single MSC3575 sliding sync request.
-   * @param {MSC3575SlidingSyncRequest} req The request to make.
-   * @param {string} proxyBaseUrl The base URL for the sliding sync proxy.
-   * @returns {MSC3575SlidingSyncResponse} The sliding sync response, or a standard error.
+   * @param req - The request to make.
+   * @param proxyBaseUrl - The base URL for the sliding sync proxy.
+   * @param abortSignal - Optional signal to abort request mid-flight.
+   * @returns The sliding sync response, or a standard error.
    * @throws on non 2xx status codes with an object with a field "httpStatus":number.
    */
-
-
-  slidingSync(req, proxyBaseUrl) {
+  slidingSync(req, proxyBaseUrl, abortSignal) {
     const qps = {};
-
     if (req.pos) {
       qps.pos = req.pos;
       delete req.pos;
     }
-
     if (req.timeout) {
       qps.timeout = req.timeout;
       delete req.timeout;
     }
-
     const clientTimeout = req.clientTimeout;
     delete req.clientTimeout;
-    return this.http.authedRequest(undefined, _httpApi.Method.Post, "/sync", qps, req, {
+    return this.http.authedRequest(_httpApi.Method.Post, "/sync", qps, req, {
       prefix: "/_matrix/client/unstable/org.matrix.msc3575",
       baseUrl: proxyBaseUrl,
-      localTimeoutMs: clientTimeout
+      localTimeoutMs: clientTimeout,
+      abortSignal
     });
   }
+
   /**
-   * @experimental
+   * @deprecated use supportsThreads() instead
    */
-
-
   supportsExperimentalThreads() {
+    _logger.logger.warn(`supportsExperimentalThreads() is deprecated, use supportThreads() instead`);
     return this.clientOpts?.experimentalThreadSupport || false;
   }
+
+  /**
+   * A helper to determine thread support
+   * @returns a boolean to determine if threads are enabled
+   */
+  supportsThreads() {
+    return this.clientOpts?.threadSupport || false;
+  }
+
   /**
    * Fetches the summary of a room as defined by an initial version of MSC3266 and implemented in Synapse
    * Proposed at https://github.com/matrix-org/matrix-doc/pull/3266
-   * @param {string} roomIdOrAlias The ID or alias of the room to get the summary of.
-   * @param {string[]?} via The list of servers which know about the room if only an ID was provided.
+   * @param roomIdOrAlias - The ID or alias of the room to get the summary of.
+   * @param via - The list of servers which know about the room if only an ID was provided.
    */
-
-
   async getRoomSummary(roomIdOrAlias, via) {
     const path = utils.encodeUri("/rooms/$roomid/summary", {
       $roomid: roomIdOrAlias
     });
-    return this.http.authedRequest(undefined, _httpApi.Method.Get, path, {
+    return this.http.authedRequest(_httpApi.Method.Get, path, {
       via
-    }, null, {
-      qsStringifyOptions: {
-        arrayFormat: 'repeat'
-      },
+    }, undefined, {
       prefix: "/_matrix/client/unstable/im.nheko.summary"
     });
   }
+
   /**
-   * @experimental
+   * Processes a list of threaded events and adds them to their respective timelines
+   * @param room - the room the adds the threaded events
+   * @param threadedEvents - an array of the threaded events
+   * @param toStartOfTimeline - the direction in which we want to add the events
    */
-
-
   processThreadEvents(room, threadedEvents, toStartOfTimeline) {
     room.processThreadedEvents(threadedEvents, toStartOfTimeline);
   }
 
+  /**
+   * Processes a list of thread roots and creates a thread model
+   * @param room - the room to create the threads in
+   * @param threadedEvents - an array of thread roots
+   * @param toStartOfTimeline - the direction
+   */
+  processThreadRoots(room, threadedEvents, toStartOfTimeline) {
+    room.processThreadRoots(threadedEvents, toStartOfTimeline);
+  }
   processBeaconEvents(room, events) {
+    this.processAggregatedTimelineEvents(room, events);
+  }
+
+  /**
+   * Calls aggregation functions for event types that are aggregated
+   * Polls and location beacons
+   * @param room - room the events belong to
+   * @param events - timeline events to be processed
+   * @returns
+   */
+  processAggregatedTimelineEvents(room, events) {
     if (!events?.length) return;
     if (!room) return;
     room.currentState.processBeaconEvents(events, this);
+    room.processPollEvents(events);
   }
+
   /**
-   * Fetches the user_id of the configured access token.
+   * Fetches information about the user for the configured access token.
    */
-
-
   async whoami() {
-    // eslint-disable-line camelcase
-    return this.http.authedRequest(undefined, _httpApi.Method.Get, "/account/whoami");
+    return this.http.authedRequest(_httpApi.Method.Get, "/account/whoami");
   }
+
   /**
    * Find the event_id closest to the given timestamp in the given direction.
-   * @return {Promise} A promise of an object containing the event_id and
-   *    origin_server_ts of the closest event to the timestamp in the given
-   *    direction
+   * @returns Resolves: A promise of an object containing the event_id and
+   *    origin_server_ts of the closest event to the timestamp in the given direction
+   * @returns Rejects: when the request fails (module:http-api.MatrixError)
    */
-
-
-  timestampToEvent(roomId, timestamp, dir) {
+  async timestampToEvent(roomId, timestamp, dir) {
     const path = utils.encodeUri("/rooms/$roomId/timestamp_to_event", {
       $roomId: roomId
     });
-    return this.http.authedRequest(undefined, _httpApi.Method.Get, path, {
+    const queryParams = {
       ts: timestamp.toString(),
       dir: dir
-    }, undefined, {
-      prefix: "/_matrix/client/unstable/org.matrix.msc3030"
-    });
+    };
+    try {
+      return await this.http.authedRequest(_httpApi.Method.Get, path, queryParams, undefined, {
+        prefix: _httpApi.ClientPrefix.V1
+      });
+    } catch (err) {
+      // Fallback to the prefixed unstable endpoint. Since the stable endpoint is
+      // new, we should also try the unstable endpoint before giving up. We can
+      // remove this fallback request in a year (remove after 2023-11-28).
+      if (err.errcode === "M_UNRECOGNIZED" && (
+      // XXX: The 400 status code check should be removed in the future
+      // when Synapse is compliant with MSC3743.
+      err.httpStatus === 400 ||
+      // This the correct standard status code for an unsupported
+      // endpoint according to MSC3743. Not Found and Method Not Allowed
+      // both indicate that this endpoint+verb combination is
+      // not supported.
+      err.httpStatus === 404 || err.httpStatus === 405)) {
+        return await this.http.authedRequest(_httpApi.Method.Get, path, queryParams, undefined, {
+          prefix: "/_matrix/client/unstable/org.matrix.msc3030"
+        });
+      }
+      throw err;
+    }
   }
-
 }
-/**
- * Fires whenever the SDK receives a new event.
- * <p>
- * This is only fired for live events received via /sync - it is not fired for
- * events received over context, search, or pagination APIs.
- *
- * @event module:client~MatrixClient#"event"
- * @param {MatrixEvent} event The matrix event which caused this event to fire.
- * @example
- * matrixClient.on("event", function(event){
- *   var sender = event.getSender();
- * });
- */
-
-/**
- * Fires whenever the SDK receives a new to-device event.
- * @event module:client~MatrixClient#"toDeviceEvent"
- * @param {MatrixEvent} event The matrix event which caused this event to fire.
- * @example
- * matrixClient.on("toDeviceEvent", function(event){
- *   var sender = event.getSender();
- * });
- */
-
-/**
- * Fires whenever the SDK's syncing state is updated. The state can be one of:
- * <ul>
- *
- * <li>PREPARED: The client has synced with the server at least once and is
- * ready for methods to be called on it. This will be immediately followed by
- * a state of SYNCING. <i>This is the equivalent of "syncComplete" in the
- * previous API.</i></li>
- *
- * <li>CATCHUP: The client has detected the connection to the server might be
- * available again and will now try to do a sync again. As this sync might take
- * a long time (depending how long ago was last synced, and general server
- * performance) the client is put in this mode so the UI can reflect trying
- * to catch up with the server after losing connection.</li>
- *
- * <li>SYNCING : The client is currently polling for new events from the server.
- * This will be called <i>after</i> processing latest events from a sync.</li>
- *
- * <li>ERROR : The client has had a problem syncing with the server. If this is
- * called <i>before</i> PREPARED then there was a problem performing the initial
- * sync. If this is called <i>after</i> PREPARED then there was a problem polling
- * the server for updates. This may be called multiple times even if the state is
- * already ERROR. <i>This is the equivalent of "syncError" in the previous
- * API.</i></li>
- *
- * <li>RECONNECTING: The sync connection has dropped, but not (yet) in a way that
- * should be considered erroneous.
- * </li>
- *
- * <li>STOPPED: The client has stopped syncing with server due to stopClient
- * being called.
- * </li>
- * </ul>
- * State transition diagram:
- * <pre>
- *                                          +---->STOPPED
- *                                          |
- *              +----->PREPARED -------> SYNCING <--+
- *              |                        ^  |  ^    |
- *              |      CATCHUP ----------+  |  |    |
- *              |        ^                  V  |    |
- *   null ------+        |  +------- RECONNECTING   |
- *              |        V  V                       |
- *              +------->ERROR ---------------------+
- *
- * NB: 'null' will never be emitted by this event.
- *
- * </pre>
- * Transitions:
- * <ul>
- *
- * <li><code>null -> PREPARED</code> : Occurs when the initial sync is completed
- * first time. This involves setting up filters and obtaining push rules.
- *
- * <li><code>null -> ERROR</code> : Occurs when the initial sync failed first time.
- *
- * <li><code>ERROR -> PREPARED</code> : Occurs when the initial sync succeeds
- * after previously failing.
- *
- * <li><code>PREPARED -> SYNCING</code> : Occurs immediately after transitioning
- * to PREPARED. Starts listening for live updates rather than catching up.
- *
- * <li><code>SYNCING -> RECONNECTING</code> : Occurs when the live update fails.
- *
- * <li><code>RECONNECTING -> RECONNECTING</code> : Can occur if the update calls
- * continue to fail, but the keepalive calls (to /versions) succeed.
- *
- * <li><code>RECONNECTING -> ERROR</code> : Occurs when the keepalive call also fails
- *
- * <li><code>ERROR -> SYNCING</code> : Occurs when the client has performed a
- * live update after having previously failed.
- *
- * <li><code>ERROR -> ERROR</code> : Occurs when the client has failed to keepalive
- * for a second time or more.</li>
- *
- * <li><code>SYNCING -> SYNCING</code> : Occurs when the client has performed a live
- * update. This is called <i>after</i> processing.</li>
- *
- * <li><code>* -> STOPPED</code> : Occurs once the client has stopped syncing or
- * trying to sync after stopClient has been called.</li>
- * </ul>
- *
- * @event module:client~MatrixClient#"sync"
- *
- * @param {string} state An enum representing the syncing state. One of "PREPARED",
- * "SYNCING", "ERROR", "STOPPED".
- *
- * @param {?string} prevState An enum representing the previous syncing state.
- * One of "PREPARED", "SYNCING", "ERROR", "STOPPED" <b>or null</b>.
- *
- * @param {?Object} data Data about this transition.
- *
- * @param {MatrixError} data.error The matrix error if <code>state=ERROR</code>.
- *
- * @param {String} data.oldSyncToken The 'since' token passed to /sync.
- *    <code>null</code> for the first successful sync since this client was
- *    started. Only present if <code>state=PREPARED</code> or
- *    <code>state=SYNCING</code>.
- *
- * @param {String} data.nextSyncToken The 'next_batch' result from /sync, which
- *    will become the 'since' token for the next call to /sync. Only present if
- *    <code>state=PREPARED</code> or <code>state=SYNCING</code>.
- *
- * @param {boolean} data.catchingUp True if we are working our way through a
- *    backlog of events after connecting. Only present if <code>state=SYNCING</code>.
- *
- * @example
- * matrixClient.on("sync", function(state, prevState, data) {
- *   switch (state) {
- *     case "ERROR":
- *       // update UI to say "Connection Lost"
- *       break;
- *     case "SYNCING":
- *       // update UI to remove any "Connection Lost" message
- *       break;
- *     case "PREPARED":
- *       // the client instance is ready to be queried.
- *       var rooms = matrixClient.getRooms();
- *       break;
- *   }
- * });
- */
-
-/**
- * Fires whenever a new Room is added. This will fire when you are invited to a
- * room, as well as when you join a room. <strong>This event is experimental and
- * may change.</strong>
- * @event module:client~MatrixClient#"Room"
- * @param {Room} room The newly created, fully populated room.
- * @example
- * matrixClient.on("Room", function(room){
- *   var roomId = room.roomId;
- * });
- */
-
-/**
- * Fires whenever a Room is removed. This will fire when you forget a room.
- * <strong>This event is experimental and may change.</strong>
- * @event module:client~MatrixClient#"deleteRoom"
- * @param {string} roomId The deleted room ID.
- * @example
- * matrixClient.on("deleteRoom", function(roomId){
- *   // update UI from getRooms()
- * });
- */
-
-/**
- * Fires whenever an incoming call arrives.
- * @event module:client~MatrixClient#"Call.incoming"
- * @param {module:webrtc/call~MatrixCall} call The incoming call.
- * @example
- * matrixClient.on("Call.incoming", function(call){
- *   call.answer(); // auto-answer
- * });
- */
-
-/**
- * Fires whenever the login session the JS SDK is using is no
- * longer valid and the user must log in again.
- * NB. This only fires when action is required from the user, not
- * when then login session can be renewed by using a refresh token.
- * @event module:client~MatrixClient#"Session.logged_out"
- * @example
- * matrixClient.on("Session.logged_out", function(errorObj){
- *   // show the login screen
- * });
- */
-
-/**
- * Fires when the JS SDK receives a M_CONSENT_NOT_GIVEN error in response
- * to a HTTP request.
- * @event module:client~MatrixClient#"no_consent"
- * @example
- * matrixClient.on("no_consent", function(message, contentUri) {
- *     console.info(message + ' Go to ' + contentUri);
- * });
- */
-
-/**
- * Fires when a device is marked as verified/unverified/blocked/unblocked by
- * {@link module:client~MatrixClient#setDeviceVerified|MatrixClient.setDeviceVerified} or
- * {@link module:client~MatrixClient#setDeviceBlocked|MatrixClient.setDeviceBlocked}.
- *
- * @event module:client~MatrixClient#"deviceVerificationChanged"
- * @param {string} userId the owner of the verified device
- * @param {string} deviceId the id of the verified device
- * @param {module:crypto/deviceinfo} deviceInfo updated device information
- */
-
-/**
- * Fires when the trust status of a user changes
- * If userId is the userId of the logged in user, this indicated a change
- * in the trust status of the cross-signing data on the account.
- *
- * The cross-signing API is currently UNSTABLE and may change without notice.
- *
- * @event module:client~MatrixClient#"userTrustStatusChanged"
- * @param {string} userId the userId of the user in question
- * @param {UserTrustLevel} trustLevel The new trust level of the user
- */
-
-/**
- * Fires when the user's cross-signing keys have changed or cross-signing
- * has been enabled/disabled. The client can use getStoredCrossSigningForUser
- * with the user ID of the logged in user to check if cross-signing is
- * enabled on the account. If enabled, it can test whether the current key
- * is trusted using with checkUserTrust with the user ID of the logged
- * in user. The checkOwnCrossSigningTrust function may be used to reconcile
- * the trust in the account key.
- *
- * The cross-signing API is currently UNSTABLE and may change without notice.
- *
- * @event module:client~MatrixClient#"crossSigning.keysChanged"
- */
 
 /**
- * Fires whenever new user-scoped account_data is added.
- * @event module:client~MatrixClient#"accountData"
- * @param {MatrixEvent} event The event describing the account_data just added
- * @param {MatrixEvent} event The previous account data, if known.
- * @example
- * matrixClient.on("accountData", function(event, oldEvent){
- *   myAccountData[event.type] = event.content;
- * });
- */
-
-/**
- * Fires whenever the stored devices for a user have changed
- * @event module:client~MatrixClient#"crypto.devicesUpdated"
- * @param {String[]} users A list of user IDs that were updated
- * @param {boolean} initialFetch If true, the store was empty (apart
- *     from our own device) and has been seeded.
- */
-
-/**
- * Fires whenever the stored devices for a user will be updated
- * @event module:client~MatrixClient#"crypto.willUpdateDevices"
- * @param {String[]} users A list of user IDs that will be updated
- * @param {boolean} initialFetch If true, the store is empty (apart
- *     from our own device) and is being seeded.
- */
-
-/**
- * Fires whenever the status of e2e key backup changes, as returned by getKeyBackupEnabled()
- * @event module:client~MatrixClient#"crypto.keyBackupStatus"
- * @param {boolean} enabled true if key backup has been enabled, otherwise false
- * @example
- * matrixClient.on("crypto.keyBackupStatus", function(enabled){
- *   if (enabled) {
- *     [...]
- *   }
- * });
- */
-
-/**
- * Fires when we want to suggest to the user that they restore their megolm keys
- * from backup or by cross-signing the device.
- *
- * @event module:client~MatrixClient#"crypto.suggestKeyRestore"
- */
-
-/**
- * Fires when a key verification is requested.
- * @event module:client~MatrixClient#"crypto.verification.request"
- * @param {object} data
- * @param {MatrixEvent} data.event the original verification request message
- * @param {Array} data.methods the verification methods that can be used
- * @param {Number} data.timeout the amount of milliseconds that should be waited
- *                 before cancelling the request automatically.
- * @param {Function} data.beginKeyVerification a function to call if a key
- *     verification should be performed.  The function takes one argument: the
- *     name of the key verification method (taken from data.methods) to use.
- * @param {Function} data.cancel a function to call if the key verification is
- *     rejected.
- */
-
-/**
- * Fires when a key verification is requested with an unknown method.
- * @event module:client~MatrixClient#"crypto.verification.request.unknown"
- * @param {string} userId the user ID who requested the key verification
- * @param {Function} cancel a function that will send a cancellation message to
- *     reject the key verification.
- */
-
-/**
- * Fires when a secret request has been cancelled.  If the client is prompting
- * the user to ask whether they want to share a secret, the prompt can be
- * dismissed.
- *
- * The Secure Secret Storage API is currently UNSTABLE and may change without notice.
- *
- * @event module:client~MatrixClient#"crypto.secrets.requestCancelled"
- * @param {object} data
- * @param {string} data.user_id The user ID of the client that had requested the secret.
- * @param {string} data.device_id The device ID of the client that had requested the
- *     secret.
- * @param {string} data.request_id The ID of the original request.
- */
-
-/**
- * Fires when the client .well-known info is fetched.
- *
- * @event module:client~MatrixClient#"WellKnown.client"
- * @param {object} data The JSON object returned by the server
+ * recalculates an accurate notifications count on event decryption.
+ * Servers do not have enough knowledge about encrypted events to calculate an
+ * accurate notification_count
  */
+exports.MatrixClient = MatrixClient;
+_defineProperty(MatrixClient, "RESTORE_BACKUP_ERROR_BAD_KEY", "RESTORE_BACKUP_ERROR_BAD_KEY");
+function fixNotificationCountOnDecryption(cli, event) {
+  const ourUserId = cli.getUserId();
+  const eventId = event.getId();
+  const room = cli.getRoom(event.getRoomId());
+  if (!room || !ourUserId || !eventId) return;
+  const oldActions = event.getPushActions();
+  const actions = cli.getPushActionsForEvent(event, true);
+  const isThreadEvent = !!event.threadRootId && !event.isThreadRoot;
+  const currentHighlightCount = room.getUnreadCountForEventContext(_room.NotificationCountType.Highlight, event);
+
+  // Ensure the unread counts are kept up to date if the event is encrypted
+  // We also want to make sure that the notification count goes up if we already
+  // have encrypted events to avoid other code from resetting 'highlight' to zero.
+  const oldHighlight = !!oldActions?.tweaks?.highlight;
+  const newHighlight = !!actions?.tweaks?.highlight;
+  let hasReadEvent;
+  if (isThreadEvent) {
+    const thread = room.getThread(event.threadRootId);
+    hasReadEvent = thread ? thread.hasUserReadEvent(ourUserId, eventId) :
+    // If the thread object does not exist in the room yet, we don't
+    // want to calculate notification for this event yet. We have not
+    // restored the read receipts yet and can't accurately calculate
+    // notifications at this stage.
+    //
+    // This issue can likely go away when MSC3874 is implemented
+    true;
+  } else {
+    hasReadEvent = room.hasUserReadEvent(ourUserId, eventId);
+  }
+  if (hasReadEvent) {
+    // If the event has been read, ignore it.
+    return;
+  }
+  if (oldHighlight !== newHighlight || currentHighlightCount > 0) {
+    // TODO: Handle mentions received while the client is offline
+    // See also https://github.com/vector-im/element-web/issues/9069
+    let newCount = currentHighlightCount;
+    if (newHighlight && !oldHighlight) newCount++;
+    if (!newHighlight && oldHighlight) newCount--;
+    if (isThreadEvent) {
+      room.setThreadUnreadNotificationCount(event.threadRootId, _room.NotificationCountType.Highlight, newCount);
+    } else {
+      room.setUnreadNotificationCount(_room.NotificationCountType.Highlight, newCount);
+    }
+  }
 
+  // Total count is used to typically increment a room notification counter, but not loudly highlight it.
+  const currentTotalCount = room.getUnreadCountForEventContext(_room.NotificationCountType.Total, event);
 
-exports.MatrixClient = MatrixClient;
+  // `notify` is used in practice for incrementing the total count
+  const newNotify = !!actions?.notify;
 
-_defineProperty(MatrixClient, "RESTORE_BACKUP_ERROR_BAD_KEY", 'RESTORE_BACKUP_ERROR_BAD_KEY');
\ No newline at end of file
+  // The room total count is NEVER incremented by the server for encrypted rooms. We basically ignore
+  // the server here as it's always going to tell us to increment for encrypted events.
+  if (newNotify) {
+    if (isThreadEvent) {
+      room.setThreadUnreadNotificationCount(event.threadRootId, _room.NotificationCountType.Total, currentTotalCount + 1);
+    } else {
+      room.setUnreadNotificationCount(_room.NotificationCountType.Total, currentTotalCount + 1);
+    }
+  }
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/common-crypto/CryptoBackend.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/common-crypto/CryptoBackend.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/common-crypto/CryptoBackend.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/common-crypto/CryptoBackend.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/content-helpers.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/content-helpers.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/content-helpers.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/content-helpers.js	2023-04-11 06:11:52.000000000 +0000
@@ -12,28 +12,21 @@
 exports.makeNotice = makeNotice;
 exports.makeTextMessage = makeTextMessage;
 exports.parseTopicContent = exports.parseLocationEvent = exports.parseBeaconInfoContent = exports.parseBeaconContent = exports.makeTopicContent = void 0;
-
-var _matrixEventsSdk = require("matrix-events-sdk");
-
 var _event = require("./@types/event");
-
 var _extensible_events = require("./@types/extensible_events");
-
+var _utilities = require("./extensible_events_v1/utilities");
 var _location = require("./@types/location");
-
 var _topic = require("./@types/topic");
-
 function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
-
 function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /**
  * Generates the content for a HTML Message event
- * @param {string} body the plaintext body of the message
- * @param {string} htmlBody the HTML representation of the message
- * @returns {{msgtype: string, format: string, body: string, formatted_body: string}}
+ * @param body - the plaintext body of the message
+ * @param htmlBody - the HTML representation of the message
+ * @returns
  */
 function makeHtmlMessage(body, htmlBody) {
   return {
@@ -43,14 +36,13 @@
     formatted_body: htmlBody
   };
 }
+
 /**
  * Generates the content for a HTML Notice event
- * @param {string} body the plaintext body of the notice
- * @param {string} htmlBody the HTML representation of the notice
- * @returns {{msgtype: string, format: string, body: string, formatted_body: string}}
+ * @param body - the plaintext body of the notice
+ * @param htmlBody - the HTML representation of the notice
+ * @returns
  */
-
-
 function makeHtmlNotice(body, htmlBody) {
   return {
     msgtype: _event.MsgType.Notice,
@@ -59,14 +51,13 @@
     formatted_body: htmlBody
   };
 }
+
 /**
  * Generates the content for a HTML Emote event
- * @param {string} body the plaintext body of the emote
- * @param {string} htmlBody the HTML representation of the emote
- * @returns {{msgtype: string, format: string, body: string, formatted_body: string}}
+ * @param body - the plaintext body of the emote
+ * @param htmlBody - the HTML representation of the emote
+ * @returns
  */
-
-
 function makeHtmlEmote(body, htmlBody) {
   return {
     msgtype: _event.MsgType.Emote,
@@ -75,67 +66,61 @@
     formatted_body: htmlBody
   };
 }
+
 /**
  * Generates the content for a Plaintext Message event
- * @param {string} body the plaintext body of the emote
- * @returns {{msgtype: string, body: string}}
+ * @param body - the plaintext body of the emote
+ * @returns
  */
-
-
 function makeTextMessage(body) {
   return {
     msgtype: _event.MsgType.Text,
     body: body
   };
 }
+
 /**
  * Generates the content for a Plaintext Notice event
- * @param {string} body the plaintext body of the notice
- * @returns {{msgtype: string, body: string}}
+ * @param body - the plaintext body of the notice
+ * @returns
  */
-
-
 function makeNotice(body) {
   return {
     msgtype: _event.MsgType.Notice,
     body: body
   };
 }
+
 /**
  * Generates the content for a Plaintext Emote event
- * @param {string} body the plaintext body of the emote
- * @returns {{msgtype: string, body: string}}
+ * @param body - the plaintext body of the emote
+ * @returns
  */
-
-
 function makeEmoteMessage(body) {
   return {
     msgtype: _event.MsgType.Emote,
     body: body
   };
 }
-/** Location content helpers */
 
+/** Location content helpers */
 
 const getTextForLocationEvent = (uri, assetType, timestamp, description) => {
   const date = `at ${new Date(timestamp).toISOString()}`;
-  const assetName = assetType === _location.LocationAssetType.Self ? 'User' : undefined;
+  const assetName = assetType === _location.LocationAssetType.Self ? "User" : undefined;
   const quotedDescription = description ? `"${description}"` : undefined;
-  return [assetName, 'Location', quotedDescription, uri, date].filter(Boolean).join(' ');
+  return [assetName, "Location", quotedDescription, uri, date].filter(Boolean).join(" ");
 };
+
 /**
  * Generates the content for a Location event
- * @param uri a geo:// uri for the location
- * @param timestamp the timestamp when the location was correct (milliseconds since
- *           the UNIX epoch)
- * @param description the (optional) label for this location on the map
- * @param assetType the (optional) asset type of this location e.g. "m.self"
- * @param text optional. A text for the location
+ * @param uri - a geo:// uri for the location
+ * @param timestamp - the timestamp when the location was correct (milliseconds since the UNIX epoch)
+ * @param description - the (optional) label for this location on the map
+ * @param assetType - the (optional) asset type of this location e.g. "m.self"
+ * @param text - optional. A text for the location
  */
-
-
 exports.getTextForLocationEvent = getTextForLocationEvent;
-
 const makeLocationContent = (text, uri, timestamp, description, assetType) => {
   const defaultedText = text ?? getTextForLocationEvent(uri, assetType || _location.LocationAssetType.Self, timestamp, description);
   const timestampEvent = timestamp ? {
@@ -152,77 +137,67 @@
     [_location.M_ASSET.name]: {
       type: assetType || _location.LocationAssetType.Self
     },
-    [_extensible_events.TEXT_NODE_TYPE.name]: defaultedText
+    [_extensible_events.M_TEXT.name]: defaultedText
   }, timestampEvent);
 };
+
 /**
  * Parse location event content and transform to
  * a backwards compatible modern m.location event format
  */
-
-
 exports.makeLocationContent = makeLocationContent;
-
 const parseLocationEvent = wireEventContent => {
   const location = _location.M_LOCATION.findIn(wireEventContent);
-
   const asset = _location.M_ASSET.findIn(wireEventContent);
-
   const timestamp = _location.M_TIMESTAMP.findIn(wireEventContent);
-
-  const text = _extensible_events.TEXT_NODE_TYPE.findIn(wireEventContent);
-
+  const text = _extensible_events.M_TEXT.findIn(wireEventContent);
   const geoUri = location?.uri ?? wireEventContent?.geo_uri;
   const description = location?.description;
   const assetType = asset?.type ?? _location.LocationAssetType.Self;
   const fallbackText = text ?? wireEventContent.body;
-  return makeLocationContent(fallbackText, geoUri, timestamp, description, assetType);
+  return makeLocationContent(fallbackText, geoUri, timestamp ?? undefined, description, assetType);
 };
+
 /**
  * Topic event helpers
  */
-
-
 exports.parseLocationEvent = parseLocationEvent;
-
 const makeTopicContent = (topic, htmlTopic) => {
   const renderings = [{
     body: topic,
     mimetype: "text/plain"
   }];
-
-  if ((0, _matrixEventsSdk.isProvided)(htmlTopic)) {
+  if ((0, _utilities.isProvided)(htmlTopic)) {
     renderings.push({
       body: htmlTopic,
       mimetype: "text/html"
     });
   }
-
   return {
     topic,
     [_topic.M_TOPIC.name]: renderings
   };
 };
-
 exports.makeTopicContent = makeTopicContent;
-
 const parseTopicContent = content => {
   const mtopic = _topic.M_TOPIC.findIn(content);
-
-  const text = mtopic?.find(r => !(0, _matrixEventsSdk.isProvided)(r.mimetype) || r.mimetype === "text/plain")?.body ?? content.topic;
+  if (!Array.isArray(mtopic)) {
+    return {
+      text: content.topic
+    };
+  }
+  const text = mtopic?.find(r => !(0, _utilities.isProvided)(r.mimetype) || r.mimetype === "text/plain")?.body ?? content.topic;
   const html = mtopic?.find(r => r.mimetype === "text/html")?.body;
   return {
     text,
     html
   };
 };
+
 /**
  * Beacon event helpers
  */
-
-
 exports.parseTopicContent = parseTopicContent;
-
 const makeBeaconInfoContent = (timeout, isLive, description, assetType, timestamp) => ({
   description,
   timeout,
@@ -232,9 +207,7 @@
     type: assetType ?? _location.LocationAssetType.Self
   }
 });
-
 exports.makeBeaconInfoContent = makeBeaconInfoContent;
-
 /**
  * Flatten beacon info event content
  */
@@ -244,11 +217,8 @@
     timeout,
     live
   } = content;
-
-  const timestamp = _location.M_TIMESTAMP.findIn(content);
-
+  const timestamp = _location.M_TIMESTAMP.findIn(content) ?? undefined;
   const asset = _location.M_ASSET.findIn(content);
-
   return {
     description,
     timeout,
@@ -257,9 +227,7 @@
     timestamp
   };
 };
-
 exports.parseBeaconInfoContent = parseBeaconInfoContent;
-
 const makeBeaconContent = (uri, timestamp, beaconInfoEventId, description) => ({
   [_location.M_LOCATION.name]: {
     description,
@@ -267,23 +235,18 @@
   },
   [_location.M_TIMESTAMP.name]: timestamp,
   "m.relates_to": {
-    rel_type: _matrixEventsSdk.REFERENCE_RELATION.name,
+    rel_type: _extensible_events.REFERENCE_RELATION.name,
     event_id: beaconInfoEventId
   }
 });
-
 exports.makeBeaconContent = makeBeaconContent;
-
 const parseBeaconContent = content => {
   const location = _location.M_LOCATION.findIn(content);
-
-  const timestamp = _location.M_TIMESTAMP.findIn(content);
-
+  const timestamp = _location.M_TIMESTAMP.findIn(content) ?? undefined;
   return {
     description: location?.description,
     uri: location?.uri,
     timestamp
   };
 };
-
 exports.parseBeaconContent = parseBeaconContent;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/content-repo.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/content-repo.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/content-repo.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/content-repo.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,13 +4,9 @@
   value: true
 });
 exports.getHttpUriForMxc = getHttpUriForMxc;
-
 var utils = _interopRequireWildcard(require("./utils"));
-
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
 /*
 Copyright 2015 - 2021 The Matrix.org Foundation C.I.C.
 
@@ -28,67 +24,53 @@
 */
 
 /**
- * @module content-repo
- */
-
-/**
  * Get the HTTP URL for an MXC URI.
- * @param {string} baseUrl The base homeserver url which has a content repo.
- * @param {string} mxc The mxc:// URI.
- * @param {Number} width The desired width of the thumbnail.
- * @param {Number} height The desired height of the thumbnail.
- * @param {string} resizeMethod The thumbnail resize method to use, either
+ * @param baseUrl - The base homeserver url which has a content repo.
+ * @param mxc - The mxc:// URI.
+ * @param width - The desired width of the thumbnail.
+ * @param height - The desired height of the thumbnail.
+ * @param resizeMethod - The thumbnail resize method to use, either
  * "crop" or "scale".
- * @param {Boolean} allowDirectLinks If true, return any non-mxc URLs
+ * @param allowDirectLinks - If true, return any non-mxc URLs
  * directly. Fetching such URLs will leak information about the user to
  * anyone they share a room with. If false, will return the emptry string
  * for such URLs.
- * @return {string} The complete URL to the content.
+ * @returns The complete URL to the content.
  */
 function getHttpUriForMxc(baseUrl, mxc, width, height, resizeMethod, allowDirectLinks = false) {
   if (typeof mxc !== "string" || !mxc) {
-    return '';
+    return "";
   }
-
   if (mxc.indexOf("mxc://") !== 0) {
     if (allowDirectLinks) {
       return mxc;
     } else {
-      return '';
+      return "";
     }
   }
-
   let serverAndMediaId = mxc.slice(6); // strips mxc://
-
   let prefix = "/_matrix/media/r0/download/";
   const params = {};
-
   if (width) {
     params["width"] = Math.round(width).toString();
   }
-
   if (height) {
     params["height"] = Math.round(height).toString();
   }
-
   if (resizeMethod) {
     params["method"] = resizeMethod;
   }
-
   if (Object.keys(params).length > 0) {
     // these are thumbnailing params so they probably want the
     // thumbnailing API...
     prefix = "/_matrix/media/r0/thumbnail/";
   }
-
   const fragmentOffset = serverAndMediaId.indexOf("#");
   let fragment = "";
-
   if (fragmentOffset >= 0) {
     fragment = serverAndMediaId.slice(fragmentOffset);
     serverAndMediaId = serverAndMediaId.slice(0, fragmentOffset);
   }
-
   const urlParams = Object.keys(params).length === 0 ? "" : "?" + utils.encodeParams(params);
   return baseUrl + prefix + serverAndMediaId + urlParams + fragment;
 }
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/aes.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/aes.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/aes.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/aes.js	2023-04-11 06:11:52.000000000 +0000
@@ -6,11 +6,8 @@
 exports.calculateKeyCheck = calculateKeyCheck;
 exports.decryptAES = decryptAES;
 exports.encryptAES = encryptAES;
-
-var _utils = require("../utils");
-
 var _olmlib = require("./olmlib");
-
+var _crypto = require("./crypto");
 /*
 Copyright 2020 - 2021 The Matrix.org Foundation C.I.C.
 
@@ -26,119 +23,39 @@
 See the License for the specific language governing permissions and
 limitations under the License.
 */
-const subtleCrypto = typeof window !== "undefined" && window.crypto ? window.crypto.subtle || window.crypto.webkitSubtle : null; // salt for HKDF, with 8 bytes of zeros
 
+// salt for HKDF, with 8 bytes of zeros
 const zeroSalt = new Uint8Array(8);
-
 /**
- * encrypt a string in Node.js
+ * encrypt a string
  *
- * @param {string} data the plaintext to encrypt
- * @param {Uint8Array} key the encryption key to use
- * @param {string} name the name of the secret
- * @param {string} ivStr the initialization vector to use
+ * @param data - the plaintext to encrypt
+ * @param key - the encryption key to use
+ * @param name - the name of the secret
+ * @param ivStr - the initialization vector to use
  */
-async function encryptNode(data, key, name, ivStr) {
-  const crypto = (0, _utils.getCrypto)();
-
-  if (!crypto) {
-    throw new Error("No usable crypto implementation");
-  }
-
+async function encryptAES(data, key, name, ivStr) {
   let iv;
-
-  if (ivStr) {
-    iv = (0, _olmlib.decodeBase64)(ivStr);
-  } else {
-    iv = crypto.randomBytes(16); // clear bit 63 of the IV to stop us hitting the 64-bit counter boundary
-    // (which would mean we wouldn't be able to decrypt on Android). The loss
-    // of a single bit of iv is a price we have to pay.
-
-    iv[8] &= 0x7f;
-  }
-
-  const [aesKey, hmacKey] = deriveKeysNode(key, name);
-  const cipher = crypto.createCipheriv("aes-256-ctr", aesKey, iv);
-  const ciphertext = Buffer.concat([cipher.update(data, "utf8"), cipher.final()]);
-  const hmac = crypto.createHmac("sha256", hmacKey).update(ciphertext).digest("base64");
-  return {
-    iv: (0, _olmlib.encodeBase64)(iv),
-    ciphertext: ciphertext.toString("base64"),
-    mac: hmac
-  };
-}
-/**
- * decrypt a string in Node.js
- *
- * @param {object} data the encrypted data
- * @param {string} data.ciphertext the ciphertext in base64
- * @param {string} data.iv the initialization vector in base64
- * @param {string} data.mac the HMAC in base64
- * @param {Uint8Array} key the encryption key to use
- * @param {string} name the name of the secret
- */
-
-
-async function decryptNode(data, key, name) {
-  const crypto = (0, _utils.getCrypto)();
-
-  if (!crypto) {
-    throw new Error("No usable crypto implementation");
-  }
-
-  const [aesKey, hmacKey] = deriveKeysNode(key, name);
-  const hmac = crypto.createHmac("sha256", hmacKey).update(Buffer.from(data.ciphertext, "base64")).digest("base64").replace(/=+$/g, '');
-
-  if (hmac !== data.mac.replace(/=+$/g, '')) {
-    throw new Error(`Error decrypting secret ${name}: bad MAC`);
-  }
-
-  const decipher = crypto.createDecipheriv("aes-256-ctr", aesKey, (0, _olmlib.decodeBase64)(data.iv));
-  return decipher.update(data.ciphertext, "base64", "utf8") + decipher.final("utf8");
-}
-
-function deriveKeysNode(key, name) {
-  const crypto = (0, _utils.getCrypto)();
-  const prk = crypto.createHmac("sha256", zeroSalt).update(key).digest();
-  const b = Buffer.alloc(1, 1);
-  const aesKey = crypto.createHmac("sha256", prk).update(name, "utf8").update(b).digest();
-  b[0] = 2;
-  const hmacKey = crypto.createHmac("sha256", prk).update(aesKey).update(name, "utf8").update(b).digest();
-  return [aesKey, hmacKey];
-}
-/**
- * encrypt a string in Node.js
- *
- * @param {string} data the plaintext to encrypt
- * @param {Uint8Array} key the encryption key to use
- * @param {string} name the name of the secret
- * @param {string} ivStr the initialization vector to use
- */
-
-
-async function encryptBrowser(data, key, name, ivStr) {
-  let iv;
-
   if (ivStr) {
     iv = (0, _olmlib.decodeBase64)(ivStr);
   } else {
     iv = new Uint8Array(16);
-    window.crypto.getRandomValues(iv); // clear bit 63 of the IV to stop us hitting the 64-bit counter boundary
+    _crypto.crypto.getRandomValues(iv);
+
+    // clear bit 63 of the IV to stop us hitting the 64-bit counter boundary
     // (which would mean we wouldn't be able to decrypt on Android). The loss
     // of a single bit of iv is a price we have to pay.
-
     iv[8] &= 0x7f;
   }
-
-  const [aesKey, hmacKey] = await deriveKeysBrowser(key, name);
-  const encodedData = new TextEncoder().encode(data);
-  const ciphertext = await subtleCrypto.encrypt({
+  const [aesKey, hmacKey] = await deriveKeys(key, name);
+  const encodedData = new _crypto.TextEncoder().encode(data);
+  const ciphertext = await _crypto.subtleCrypto.encrypt({
     name: "AES-CTR",
     counter: iv,
     length: 64
   }, aesKey, encodedData);
-  const hmac = await subtleCrypto.sign({
-    name: 'HMAC'
+  const hmac = await _crypto.subtleCrypto.sign({
+    name: "HMAC"
   }, hmacKey, ciphertext);
   return {
     iv: (0, _olmlib.encodeBase64)(iv),
@@ -146,80 +63,65 @@
     mac: (0, _olmlib.encodeBase64)(hmac)
   };
 }
+
 /**
- * decrypt a string in the browser
+ * decrypt a string
  *
- * @param {object} data the encrypted data
- * @param {string} data.ciphertext the ciphertext in base64
- * @param {string} data.iv the initialization vector in base64
- * @param {string} data.mac the HMAC in base64
- * @param {Uint8Array} key the encryption key to use
- * @param {string} name the name of the secret
+ * @param data - the encrypted data
+ * @param key - the encryption key to use
+ * @param name - the name of the secret
  */
-
-
-async function decryptBrowser(data, key, name) {
-  const [aesKey, hmacKey] = await deriveKeysBrowser(key, name);
+async function decryptAES(data, key, name) {
+  const [aesKey, hmacKey] = await deriveKeys(key, name);
   const ciphertext = (0, _olmlib.decodeBase64)(data.ciphertext);
-
-  if (!(await subtleCrypto.verify({
+  if (!(await _crypto.subtleCrypto.verify({
     name: "HMAC"
   }, hmacKey, (0, _olmlib.decodeBase64)(data.mac), ciphertext))) {
     throw new Error(`Error decrypting secret ${name}: bad MAC`);
   }
-
-  const plaintext = await subtleCrypto.decrypt({
+  const plaintext = await _crypto.subtleCrypto.decrypt({
     name: "AES-CTR",
     counter: (0, _olmlib.decodeBase64)(data.iv),
     length: 64
   }, aesKey, ciphertext);
   return new TextDecoder().decode(new Uint8Array(plaintext));
 }
-
-async function deriveKeysBrowser(key, name) {
-  const hkdfkey = await subtleCrypto.importKey('raw', key, {
+async function deriveKeys(key, name) {
+  const hkdfkey = await _crypto.subtleCrypto.importKey("raw", key, {
     name: "HKDF"
   }, false, ["deriveBits"]);
-  const keybits = await subtleCrypto.deriveBits({
+  const keybits = await _crypto.subtleCrypto.deriveBits({
     name: "HKDF",
     salt: zeroSalt,
     // eslint-disable-next-line @typescript-eslint/ban-ts-comment
     // @ts-ignore: https://github.com/microsoft/TypeScript-DOM-lib-generator/pull/879
-    info: new TextEncoder().encode(name),
+    info: new _crypto.TextEncoder().encode(name),
     hash: "SHA-256"
   }, hkdfkey, 512);
   const aesKey = keybits.slice(0, 32);
   const hmacKey = keybits.slice(32);
-  const aesProm = subtleCrypto.importKey('raw', aesKey, {
-    name: 'AES-CTR'
-  }, false, ['encrypt', 'decrypt']);
-  const hmacProm = subtleCrypto.importKey('raw', hmacKey, {
-    name: 'HMAC',
+  const aesProm = _crypto.subtleCrypto.importKey("raw", aesKey, {
+    name: "AES-CTR"
+  }, false, ["encrypt", "decrypt"]);
+  const hmacProm = _crypto.subtleCrypto.importKey("raw", hmacKey, {
+    name: "HMAC",
     hash: {
-      name: 'SHA-256'
+      name: "SHA-256"
     }
-  }, false, ['sign', 'verify']);
+  }, false, ["sign", "verify"]);
   return Promise.all([aesProm, hmacProm]);
 }
 
-function encryptAES(data, key, name, ivStr) {
-  return subtleCrypto ? encryptBrowser(data, key, name, ivStr) : encryptNode(data, key, name, ivStr);
-}
-
-function decryptAES(data, key, name) {
-  return subtleCrypto ? decryptBrowser(data, key, name) : decryptNode(data, key, name);
-} // string of zeroes, for calculating the key check
-
-
+// string of zeroes, for calculating the key check
 const ZERO_STR = "\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0";
+
 /** Calculate the MAC for checking the key.
  *
- * @param {Uint8Array} key the key to use
- * @param {string} [iv] The initialization vector as a base64-encoded string.
+ * @param key - the key to use
+ * @param iv - The initialization vector as a base64-encoded string.
  *     If omitted, a random initialization vector will be created.
- * @return {Promise<object>} An object that contains, `mac` and `iv` properties.
+ * @returns An object that contains, `mac` and `iv` properties.
  */
-
 function calculateKeyCheck(key, iv) {
   return encryptAES(ZERO_STR, key, "", iv);
 }
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/algorithms/base.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/algorithms/base.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/algorithms/base.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/algorithms/base.js	2023-04-11 06:11:52.000000000 +0000
@@ -5,9 +5,9 @@
 });
 exports.UnknownDeviceError = exports.EncryptionAlgorithm = exports.ENCRYPTION_CLASSES = exports.DecryptionError = exports.DecryptionAlgorithm = exports.DECRYPTION_CLASSES = void 0;
 exports.registerAlgorithm = registerAlgorithm;
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /*
 Copyright 2016 - 2021 The Matrix.org Foundation C.I.C.
 
@@ -26,56 +26,32 @@
 
 /**
  * Internal module. Defines the base classes of the encryption implementations
- *
- * @module
  */
 
 /**
- * map of registered encryption algorithm classes. A map from string to {@link
- * module:crypto/algorithms/base.EncryptionAlgorithm|EncryptionAlgorithm} class
- *
- * @type {Object.<string, function(new: module:crypto/algorithms/base.EncryptionAlgorithm)>}
+ * Map of registered encryption algorithm classes. A map from string to {@link EncryptionAlgorithm} class
  */
 const ENCRYPTION_CLASSES = new Map();
 exports.ENCRYPTION_CLASSES = ENCRYPTION_CLASSES;
-
 /**
- * map of registered encryption algorithm classes. Map from string to {@link
- * module:crypto/algorithms/base.DecryptionAlgorithm|DecryptionAlgorithm} class
- *
- * @type {Object.<string, function(new: module:crypto/algorithms/base.DecryptionAlgorithm)>}
+ * map of registered encryption algorithm classes. Map from string to {@link DecryptionAlgorithm} class
  */
 const DECRYPTION_CLASSES = new Map();
 exports.DECRYPTION_CLASSES = DECRYPTION_CLASSES;
-
 /**
  * base type for encryption implementations
- *
- * @alias module:crypto/algorithms/base.EncryptionAlgorithm
- *
- * @param {object} params parameters
- * @param {string} params.userId  The UserID for the local user
- * @param {string} params.deviceId The identifier for this device.
- * @param {module:crypto} params.crypto crypto core
- * @param {module:crypto/OlmDevice} params.olmDevice olm.js wrapper
- * @param {MatrixClient} baseApis base matrix api interface
- * @param {string} params.roomId  The ID of the room we will be sending to
- * @param {object} params.config  The body of the m.room.encryption event
  */
 class EncryptionAlgorithm {
+  /**
+   * @param params - parameters
+   */
   constructor(params) {
     _defineProperty(this, "userId", void 0);
-
     _defineProperty(this, "deviceId", void 0);
-
     _defineProperty(this, "crypto", void 0);
-
     _defineProperty(this, "olmDevice", void 0);
-
     _defineProperty(this, "baseApis", void 0);
-
     _defineProperty(this, "roomId", void 0);
-
     this.userId = params.userId;
     this.deviceId = params.deviceId;
     this.crypto = params.crypto;
@@ -83,223 +59,167 @@
     this.baseApis = params.baseApis;
     this.roomId = params.roomId;
   }
+
   /**
    * Perform any background tasks that can be done before a message is ready to
    * send, in order to speed up sending of the message.
    *
-   * @param {module:models/room} room the room the event is in
+   * @param room - the room the event is in
    */
-
-
   prepareToEncrypt(room) {}
+
   /**
    * Encrypt a message event
    *
-   * @method module:crypto/algorithms/base.EncryptionAlgorithm.encryptMessage
    * @public
-   * @abstract
    *
-   * @param {module:models/room} room
-   * @param {string} eventType
-   * @param {object} content event content
+   * @param content - event content
    *
-   * @return {Promise} Promise which resolves to the new event body
+   * @returns Promise which resolves to the new event body
    */
 
-
   /**
    * Called when the membership of a member of the room changes.
    *
-   * @param {module:models/event.MatrixEvent} event  event causing the change
-   * @param {module:models/room-member} member  user whose membership changed
-   * @param {string=} oldMembership  previous membership
+   * @param event -  event causing the change
+   * @param member -  user whose membership changed
+   * @param oldMembership -  previous membership
    * @public
-   * @abstract
    */
   onRoomMembership(event, member, oldMembership) {}
-
 }
+
 /**
  * base type for decryption implementations
- *
- * @alias module:crypto/algorithms/base.DecryptionAlgorithm
- * @param {object} params parameters
- * @param {string} params.userId  The UserID for the local user
- * @param {module:crypto} params.crypto crypto core
- * @param {module:crypto/OlmDevice} params.olmDevice olm.js wrapper
- * @param {MatrixClient} baseApis base matrix api interface
- * @param {string=} params.roomId The ID of the room we will be receiving
- *     from. Null for to-device events.
  */
-
-
 exports.EncryptionAlgorithm = EncryptionAlgorithm;
-
 class DecryptionAlgorithm {
   constructor(params) {
     _defineProperty(this, "userId", void 0);
-
     _defineProperty(this, "crypto", void 0);
-
     _defineProperty(this, "olmDevice", void 0);
-
     _defineProperty(this, "baseApis", void 0);
-
     _defineProperty(this, "roomId", void 0);
-
     this.userId = params.userId;
     this.crypto = params.crypto;
     this.olmDevice = params.olmDevice;
     this.baseApis = params.baseApis;
     this.roomId = params.roomId;
   }
+
   /**
    * Decrypt an event
    *
-   * @method module:crypto/algorithms/base.DecryptionAlgorithm#decryptEvent
-   * @abstract
-   *
-   * @param {MatrixEvent} event undecrypted event
+   * @param event - undecrypted event
    *
-   * @return {Promise<module:crypto~EventDecryptionResult>} promise which
+   * @returns promise which
    * resolves once we have finished decrypting. Rejects with an
    * `algorithms.DecryptionError` if there is a problem decrypting the event.
    */
 
-
   /**
    * Handle a key event
    *
-   * @method module:crypto/algorithms/base.DecryptionAlgorithm#onRoomKeyEvent
-   *
-   * @param {module:models/event.MatrixEvent} params event key event
+   * @param params - event key event
    */
-  async onRoomKeyEvent(params) {// ignore by default
+  async onRoomKeyEvent(params) {
+    // ignore by default
   }
+
   /**
    * Import a room key
    *
-   * @param {module:crypto/OlmDevice.MegolmSessionData} session
-   * @param {object} opts object
+   * @param opts - object
    */
-
-
-  async importRoomKey(session, opts) {// ignore by default
+  async importRoomKey(session, opts) {
+    // ignore by default
   }
+
   /**
    * Determine if we have the keys necessary to respond to a room key request
    *
-   * @param {module:crypto~IncomingRoomKeyRequest} keyRequest
-   * @return {Promise<boolean>} true if we have the keys and could (theoretically) share
+   * @returns true if we have the keys and could (theoretically) share
    *  them; else false.
    */
-
-
   hasKeysForKeyRequest(keyRequest) {
     return Promise.resolve(false);
   }
+
   /**
    * Send the response to a room key request
    *
-   * @param {module:crypto~IncomingRoomKeyRequest} keyRequest
    */
-
-
   shareKeysWithDevice(keyRequest) {
     throw new Error("shareKeysWithDevice not supported for this DecryptionAlgorithm");
   }
+
   /**
    * Retry decrypting all the events from a sender that haven't been
    * decrypted yet.
    *
-   * @param {string} senderKey the sender's key
+   * @param senderKey - the sender's key
    */
-
-
   async retryDecryptionFromSender(senderKey) {
     // ignore by default
     return false;
   }
-
 }
+
 /**
  * Exception thrown when decryption fails
  *
- * @alias module:crypto/algorithms/base.DecryptionError
- * @param {string} msg user-visible message describing the problem
+ * @param msg - user-visible message describing the problem
  *
- * @param {Object=} details key/value pairs reported in the logs but not shown
+ * @param details - key/value pairs reported in the logs but not shown
  *   to the user.
- *
- * @extends Error
  */
-
-
 exports.DecryptionAlgorithm = DecryptionAlgorithm;
-
 class DecryptionError extends Error {
   constructor(code, msg, details) {
     super(msg);
     this.code = code;
-
     _defineProperty(this, "detailedString", void 0);
-
     this.code = code;
-    this.name = 'DecryptionError';
+    this.name = "DecryptionError";
     this.detailedString = detailedStringForDecryptionError(this, details);
   }
-
 }
-
 exports.DecryptionError = DecryptionError;
-
 function detailedStringForDecryptionError(err, details) {
-  let result = err.name + '[msg: ' + err.message;
-
+  let result = err.name + "[msg: " + err.message;
   if (details) {
-    result += ', ' + Object.keys(details).map(k => k + ': ' + details[k]).join(', ');
+    result += ", " + Object.keys(details).map(k => k + ": " + details[k]).join(", ");
   }
-
-  result += ']';
+  result += "]";
   return result;
 }
-/**
- * Exception thrown specifically when we want to warn the user to consider
- * the security of their conversation before continuing
- *
- * @param {string} msg message describing the problem
- * @param {Object} devices userId -> {deviceId -> object}
- *      set of unknown devices per user we're warning about
- * @extends Error
- */
-
-
 class UnknownDeviceError extends Error {
-  constructor(msg, devices) {
+  /**
+   * Exception thrown specifically when we want to warn the user to consider
+   * the security of their conversation before continuing
+   *
+   * @param msg - message describing the problem
+   * @param devices - set of unknown devices per user we're warning about
+   */
+  constructor(msg, devices, event) {
     super(msg);
     this.devices = devices;
+    this.event = event;
     this.name = "UnknownDeviceError";
     this.devices = devices;
   }
-
 }
+
 /**
  * Registers an encryption/decryption class for a particular algorithm
  *
- * @param {string} algorithm algorithm tag to register for
+ * @param algorithm - algorithm tag to register for
  *
- * @param {class} encryptor {@link
- *     module:crypto/algorithms/base.EncryptionAlgorithm|EncryptionAlgorithm}
- *     implementation
+ * @param encryptor - {@link EncryptionAlgorithm} implementation
  *
- * @param {class} decryptor {@link
- *     module:crypto/algorithms/base.DecryptionAlgorithm|DecryptionAlgorithm}
- *     implementation
+ * @param decryptor - {@link DecryptionAlgorithm} implementation
  */
-
-
 exports.UnknownDeviceError = UnknownDeviceError;
-
 function registerAlgorithm(algorithm, encryptor, decryptor) {
   ENCRYPTION_CLASSES.set(algorithm, encryptor);
   DECRYPTION_CLASSES.set(algorithm, decryptor);
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/algorithms/index.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/algorithms/index.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/algorithms/index.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/algorithms/index.js	2023-04-11 06:11:52.000000000 +0000
@@ -3,13 +3,9 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-
 require("./olm");
-
 require("./megolm");
-
 var _base = require("./base");
-
 Object.keys(_base).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (key in exports && exports[key] === _base[key]) return;
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/algorithms/megolm.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/algorithms/megolm.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/algorithms/megolm.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/algorithms/megolm.js	2023-04-11 06:11:52.000000000 +0000
@@ -3,280 +3,246 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
+exports.MegolmEncryption = exports.MegolmDecryption = void 0;
 exports.isRoomSharedHistory = isRoomSharedHistory;
-
+var _uuid = require("uuid");
 var _logger = require("../../logger");
-
 var olmlib = _interopRequireWildcard(require("../olmlib"));
-
 var _base = require("./base");
-
 var _OlmDevice = require("../OlmDevice");
-
+var _event = require("../../@types/event");
 var _OutgoingRoomKeyRequestManager = require("../OutgoingRoomKeyRequestManager");
-
+var _utils = require("../../utils");
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
+function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 // determine whether the key can be shared with invitees
 function isRoomSharedHistory(room) {
-  const visibilityEvent = room?.currentState?.getStateEvents("m.room.history_visibility", ""); // NOTE: if the room visibility is unset, it would normally default to
+  const visibilityEvent = room?.currentState?.getStateEvents("m.room.history_visibility", "");
+  // NOTE: if the room visibility is unset, it would normally default to
   // "world_readable".
   // (https://spec.matrix.org/unstable/client-server-api/#server-behaviour-5)
   // But we will be paranoid here, and treat it as a situation where the room
   // is not shared-history
-
   const visibility = visibilityEvent?.getContent()?.history_visibility;
   return ["world_readable", "shared"].includes(visibility);
 }
-
 /**
- * @private
- * @constructor
- *
- * @param {string} sessionId
- * @param {boolean} sharedHistory whether the session can be freely shared with
- *    other group members, according to the room history visibility settings
+ * Tests whether an encrypted content has a ciphertext.
+ * Ciphertext can be a string or object depending on the content type {@link IEncryptedContent}.
  *
- * @property {string} sessionId
- * @property {Number} useCount     number of times this session has been used
- * @property {Number} creationTime when the session was created (ms since the epoch)
- *
- * @property {object} sharedWithDevices
- *    devices with which we have shared the session key
- *        userId -> {deviceId -> SharedWithData}
+ * @param content - Encrypted content
+ * @returns true: has ciphertext, else false
+ */
+const hasCiphertext = content => {
+  return typeof content.ciphertext === "string" ? !!content.ciphertext.length : !!Object.keys(content.ciphertext).length;
+};
+
+/** The result of parsing the an `m.room_key` or `m.forwarded_room_key` to-device event */
+
+/**
+ * @internal
  */
 class OutboundSessionInfo {
+  /** number of times this session has been used */
+
+  /** when the session was created (ms since the epoch) */
+
+  /** devices with which we have shared the session key `userId -> {deviceId -> SharedWithData}` */
+
+  /**
+   * @param sharedHistory - whether the session can be freely shared with
+   *    other group members, according to the room history visibility settings
+   */
   constructor(sessionId, sharedHistory = false) {
     this.sessionId = sessionId;
     this.sharedHistory = sharedHistory;
-
     _defineProperty(this, "useCount", 0);
-
     _defineProperty(this, "creationTime", void 0);
-
-    _defineProperty(this, "sharedWithDevices", {});
-
-    _defineProperty(this, "blockedDevicesNotified", {});
-
+    _defineProperty(this, "sharedWithDevices", new _utils.MapWithDefault(() => new Map()));
+    _defineProperty(this, "blockedDevicesNotified", new _utils.MapWithDefault(() => new Map()));
     this.creationTime = new Date().getTime();
   }
+
   /**
    * Check if it's time to rotate the session
-   *
-   * @param {Number} rotationPeriodMsgs
-   * @param {Number} rotationPeriodMs
-   * @return {Boolean}
    */
-
-
   needsRotation(rotationPeriodMsgs, rotationPeriodMs) {
     const sessionLifetime = new Date().getTime() - this.creationTime;
-
     if (this.useCount >= rotationPeriodMsgs || sessionLifetime >= rotationPeriodMs) {
       _logger.logger.log("Rotating megolm session after " + this.useCount + " messages, " + sessionLifetime + "ms");
-
       return true;
     }
-
     return false;
   }
-
   markSharedWithDevice(userId, deviceId, deviceKey, chainIndex) {
-    if (!this.sharedWithDevices[userId]) {
-      this.sharedWithDevices[userId] = {};
-    }
-
-    this.sharedWithDevices[userId][deviceId] = {
+    this.sharedWithDevices.getOrCreate(userId).set(deviceId, {
       deviceKey,
       messageIndex: chainIndex
-    };
+    });
   }
-
   markNotifiedBlockedDevice(userId, deviceId) {
-    if (!this.blockedDevicesNotified[userId]) {
-      this.blockedDevicesNotified[userId] = {};
-    }
-
-    this.blockedDevicesNotified[userId][deviceId] = true;
+    this.blockedDevicesNotified.getOrCreate(userId).set(deviceId, true);
   }
+
   /**
    * Determine if this session has been shared with devices which it shouldn't
    * have been.
    *
-   * @param {Object} devicesInRoom userId -> {deviceId -> object}
+   * @param devicesInRoom - `userId -> {deviceId -> object}`
    *   devices we should shared the session with.
    *
-   * @return {Boolean} true if we have shared the session with devices which aren't
+   * @returns true if we have shared the session with devices which aren't
    * in devicesInRoom.
    */
-
-
   sharedWithTooManyDevices(devicesInRoom) {
-    for (const userId in this.sharedWithDevices) {
-      if (!this.sharedWithDevices.hasOwnProperty(userId)) {
-        continue;
-      }
-
-      if (!devicesInRoom.hasOwnProperty(userId)) {
+    for (const [userId, devices] of this.sharedWithDevices) {
+      if (!devicesInRoom.has(userId)) {
         _logger.logger.log("Starting new megolm session because we shared with " + userId);
-
         return true;
       }
-
-      for (const deviceId in this.sharedWithDevices[userId]) {
-        if (!this.sharedWithDevices[userId].hasOwnProperty(deviceId)) {
-          continue;
-        }
-
-        if (!devicesInRoom[userId].hasOwnProperty(deviceId)) {
+      for (const [deviceId] of devices) {
+        if (!devicesInRoom.get(userId)?.get(deviceId)) {
           _logger.logger.log("Starting new megolm session because we shared with " + userId + ":" + deviceId);
-
           return true;
         }
       }
     }
-
     return false;
   }
-
 }
+
 /**
  * Megolm encryption implementation
  *
- * @constructor
- * @extends {module:crypto/algorithms/EncryptionAlgorithm}
- *
- * @param {object} params parameters, as per
- *     {@link module:crypto/algorithms/EncryptionAlgorithm}
+ * @param params - parameters, as per {@link EncryptionAlgorithm}
  */
-
-
 class MegolmEncryption extends _base.EncryptionAlgorithm {
   // the most recent attempt to set up a session. This is used to serialise
   // the session setups, so that we have a race-free view of which session we
   // are using, and which devices we have shared the keys with. It resolves
   // with an OutboundSessionInfo (or undefined, for the first message in the
   // room).
+
   // Map of outbound sessions by sessions ID. Used if we need a particular
   // session (the session we're currently using to send is always obtained
   // using setupPromise).
+
   constructor(params) {
     super(params);
-
     _defineProperty(this, "setupPromise", Promise.resolve(null));
-
     _defineProperty(this, "outboundSessions", {});
-
     _defineProperty(this, "sessionRotationPeriodMsgs", void 0);
-
     _defineProperty(this, "sessionRotationPeriodMs", void 0);
-
     _defineProperty(this, "encryptionPreparation", void 0);
-
+    _defineProperty(this, "roomId", void 0);
+    _defineProperty(this, "prefixedLogger", void 0);
+    this.roomId = params.roomId;
+    this.prefixedLogger = _logger.logger.withPrefix(`[${this.roomId} encryption]`);
     this.sessionRotationPeriodMsgs = params.config?.rotation_period_msgs ?? 100;
     this.sessionRotationPeriodMs = params.config?.rotation_period_ms ?? 7 * 24 * 3600 * 1000;
   }
+
   /**
-   * @private
+   * @internal
    *
-   * @param {module:models/room} room
-   * @param {Object} devicesInRoom The devices in this room, indexed by user ID
-   * @param {Object} blocked The devices that are blocked, indexed by user ID
-   * @param {boolean} [singleOlmCreationPhase] Only perform one round of olm
+   * @param devicesInRoom - The devices in this room, indexed by user ID
+   * @param blocked - The devices that are blocked, indexed by user ID
+   * @param singleOlmCreationPhase - Only perform one round of olm
    *     session creation
    *
-   * @return {Promise} Promise which resolves to the
+   * This method updates the setupPromise field of the class by chaining a new
+   * call on top of the existing promise, and then catching and discarding any
+   * errors that might happen while setting up the outbound group session. This
+   * is done to ensure that `setupPromise` always resolves to `null` or the
+   * `OutboundSessionInfo`.
+   *
+   * Using `>>=` to represent the promise chaining operation, it does the
+   * following:
+   *
+   * ```
+   * setupPromise = previousSetupPromise >>= setup >>= discardErrors
+   * ```
+   *
+   * The initial value for the `setupPromise` is a promise that resolves to
+   * `null`. The forceDiscardSession() resets setupPromise to this initial
+   * promise.
+   *
+   * @returns Promise which resolves to the
    *    OutboundSessionInfo when setup is complete.
    */
-
-
   async ensureOutboundSession(room, devicesInRoom, blocked, singleOlmCreationPhase = false) {
     // takes the previous OutboundSessionInfo, and considers whether to create
     // a new one. Also shares the key with any (new) devices in the room.
     //
-    // Returns the successful session whether keyshare succeeds or not.
-    //
     // returns a promise which resolves once the keyshare is successful.
     const setup = async oldSession => {
       const sharedHistory = isRoomSharedHistory(room);
       const session = await this.prepareSession(devicesInRoom, sharedHistory, oldSession);
-
-      try {
-        await this.shareSession(devicesInRoom, sharedHistory, singleOlmCreationPhase, blocked, session);
-      } catch (e) {
-        _logger.logger.error(`Failed to ensure outbound session in ${this.roomId}`, e);
-      }
-
+      await this.shareSession(devicesInRoom, sharedHistory, singleOlmCreationPhase, blocked, session);
       return session;
-    }; // first wait for the previous share to complete
-
-
-    const prom = this.setupPromise.then(setup); // Ensure any failures are logged for debugging
+    };
 
-    prom.catch(e => {
-      _logger.logger.error(`Failed to setup outbound session in ${this.roomId}`, e);
-    }); // setupPromise resolves to `session` whether or not the share succeeds
+    // first wait for the previous share to complete
+    const fallible = this.setupPromise.then(setup);
 
-    this.setupPromise = prom; // but we return a promise which only resolves if the share was successful.
+    // Ensure any failures are logged for debugging and make sure that the
+    // promise chain remains unbroken
+    //
+    // setupPromise resolves to `null` or the `OutboundSessionInfo` whether
+    // or not the share succeeds
+    this.setupPromise = fallible.catch(e => {
+      this.prefixedLogger.error(`Failed to setup outbound session`, e);
+      return null;
+    });
 
-    return prom;
+    // but we return a promise which only resolves if the share was successful.
+    return fallible;
   }
-
   async prepareSession(devicesInRoom, sharedHistory, session) {
     // history visibility changed
     if (session && sharedHistory !== session.sharedHistory) {
       session = null;
-    } // need to make a brand new session?
-
+    }
 
+    // need to make a brand new session?
     if (session?.needsRotation(this.sessionRotationPeriodMsgs, this.sessionRotationPeriodMs)) {
-      _logger.logger.log("Starting new megolm session because we need to rotate.");
-
+      this.prefixedLogger.log("Starting new megolm session because we need to rotate.");
       session = null;
-    } // determine if we have shared with anyone we shouldn't have
-
+    }
 
+    // determine if we have shared with anyone we shouldn't have
     if (session?.sharedWithTooManyDevices(devicesInRoom)) {
       session = null;
     }
-
     if (!session) {
-      _logger.logger.log(`Starting new megolm session for room ${this.roomId}`);
-
+      this.prefixedLogger.log("Starting new megolm session");
       session = await this.prepareNewSession(sharedHistory);
-
-      _logger.logger.log(`Started new megolm session ${session.sessionId} ` + `for room ${this.roomId}`);
-
+      this.prefixedLogger.log(`Started new megolm session ${session.sessionId}`);
       this.outboundSessions[session.sessionId] = session;
     }
-
     return session;
   }
-
   async shareSession(devicesInRoom, sharedHistory, singleOlmCreationPhase, blocked, session) {
     // now check if we need to share with any devices
     const shareMap = {};
-
-    for (const [userId, userDevices] of Object.entries(devicesInRoom)) {
-      for (const [deviceId, deviceInfo] of Object.entries(userDevices)) {
+    for (const [userId, userDevices] of devicesInRoom) {
+      for (const [deviceId, deviceInfo] of userDevices) {
         const key = deviceInfo.getIdentityKey();
-
         if (key == this.olmDevice.deviceCurve25519Key) {
           // don't bother sending to ourself
           continue;
         }
-
-        if (!session.sharedWithDevices[userId] || session.sharedWithDevices[userId][deviceId] === undefined) {
+        if (!session.sharedWithDevices.get(userId)?.get(deviceId)) {
           shareMap[userId] = shareMap[userId] || [];
           shareMap[userId].push(deviceInfo);
         }
       }
     }
-
     const key = this.olmDevice.getOutboundGroupSessionKey(session.sessionId);
     const payload = {
       type: "m.room_key",
@@ -292,26 +258,24 @@
     const [devicesWithoutSession, olmSessions] = await olmlib.getExistingOlmSessions(this.olmDevice, this.baseApis, shareMap);
     await Promise.all([(async () => {
       // share keys with devices that we already have a session for
-      _logger.logger.debug(`Sharing keys with existing Olm sessions in ${this.roomId}`, olmSessions);
-
+      const olmSessionList = Array.from(olmSessions.entries()).map(([userId, sessionsByUser]) => Array.from(sessionsByUser.entries()).map(([deviceId, session]) => `${userId}/${deviceId}: ${session.sessionId}`)).flat(1);
+      this.prefixedLogger.debug("Sharing keys with devices with existing Olm sessions:", olmSessionList);
       await this.shareKeyWithOlmSessions(session, key, payload, olmSessions);
-
-      _logger.logger.debug(`Shared keys with existing Olm sessions in ${this.roomId}`);
+      this.prefixedLogger.debug("Shared keys with existing Olm sessions");
     })(), (async () => {
-      _logger.logger.debug(`Sharing keys (start phase 1) with new Olm sessions in ${this.roomId}`, devicesWithoutSession);
+      const deviceList = Array.from(devicesWithoutSession.entries()).map(([userId, devicesByUser]) => devicesByUser.map(device => `${userId}/${device.deviceId}`)).flat(1);
+      this.prefixedLogger.debug("Sharing keys (start phase 1) with devices without existing Olm sessions:", deviceList);
+      const errorDevices = [];
 
-      const errorDevices = []; // meanwhile, establish olm sessions for devices that we don't
+      // meanwhile, establish olm sessions for devices that we don't
       // already have a session for, and share keys with them.  If
       // we're doing two phases of olm session creation, use a
       // shorter timeout when fetching one-time keys for the first
       // phase.
-
       const start = Date.now();
       const failedServers = [];
       await this.shareKeyWithDevices(session, key, payload, devicesWithoutSession, errorDevices, singleOlmCreationPhase ? 10000 : 2000, failedServers);
-
-      _logger.logger.debug(`Shared keys (end phase 1) with new Olm sessions in ${this.roomId}`);
-
+      this.prefixedLogger.debug("Shared keys (end phase 1) with devices without existing Olm sessions");
       if (!singleOlmCreationPhase && Date.now() - start < 10000) {
         // perform the second phase of olm session creation if requested,
         // and if the first phase didn't take too long
@@ -321,24 +285,19 @@
           // do this in the background and don't block anything else while we
           // do this.  We only need to retry users from servers that didn't
           // respond the first time.
-          const retryDevices = {};
+          const retryDevices = new _utils.MapWithDefault(() => []);
           const failedServerMap = new Set();
-
           for (const server of failedServers) {
             failedServerMap.add(server);
           }
-
           const failedDevices = [];
-
           for (const {
             userId,
             deviceInfo
           } of errorDevices) {
             const userHS = userId.slice(userId.indexOf(":") + 1);
-
             if (failedServerMap.has(userHS)) {
-              retryDevices[userId] = retryDevices[userId] || [];
-              retryDevices[userId].push(deviceInfo);
+              retryDevices.getOrCreate(userId).push(deviceInfo);
             } else {
               // if we aren't going to retry, then handle it
               // as a failed device
@@ -348,55 +307,47 @@
               });
             }
           }
-
-          _logger.logger.debug(`Sharing keys (start phase 2) with new Olm sessions in ${this.roomId}`);
-
-          await this.shareKeyWithDevices(session, key, payload, retryDevices, failedDevices, 30000);
-
-          _logger.logger.debug(`Shared keys (end phase 2) with new Olm sessions in ${this.roomId}`);
-
+          const retryDeviceList = Array.from(retryDevices.entries()).map(([userId, devicesByUser]) => devicesByUser.map(device => `${userId}/${device.deviceId}`)).flat(1);
+          if (retryDeviceList.length > 0) {
+            this.prefixedLogger.debug("Sharing keys (start phase 2) with devices without existing Olm sessions:", retryDeviceList);
+            await this.shareKeyWithDevices(session, key, payload, retryDevices, failedDevices, 30000);
+            this.prefixedLogger.debug("Shared keys (end phase 2) with devices without existing Olm sessions");
+          }
           await this.notifyFailedOlmDevices(session, key, failedDevices);
         })();
       } else {
         await this.notifyFailedOlmDevices(session, key, errorDevices);
       }
-
-      _logger.logger.debug(`Shared keys (all phases done) with new Olm sessions in ${this.roomId}`);
     })(), (async () => {
-      _logger.logger.debug(`There are ${Object.entries(blocked).length} blocked devices in ${this.roomId}`, Object.entries(blocked)); // also, notify newly blocked devices that they're blocked
-
+      this.prefixedLogger.debug(`There are ${blocked.size} blocked devices:`, Array.from(blocked.entries()).map(([userId, blockedByUser]) => Array.from(blockedByUser.entries()).map(([deviceId, _deviceInfo]) => `${userId}/${deviceId}`)).flat(1));
 
-      _logger.logger.debug(`Notifying newly blocked devices in ${this.roomId}`);
-
-      const blockedMap = {};
+      // also, notify newly blocked devices that they're blocked
+      const blockedMap = new _utils.MapWithDefault(() => new Map());
       let blockedCount = 0;
-
-      for (const [userId, userBlockedDevices] of Object.entries(blocked)) {
-        for (const [deviceId, device] of Object.entries(userBlockedDevices)) {
-          if (!session.blockedDevicesNotified[userId] || session.blockedDevicesNotified[userId][deviceId] === undefined) {
-            blockedMap[userId] = blockedMap[userId] || {};
-            blockedMap[userId][deviceId] = {
+      for (const [userId, userBlockedDevices] of blocked) {
+        for (const [deviceId, device] of userBlockedDevices) {
+          if (session.blockedDevicesNotified.get(userId)?.get(deviceId) === undefined) {
+            blockedMap.getOrCreate(userId).set(deviceId, {
               device
-            };
+            });
             blockedCount++;
           }
         }
       }
-
-      await this.notifyBlockedDevices(session, blockedMap);
-
-      _logger.logger.debug(`Notified ${blockedCount} newly blocked devices in ${this.roomId}`, blockedMap);
+      if (blockedCount) {
+        this.prefixedLogger.debug(`Notifying ${blockedCount} newly blocked devices:`, Array.from(blockedMap.entries()).map(([userId, blockedByUser]) => Object.entries(blockedByUser).map(([deviceId, _deviceInfo]) => `${userId}/${deviceId}`)).flat(1));
+        await this.notifyBlockedDevices(session, blockedMap);
+        this.prefixedLogger.debug(`Notified ${blockedCount} newly blocked devices`);
+      }
     })()]);
   }
+
   /**
-   * @private
+   * @internal
    *
-   * @param {boolean} sharedHistory
    *
-   * @return {module:crypto/algorithms/megolm.OutboundSessionInfo} session
+   * @returns session
    */
-
-
   async prepareNewSession(sharedHistory) {
     const sessionId = this.olmDevice.createOutboundGroupSession();
     const key = this.olmDevice.getOutboundGroupSessionKey(sessionId);
@@ -404,114 +355,107 @@
       ed25519: this.olmDevice.deviceEd25519Key
     }, false, {
       sharedHistory
-    }); // don't wait for it to complete
+    });
 
+    // don't wait for it to complete
     this.crypto.backupManager.backupGroupSession(this.olmDevice.deviceCurve25519Key, sessionId);
     return new OutboundSessionInfo(sessionId, sharedHistory);
   }
+
   /**
    * Determines what devices in devicesByUser don't have an olm session as given
    * in devicemap.
    *
-   * @private
+   * @internal
    *
-   * @param {object} devicemap the devices that have olm sessions, as returned by
+   * @param deviceMap - the devices that have olm sessions, as returned by
    *     olmlib.ensureOlmSessionsForDevices.
-   * @param {object} devicesByUser a map of user IDs to array of deviceInfo
-   * @param {array} [noOlmDevices] an array to fill with devices that don't have
+   * @param devicesByUser - a map of user IDs to array of deviceInfo
+   * @param noOlmDevices - an array to fill with devices that don't have
    *     olm sessions
    *
-   * @return {array} an array of devices that don't have olm sessions.  If
+   * @returns an array of devices that don't have olm sessions.  If
    *     noOlmDevices is specified, then noOlmDevices will be returned.
    */
-
-
-  getDevicesWithoutSessions(devicemap, devicesByUser, noOlmDevices = []) {
-    for (const [userId, devicesToShareWith] of Object.entries(devicesByUser)) {
-      const sessionResults = devicemap[userId];
-
+  getDevicesWithoutSessions(deviceMap, devicesByUser, noOlmDevices = []) {
+    for (const [userId, devicesToShareWith] of devicesByUser) {
+      const sessionResults = deviceMap.get(userId);
       for (const deviceInfo of devicesToShareWith) {
         const deviceId = deviceInfo.deviceId;
-        const sessionResult = sessionResults[deviceId];
-
-        if (!sessionResult.sessionId) {
+        const sessionResult = sessionResults?.get(deviceId);
+        if (!sessionResult?.sessionId) {
           // no session with this device, probably because there
           // were no one-time keys.
+
           noOlmDevices.push({
             userId,
             deviceInfo
           });
-          delete sessionResults[deviceId]; // ensureOlmSessionsForUsers has already done the logging,
-          // so just skip it.
+          sessionResults?.delete(deviceId);
 
+          // ensureOlmSessionsForUsers has already done the logging,
+          // so just skip it.
           continue;
         }
       }
     }
-
     return noOlmDevices;
   }
+
   /**
    * Splits the user device map into multiple chunks to reduce the number of
    * devices we encrypt to per API call.
    *
-   * @private
+   * @internal
    *
-   * @param {object} devicesByUser map from userid to list of devices
+   * @param devicesByUser - map from userid to list of devices
    *
-   * @return {array<array<object>>} the blocked devices, split into chunks
+   * @returns the blocked devices, split into chunks
    */
-
-
   splitDevices(devicesByUser) {
-    const maxDevicesPerRequest = 20; // use an array where the slices of a content map gets stored
+    const maxDevicesPerRequest = 20;
 
+    // use an array where the slices of a content map gets stored
     let currentSlice = [];
     const mapSlices = [currentSlice];
-
-    for (const [userId, userDevices] of Object.entries(devicesByUser)) {
-      for (const deviceInfo of Object.values(userDevices)) {
+    for (const [userId, userDevices] of devicesByUser) {
+      for (const deviceInfo of userDevices.values()) {
         currentSlice.push({
           userId: userId,
           deviceInfo: deviceInfo.device
         });
-      } // We do this in the per-user loop as we prefer that all messages to the
+      }
+
+      // We do this in the per-user loop as we prefer that all messages to the
       // same user end up in the same API call to make it easier for the
       // server (e.g. only have to send one EDU if a remote user, etc). This
       // does mean that if a user has many devices we may go over the desired
       // limit, but its not a hard limit so that is fine.
-
-
       if (currentSlice.length > maxDevicesPerRequest) {
         // the current slice is filled up. Start inserting into the next slice
         currentSlice = [];
         mapSlices.push(currentSlice);
       }
     }
-
     if (currentSlice.length === 0) {
       mapSlices.pop();
     }
-
     return mapSlices;
   }
+
   /**
-   * @private
+   * @internal
    *
-   * @param {module:crypto/algorithms/megolm.OutboundSessionInfo} session
    *
-   * @param {number} chainIndex current chain index
+   * @param chainIndex - current chain index
    *
-   * @param {object<userId, deviceInfo>} userDeviceMap
-   *   mapping from userId to deviceInfo
+   * @param userDeviceMap - mapping from userId to deviceInfo
    *
-   * @param {object} payload fields to include in the encrypted payload
+   * @param payload - fields to include in the encrypted payload
    *
-   * @return {Promise} Promise which resolves once the key sharing
+   * @returns Promise which resolves once the key sharing
    *     for the given userDeviceMap is generated and has been sent.
    */
-
-
   encryptAndSendKeysToDevices(session, chainIndex, devices, payload) {
     return this.crypto.encryptAndSendToDevices(devices, payload).then(() => {
       // store that we successfully uploaded the keys of the current slice
@@ -519,111 +463,89 @@
         session.markSharedWithDevice(device.userId, device.deviceInfo.deviceId, device.deviceInfo.getIdentityKey(), chainIndex);
       }
     }).catch(error => {
-      _logger.logger.error("failed to encryptAndSendToDevices", error);
-
+      this.prefixedLogger.error("failed to encryptAndSendToDevices", error);
       throw error;
     });
   }
+
   /**
-   * @private
+   * @internal
    *
-   * @param {module:crypto/algorithms/megolm.OutboundSessionInfo} session
    *
-   * @param {array<object>} userDeviceMap list of blocked devices to notify
+   * @param userDeviceMap - list of blocked devices to notify
    *
-   * @param {object} payload fields to include in the notification payload
+   * @param payload - fields to include in the notification payload
    *
-   * @return {Promise} Promise which resolves once the notifications
+   * @returns Promise which resolves once the notifications
    *     for the given userDeviceMap is generated and has been sent.
    */
-
-
   async sendBlockedNotificationsToDevices(session, userDeviceMap, payload) {
-    const contentMap = {};
-
+    const contentMap = new _utils.MapWithDefault(() => new Map());
     for (const val of userDeviceMap) {
       const userId = val.userId;
       const blockedInfo = val.deviceInfo;
       const deviceInfo = blockedInfo.deviceInfo;
       const deviceId = deviceInfo.deviceId;
-      const message = Object.assign({}, payload);
-      message.code = blockedInfo.code;
-      message.reason = blockedInfo.reason;
-
+      const message = _objectSpread(_objectSpread({}, payload), {}, {
+        code: blockedInfo.code,
+        reason: blockedInfo.reason,
+        [_event.ToDeviceMessageId]: (0, _uuid.v4)()
+      });
       if (message.code === "m.no_olm") {
         delete message.room_id;
         delete message.session_id;
       }
-
-      if (!contentMap[userId]) {
-        contentMap[userId] = {};
-      }
-
-      contentMap[userId][deviceId] = message;
+      contentMap.getOrCreate(userId).set(deviceId, message);
     }
+    await this.baseApis.sendToDevice("m.room_key.withheld", contentMap);
 
-    await this.baseApis.sendToDevice("m.room_key.withheld", contentMap); // record the fact that we notified these blocked devices
-
-    for (const userId of Object.keys(contentMap)) {
-      for (const deviceId of Object.keys(contentMap[userId])) {
+    // record the fact that we notified these blocked devices
+    for (const [userId, userDeviceMap] of contentMap) {
+      for (const deviceId of userDeviceMap.keys()) {
         session.markNotifiedBlockedDevice(userId, deviceId);
       }
     }
   }
+
   /**
    * Re-shares a megolm session key with devices if the key has already been
    * sent to them.
    *
-   * @param {string} senderKey The key of the originating device for the session
-   * @param {string} sessionId ID of the outbound session to share
-   * @param {string} userId ID of the user who owns the target device
-   * @param {module:crypto/deviceinfo} device The target device
+   * @param senderKey - The key of the originating device for the session
+   * @param sessionId - ID of the outbound session to share
+   * @param userId - ID of the user who owns the target device
+   * @param device - The target device
    */
-
-
   async reshareKeyWithDevice(senderKey, sessionId, userId, device) {
     const obSessionInfo = this.outboundSessions[sessionId];
-
     if (!obSessionInfo) {
-      _logger.logger.debug(`megolm session ${sessionId} not found: not re-sharing keys`);
-
+      this.prefixedLogger.debug(`megolm session ${senderKey}|${sessionId} not found: not re-sharing keys`);
       return;
-    } // The chain index of the key we previously sent this device
-
-
-    if (obSessionInfo.sharedWithDevices[userId] === undefined) {
-      _logger.logger.debug(`megolm session ${sessionId} never shared with user ${userId}`);
+    }
 
+    // The chain index of the key we previously sent this device
+    if (!obSessionInfo.sharedWithDevices.has(userId)) {
+      this.prefixedLogger.debug(`megolm session ${senderKey}|${sessionId} never shared with user ${userId}`);
       return;
     }
-
-    const sessionSharedData = obSessionInfo.sharedWithDevices[userId][device.deviceId];
-
+    const sessionSharedData = obSessionInfo.sharedWithDevices.get(userId)?.get(device.deviceId);
     if (sessionSharedData === undefined) {
-      _logger.logger.debug("megolm session ID " + sessionId + " never shared with device " + userId + ":" + device.deviceId);
-
+      this.prefixedLogger.debug(`megolm session ${senderKey}|${sessionId} never shared with device ${userId}:${device.deviceId}`);
       return;
     }
-
     if (sessionSharedData.deviceKey !== device.getIdentityKey()) {
-      _logger.logger.warn(`Session has been shared with device ${device.deviceId} but with identity ` + `key ${sessionSharedData.deviceKey}. Key is now ${device.getIdentityKey()}!`);
-
+      this.prefixedLogger.warn(`Megolm session ${senderKey}|${sessionId} has been shared with device ${device.deviceId} but ` + `with identity key ${sessionSharedData.deviceKey}. Key is now ${device.getIdentityKey()}!`);
       return;
-    } // get the key from the inbound session: the outbound one will already
-    // have been ratcheted to the next chain index.
-
+    }
 
+    // get the key from the inbound session: the outbound one will already
+    // have been ratcheted to the next chain index.
     const key = await this.olmDevice.getInboundGroupSessionKey(this.roomId, senderKey, sessionId, sessionSharedData.messageIndex);
-
     if (!key) {
-      _logger.logger.warn(`No inbound session key found for megolm ${sessionId}: not re-sharing keys`);
-
+      this.prefixedLogger.warn(`No inbound session key found for megolm session ${senderKey}|${sessionId}: not re-sharing keys`);
       return;
     }
-
-    await olmlib.ensureOlmSessionsForDevices(this.olmDevice, this.baseApis, {
-      [userId]: [device]
-    });
+    await olmlib.ensureOlmSessionsForDevices(this.olmDevice, this.baseApis, new Map([[userId, [device]]]));
     const payload = {
       type: "m.forwarded_room_key",
       content: {
@@ -641,94 +563,67 @@
     const encryptedContent = {
       algorithm: olmlib.OLM_ALGORITHM,
       sender_key: this.olmDevice.deviceCurve25519Key,
-      ciphertext: {}
+      ciphertext: {},
+      [_event.ToDeviceMessageId]: (0, _uuid.v4)()
     };
     await olmlib.encryptMessageForDevice(encryptedContent.ciphertext, this.userId, this.deviceId, this.olmDevice, userId, device, payload);
-    await this.baseApis.sendToDevice("m.room.encrypted", {
-      [userId]: {
-        [device.deviceId]: encryptedContent
-      }
-    });
-
-    _logger.logger.debug(`Re-shared key for megolm session ${sessionId} with ${userId}:${device.deviceId}`);
+    await this.baseApis.sendToDevice("m.room.encrypted", new Map([[userId, new Map([[device.deviceId, encryptedContent]])]]));
+    this.prefixedLogger.debug(`Re-shared key for megolm session ${senderKey}|${sessionId} with ${userId}:${device.deviceId}`);
   }
+
   /**
-   * @private
+   * @internal
    *
-   * @param {module:crypto/algorithms/megolm.OutboundSessionInfo} session
    *
-   * @param {object} key the session key as returned by
+   * @param key - the session key as returned by
    *    OlmDevice.getOutboundGroupSessionKey
    *
-   * @param {object} payload the base to-device message payload for sharing keys
+   * @param payload - the base to-device message payload for sharing keys
    *
-   * @param {object<string, module:crypto/deviceinfo[]>} devicesByUser
-   *    map from userid to list of devices
+   * @param devicesByUser - map from userid to list of devices
    *
-   * @param {array<object>} errorDevices
-   *    array that will be populated with the devices that we can't get an
+   * @param errorDevices - array that will be populated with the devices that we can't get an
    *    olm session for
    *
-   * @param {Number} [otkTimeout] The timeout in milliseconds when requesting
+   * @param otkTimeout - The timeout in milliseconds when requesting
    *     one-time keys for establishing new olm sessions.
    *
-   * @param {Array} [failedServers] An array to fill with remote servers that
+   * @param failedServers - An array to fill with remote servers that
    *     failed to respond to one-time-key requests.
    */
-
-
   async shareKeyWithDevices(session, key, payload, devicesByUser, errorDevices, otkTimeout, failedServers) {
-    _logger.logger.debug(`Ensuring Olm sessions for devices in ${this.roomId}`);
-
-    const devicemap = await olmlib.ensureOlmSessionsForDevices(this.olmDevice, this.baseApis, devicesByUser, false, otkTimeout, failedServers, _logger.logger.withPrefix?.(`[${this.roomId}]`));
-
-    _logger.logger.debug(`Ensured Olm sessions for devices in ${this.roomId}`);
-
+    const devicemap = await olmlib.ensureOlmSessionsForDevices(this.olmDevice, this.baseApis, devicesByUser, false, otkTimeout, failedServers, this.prefixedLogger);
     this.getDevicesWithoutSessions(devicemap, devicesByUser, errorDevices);
-
-    _logger.logger.debug(`Sharing keys with newly created Olm sessions in ${this.roomId}`);
-
     await this.shareKeyWithOlmSessions(session, key, payload, devicemap);
-
-    _logger.logger.debug(`Shared keys with newly created Olm sessions in ${this.roomId}`);
   }
-
-  async shareKeyWithOlmSessions(session, key, payload, devicemap) {
-    const userDeviceMaps = this.splitDevices(devicemap);
-
+  async shareKeyWithOlmSessions(session, key, payload, deviceMap) {
+    const userDeviceMaps = this.splitDevices(deviceMap);
     for (let i = 0; i < userDeviceMaps.length; i++) {
-      const taskDetail = `megolm keys for ${session.sessionId} ` + `in ${this.roomId} (slice ${i + 1}/${userDeviceMaps.length})`;
-
+      const taskDetail = `megolm keys for ${session.sessionId} (slice ${i + 1}/${userDeviceMaps.length})`;
       try {
-        _logger.logger.debug(`Sharing ${taskDetail}`, userDeviceMaps[i].map(d => `${d.userId}/${d.deviceInfo.deviceId}`));
-
+        this.prefixedLogger.debug(`Sharing ${taskDetail}`, userDeviceMaps[i].map(d => `${d.userId}/${d.deviceInfo.deviceId}`));
         await this.encryptAndSendKeysToDevices(session, key.chain_index, userDeviceMaps[i], payload);
-
-        _logger.logger.debug(`Shared ${taskDetail}`);
+        this.prefixedLogger.debug(`Shared ${taskDetail}`);
       } catch (e) {
-        _logger.logger.error(`Failed to share ${taskDetail}`);
-
+        this.prefixedLogger.error(`Failed to share ${taskDetail}`);
         throw e;
       }
     }
   }
+
   /**
    * Notify devices that we weren't able to create olm sessions.
    *
-   * @param {module:crypto/algorithms/megolm.OutboundSessionInfo} session
    *
-   * @param {object} key
    *
-   * @param {Array<object>} failedDevices the devices that we were unable to
+   * @param failedDevices - the devices that we were unable to
    *     create olm sessions for, as returned by shareKeyWithDevices
    */
-
-
   async notifyFailedOlmDevices(session, key, failedDevices) {
-    _logger.logger.debug(`Notifying ${failedDevices.length} devices we failed to ` + `create Olm sessions in ${this.roomId}`); // mark the devices that failed as "handled" because we don't want to try
-    // to claim a one-time-key for dead devices on every message.
-
+    this.prefixedLogger.debug(`Notifying ${failedDevices.length} devices we failed to create Olm sessions`);
 
+    // mark the devices that failed as "handled" because we don't want to try
+    // to claim a one-time-key for dead devices on every message.
     for (const {
       userId,
       deviceInfo
@@ -736,45 +631,36 @@
       const deviceId = deviceInfo.deviceId;
       session.markSharedWithDevice(userId, deviceId, deviceInfo.getIdentityKey(), key.chain_index);
     }
-
     const unnotifiedFailedDevices = await this.olmDevice.filterOutNotifiedErrorDevices(failedDevices);
-
-    _logger.logger.debug(`Need to notify ${unnotifiedFailedDevices.length} failed devices ` + `which haven't been notified before in ${this.roomId}`);
-
-    const blockedMap = {};
-
+    this.prefixedLogger.debug(`Need to notify ${unnotifiedFailedDevices.length} failed devices which haven't been notified before`);
+    const blockedMap = new _utils.MapWithDefault(() => new Map());
     for (const {
       userId,
       deviceInfo
     } of unnotifiedFailedDevices) {
-      blockedMap[userId] = blockedMap[userId] || {}; // we use a similar format to what
+      // we use a similar format to what
       // olmlib.ensureOlmSessionsForDevices returns, so that
       // we can use the same function to split
-
-      blockedMap[userId][deviceInfo.deviceId] = {
+      blockedMap.getOrCreate(userId).set(deviceInfo.deviceId, {
         device: {
           code: "m.no_olm",
           reason: _OlmDevice.WITHHELD_MESSAGES["m.no_olm"],
           deviceInfo
         }
-      };
-    } // send the notifications
-
+      });
+    }
 
+    // send the notifications
     await this.notifyBlockedDevices(session, blockedMap);
-
-    _logger.logger.debug(`Notified ${unnotifiedFailedDevices.length} devices we failed to ` + `create Olm sessions in ${this.roomId}`);
+    this.prefixedLogger.debug(`Notified ${unnotifiedFailedDevices.length} devices we failed to create Olm sessions`);
   }
+
   /**
    * Notify blocked devices that they have been blocked.
    *
-   * @param {module:crypto/algorithms/megolm.OutboundSessionInfo} session
    *
-   * @param {object<string, object>} devicesByUser
-   *    map from userid to device ID to blocked data
+   * @param devicesByUser - map from userid to device ID to blocked data
    */
-
-
   async notifyBlockedDevices(session, devicesByUser) {
     const payload = {
       room_id: this.roomId,
@@ -783,101 +669,102 @@
       sender_key: this.olmDevice.deviceCurve25519Key
     };
     const userDeviceMaps = this.splitDevices(devicesByUser);
-
     for (let i = 0; i < userDeviceMaps.length; i++) {
       try {
         await this.sendBlockedNotificationsToDevices(session, userDeviceMaps[i], payload);
-
-        _logger.logger.log(`Completed blacklist notification for ${session.sessionId} ` + `in ${this.roomId} (slice ${i + 1}/${userDeviceMaps.length})`);
+        this.prefixedLogger.log(`Completed blacklist notification for ${session.sessionId} ` + `(slice ${i + 1}/${userDeviceMaps.length})`);
       } catch (e) {
-        _logger.logger.log(`blacklist notification for ${session.sessionId} in ` + `${this.roomId} (slice ${i + 1}/${userDeviceMaps.length}) failed`);
-
+        this.prefixedLogger.log(`blacklist notification for ${session.sessionId} ` + `(slice ${i + 1}/${userDeviceMaps.length}) failed`);
         throw e;
       }
     }
   }
+
   /**
    * Perform any background tasks that can be done before a message is ready to
    * send, in order to speed up sending of the message.
    *
-   * @param {module:models/room} room the room the event is in
+   * @param room - the room the event is in
+   * @returns A function that, when called, will stop the preparation
    */
-
-
   prepareToEncrypt(room) {
+    if (room.roomId !== this.roomId) {
+      throw new Error("MegolmEncryption.prepareToEncrypt called on unexpected room");
+    }
     if (this.encryptionPreparation != null) {
       // We're already preparing something, so don't do anything else.
-      // FIXME: check if we need to restart
-      // (https://github.com/matrix-org/matrix-js-sdk/issues/1255)
       const elapsedTime = Date.now() - this.encryptionPreparation.startTime;
-
-      _logger.logger.debug(`Already started preparing to encrypt for ${this.roomId} ` + `${elapsedTime} ms ago, skipping`);
-
-      return;
+      this.prefixedLogger.debug(`Already started preparing to encrypt for this room ${elapsedTime}ms ago, skipping`);
+      return this.encryptionPreparation.cancel;
     }
-
-    _logger.logger.debug(`Preparing to encrypt events for ${this.roomId}`);
-
+    this.prefixedLogger.debug("Preparing to encrypt events");
+    let cancelled = false;
+    const isCancelled = () => cancelled;
     this.encryptionPreparation = {
       startTime: Date.now(),
       promise: (async () => {
         try {
-          _logger.logger.debug(`Getting devices in ${this.roomId}`);
-
-          const [devicesInRoom, blocked] = await this.getDevicesInRoom(room);
-
-          if (this.crypto.getGlobalErrorOnUnknownDevices()) {
+          // Attempt to enumerate the devices in room, and gracefully
+          // handle cancellation if it occurs.
+          const getDevicesResult = await this.getDevicesInRoom(room, false, isCancelled);
+          if (getDevicesResult === null) return;
+          const [devicesInRoom, blocked] = getDevicesResult;
+          if (this.crypto.globalErrorOnUnknownDevices) {
             // Drop unknown devices for now.  When the message gets sent, we'll
             // throw an error, but we'll still be prepared to send to the known
             // devices.
             this.removeUnknownDevices(devicesInRoom);
           }
-
-          _logger.logger.debug(`Ensuring outbound session in ${this.roomId}`);
-
+          this.prefixedLogger.debug("Ensuring outbound megolm session");
           await this.ensureOutboundSession(room, devicesInRoom, blocked, true);
-
-          _logger.logger.debug(`Ready to encrypt events for ${this.roomId}`);
+          this.prefixedLogger.debug("Ready to encrypt events");
         } catch (e) {
-          _logger.logger.error(`Failed to prepare to encrypt events for ${this.roomId}`, e);
+          this.prefixedLogger.error("Failed to prepare to encrypt events", e);
         } finally {
           delete this.encryptionPreparation;
         }
-      })()
+      })(),
+      cancel: () => {
+        // The caller has indicated that the process should be cancelled,
+        // so tell the promise that we'd like to halt, and reset the preparation state.
+        cancelled = true;
+        delete this.encryptionPreparation;
+      }
     };
+    return this.encryptionPreparation.cancel;
   }
+
   /**
-   * @inheritdoc
+   * @param content - plaintext event content
    *
-   * @param {module:models/room} room
-   * @param {string} eventType
-   * @param {object} content plaintext event content
-   *
-   * @return {Promise} Promise which resolves to the new event body
+   * @returns Promise which resolves to the new event body
    */
-
-
   async encryptMessage(room, eventType, content) {
-    _logger.logger.log(`Starting to encrypt event for ${this.roomId}`);
-
+    this.prefixedLogger.log("Starting to encrypt event");
     if (this.encryptionPreparation != null) {
       // If we started sending keys, wait for it to be done.
       // FIXME: check if we need to cancel
       // (https://github.com/matrix-org/matrix-js-sdk/issues/1255)
       try {
         await this.encryptionPreparation.promise;
-      } catch (e) {// ignore any errors -- if the preparation failed, we'll just
+      } catch (e) {
+        // ignore any errors -- if the preparation failed, we'll just
         // restart everything here
       }
     }
 
-    const [devicesInRoom, blocked] = await this.getDevicesInRoom(room); // check if any of these devices are not yet known to the user.
-    // if so, warn the user so they can verify or ignore.
+    /**
+     * When using in-room messages and the room has encryption enabled,
+     * clients should ensure that encryption does not hinder the verification.
+     */
+    const forceDistributeToUnverified = this.isVerificationEvent(eventType, content);
+    const [devicesInRoom, blocked] = await this.getDevicesInRoom(room, forceDistributeToUnverified);
 
-    if (this.crypto.getGlobalErrorOnUnknownDevices()) {
+    // check if any of these devices are not yet known to the user.
+    // if so, warn the user so they can verify or ignore.
+    if (this.crypto.globalErrorOnUnknownDevices) {
       this.checkForUnknownDevices(devicesInRoom);
     }
-
     const session = await this.ensureOutboundSession(room, devicesInRoom, blocked);
     const payloadJson = {
       room_id: this.roomId,
@@ -899,183 +786,192 @@
     session.useCount++;
     return encryptedContent;
   }
+  isVerificationEvent(eventType, content) {
+    switch (eventType) {
+      case _event.EventType.KeyVerificationCancel:
+      case _event.EventType.KeyVerificationDone:
+      case _event.EventType.KeyVerificationMac:
+      case _event.EventType.KeyVerificationStart:
+      case _event.EventType.KeyVerificationKey:
+      case _event.EventType.KeyVerificationReady:
+      case _event.EventType.KeyVerificationAccept:
+        {
+          return true;
+        }
+      case _event.EventType.RoomMessage:
+        {
+          return content["msgtype"] === _event.MsgType.KeyVerificationRequest;
+        }
+      default:
+        {
+          return false;
+        }
+    }
+  }
+
   /**
    * Forces the current outbound group session to be discarded such
    * that another one will be created next time an event is sent.
    *
    * This should not normally be necessary.
    */
-
-
   forceDiscardSession() {
     this.setupPromise = this.setupPromise.then(() => null);
   }
+
   /**
    * Checks the devices we're about to send to and see if any are entirely
    * unknown to the user.  If so, warn the user, and mark them as known to
    * give the user a chance to go verify them before re-sending this message.
    *
-   * @param {Object} devicesInRoom userId -> {deviceId -> object}
+   * @param devicesInRoom - `userId -> {deviceId -> object}`
    *   devices we should shared the session with.
    */
-
-
   checkForUnknownDevices(devicesInRoom) {
-    const unknownDevices = {};
-    Object.keys(devicesInRoom).forEach(userId => {
-      Object.keys(devicesInRoom[userId]).forEach(deviceId => {
-        const device = devicesInRoom[userId][deviceId];
-
+    const unknownDevices = new _utils.MapWithDefault(() => new Map());
+    for (const [userId, userDevices] of devicesInRoom) {
+      for (const [deviceId, device] of userDevices) {
         if (device.isUnverified() && !device.isKnown()) {
-          if (!unknownDevices[userId]) {
-            unknownDevices[userId] = {};
-          }
-
-          unknownDevices[userId][deviceId] = device;
+          unknownDevices.getOrCreate(userId).set(deviceId, device);
         }
-      });
-    });
-
-    if (Object.keys(unknownDevices).length) {
+      }
+    }
+    if (unknownDevices.size) {
       // it'd be kind to pass unknownDevices up to the user in this error
       throw new _base.UnknownDeviceError("This room contains unknown devices which have not been verified. " + "We strongly recommend you verify them before continuing.", unknownDevices);
     }
   }
+
   /**
    * Remove unknown devices from a set of devices.  The devicesInRoom parameter
    * will be modified.
    *
-   * @param {Object} devicesInRoom userId -> {deviceId -> object}
+   * @param devicesInRoom - `userId -> {deviceId -> object}`
    *   devices we should shared the session with.
    */
-
-
   removeUnknownDevices(devicesInRoom) {
-    for (const [userId, userDevices] of Object.entries(devicesInRoom)) {
-      for (const [deviceId, device] of Object.entries(userDevices)) {
+    for (const [userId, userDevices] of devicesInRoom) {
+      for (const [deviceId, device] of userDevices) {
         if (device.isUnverified() && !device.isKnown()) {
-          delete userDevices[deviceId];
+          userDevices.delete(deviceId);
         }
       }
-
-      if (Object.keys(userDevices).length === 0) {
-        delete devicesInRoom[userId];
+      if (userDevices.size === 0) {
+        devicesInRoom.delete(userId);
       }
     }
   }
+
   /**
    * Get the list of unblocked devices for all users in the room
    *
-   * @param {module:models/room} room
+   * @param forceDistributeToUnverified - if set to true will include the unverified devices
+   * even if setting is set to block them (useful for verification)
+   * @param isCancelled - will cause the procedure to abort early if and when it starts
+   * returning `true`. If omitted, cancellation won't happen.
    *
-   * @return {Promise} Promise which resolves to an array whose
-   *     first element is a map from userId to deviceId to deviceInfo indicating
+   * @returns Promise which resolves to `null`, or an array whose
+   *     first element is a {@link DeviceInfoMap} indicating
    *     the devices that messages should be encrypted to, and whose second
    *     element is a map from userId to deviceId to data indicating the devices
-   *     that are in the room but that have been blocked
+   *     that are in the room but that have been blocked.
+   *     If `isCancelled` is provided and returns `true` while processing, `null`
+   *     will be returned.
+   *     If `isCancelled` is not provided, the Promise will never resolve to `null`.
    */
 
-
-  async getDevicesInRoom(room) {
+  async getDevicesInRoom(room, forceDistributeToUnverified = false, isCancelled) {
     const members = await room.getEncryptionTargetMembers();
+    this.prefixedLogger.debug(`Encrypting for users (shouldEncryptForInvitedMembers: ${room.shouldEncryptForInvitedMembers()}):`, members.map(u => `${u.userId} (${u.membership})`));
     const roomMembers = members.map(function (u) {
       return u.userId;
-    }); // The global value is treated as a default for when rooms don't specify a value.
+    });
 
-    let isBlacklisting = this.crypto.getGlobalBlacklistUnverifiedDevices();
+    // The global value is treated as a default for when rooms don't specify a value.
+    let isBlacklisting = this.crypto.globalBlacklistUnverifiedDevices;
+    const isRoomBlacklisting = room.getBlacklistUnverifiedDevices();
+    if (typeof isRoomBlacklisting === "boolean") {
+      isBlacklisting = isRoomBlacklisting;
+    }
 
-    if (typeof room.getBlacklistUnverifiedDevices() === 'boolean') {
-      isBlacklisting = room.getBlacklistUnverifiedDevices();
-    } // We are happy to use a cached version here: we assume that if we already
+    // We are happy to use a cached version here: we assume that if we already
     // have a list of the user's devices, then we already share an e2e room
     // with them, which means that they will have announced any new devices via
     // device_lists in their /sync response.  This cache should then be maintained
     // using all the device_lists changes and left fields.
     // See https://github.com/vector-im/element-web/issues/2305 for details.
-
-
     const devices = await this.crypto.downloadKeys(roomMembers, false);
-    const blocked = {}; // remove any blocked devices
-
-    for (const userId in devices) {
-      if (!devices.hasOwnProperty(userId)) {
-        continue;
-      }
-
-      const userDevices = devices[userId];
-
-      for (const deviceId in userDevices) {
-        if (!userDevices.hasOwnProperty(deviceId)) {
-          continue;
-        }
-
+    if (isCancelled?.() === true) {
+      return null;
+    }
+    const blocked = new _utils.MapWithDefault(() => new Map());
+    // remove any blocked devices
+    for (const [userId, userDevices] of devices) {
+      for (const [deviceId, userDevice] of userDevices) {
+        // Yield prior to checking each device so that we don't block
+        // updating/rendering for too long.
+        // See https://github.com/vector-im/element-web/issues/21612
+        if (isCancelled !== undefined) await (0, _utils.immediate)();
+        if (isCancelled?.() === true) return null;
         const deviceTrust = this.crypto.checkDeviceTrust(userId, deviceId);
-
-        if (userDevices[deviceId].isBlocked() || !deviceTrust.isVerified() && isBlacklisting) {
-          if (!blocked[userId]) {
-            blocked[userId] = {};
-          }
-
-          const isBlocked = userDevices[deviceId].isBlocked();
-          blocked[userId][deviceId] = {
+        if (userDevice.isBlocked() || !deviceTrust.isVerified() && isBlacklisting && !forceDistributeToUnverified) {
+          const blockedDevices = blocked.getOrCreate(userId);
+          const isBlocked = userDevice.isBlocked();
+          blockedDevices.set(deviceId, {
             code: isBlocked ? "m.blacklisted" : "m.unverified",
             reason: _OlmDevice.WITHHELD_MESSAGES[isBlocked ? "m.blacklisted" : "m.unverified"],
-            deviceInfo: userDevices[deviceId]
-          };
-          delete userDevices[deviceId];
+            deviceInfo: userDevice
+          });
+          userDevices.delete(deviceId);
         }
       }
     }
-
     return [devices, blocked];
   }
-
 }
+
 /**
  * Megolm decryption implementation
  *
- * @constructor
- * @extends {module:crypto/algorithms/DecryptionAlgorithm}
- *
- * @param {object} params parameters, as per
- *     {@link module:crypto/algorithms/DecryptionAlgorithm}
+ * @param params - parameters, as per {@link DecryptionAlgorithm}
  */
-
-
+exports.MegolmEncryption = MegolmEncryption;
 class MegolmDecryption extends _base.DecryptionAlgorithm {
-  constructor(...args) {
-    super(...args);
+  // events which we couldn't decrypt due to unknown sessions /
+  // indexes, or which we could only decrypt with untrusted keys:
+  // map from senderKey|sessionId to Set of MatrixEvents
 
-    _defineProperty(this, "pendingEvents", new Map());
+  // this gets stubbed out by the unit tests.
 
+  constructor(params) {
+    super(params);
+    _defineProperty(this, "pendingEvents", new Map());
     _defineProperty(this, "olmlib", olmlib);
+    _defineProperty(this, "roomId", void 0);
+    _defineProperty(this, "prefixedLogger", void 0);
+    this.roomId = params.roomId;
+    this.prefixedLogger = _logger.logger.withPrefix(`[${this.roomId} decryption]`);
   }
 
   /**
-   * @inheritdoc
-   *
-   * @param {MatrixEvent} event
-   *
    * returns a promise which resolves to a
-   * {@link module:crypto~EventDecryptionResult} once we have finished
+   * {@link EventDecryptionResult} once we have finished
    * decrypting, or rejects with an `algorithms.DecryptionError` if there is a
    * problem decrypting the event.
    */
   async decryptEvent(event) {
     const content = event.getWireContent();
-
     if (!content.sender_key || !content.session_id || !content.ciphertext) {
       throw new _base.DecryptionError("MEGOLM_MISSING_FIELDS", "Missing fields in input");
-    } // we add the event to the pending list *before* we start decryption.
+    }
+
+    // we add the event to the pending list *before* we start decryption.
     //
     // then, if the key turns up while decryption is in progress (and
     // decryption fails), we will schedule a retry.
     // (fixes https://github.com/vector-im/element-web/issues/5001)
-
-
     this.addEventToPendingList(event);
     let res;
-
     try {
       res = await this.olmDevice.decryptGroupMessage(event.getRoomId(), content.sender_key, content.session_id, content.ciphertext, event.getId(), event.getTs());
     } catch (e) {
@@ -1083,66 +979,60 @@
         // re-throw decryption errors as-is
         throw e;
       }
-
       let errorCode = "OLM_DECRYPT_GROUP_MESSAGE_ERROR";
-
-      if (e && e.message === 'OLM.UNKNOWN_MESSAGE_INDEX') {
+      if (e?.message === "OLM.UNKNOWN_MESSAGE_INDEX") {
         this.requestKeysForEvent(event);
-        errorCode = 'OLM_UNKNOWN_MESSAGE_INDEX';
+        errorCode = "OLM_UNKNOWN_MESSAGE_INDEX";
       }
-
-      throw new _base.DecryptionError(errorCode, e ? e.toString() : "Unknown Error: Error is undefined", {
-        session: content.sender_key + '|' + content.session_id
+      throw new _base.DecryptionError(errorCode, e instanceof Error ? e.message : "Unknown Error: Error is undefined", {
+        session: content.sender_key + "|" + content.session_id
       });
     }
-
     if (res === null) {
       // We've got a message for a session we don't have.
       // try and get the missing key from the backup first
-      this.crypto.backupManager.queryKeyBackupRateLimited(event.getRoomId(), content.session_id).catch(() => {}); // (XXX: We might actually have received this key since we started
+      this.crypto.backupManager.queryKeyBackupRateLimited(event.getRoomId(), content.session_id).catch(() => {});
+
+      // (XXX: We might actually have received this key since we started
       // decrypting, in which case we'll have scheduled a retry, and this
       // request will be redundant. We could probably check to see if the
       // event is still in the pending list; if not, a retry will have been
       // scheduled, so we needn't send out the request here.)
+      this.requestKeysForEvent(event);
 
-      this.requestKeysForEvent(event); // See if there was a problem with the olm session at the time the
+      // See if there was a problem with the olm session at the time the
       // event was sent.  Use a fuzz factor of 2 minutes.
-
       const problem = await this.olmDevice.sessionMayHaveProblems(content.sender_key, event.getTs() - 120000);
-
       if (problem) {
+        this.prefixedLogger.info(`When handling UISI from ${event.getSender()} (sender key ${content.sender_key}): ` + `recent session problem with that sender:`, problem);
         let problemDescription = PROBLEM_DESCRIPTIONS[problem.type] || PROBLEM_DESCRIPTIONS.unknown;
-
         if (problem.fixed) {
           problemDescription += " Trying to create a new secure channel and re-requesting the keys.";
         }
-
         throw new _base.DecryptionError("MEGOLM_UNKNOWN_INBOUND_SESSION_ID", problemDescription, {
-          session: content.sender_key + '|' + content.session_id
+          session: content.sender_key + "|" + content.session_id
         });
       }
-
       throw new _base.DecryptionError("MEGOLM_UNKNOWN_INBOUND_SESSION_ID", "The sender's device has not sent us the keys for this message.", {
-        session: content.sender_key + '|' + content.session_id
+        session: content.sender_key + "|" + content.session_id
       });
-    } // Success. We can remove the event from the pending list, if
+    }
+
+    // Success. We can remove the event from the pending list, if
     // that hasn't already happened. However, if the event was
     // decrypted with an untrusted key, leave it on the pending
     // list so it will be retried if we find a trusted key later.
-
-
     if (!res.untrusted) {
       this.removeEventFromPendingList(event);
     }
+    const payload = JSON.parse(res.result);
 
-    const payload = JSON.parse(res.result); // belt-and-braces check that the room id matches that indicated by the HS
+    // belt-and-braces check that the room id matches that indicated by the HS
     // (this is somewhat redundant, since the megolm session is scoped to the
     // room, so neither the sender nor a MITM can lie about the room_id).
-
     if (payload.room_id !== event.getRoomId()) {
       throw new _base.DecryptionError("MEGOLM_BAD_ROOM", "Message intended for room " + payload.room_id);
     }
-
     return {
       clearEvent: payload,
       senderCurve25519Key: res.senderKey,
@@ -1151,7 +1041,6 @@
       untrusted: res.untrusted
     };
   }
-
   requestKeysForEvent(event) {
     const wireContent = event.getWireContent();
     const recipients = event.getKeyRequestRecipients(this.userId);
@@ -1162,308 +1051,441 @@
       session_id: wireContent.session_id
     }, recipients);
   }
+
   /**
    * Add an event to the list of those awaiting their session keys.
    *
-   * @private
+   * @internal
    *
-   * @param {module:models/event.MatrixEvent} event
    */
-
-
   addEventToPendingList(event) {
     const content = event.getWireContent();
     const senderKey = content.sender_key;
     const sessionId = content.session_id;
-
     if (!this.pendingEvents.has(senderKey)) {
       this.pendingEvents.set(senderKey, new Map());
     }
-
     const senderPendingEvents = this.pendingEvents.get(senderKey);
-
     if (!senderPendingEvents.has(sessionId)) {
       senderPendingEvents.set(sessionId, new Set());
     }
-
     senderPendingEvents.get(sessionId)?.add(event);
   }
+
   /**
    * Remove an event from the list of those awaiting their session keys.
    *
-   * @private
+   * @internal
    *
-   * @param {module:models/event.MatrixEvent} event
    */
-
-
   removeEventFromPendingList(event) {
     const content = event.getWireContent();
     const senderKey = content.sender_key;
     const sessionId = content.session_id;
     const senderPendingEvents = this.pendingEvents.get(senderKey);
     const pendingEvents = senderPendingEvents?.get(sessionId);
-
     if (!pendingEvents) {
       return;
     }
-
     pendingEvents.delete(event);
-
     if (pendingEvents.size === 0) {
       senderPendingEvents.delete(sessionId);
     }
-
     if (senderPendingEvents.size === 0) {
       this.pendingEvents.delete(senderKey);
     }
   }
+
   /**
-   * @inheritdoc
+   * Parse a RoomKey out of an `m.room_key` event.
+   *
+   * @param event - the event containing the room key.
+   *
+   * @returns The `RoomKey` if it could be successfully parsed out of the
+   * event.
+   *
+   * @internal
    *
-   * @param {module:models/event.MatrixEvent} event key event
    */
-
-
-  async onRoomKeyEvent(event) {
+  roomKeyFromEvent(event) {
+    const senderKey = event.getSenderKey();
     const content = event.getContent();
-    let senderKey = event.getSenderKey();
-    let forwardingKeyChain = [];
-    let exportFormat = false;
-    let keysClaimed;
     const extraSessionData = {};
-
     if (!content.room_id || !content.session_key || !content.session_id || !content.algorithm) {
-      _logger.logger.error("key event is missing fields");
-
+      this.prefixedLogger.error("key event is missing fields");
       return;
     }
-
     if (!olmlib.isOlmEncrypted(event)) {
-      _logger.logger.error("key event not properly encrypted");
-
+      this.prefixedLogger.error("key event not properly encrypted");
       return;
     }
-
     if (content["org.matrix.msc3061.shared_history"]) {
       extraSessionData.sharedHistory = true;
     }
+    const roomKey = {
+      senderKey: senderKey,
+      sessionId: content.session_id,
+      sessionKey: content.session_key,
+      extraSessionData,
+      exportFormat: false,
+      roomId: content.room_id,
+      algorithm: content.algorithm,
+      forwardingKeyChain: [],
+      keysClaimed: event.getKeysClaimed()
+    };
+    return roomKey;
+  }
 
-    if (event.getType() == "m.forwarded_room_key") {
-      const deviceInfo = this.crypto.deviceList.getDeviceByIdentityKey(olmlib.OLM_ALGORITHM, senderKey);
-      const senderKeyUser = this.baseApis.crypto.deviceList.getUserByIdentityKey(olmlib.OLM_ALGORITHM, senderKey);
-
-      if (senderKeyUser !== event.getSender()) {
-        _logger.logger.error("sending device does not belong to the user it claims to be from");
-
-        return;
-      }
-
-      const outgoingRequests = deviceInfo ? await this.crypto.cryptoStore.getOutgoingRoomKeyRequestsByTarget(event.getSender(), deviceInfo.deviceId, [_OutgoingRoomKeyRequestManager.RoomKeyRequestState.Sent]) : [];
-      const weRequested = outgoingRequests.some(req => req.requestBody.room_id === content.room_id && req.requestBody.session_id === content.session_id);
-      const room = this.baseApis.getRoom(content.room_id);
-      const memberEvent = room?.getMember(this.userId)?.events.member;
-      const fromInviter = memberEvent?.getSender() === event.getSender() || memberEvent?.getUnsigned()?.prev_sender === event.getSender() && memberEvent?.getPrevContent()?.membership === "invite";
-      const fromUs = event.getSender() === this.baseApis.getUserId();
-
-      if (!weRequested) {
-        // If someone sends us an unsolicited key and it's not
-        // shared history, ignore it
-        if (!extraSessionData.sharedHistory) {
-          _logger.logger.log("forwarded key not shared history - ignoring");
-
-          return;
-        } // If someone sends us an unsolicited key for a room
-        // we're already in, and they're not one of our other
-        // devices or the one who invited us, ignore it
-
-
-        if (room && !fromInviter && !fromUs) {
-          _logger.logger.log("forwarded key not from inviter or from us - ignoring");
-
-          return;
-        }
-      }
-
-      exportFormat = true;
-      forwardingKeyChain = Array.isArray(content.forwarding_curve25519_key_chain) ? content.forwarding_curve25519_key_chain : []; // copy content before we modify it
-
-      forwardingKeyChain = forwardingKeyChain.slice();
-      forwardingKeyChain.push(senderKey);
-
-      if (!content.sender_key) {
-        _logger.logger.error("forwarded_room_key event is missing sender_key field");
-
-        return;
-      }
-
-      const ed25519Key = content.sender_claimed_ed25519_key;
-
-      if (!ed25519Key) {
-        _logger.logger.error(`forwarded_room_key_event is missing sender_claimed_ed25519_key field`);
-
-        return;
-      }
+  /**
+   * Parse a RoomKey out of an `m.forwarded_room_key` event.
+   *
+   * @param event - the event containing the forwarded room key.
+   *
+   * @returns The `RoomKey` if it could be successfully parsed out of the
+   * event.
+   *
+   * @internal
+   *
+   */
+  forwardedRoomKeyFromEvent(event) {
+    // the properties in m.forwarded_room_key are a superset of those in m.room_key, so
+    // start by parsing the m.room_key fields.
+    const roomKey = this.roomKeyFromEvent(event);
+    if (!roomKey) {
+      return;
+    }
+    const senderKey = event.getSenderKey();
+    const content = event.getContent();
+    const senderKeyUser = this.baseApis.crypto.deviceList.getUserByIdentityKey(olmlib.OLM_ALGORITHM, senderKey);
 
-      keysClaimed = {
-        ed25519: ed25519Key
-      }; // If this is a key for a room we're not in, don't load it
-      // yet, just park it in case *this sender* invites us to
-      // that room later
-
-      if (!room) {
-        const parkedData = {
-          senderId: event.getSender(),
-          senderKey: content.sender_key,
-          sessionId: content.session_id,
-          sessionKey: content.session_key,
-          keysClaimed,
-          forwardingCurve25519KeyChain: forwardingKeyChain
-        };
-        await this.crypto.cryptoStore.doTxn('readwrite', ['parked_shared_history'], txn => this.crypto.cryptoStore.addParkedSharedHistory(content.room_id, parkedData, txn), _logger.logger.withPrefix("[addParkedSharedHistory]"));
-        return;
-      }
+    // We received this to-device event from event.getSenderKey(), but the original
+    // creator of the room key is claimed in the content.
+    const claimedCurve25519Key = content.sender_key;
+    const claimedEd25519Key = content.sender_claimed_ed25519_key;
+    let forwardingKeyChain = Array.isArray(content.forwarding_curve25519_key_chain) ? content.forwarding_curve25519_key_chain : [];
+
+    // copy content before we modify it
+    forwardingKeyChain = forwardingKeyChain.slice();
+    forwardingKeyChain.push(senderKey);
+
+    // Check if we have all the fields we need.
+    if (senderKeyUser !== event.getSender()) {
+      this.prefixedLogger.error("sending device does not belong to the user it claims to be from");
+      return;
+    }
+    if (!claimedCurve25519Key) {
+      this.prefixedLogger.error("forwarded_room_key event is missing sender_key field");
+      return;
+    }
+    if (!claimedEd25519Key) {
+      this.prefixedLogger.error(`forwarded_room_key_event is missing sender_claimed_ed25519_key field`);
+      return;
+    }
+    const keysClaimed = {
+      ed25519: claimedEd25519Key
+    };
 
-      const sendingDevice = this.crypto.deviceList.getDeviceByIdentityKey(olmlib.OLM_ALGORITHM, senderKey);
-      const deviceTrust = this.crypto.checkDeviceInfoTrust(event.getSender(), sendingDevice);
+    // FIXME: We're reusing the same field to track both:
+    //
+    // 1. The Olm identity we've received this room key from.
+    // 2. The Olm identity deduced (in the trusted case) or claiming (in the
+    // untrusted case) to be the original creator of this room key.
+    //
+    // We now overwrite the value tracking usage 1 with the value tracking usage 2.
+    roomKey.senderKey = claimedCurve25519Key;
+    // Replace our keysClaimed as well.
+    roomKey.keysClaimed = keysClaimed;
+    roomKey.exportFormat = true;
+    roomKey.forwardingKeyChain = forwardingKeyChain;
+    // forwarded keys are always untrusted
+    roomKey.extraSessionData.untrusted = true;
+    return roomKey;
+  }
 
-      if (fromUs && !deviceTrust.isVerified()) {
-        return;
-      } // forwarded keys are always untrusted
+  /**
+   * Determine if we should accept the forwarded room key that was found in the given
+   * event.
+   *
+   * @param event - An `m.forwarded_room_key` event.
+   * @param roomKey - The room key that was found in the event.
+   *
+   * @returns promise that will resolve to a boolean telling us if it's ok to
+   * accept the given forwarded room key.
+   *
+   * @internal
+   *
+   */
+  async shouldAcceptForwardedKey(event, roomKey) {
+    const senderKey = event.getSenderKey();
+    const sendingDevice = this.crypto.deviceList.getDeviceByIdentityKey(olmlib.OLM_ALGORITHM, senderKey) ?? undefined;
+    const deviceTrust = this.crypto.checkDeviceInfoTrust(event.getSender(), sendingDevice);
 
+    // Using the plaintext sender here is fine since we checked that the
+    // sender matches to the user id in the device keys when this event was
+    // originally decrypted. This can obviously only happen if the device
+    // keys have been downloaded, but if they haven't the
+    // `deviceTrust.isVerified()` flag would be false as well.
+    //
+    // It would still be far nicer if the `sendingDevice` had a user ID
+    // attached to it that went through signature checks.
+    const fromUs = event.getSender() === this.baseApis.getUserId();
+    const keyFromOurVerifiedDevice = deviceTrust.isVerified() && fromUs;
+    const weRequested = await this.wasRoomKeyRequested(event, roomKey);
+    const fromInviter = this.wasRoomKeyForwardedByInviter(event, roomKey);
+    const sharedAsHistory = this.wasRoomKeyForwardedAsHistory(roomKey);
+    return weRequested && keyFromOurVerifiedDevice || fromInviter && sharedAsHistory;
+  }
 
-      extraSessionData.untrusted = true; // replace the sender key with the sender key of the session
-      // creator for storage
+  /**
+   * Did we ever request the given room key from the event sender and its
+   * accompanying device.
+   *
+   * @param event - An `m.forwarded_room_key` event.
+   * @param roomKey - The room key that was found in the event.
+   *
+   * @internal
+   *
+   */
+  async wasRoomKeyRequested(event, roomKey) {
+    // We send the `m.room_key_request` out as a wildcard to-device request,
+    // otherwise we would have to duplicate the same content for each
+    // device. This is why we need to pass in "*" as the device id here.
+    const outgoingRequests = await this.crypto.cryptoStore.getOutgoingRoomKeyRequestsByTarget(event.getSender(), "*", [_OutgoingRoomKeyRequestManager.RoomKeyRequestState.Sent]);
+    return outgoingRequests.some(req => req.requestBody.room_id === roomKey.roomId && req.requestBody.session_id === roomKey.sessionId);
+  }
+  wasRoomKeyForwardedByInviter(event, roomKey) {
+    // TODO: This is supposed to have a time limit. We should only accept
+    // such keys if we happen to receive them for a recently joined room.
+    const room = this.baseApis.getRoom(roomKey.roomId);
+    const senderKey = event.getSenderKey();
+    if (!senderKey) {
+      return false;
+    }
+    const senderKeyUser = this.crypto.deviceList.getUserByIdentityKey(olmlib.OLM_ALGORITHM, senderKey);
+    if (!senderKeyUser) {
+      return false;
+    }
+    const memberEvent = room?.getMember(this.userId)?.events.member;
+    const fromInviter = memberEvent?.getSender() === senderKeyUser || memberEvent?.getUnsigned()?.prev_sender === senderKeyUser && memberEvent?.getPrevContent()?.membership === "invite";
+    if (room && fromInviter) {
+      return true;
+    } else {
+      return false;
+    }
+  }
+  wasRoomKeyForwardedAsHistory(roomKey) {
+    const room = this.baseApis.getRoom(roomKey.roomId);
 
-      senderKey = content.sender_key;
+    // If the key is not for a known room, then something fishy is going on,
+    // so we reject the key out of caution. In practice, this is a bit moot
+    // because we'll only accept shared_history forwarded by the inviter, and
+    // we won't know who was the inviter for an unknown room, so we'll reject
+    // it anyway.
+    if (room && roomKey.extraSessionData.sharedHistory) {
+      return true;
     } else {
-      keysClaimed = event.getKeysClaimed();
+      return false;
     }
+  }
 
-    if (content["org.matrix.msc3061.shared_history"]) {
-      extraSessionData.sharedHistory = true;
+  /**
+   * Check if a forwarded room key should be parked.
+   *
+   * A forwarded room key should be parked if it's a key for a room we're not
+   * in. We park the forwarded room key in case *this sender* invites us to
+   * that room later.
+   */
+  shouldParkForwardedKey(roomKey) {
+    const room = this.baseApis.getRoom(roomKey.roomId);
+    if (!room && roomKey.extraSessionData.sharedHistory) {
+      return true;
+    } else {
+      return false;
     }
+  }
+
+  /**
+   * Park the given room key to our store.
+   *
+   * @param event - An `m.forwarded_room_key` event.
+   * @param roomKey - The room key that was found in the event.
+   *
+   * @internal
+   *
+   */
+  async parkForwardedKey(event, roomKey) {
+    const parkedData = {
+      senderId: event.getSender(),
+      senderKey: roomKey.senderKey,
+      sessionId: roomKey.sessionId,
+      sessionKey: roomKey.sessionKey,
+      keysClaimed: roomKey.keysClaimed,
+      forwardingCurve25519KeyChain: roomKey.forwardingKeyChain
+    };
+    await this.crypto.cryptoStore.doTxn("readwrite", ["parked_shared_history"], txn => this.crypto.cryptoStore.addParkedSharedHistory(roomKey.roomId, parkedData, txn), _logger.logger.withPrefix("[addParkedSharedHistory]"));
+  }
 
+  /**
+   * Add the given room key to our store.
+   *
+   * @param roomKey - The room key that should be added to the store.
+   *
+   * @internal
+   *
+   */
+  async addRoomKey(roomKey) {
     try {
-      await this.olmDevice.addInboundGroupSession(content.room_id, senderKey, forwardingKeyChain, content.session_id, content.session_key, keysClaimed, exportFormat, extraSessionData); // have another go at decrypting events sent with this session.
+      await this.olmDevice.addInboundGroupSession(roomKey.roomId, roomKey.senderKey, roomKey.forwardingKeyChain, roomKey.sessionId, roomKey.sessionKey, roomKey.keysClaimed, roomKey.exportFormat, roomKey.extraSessionData);
 
-      if (await this.retryDecryption(senderKey, content.session_id, !extraSessionData.untrusted)) {
+      // have another go at decrypting events sent with this session.
+      if (await this.retryDecryption(roomKey.senderKey, roomKey.sessionId, !roomKey.extraSessionData.untrusted)) {
         // cancel any outstanding room key requests for this session.
         // Only do this if we managed to decrypt every message in the
         // session, because if we didn't, we leave the other key
         // requests in the hopes that someone sends us a key that
         // includes an earlier index.
         this.crypto.cancelRoomKeyRequest({
-          algorithm: content.algorithm,
-          room_id: content.room_id,
-          session_id: content.session_id,
-          sender_key: senderKey
+          algorithm: roomKey.algorithm,
+          room_id: roomKey.roomId,
+          session_id: roomKey.sessionId,
+          sender_key: roomKey.senderKey
         });
-      } // don't wait for the keys to be backed up for the server
-
+      }
 
-      await this.crypto.backupManager.backupGroupSession(senderKey, content.session_id);
+      // don't wait for the keys to be backed up for the server
+      await this.crypto.backupManager.backupGroupSession(roomKey.senderKey, roomKey.sessionId);
     } catch (e) {
-      _logger.logger.error(`Error handling m.room_key_event: ${e}`);
+      this.prefixedLogger.error(`Error handling m.room_key_event: ${e}`);
     }
   }
+
   /**
-   * @inheritdoc
+   * Handle room keys that have been forwarded to us as an
+   * `m.forwarded_room_key` event.
+   *
+   * Forwarded room keys need special handling since we have no way of knowing
+   * who the original creator of the room key was. This naturally means that
+   * forwarded room keys are always untrusted and should only be accepted in
+   * some cases.
+   *
+   * @param event - An `m.forwarded_room_key` event.
+   *
+   * @internal
    *
-   * @param {module:models/event.MatrixEvent} event key event
    */
+  async onForwardedRoomKey(event) {
+    const roomKey = this.forwardedRoomKeyFromEvent(event);
+    if (!roomKey) {
+      return;
+    }
+    if (await this.shouldAcceptForwardedKey(event, roomKey)) {
+      await this.addRoomKey(roomKey);
+    } else if (this.shouldParkForwardedKey(roomKey)) {
+      await this.parkForwardedKey(event, roomKey);
+    }
+  }
+  async onRoomKeyEvent(event) {
+    if (event.getType() == "m.forwarded_room_key") {
+      await this.onForwardedRoomKey(event);
+    } else {
+      const roomKey = this.roomKeyFromEvent(event);
+      if (!roomKey) {
+        return;
+      }
+      await this.addRoomKey(roomKey);
+    }
+  }
 
-
+  /**
+   * @param event - key event
+   */
   async onRoomKeyWithheldEvent(event) {
     const content = event.getContent();
     const senderKey = content.sender_key;
-
     if (content.code === "m.no_olm") {
-      const sender = event.getSender();
+      await this.onNoOlmWithheldEvent(event);
+    } else if (content.code === "m.unavailable") {
+      // this simply means that the other device didn't have the key, which isn't very useful information. Don't
+      // record it in the storage
+    } else {
+      await this.olmDevice.addInboundGroupSessionWithheld(content.room_id, senderKey, content.session_id, content.code, content.reason);
+    }
 
-      _logger.logger.warn(`${sender}:${senderKey} was unable to establish an olm session with us`); // if the sender says that they haven't been able to establish an olm
-      // session, let's proactively establish one
-      // Note: after we record that the olm session has had a problem, we
-      // trigger retrying decryption for all the messages from the sender's
+    // Having recorded the problem, retry decryption on any affected messages.
+    // It's unlikely we'll be able to decrypt sucessfully now, but this will
+    // update the error message.
+    //
+    if (content.session_id) {
+      await this.retryDecryption(senderKey, content.session_id);
+    } else {
+      // no_olm messages aren't specific to a given megolm session, so
+      // we trigger retrying decryption for all the messages from the sender's
       // key, so that we can update the error message to indicate the olm
       // session problem.
-
-
-      if (await this.olmDevice.getSessionIdForDevice(senderKey)) {
-        // a session has already been established, so we don't need to
-        // create a new one.
-        _logger.logger.debug("New session already created.  Not creating a new one.");
-
-        await this.olmDevice.recordSessionProblem(senderKey, "no_olm", true);
-        this.retryDecryptionFromSender(senderKey);
-        return;
-      }
-
-      let device = this.crypto.deviceList.getDeviceByIdentityKey(content.algorithm, senderKey);
-
+      await this.retryDecryptionFromSender(senderKey);
+    }
+  }
+  async onNoOlmWithheldEvent(event) {
+    const content = event.getContent();
+    const senderKey = content.sender_key;
+    const sender = event.getSender();
+    this.prefixedLogger.warn(`${sender}:${senderKey} was unable to establish an olm session with us`);
+    // if the sender says that they haven't been able to establish an olm
+    // session, let's proactively establish one
+
+    if (await this.olmDevice.getSessionIdForDevice(senderKey)) {
+      // a session has already been established, so we don't need to
+      // create a new one.
+      this.prefixedLogger.debug("New session already created.  Not creating a new one.");
+      await this.olmDevice.recordSessionProblem(senderKey, "no_olm", true);
+      return;
+    }
+    let device = this.crypto.deviceList.getDeviceByIdentityKey(content.algorithm, senderKey);
+    if (!device) {
+      // if we don't know about the device, fetch the user's devices again
+      // and retry before giving up
+      await this.crypto.downloadKeys([sender], false);
+      device = this.crypto.deviceList.getDeviceByIdentityKey(content.algorithm, senderKey);
       if (!device) {
-        // if we don't know about the device, fetch the user's devices again
-        // and retry before giving up
-        await this.crypto.downloadKeys([sender], false);
-        device = this.crypto.deviceList.getDeviceByIdentityKey(content.algorithm, senderKey);
-
-        if (!device) {
-          _logger.logger.info("Couldn't find device for identity key " + senderKey + ": not establishing session");
-
-          await this.olmDevice.recordSessionProblem(senderKey, "no_olm", false);
-          this.retryDecryptionFromSender(senderKey);
-          return;
-        }
+        this.prefixedLogger.info("Couldn't find device for identity key " + senderKey + ": not establishing session");
+        await this.olmDevice.recordSessionProblem(senderKey, "no_olm", false);
+        return;
       }
-
-      await olmlib.ensureOlmSessionsForDevices(this.olmDevice, this.baseApis, {
-        [sender]: [device]
-      }, false);
-      const encryptedContent = {
-        algorithm: olmlib.OLM_ALGORITHM,
-        sender_key: this.olmDevice.deviceCurve25519Key,
-        ciphertext: {}
-      };
-      await olmlib.encryptMessageForDevice(encryptedContent.ciphertext, this.userId, undefined, this.olmDevice, sender, device, {
-        type: "m.dummy"
-      });
-      await this.olmDevice.recordSessionProblem(senderKey, "no_olm", true);
-      this.retryDecryptionFromSender(senderKey);
-      await this.baseApis.sendToDevice("m.room.encrypted", {
-        [sender]: {
-          [device.deviceId]: encryptedContent
-        }
-      });
-    } else {
-      await this.olmDevice.addInboundGroupSessionWithheld(content.room_id, senderKey, content.session_id, content.code, content.reason);
     }
-  }
-  /**
-   * @inheritdoc
-   */
 
+    // XXX: switch this to use encryptAndSendToDevices() rather than duplicating it?
 
+    await olmlib.ensureOlmSessionsForDevices(this.olmDevice, this.baseApis, new Map([[sender, [device]]]), false);
+    const encryptedContent = {
+      algorithm: olmlib.OLM_ALGORITHM,
+      sender_key: this.olmDevice.deviceCurve25519Key,
+      ciphertext: {},
+      [_event.ToDeviceMessageId]: (0, _uuid.v4)()
+    };
+    await olmlib.encryptMessageForDevice(encryptedContent.ciphertext, this.userId, undefined, this.olmDevice, sender, device, {
+      type: "m.dummy"
+    });
+    await this.olmDevice.recordSessionProblem(senderKey, "no_olm", true);
+    await this.baseApis.sendToDevice("m.room.encrypted", new Map([[sender, new Map([[device.deviceId, encryptedContent]])]]));
+  }
   hasKeysForKeyRequest(keyRequest) {
     const body = keyRequest.requestBody;
-    return this.olmDevice.hasInboundSessionKeys(body.room_id, body.sender_key, body.session_id // TODO: ratchet index
+    return this.olmDevice.hasInboundSessionKeys(body.room_id, body.sender_key, body.session_id
+    // TODO: ratchet index
     );
   }
-  /**
-   * @inheritdoc
-   */
-
 
   shareKeysWithDevice(keyRequest) {
     const userId = keyRequest.userId;
     const deviceId = keyRequest.deviceId;
     const deviceInfo = this.crypto.getStoredDevice(userId, deviceId);
     const body = keyRequest.requestBody;
-    this.olmlib.ensureOlmSessionsForDevices(this.olmDevice, this.baseApis, {
-      [userId]: [deviceInfo]
-    }).then(devicemap => {
-      const olmSessionResult = devicemap[userId][deviceId];
 
-      if (!olmSessionResult.sessionId) {
+    // XXX: switch this to use encryptAndSendToDevices()?
+
+    this.olmlib.ensureOlmSessionsForDevices(this.olmDevice, this.baseApis, new Map([[userId, [deviceInfo]]])).then(devicemap => {
+      const olmSessionResult = devicemap.get(userId)?.get(deviceId);
+      if (!olmSessionResult?.sessionId) {
         // no session with this device, probably because there
         // were no one-time keys.
         //
@@ -1471,28 +1493,21 @@
         // so just skip it.
         return null;
       }
-
-      _logger.logger.log("sharing keys for session " + body.sender_key + "|" + body.session_id + " with device " + userId + ":" + deviceId);
-
+      this.prefixedLogger.log("sharing keys for session " + body.sender_key + "|" + body.session_id + " with device " + userId + ":" + deviceId);
       return this.buildKeyForwardingMessage(body.room_id, body.sender_key, body.session_id);
     }).then(payload => {
       const encryptedContent = {
         algorithm: olmlib.OLM_ALGORITHM,
         sender_key: this.olmDevice.deviceCurve25519Key,
-        ciphertext: {}
+        ciphertext: {},
+        [_event.ToDeviceMessageId]: (0, _uuid.v4)()
       };
       return this.olmlib.encryptMessageForDevice(encryptedContent.ciphertext, this.userId, undefined, this.olmDevice, userId, deviceInfo, payload).then(() => {
-        const contentMap = {
-          [userId]: {
-            [deviceId]: encryptedContent
-          }
-        }; // TODO: retries
-
-        return this.baseApis.sendToDevice("m.room.encrypted", contentMap);
+        // TODO: retries
+        return this.baseApis.sendToDevice("m.room.encrypted", new Map([[userId, new Map([[deviceId, encryptedContent]])]]));
       });
     });
   }
-
   async buildKeyForwardingMessage(roomId, senderKey, sessionId) {
     const key = await this.olmDevice.getInboundGroupSessionKey(roomId, senderKey, sessionId);
     return {
@@ -1510,166 +1525,144 @@
       }
     };
   }
+
   /**
-   * @inheritdoc
-   *
-   * @param {module:crypto/OlmDevice.MegolmSessionData} session
-   * @param {object} [opts={}] options for the import
-   * @param {boolean} [opts.untrusted] whether the key should be considered as untrusted
-   * @param {string} [opts.source] where the key came from
+   * @param untrusted - whether the key should be considered as untrusted
+   * @param source - where the key came from
    */
-
-
-  importRoomKey(session, opts = {}) {
+  importRoomKey(session, {
+    untrusted,
+    source
+  } = {}) {
     const extraSessionData = {};
-
-    if (opts.untrusted || session.untrusted) {
+    if (untrusted || session.untrusted) {
       extraSessionData.untrusted = true;
     }
-
     if (session["org.matrix.msc3061.shared_history"]) {
       extraSessionData.sharedHistory = true;
     }
-
     return this.olmDevice.addInboundGroupSession(session.room_id, session.sender_key, session.forwarding_curve25519_key_chain, session.session_id, session.session_key, session.sender_claimed_keys, true, extraSessionData).then(() => {
-      if (opts.source !== "backup") {
+      if (source !== "backup") {
         // don't wait for it to complete
         this.crypto.backupManager.backupGroupSession(session.sender_key, session.session_id).catch(e => {
           // This throws if the upload failed, but this is fine
           // since it will have written it to the db and will retry.
-          _logger.logger.log("Failed to back up megolm session", e);
+          this.prefixedLogger.log("Failed to back up megolm session", e);
         });
-      } // have another go at decrypting events sent with this session.
-
-
+      }
+      // have another go at decrypting events sent with this session.
       this.retryDecryption(session.sender_key, session.session_id, !extraSessionData.untrusted);
     });
   }
+
   /**
    * Have another go at decrypting events after we receive a key. Resolves once
    * decryption has been re-attempted on all events.
    *
-   * @private
-   * @param {String} senderKey
-   * @param {String} sessionId
-   * @param {Boolean} keyTrusted
+   * @internal
+   * @param forceRedecryptIfUntrusted - whether messages that were already
+   *     successfully decrypted using untrusted keys should be re-decrypted
    *
-   * @return {Boolean} whether all messages were successfully
+   * @returns whether all messages were successfully
    *     decrypted with trusted keys
    */
-
-
-  async retryDecryption(senderKey, sessionId, keyTrusted) {
+  async retryDecryption(senderKey, sessionId, forceRedecryptIfUntrusted) {
     const senderPendingEvents = this.pendingEvents.get(senderKey);
-
     if (!senderPendingEvents) {
       return true;
     }
-
     const pending = senderPendingEvents.get(sessionId);
-
     if (!pending) {
       return true;
     }
-
-    _logger.logger.debug("Retrying decryption on events", [...pending]);
-
-    await Promise.all([...pending].map(async ev => {
+    const pendingList = [...pending];
+    this.prefixedLogger.debug("Retrying decryption on events:", pendingList.map(e => `${e.getId()}`));
+    await Promise.all(pendingList.map(async ev => {
       try {
         await ev.attemptDecryption(this.crypto, {
           isRetry: true,
-          keyTrusted
+          forceRedecryptIfUntrusted
         });
-      } catch (e) {// don't die if something goes wrong
+      } catch (e) {
+        // don't die if something goes wrong
       }
-    })); // If decrypted successfully with trusted keys, they'll have
-    // been removed from pendingEvents
+    }));
 
+    // If decrypted successfully with trusted keys, they'll have
+    // been removed from pendingEvents
     return !this.pendingEvents.get(senderKey)?.has(sessionId);
   }
-
   async retryDecryptionFromSender(senderKey) {
     const senderPendingEvents = this.pendingEvents.get(senderKey);
-
     if (!senderPendingEvents) {
       return true;
     }
-
     this.pendingEvents.delete(senderKey);
     await Promise.all([...senderPendingEvents].map(async ([_sessionId, pending]) => {
       await Promise.all([...pending].map(async ev => {
         try {
           await ev.attemptDecryption(this.crypto);
-        } catch (e) {// don't die if something goes wrong
+        } catch (e) {
+          // don't die if something goes wrong
         }
       }));
     }));
     return !this.pendingEvents.has(senderKey);
   }
-
   async sendSharedHistoryInboundSessions(devicesByUser) {
     await olmlib.ensureOlmSessionsForDevices(this.olmDevice, this.baseApis, devicesByUser);
-
-    _logger.logger.log("sendSharedHistoryInboundSessions to users", Object.keys(devicesByUser));
-
     const sharedHistorySessions = await this.olmDevice.getSharedHistoryInboundGroupSessions(this.roomId);
-
-    _logger.logger.log("shared-history sessions", sharedHistorySessions);
-
+    this.prefixedLogger.log(`Sharing history in with users ${Array.from(devicesByUser.keys())}`, sharedHistorySessions.map(([senderKey, sessionId]) => `${senderKey}|${sessionId}`));
     for (const [senderKey, sessionId] of sharedHistorySessions) {
       const payload = await this.buildKeyForwardingMessage(this.roomId, senderKey, sessionId);
-      const promises = [];
-      const contentMap = {};
-
-      for (const [userId, devices] of Object.entries(devicesByUser)) {
-        contentMap[userId] = {};
 
+      // FIXME: use encryptAndSendToDevices() rather than duplicating it here.
+      const promises = [];
+      const contentMap = new Map();
+      for (const [userId, devices] of devicesByUser) {
+        const deviceMessages = new Map();
+        contentMap.set(userId, deviceMessages);
         for (const deviceInfo of devices) {
           const encryptedContent = {
             algorithm: olmlib.OLM_ALGORITHM,
             sender_key: this.olmDevice.deviceCurve25519Key,
-            ciphertext: {}
+            ciphertext: {},
+            [_event.ToDeviceMessageId]: (0, _uuid.v4)()
           };
-          contentMap[userId][deviceInfo.deviceId] = encryptedContent;
+          deviceMessages.set(deviceInfo.deviceId, encryptedContent);
           promises.push(olmlib.encryptMessageForDevice(encryptedContent.ciphertext, this.userId, undefined, this.olmDevice, userId, deviceInfo, payload));
         }
       }
+      await Promise.all(promises);
 
-      await Promise.all(promises); // prune out any devices that encryptMessageForDevice could not encrypt for,
+      // prune out any devices that encryptMessageForDevice could not encrypt for,
       // in which case it will have just not added anything to the ciphertext object.
       // There's no point sending messages to devices if we couldn't encrypt to them,
       // since that's effectively a blank message.
-
-      for (const userId of Object.keys(contentMap)) {
-        for (const deviceId of Object.keys(contentMap[userId])) {
-          if (Object.keys(contentMap[userId][deviceId].ciphertext).length === 0) {
-            _logger.logger.log("No ciphertext for device " + userId + ":" + deviceId + ": pruning");
-
-            delete contentMap[userId][deviceId];
+      for (const [userId, deviceMessages] of contentMap) {
+        for (const [deviceId, content] of deviceMessages) {
+          if (!hasCiphertext(content)) {
+            this.prefixedLogger.log("No ciphertext for device " + userId + ":" + deviceId + ": pruning");
+            deviceMessages.delete(deviceId);
           }
-        } // No devices left for that user? Strip that too.
-
-
-        if (Object.keys(contentMap[userId]).length === 0) {
-          _logger.logger.log("Pruned all devices for user " + userId);
-
-          delete contentMap[userId];
         }
-      } // Is there anything left?
-
-
-      if (Object.keys(contentMap).length === 0) {
-        _logger.logger.log("No users left to send to: aborting");
+        // No devices left for that user? Strip that too.
+        if (deviceMessages.size === 0) {
+          this.prefixedLogger.log("Pruned all devices for user " + userId);
+          contentMap.delete(userId);
+        }
+      }
 
+      // Is there anything left?
+      if (contentMap.size === 0) {
+        this.prefixedLogger.log("No users left to send to: aborting");
         return;
       }
-
       await this.baseApis.sendToDevice("m.room.encrypted", contentMap);
     }
   }
-
 }
-
+exports.MegolmDecryption = MegolmDecryption;
 const PROBLEM_DESCRIPTIONS = {
   no_olm: "The sender was unable to establish a secure channel.",
   unknown: "The secure channel with the sender was corrupted."
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/algorithms/olm.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/algorithms/olm.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/algorithms/olm.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/algorithms/olm.js	2023-04-11 06:11:52.000000000 +0000
@@ -1,55 +1,40 @@
 "use strict";
 
 var _logger = require("../../logger");
-
 var olmlib = _interopRequireWildcard(require("../olmlib"));
-
 var _deviceinfo = require("../deviceinfo");
-
 var _base = require("./base");
-
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 const DeviceVerification = _deviceinfo.DeviceInfo.DeviceVerification;
-
 /**
  * Olm encryption implementation
  *
- * @constructor
- * @extends {module:crypto/algorithms/EncryptionAlgorithm}
- *
- * @param {object} params parameters, as per
- *     {@link module:crypto/algorithms/EncryptionAlgorithm}
+ * @param params - parameters, as per {@link EncryptionAlgorithm}
  */
 class OlmEncryption extends _base.EncryptionAlgorithm {
   constructor(...args) {
     super(...args);
-
     _defineProperty(this, "sessionPrepared", false);
-
     _defineProperty(this, "prepPromise", null);
   }
-
   /**
-   * @private
-    * @param {string[]} roomMembers list of currently-joined users in the room
-   * @return {Promise} Promise which resolves when setup is complete
+   * @internal
+    * @param roomMembers - list of currently-joined users in the room
+   * @returns Promise which resolves when setup is complete
    */
   ensureSession(roomMembers) {
     if (this.prepPromise) {
       // prep already in progress
       return this.prepPromise;
     }
-
     if (this.sessionPrepared) {
       // prep already done
       return Promise.resolve();
     }
-
     this.prepPromise = this.crypto.downloadKeys(roomMembers).then(() => {
       return this.crypto.ensureOlmSessionsForUsers(roomMembers);
     }).then(() => {
@@ -59,22 +44,18 @@
     });
     return this.prepPromise;
   }
+
   /**
-   * @inheritdoc
+   * @param content - plaintext event content
    *
-   * @param {module:models/room} room
-   * @param {string} eventType
-   * @param {object} content plaintext event content
-   *
-   * @return {Promise} Promise which resolves to the new event body
+   * @returns Promise which resolves to the new event body
    */
-
-
   async encryptMessage(room, eventType, content) {
     // pick the list of recipients based on the membership list.
     //
     // TODO: there is a race condition here! What if a new user turns up
     // just as you are sending a secret message?
+
     const members = await room.getEncryptionTargetMembers();
     const users = members.map(function (u) {
       return u.userId;
@@ -91,51 +72,34 @@
       ciphertext: {}
     };
     const promises = [];
-
-    for (let i = 0; i < users.length; ++i) {
-      const userId = users[i];
+    for (const userId of users) {
       const devices = this.crypto.getStoredDevicesForUser(userId) || [];
-
-      for (let j = 0; j < devices.length; ++j) {
-        const deviceInfo = devices[j];
+      for (const deviceInfo of devices) {
         const key = deviceInfo.getIdentityKey();
-
         if (key == this.olmDevice.deviceCurve25519Key) {
           // don't bother sending to ourself
           continue;
         }
-
         if (deviceInfo.verified == DeviceVerification.BLOCKED) {
           // don't bother setting up sessions with blocked users
           continue;
         }
-
         promises.push(olmlib.encryptMessageForDevice(encryptedContent.ciphertext, this.userId, this.deviceId, this.olmDevice, userId, deviceInfo, payloadFields));
       }
     }
-
     return Promise.all(promises).then(() => encryptedContent);
   }
-
 }
+
 /**
  * Olm decryption implementation
  *
- * @constructor
- * @extends {module:crypto/algorithms/DecryptionAlgorithm}
- * @param {object} params parameters, as per
- *     {@link module:crypto/algorithms/DecryptionAlgorithm}
+ * @param params - parameters, as per {@link DecryptionAlgorithm}
  */
-
-
 class OlmDecryption extends _base.DecryptionAlgorithm {
   /**
-   * @inheritdoc
-   *
-   * @param {MatrixEvent} event
-   *
    * returns a promise which resolves to a
-   * {@link module:crypto~EventDecryptionResult} once we have finished
+   * {@link EventDecryptionResult} once we have finished
    * decrypting. Rejects with an `algorithms.DecryptionError` if there is a
    * problem decrypting the event.
    */
@@ -143,18 +107,14 @@
     const content = event.getWireContent();
     const deviceKey = content.sender_key;
     const ciphertext = content.ciphertext;
-
     if (!ciphertext) {
       throw new _base.DecryptionError("OLM_MISSING_CIPHERTEXT", "Missing ciphertext");
     }
-
     if (!(this.olmDevice.deviceCurve25519Key in ciphertext)) {
       throw new _base.DecryptionError("OLM_NOT_INCLUDED_IN_RECIPIENTS", "Not included in recipients");
     }
-
     const message = ciphertext[this.olmDevice.deviceCurve25519Key];
     let payloadString;
-
     try {
       payloadString = await this.decryptMessage(deviceKey, message);
     } catch (e) {
@@ -163,53 +123,50 @@
         err: e
       });
     }
+    const payload = JSON.parse(payloadString);
 
-    const payload = JSON.parse(payloadString); // check that we were the intended recipient, to avoid unknown-key attack
+    // check that we were the intended recipient, to avoid unknown-key attack
     // https://github.com/vector-im/vector-web/issues/2483
-
     if (payload.recipient != this.userId) {
       throw new _base.DecryptionError("OLM_BAD_RECIPIENT", "Message was intented for " + payload.recipient);
     }
-
     if (payload.recipient_keys.ed25519 != this.olmDevice.deviceEd25519Key) {
       throw new _base.DecryptionError("OLM_BAD_RECIPIENT_KEY", "Message not intended for this device", {
         intended: payload.recipient_keys.ed25519,
         our_key: this.olmDevice.deviceEd25519Key
       });
-    } // check that the device that encrypted the event belongs to the user
+    }
+
+    // check that the device that encrypted the event belongs to the user
     // that the event claims it's from.  We need to make sure that our
     // device list is up-to-date.  If the device is unknown, we can only
     // assume that the device logged out.  Some event handlers, such as
     // secret sharing, may be more strict and reject events that come from
     // unknown devices.
-
-
     await this.crypto.deviceList.downloadKeys([event.getSender()], false);
     const senderKeyUser = this.crypto.deviceList.getUserByIdentityKey(olmlib.OLM_ALGORITHM, deviceKey);
-
-    if (senderKeyUser !== event.getSender() && senderKeyUser !== undefined) {
+    if (senderKeyUser !== event.getSender() && senderKeyUser != undefined) {
       throw new _base.DecryptionError("OLM_BAD_SENDER", "Message claimed to be from " + event.getSender(), {
         real_sender: senderKeyUser
       });
-    } // check that the original sender matches what the homeserver told us, to
+    }
+
+    // check that the original sender matches what the homeserver told us, to
     // avoid people masquerading as others.
     // (this check is also provided via the sender's embedded ed25519 key,
     // which is checked elsewhere).
-
-
     if (payload.sender != event.getSender()) {
       throw new _base.DecryptionError("OLM_FORWARDED_MESSAGE", "Message forwarded from " + payload.sender, {
         reported_sender: event.getSender()
       });
-    } // Olm events intended for a room have a room_id.
-
+    }
 
+    // Olm events intended for a room have a room_id.
     if (payload.room_id !== event.getRoomId()) {
       throw new _base.DecryptionError("OLM_BAD_ROOM", "Message intended for room " + payload.room_id, {
         reported_room: event.getRoomId() || "ROOM_ID_UNDEFINED"
       });
     }
-
     const claimedKeys = payload.keys || {};
     return {
       clearEvent: payload,
@@ -217,16 +174,15 @@
       claimedEd25519Key: claimedKeys.ed25519 || null
     };
   }
+
   /**
    * Attempt to decrypt an Olm message
    *
-   * @param {string} theirDeviceIdentityKey  Curve25519 identity key of the sender
-   * @param {object} message  message object, with 'type' and 'body' fields
+   * @param theirDeviceIdentityKey -  Curve25519 identity key of the sender
+   * @param message -  message object, with 'type' and 'body' fields
    *
-   * @return {string} payload, if decrypted successfully.
+   * @returns payload, if decrypted successfully.
    */
-
-
   decryptMessage(theirDeviceIdentityKey, message) {
     // This is a wrapper that serialises decryptions of prekey messages, because
     // otherwise we race between deciding we have no active sessions for the message
@@ -237,68 +193,57 @@
     } else {
       const myPromise = this.olmDevice.olmPrekeyPromise.then(() => {
         return this.reallyDecryptMessage(theirDeviceIdentityKey, message);
-      }); // we want the error, but don't propagate it to the next decryption
-
+      });
+      // we want the error, but don't propagate it to the next decryption
       this.olmDevice.olmPrekeyPromise = myPromise.catch(() => {});
       return myPromise;
     }
   }
-
   async reallyDecryptMessage(theirDeviceIdentityKey, message) {
-    const sessionIds = await this.olmDevice.getSessionIdsForDevice(theirDeviceIdentityKey); // try each session in turn.
+    const sessionIds = await this.olmDevice.getSessionIdsForDevice(theirDeviceIdentityKey);
 
+    // try each session in turn.
     const decryptionErrors = {};
-
-    for (let i = 0; i < sessionIds.length; i++) {
-      const sessionId = sessionIds[i];
-
+    for (const sessionId of sessionIds) {
       try {
         const payload = await this.olmDevice.decryptMessage(theirDeviceIdentityKey, sessionId, message.type, message.body);
-
         _logger.logger.log("Decrypted Olm message from " + theirDeviceIdentityKey + " with session " + sessionId);
-
         return payload;
       } catch (e) {
         const foundSession = await this.olmDevice.matchesSession(theirDeviceIdentityKey, sessionId, message.type, message.body);
-
         if (foundSession) {
           // decryption failed, but it was a prekey message matching this
           // session, so it should have worked.
           throw new Error("Error decrypting prekey message with existing session id " + sessionId + ": " + e.message);
-        } // otherwise it's probably a message for another session; carry on, but
-        // keep a record of the error
-
+        }
 
+        // otherwise it's probably a message for another session; carry on, but
+        // keep a record of the error
         decryptionErrors[sessionId] = e.message;
       }
     }
-
     if (message.type !== 0) {
       // not a prekey message, so it should have matched an existing session, but it
       // didn't work.
+
       if (sessionIds.length === 0) {
         throw new Error("No existing sessions");
       }
-
       throw new Error("Error decrypting non-prekey message with existing sessions: " + JSON.stringify(decryptionErrors));
-    } // prekey message which doesn't match any existing sessions: make a new
-    // session.
+    }
 
+    // prekey message which doesn't match any existing sessions: make a new
+    // session.
 
     let res;
-
     try {
       res = await this.olmDevice.createInboundSession(theirDeviceIdentityKey, message.type, message.body);
     } catch (e) {
       decryptionErrors["(new)"] = e.message;
       throw new Error("Error decrypting prekey message: " + JSON.stringify(decryptionErrors));
     }
-
     _logger.logger.log("created new inbound Olm session ID " + res.session_id + " with " + theirDeviceIdentityKey);
-
     return res.payload;
   }
-
 }
-
 (0, _base.registerAlgorithm)(olmlib.OLM_ALGORITHM, OlmEncryption, OlmDecryption);
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/api.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/api.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/api.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/api.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,7 +4,6 @@
   value: true
 });
 exports.CrossSigningKey = void 0;
-
 /*
 Copyright 2021 The Matrix.org Foundation C.I.C.
 
@@ -23,7 +22,6 @@
 // TODO: Merge this with crypto.js once converted
 let CrossSigningKey;
 exports.CrossSigningKey = CrossSigningKey;
-
 (function (CrossSigningKey) {
   CrossSigningKey["Master"] = "master";
   CrossSigningKey["SelfSigning"] = "self_signing";
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/backup.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/backup.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/backup.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/backup.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,29 +4,21 @@
   value: true
 });
 exports.algorithmsByName = exports.DefaultAlgorithm = exports.Curve25519 = exports.BackupManager = exports.Aes256 = void 0;
-
 var _client = require("../client");
-
 var _logger = require("../logger");
-
 var _olmlib = require("./olmlib");
-
 var _key_passphrase = require("./key_passphrase");
-
 var _utils = require("../utils");
-
 var _indexeddbCryptoStore = require("./store/indexeddb-crypto-store");
-
 var _recoverykey = require("./recoverykey");
-
 var _aes = require("./aes");
-
 var _NamespacedValue = require("../NamespacedValue");
-
 var _index = require("./index");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+var _crypto = require("./crypto");
+var _httpApi = require("../http-api");
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 const KEY_BACKUP_KEYS_PER_REQUEST = 200;
 const KEY_BACKUP_CHECK_RATE_LIMIT = 5000; // ms
 
@@ -38,103 +30,81 @@
   // Have we checked the server for a backup we can use?
   // Are we currently sending backups?
   // When did we last try to check the server for a given session id?
+
   constructor(baseApis, getKey) {
     this.baseApis = baseApis;
     this.getKey = getKey;
-
     _defineProperty(this, "algorithm", void 0);
-
     _defineProperty(this, "backupInfo", void 0);
-
     _defineProperty(this, "checkedForBackup", void 0);
-
     _defineProperty(this, "sendingBackups", void 0);
-
     _defineProperty(this, "sessionLastCheckAttemptedTime", {});
-
     this.checkedForBackup = false;
     this.sendingBackups = false;
   }
-
   get version() {
     return this.backupInfo && this.backupInfo.version;
   }
+
   /**
    * Performs a quick check to ensure that the backup info looks sane.
    *
    * Throws an error if a problem is detected.
    *
-   * @param {IKeyBackupInfo} info the key backup info
+   * @param info - the key backup info
    */
-
-
   static checkBackupVersion(info) {
     const Algorithm = algorithmsByName[info.algorithm];
-
     if (!Algorithm) {
       throw new Error("Unknown backup algorithm: " + info.algorithm);
     }
-
     if (typeof info.auth_data !== "object") {
       throw new Error("Invalid backup data returned");
     }
-
     return Algorithm.checkBackupVersion(info);
   }
-
   static makeAlgorithm(info, getKey) {
     const Algorithm = algorithmsByName[info.algorithm];
-
     if (!Algorithm) {
       throw new Error("Unknown backup algorithm");
     }
-
     return Algorithm.init(info.auth_data, getKey);
   }
-
   async enableKeyBackup(info) {
     this.backupInfo = info;
-
     if (this.algorithm) {
       this.algorithm.free();
     }
-
     this.algorithm = await BackupManager.makeAlgorithm(info, this.getKey);
-    this.baseApis.emit(_index.CryptoEvent.KeyBackupStatus, true); // There may be keys left over from a partially completed backup, so
-    // schedule a send to check.
+    this.baseApis.emit(_index.CryptoEvent.KeyBackupStatus, true);
 
+    // There may be keys left over from a partially completed backup, so
+    // schedule a send to check.
     this.scheduleKeyBackupSend();
   }
+
   /**
    * Disable backing up of keys.
    */
-
-
   disableKeyBackup() {
     if (this.algorithm) {
       this.algorithm.free();
     }
-
     this.algorithm = undefined;
     this.backupInfo = undefined;
     this.baseApis.emit(_index.CryptoEvent.KeyBackupStatus, false);
   }
-
   getKeyBackupEnabled() {
     if (!this.checkedForBackup) {
       return null;
     }
-
     return Boolean(this.algorithm);
   }
-
   async prepareKeyBackupVersion(key, algorithm) {
     const Algorithm = algorithm ? algorithmsByName[algorithm] : DefaultAlgorithm;
-
     if (!Algorithm) {
       throw new Error("Unknown backup algorithm");
     }
-
     const [privateKey, authData] = await Algorithm.prepare(key);
     const recoveryKey = (0, _recoverykey.encodeRecoveryKey)(privateKey);
     return {
@@ -144,241 +114,191 @@
       privateKey
     };
   }
-
   async createKeyBackupVersion(info) {
     this.algorithm = await BackupManager.makeAlgorithm(info, this.getKey);
   }
+
   /**
    * Check the server for an active key backup and
    * if one is present and has a valid signature from
    * one of the user's verified devices, start backing up
    * to it.
    */
-
-
   async checkAndStart() {
     _logger.logger.log("Checking key backup status...");
-
     if (this.baseApis.isGuest()) {
       _logger.logger.log("Skipping key backup check since user is guest");
-
       this.checkedForBackup = true;
       return null;
     }
-
     let backupInfo;
-
     try {
-      backupInfo = await this.baseApis.getKeyBackupVersion();
+      backupInfo = (await this.baseApis.getKeyBackupVersion()) ?? undefined;
     } catch (e) {
       _logger.logger.log("Error checking for active key backup", e);
-
       if (e.httpStatus === 404) {
         // 404 is returned when the key backup does not exist, so that
         // counts as successfully checking.
         this.checkedForBackup = true;
       }
-
       return null;
     }
-
     this.checkedForBackup = true;
     const trustInfo = await this.isKeyBackupTrusted(backupInfo);
-
     if (trustInfo.usable && !this.backupInfo) {
-      _logger.logger.log("Found usable key backup v" + backupInfo.version + ": enabling key backups");
-
+      _logger.logger.log(`Found usable key backup v${backupInfo.version}: enabling key backups`);
       await this.enableKeyBackup(backupInfo);
     } else if (!trustInfo.usable && this.backupInfo) {
       _logger.logger.log("No usable key backup: disabling key backup");
-
       this.disableKeyBackup();
     } else if (!trustInfo.usable && !this.backupInfo) {
       _logger.logger.log("No usable key backup: not enabling key backup");
     } else if (trustInfo.usable && this.backupInfo) {
       // may not be the same version: if not, we should switch
       if (backupInfo.version !== this.backupInfo.version) {
-        _logger.logger.log("On backup version " + this.backupInfo.version + " but found " + "version " + backupInfo.version + ": switching.");
-
+        _logger.logger.log(`On backup version ${this.backupInfo.version} but ` + `found version ${backupInfo.version}: switching.`);
         this.disableKeyBackup();
-        await this.enableKeyBackup(backupInfo); // We're now using a new backup, so schedule all the keys we have to be
+        await this.enableKeyBackup(backupInfo);
+        // We're now using a new backup, so schedule all the keys we have to be
         // uploaded to the new backup. This is a bit of a workaround to upload
         // keys to a new backup in *most* cases, but it won't cover all cases
         // because we don't remember what backup version we uploaded keys to:
         // see https://github.com/vector-im/element-web/issues/14833
-
         await this.scheduleAllGroupSessionsForBackup();
       } else {
-        _logger.logger.log("Backup version " + backupInfo.version + " still current");
+        _logger.logger.log(`Backup version ${backupInfo.version} still current`);
       }
     }
-
     return {
       backupInfo,
       trustInfo
     };
   }
+
   /**
    * Forces a re-check of the key backup and enables/disables it
    * as appropriate.
    *
-   * @return {Object} Object with backup info (as returned by
+   * @returns Object with backup info (as returned by
    *     getKeyBackupVersion) in backupInfo and
    *     trust information (as returned by isKeyBackupTrusted)
    *     in trustInfo.
    */
-
-
   async checkKeyBackup() {
     this.checkedForBackup = false;
     return this.checkAndStart();
   }
+
   /**
    * Attempts to retrieve a session from a key backup, if enough time
    * has elapsed since the last check for this session id.
    */
-
-
   async queryKeyBackupRateLimited(targetRoomId, targetSessionId) {
     if (!this.backupInfo) {
       return;
     }
-
     const now = new Date().getTime();
-
     if (!this.sessionLastCheckAttemptedTime[targetSessionId] || now - this.sessionLastCheckAttemptedTime[targetSessionId] > KEY_BACKUP_CHECK_RATE_LIMIT) {
       this.sessionLastCheckAttemptedTime[targetSessionId] = now;
       await this.baseApis.restoreKeyBackupWithCache(targetRoomId, targetSessionId, this.backupInfo, {});
     }
   }
+
   /**
    * Check if the given backup info is trusted.
    *
-   * @param {IKeyBackupInfo} backupInfo key backup info dict from /room_keys/version
-   * @return {object} {
-   *     usable: [bool], // is the backup trusted, true iff there is a sig that is valid & from a trusted device
-   *     sigs: [
-   *         valid: [bool || null], // true: valid, false: invalid, null: cannot attempt validation
-   *         deviceId: [string],
-   *         device: [DeviceInfo || null],
-   *     ]
-   * }
+   * @param backupInfo - key backup info dict from /room_keys/version
    */
-
-
   async isKeyBackupTrusted(backupInfo) {
     const ret = {
       usable: false,
       trusted_locally: false,
       sigs: []
     };
-
     if (!backupInfo || !backupInfo.algorithm || !backupInfo.auth_data || !backupInfo.auth_data.signatures) {
       _logger.logger.info("Key backup is absent or missing required data");
-
       return ret;
     }
-
+    const userId = this.baseApis.getUserId();
     const privKey = await this.baseApis.crypto.getSessionBackupPrivateKey();
-
     if (privKey) {
-      let algorithm;
-
+      let algorithm = null;
       try {
         algorithm = await BackupManager.makeAlgorithm(backupInfo, async () => privKey);
-
         if (await algorithm.keyMatches(privKey)) {
           _logger.logger.info("Backup is trusted locally");
-
           ret.trusted_locally = true;
         }
-      } catch {// do nothing -- if we have an error, then we don't mark it as
+      } catch {
+        // do nothing -- if we have an error, then we don't mark it as
         // locally trusted
       } finally {
-        if (algorithm) {
-          algorithm.free();
-        }
+        algorithm?.free();
       }
     }
-
-    const mySigs = backupInfo.auth_data.signatures[this.baseApis.getUserId()] || {};
-
+    const mySigs = backupInfo.auth_data.signatures[userId] || {};
     for (const keyId of Object.keys(mySigs)) {
-      const keyIdParts = keyId.split(':');
-
-      if (keyIdParts[0] !== 'ed25519') {
+      const keyIdParts = keyId.split(":");
+      if (keyIdParts[0] !== "ed25519") {
         _logger.logger.log("Ignoring unknown signature type: " + keyIdParts[0]);
-
         continue;
-      } // Could be a cross-signing master key, but just say this is the device
+      }
+      // Could be a cross-signing master key, but just say this is the device
       // ID for backwards compat
-
-
       const sigInfo = {
         deviceId: keyIdParts[1]
-      }; // first check to see if it's from our cross-signing key
+      };
 
+      // first check to see if it's from our cross-signing key
       const crossSigningId = this.baseApis.crypto.crossSigningInfo.getId();
-
       if (crossSigningId === sigInfo.deviceId) {
         sigInfo.crossSigningId = true;
-
         try {
-          await (0, _olmlib.verifySignature)(this.baseApis.crypto.olmDevice, backupInfo.auth_data, this.baseApis.getUserId(), sigInfo.deviceId, crossSigningId);
+          await (0, _olmlib.verifySignature)(this.baseApis.crypto.olmDevice, backupInfo.auth_data, userId, sigInfo.deviceId, crossSigningId);
           sigInfo.valid = true;
         } catch (e) {
           _logger.logger.warn("Bad signature from cross signing key " + crossSigningId, e);
-
           sigInfo.valid = false;
         }
-
         ret.sigs.push(sigInfo);
         continue;
-      } // Now look for a sig from a device
+      }
+
+      // Now look for a sig from a device
       // At some point this can probably go away and we'll just support
       // it being signed by the cross-signing master key
-
-
-      const device = this.baseApis.crypto.deviceList.getStoredDevice(this.baseApis.getUserId(), sigInfo.deviceId);
-
+      const device = this.baseApis.crypto.deviceList.getStoredDevice(userId, sigInfo.deviceId);
       if (device) {
         sigInfo.device = device;
-        sigInfo.deviceTrust = this.baseApis.checkDeviceTrust(this.baseApis.getUserId(), sigInfo.deviceId);
-
+        sigInfo.deviceTrust = this.baseApis.checkDeviceTrust(userId, sigInfo.deviceId);
         try {
-          await (0, _olmlib.verifySignature)(this.baseApis.crypto.olmDevice, backupInfo.auth_data, this.baseApis.getUserId(), device.deviceId, device.getFingerprint());
+          await (0, _olmlib.verifySignature)(this.baseApis.crypto.olmDevice, backupInfo.auth_data, userId, device.deviceId, device.getFingerprint());
           sigInfo.valid = true;
         } catch (e) {
           _logger.logger.info("Bad signature from key ID " + keyId + " userID " + this.baseApis.getUserId() + " device ID " + device.deviceId + " fingerprint: " + device.getFingerprint(), backupInfo.auth_data, e);
-
           sigInfo.valid = false;
         }
       } else {
         sigInfo.valid = null; // Can't determine validity because we don't have the signing device
-
         _logger.logger.info("Ignoring signature from unknown key " + keyId);
       }
-
       ret.sigs.push(sigInfo);
     }
-
     ret.usable = ret.sigs.some(s => {
-      return s.valid && (s.device && s.deviceTrust.isVerified() || s.crossSigningId);
+      return s.valid && (s.device && s.deviceTrust?.isVerified() || s.crossSigningId);
     });
     return ret;
   }
+
   /**
    * Schedules sending all keys waiting to be sent to the backup, if not already
    * scheduled. Retries if necessary.
    *
-   * @param maxDelay Maximum delay to wait in ms. 0 means no delay.
+   * @param maxDelay - Maximum delay to wait in ms. 0 means no delay.
    */
-
-
   async scheduleKeyBackupSend(maxDelay = 10000) {
     if (this.sendingBackups) return;
     this.sendingBackups = true;
-
     try {
       // wait between 0 and `maxDelay` seconds, to avoid backup
       // requests from different clients hitting the server all at
@@ -386,39 +306,32 @@
       const delay = Math.random() * maxDelay;
       await (0, _utils.sleep)(delay);
       let numFailures = 0; // number of consecutive failures
-
       for (;;) {
         if (!this.algorithm) {
           return;
         }
-
         try {
           const numBackedUp = await this.backupPendingKeys(KEY_BACKUP_KEYS_PER_REQUEST);
-
           if (numBackedUp === 0) {
             // no sessions left needing backup: we're done
             return;
           }
-
           numFailures = 0;
         } catch (err) {
           numFailures++;
-
           _logger.logger.log("Key backup request failed", err);
-
           if (err.data) {
-            if (err.data.errcode == 'M_NOT_FOUND' || err.data.errcode == 'M_WRONG_ROOM_KEYS_VERSION') {
+            if (err.data.errcode == "M_NOT_FOUND" || err.data.errcode == "M_WRONG_ROOM_KEYS_VERSION") {
               // Re-check key backup status on error, so we can be
               // sure to present the current situation when asked.
-              await this.checkKeyBackup(); // Backup version has changed or this backup version
+              await this.checkKeyBackup();
+              // Backup version has changed or this backup version
               // has been deleted
-
               this.baseApis.crypto.emit(_index.CryptoEvent.KeyBackupFailed, err.data.errcode);
               throw err;
             }
           }
         }
-
         if (numFailures) {
           // exponential backoff if we have failures
           await (0, _utils.sleep)(1000 * Math.pow(2, Math.min(numFailures - 1, 4)));
@@ -428,49 +341,40 @@
       this.sendingBackups = false;
     }
   }
+
   /**
    * Take some e2e keys waiting to be backed up and send them
    * to the backup.
    *
-   * @param {number} limit Maximum number of keys to back up
-   * @returns {number} Number of sessions backed up
+   * @param limit - Maximum number of keys to back up
+   * @returns Number of sessions backed up
    */
-
-
   async backupPendingKeys(limit) {
     const sessions = await this.baseApis.crypto.cryptoStore.getSessionsNeedingBackup(limit);
-
     if (!sessions.length) {
       return 0;
     }
-
     let remaining = await this.baseApis.crypto.cryptoStore.countSessionsNeedingBackup();
     this.baseApis.crypto.emit(_index.CryptoEvent.KeyBackupSessionsRemaining, remaining);
     const rooms = {};
-
     for (const session of sessions) {
       const roomId = session.sessionData.room_id;
-
-      if (rooms[roomId] === undefined) {
-        rooms[roomId] = {
-          sessions: {}
-        };
-      }
-
+      (0, _utils.safeSet)(rooms, roomId, rooms[roomId] || {
+        sessions: {}
+      });
       const sessionData = this.baseApis.crypto.olmDevice.exportInboundGroupSession(session.senderKey, session.sessionId, session.sessionData);
       sessionData.algorithm = _olmlib.MEGOLM_ALGORITHM;
       const forwardedCount = (sessionData.forwarding_curve25519_key_chain || []).length;
       const userId = this.baseApis.crypto.deviceList.getUserByIdentityKey(_olmlib.MEGOLM_ALGORITHM, session.senderKey);
-      const device = this.baseApis.crypto.deviceList.getDeviceByIdentityKey(_olmlib.MEGOLM_ALGORITHM, session.senderKey);
+      const device = this.baseApis.crypto.deviceList.getDeviceByIdentityKey(_olmlib.MEGOLM_ALGORITHM, session.senderKey) ?? undefined;
       const verified = this.baseApis.crypto.checkDeviceInfoTrust(userId, device).isVerified();
-      rooms[roomId]['sessions'][session.sessionId] = {
+      (0, _utils.safeSet)(rooms[roomId]["sessions"], session.sessionId, {
         first_message_index: sessionData.first_known_index,
         forwarded_count: forwardedCount,
         is_verified: verified,
         session_data: await this.algorithm.encryptSession(sessionData)
-      };
+      });
     }
-
     await this.baseApis.sendKeyBackup(undefined, undefined, this.backupInfo.version, {
       rooms
     });
@@ -479,44 +383,39 @@
     this.baseApis.crypto.emit(_index.CryptoEvent.KeyBackupSessionsRemaining, remaining);
     return sessions.length;
   }
-
   async backupGroupSession(senderKey, sessionId) {
     await this.baseApis.crypto.cryptoStore.markSessionsNeedingBackup([{
       senderKey: senderKey,
       sessionId: sessionId
     }]);
-
     if (this.backupInfo) {
       // don't wait for this to complete: it will delay so
       // happens in the background
       this.scheduleKeyBackupSend();
-    } // if this.backupInfo is not set, then the keys will be backed up when
+    }
+    // if this.backupInfo is not set, then the keys will be backed up when
     // this.enableKeyBackup is called
-
   }
+
   /**
    * Marks all group sessions as needing to be backed up and schedules them to
    * upload in the background as soon as possible.
    */
-
-
   async scheduleAllGroupSessionsForBackup() {
-    await this.flagAllGroupSessionsForBackup(); // Schedule keys to upload in the background as soon as possible.
+    await this.flagAllGroupSessionsForBackup();
 
-    this.scheduleKeyBackupSend(0
-    /* maxDelay */
-    );
+    // Schedule keys to upload in the background as soon as possible.
+    this.scheduleKeyBackupSend(0 /* maxDelay */);
   }
+
   /**
    * Marks all group sessions as needing to be backed up without scheduling
    * them to upload in the background.
-   * @returns {Promise<int>} Resolves to the number of sessions now requiring a backup
+   * @returns Promise which resolves to the number of sessions now requiring a backup
    *     (which will be equal to the number of sessions in the store).
    */
-
-
   async flagAllGroupSessionsForBackup() {
-    await this.baseApis.crypto.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS, _indexeddbCryptoStore.IndexedDBCryptoStore.STORE_BACKUP], txn => {
+    await this.baseApis.crypto.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS, _indexeddbCryptoStore.IndexedDBCryptoStore.STORE_BACKUP], txn => {
       this.baseApis.crypto.cryptoStore.getAllEndToEndInboundGroupSessions(txn, session => {
         if (session !== null) {
           this.baseApis.crypto.cryptoStore.markSessionsNeedingBackup([session], txn);
@@ -527,44 +426,36 @@
     this.baseApis.emit(_index.CryptoEvent.KeyBackupSessionsRemaining, remaining);
     return remaining;
   }
+
   /**
    * Counts the number of end to end session keys that are waiting to be backed up
-   * @returns {Promise<int>} Resolves to the number of sessions requiring backup
+   * @returns Promise which resolves to the number of sessions requiring backup
    */
-
-
   countSessionsNeedingBackup() {
     return this.baseApis.crypto.cryptoStore.countSessionsNeedingBackup();
   }
-
 }
-
 exports.BackupManager = BackupManager;
-
 class Curve25519 {
-  constructor(authData, publicKey, // FIXME: PkEncryption
+  constructor(authData, publicKey,
+  // FIXME: PkEncryption
   getKey) {
     this.authData = authData;
     this.publicKey = publicKey;
     this.getKey = getKey;
   }
-
   static async init(authData, getKey) {
     if (!authData || !("public_key" in authData)) {
       throw new Error("auth_data missing required information");
     }
-
     const publicKey = new global.Olm.PkEncryption();
     publicKey.set_recipient_key(authData.public_key);
     return new Curve25519(authData, publicKey, getKey);
   }
-
   static async prepare(key) {
     const decryption = new global.Olm.PkDecryption();
-
     try {
       const authData = {};
-
       if (!key) {
         authData.public_key = decryption.generate_key();
       } else if (key instanceof Uint8Array) {
@@ -575,7 +466,6 @@
         authData.private_key_iterations = derivation.iterations;
         authData.public_key = decryption.init_with_private_key(derivation.key);
       }
-
       const publicKey = new global.Olm.PkEncryption();
       publicKey.set_recipient_key(authData.public_key);
       return [decryption.get_private_key(), authData];
@@ -583,17 +473,14 @@
       decryption.free();
     }
   }
-
   static checkBackupVersion(info) {
     if (!("public_key" in info.auth_data)) {
       throw new Error("Invalid backup data returned");
     }
   }
-
   get untrusted() {
     return true;
   }
-
   async encryptSession(data) {
     const plainText = Object.assign({}, data);
     delete plainText.session_id;
@@ -601,23 +488,17 @@
     delete plainText.first_known_index;
     return this.publicKey.encrypt(JSON.stringify(plainText));
   }
-
   async decryptSessions(sessions) {
     const privKey = await this.getKey();
     const decryption = new global.Olm.PkDecryption();
-
     try {
       const backupPubKey = decryption.init_with_private_key(privKey);
-
       if (backupPubKey !== this.authData.public_key) {
-        // eslint-disable-next-line no-throw-literal
-        throw {
+        throw new _httpApi.MatrixError({
           errcode: _client.MatrixClient.RESTORE_BACKUP_ERROR_BAD_KEY
-        };
+        });
       }
-
       const keys = [];
-
       for (const [sessionId, sessionData] of Object.entries(sessions)) {
         try {
           const decrypted = JSON.parse(decryption.decrypt(sessionData.session_data.ephemeral, sessionData.session_data.mac, sessionData.session_data.ciphertext));
@@ -627,86 +508,56 @@
           _logger.logger.log("Failed to decrypt megolm session from backup", e, sessionData);
         }
       }
-
       return keys;
     } finally {
       decryption.free();
     }
   }
-
   async keyMatches(key) {
     const decryption = new global.Olm.PkDecryption();
     let pubKey;
-
     try {
       pubKey = decryption.init_with_private_key(key);
     } finally {
       decryption.free();
     }
-
     return pubKey === this.authData.public_key;
   }
-
   free() {
     this.publicKey.free();
   }
-
 }
-
 exports.Curve25519 = Curve25519;
-
 _defineProperty(Curve25519, "algorithmName", "m.megolm_backup.v1.curve25519-aes-sha2");
-
 function randomBytes(size) {
-  const crypto = (0, _utils.getCrypto)();
-
-  if (crypto) {
-    // nodejs version
-    return crypto.randomBytes(size);
-  }
-
-  if (window?.crypto) {
-    // browser version
-    const buf = new Uint8Array(size);
-    window.crypto.getRandomValues(buf);
-    return buf;
-  }
-
-  throw new Error("No usable crypto implementation");
+  const buf = new Uint8Array(size);
+  _crypto.crypto.getRandomValues(buf);
+  return buf;
 }
-
-const UNSTABLE_MSC3270_NAME = new _NamespacedValue.UnstableValue(null, "org.matrix.msc3270.v1.aes-hmac-sha2");
-
+const UNSTABLE_MSC3270_NAME = new _NamespacedValue.UnstableValue("m.megolm_backup.v1.aes-hmac-sha2", "org.matrix.msc3270.v1.aes-hmac-sha2");
 class Aes256 {
   constructor(authData, key) {
     this.authData = authData;
     this.key = key;
   }
-
   static async init(authData, getKey) {
     if (!authData) {
       throw new Error("auth_data missing");
     }
-
     const key = await getKey();
-
     if (authData.mac) {
       const {
         mac
       } = await (0, _aes.calculateKeyCheck)(key, authData.iv);
-
-      if (authData.mac.replace(/=+$/g, '') !== mac.replace(/=+/g, '')) {
+      if (authData.mac.replace(/=+$/g, "") !== mac.replace(/=+/g, "")) {
         throw new Error("Key does not match");
       }
     }
-
     return new Aes256(authData, key);
   }
-
   static async prepare(key) {
     let outKey;
     const authData = {};
-
     if (!key) {
       outKey = randomBytes(32);
     } else if (key instanceof Uint8Array) {
@@ -717,7 +568,6 @@
       authData.private_key_iterations = derivation.iterations;
       outKey = derivation.key;
     }
-
     const {
       iv,
       mac
@@ -726,17 +576,14 @@
     authData.mac = mac;
     return [outKey, authData];
   }
-
   static checkBackupVersion(info) {
     if (!("iv" in info.auth_data && "mac" in info.auth_data)) {
       throw new Error("Invalid backup data returned");
     }
   }
-
   get untrusted() {
     return false;
   }
-
   encryptSession(data) {
     const plainText = Object.assign({}, data);
     delete plainText.session_id;
@@ -744,10 +591,8 @@
     delete plainText.first_known_index;
     return (0, _aes.encryptAES)(JSON.stringify(plainText), this.key, data.session_id);
   }
-
   async decryptSessions(sessions) {
     const keys = [];
-
     for (const [sessionId, sessionData] of Object.entries(sessions)) {
       try {
         const decrypted = JSON.parse(await (0, _aes.decryptAES)(sessionData.session_data, this.key, sessionId));
@@ -757,32 +602,25 @@
         _logger.logger.log("Failed to decrypt megolm session from backup", e, sessionData);
       }
     }
-
     return keys;
   }
-
   async keyMatches(key) {
     if (this.authData.mac) {
       const {
         mac
       } = await (0, _aes.calculateKeyCheck)(key, this.authData.iv);
-      return this.authData.mac.replace(/=+$/g, '') === mac.replace(/=+/g, '');
+      return this.authData.mac.replace(/=+$/g, "") === mac.replace(/=+/g, "");
     } else {
       // if we have no information, we have to assume the key is right
       return true;
     }
   }
-
   free() {
     this.key.fill(0);
   }
-
 }
-
 exports.Aes256 = Aes256;
-
 _defineProperty(Aes256, "algorithmName", UNSTABLE_MSC3270_NAME.name);
-
 const algorithmsByName = {
   [Curve25519.algorithmName]: Curve25519,
   [Aes256.algorithmName]: Aes256
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/CrossSigning.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/CrossSigning.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/CrossSigning.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/CrossSigning.js	2023-04-11 06:11:52.000000000 +0000
@@ -6,26 +6,20 @@
 exports.UserTrustLevel = exports.DeviceTrustLevel = exports.CrossSigningLevel = exports.CrossSigningInfo = void 0;
 exports.createCryptoStoreCacheCallbacks = createCryptoStoreCacheCallbacks;
 exports.requestKeysDuringVerification = requestKeysDuringVerification;
-
 var _olmlib = require("./olmlib");
-
 var _logger = require("../logger");
-
 var _indexeddbCryptoStore = require("../crypto/store/indexeddb-crypto-store");
-
 var _aes = require("./aes");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 const KEY_REQUEST_TIMEOUT_MS = 1000 * 60;
-
 function publicKeyFromKeyInfo(keyInfo) {
   // `keys` is an object with { [`ed25519:${pubKey}`]: pubKey }
   // We assume only a single key, and we want the bare form without type
   // prefix, so we select the values.
   return Object.values(keyInfo.keys)[0];
 }
-
 class CrossSigningInfo {
   // This tracks whether we've ever verified this user with any identity.
   // When you verify a user, any devices online at the time that receive
@@ -36,37 +30,29 @@
   /**
    * Information about a user's cross-signing keys
    *
-   * @class
-   *
-   * @param {string} userId the user that the information is about
-   * @param {object} callbacks Callbacks used to interact with the app
+   * @param userId - the user that the information is about
+   * @param callbacks - Callbacks used to interact with the app
    *     Requires getCrossSigningKey and saveCrossSigningKeys
-   * @param {object} cacheCallbacks Callbacks used to interact with the cache
+   * @param cacheCallbacks - Callbacks used to interact with the cache
    */
   constructor(userId, callbacks = {}, cacheCallbacks = {}) {
     this.userId = userId;
     this.callbacks = callbacks;
     this.cacheCallbacks = cacheCallbacks;
-
     _defineProperty(this, "keys", {});
-
     _defineProperty(this, "firstUse", true);
-
     _defineProperty(this, "crossSigningVerifiedBefore", false);
   }
-
   static fromStorage(obj, userId) {
     const res = new CrossSigningInfo(userId);
-
     for (const prop in obj) {
       if (obj.hasOwnProperty(prop)) {
+        // @ts-ignore - ts doesn't like this and nor should we
         res[prop] = obj[prop];
       }
     }
-
     return res;
   }
-
   toStorage() {
     return {
       keys: this.keys,
@@ -74,88 +60,72 @@
       crossSigningVerifiedBefore: this.crossSigningVerifiedBefore
     };
   }
+
   /**
    * Calls the app callback to ask for a private key
    *
-   * @param {string} type The key type ("master", "self_signing", or "user_signing")
-   * @param {string} expectedPubkey The matching public key or undefined to use
+   * @param type - The key type ("master", "self_signing", or "user_signing")
+   * @param expectedPubkey - The matching public key or undefined to use
    *     the stored public key for the given key type.
-   * @returns {Array} An array with [ public key, Olm.PkSigning ]
+   * @returns An array with [ public key, Olm.PkSigning ]
    */
-
-
   async getCrossSigningKey(type, expectedPubkey) {
     const shouldCache = ["master", "self_signing", "user_signing"].indexOf(type) >= 0;
-
     if (!this.callbacks.getCrossSigningKey) {
       throw new Error("No getCrossSigningKey callback supplied");
     }
-
     if (expectedPubkey === undefined) {
       expectedPubkey = this.getId(type);
     }
-
     function validateKey(key) {
       if (!key) return;
       const signing = new global.Olm.PkSigning();
       const gotPubkey = signing.init_with_seed(key);
-
       if (gotPubkey === expectedPubkey) {
         return [gotPubkey, signing];
       }
-
       signing.free();
     }
-
-    let privkey;
-
+    let privkey = null;
     if (this.cacheCallbacks.getCrossSigningKeyCache && shouldCache) {
       privkey = await this.cacheCallbacks.getCrossSigningKeyCache(type, expectedPubkey);
     }
-
     const cacheresult = validateKey(privkey);
-
     if (cacheresult) {
       return cacheresult;
     }
-
     privkey = await this.callbacks.getCrossSigningKey(type, expectedPubkey);
     const result = validateKey(privkey);
-
     if (result) {
       if (this.cacheCallbacks.storeCrossSigningKeyCache && shouldCache) {
         await this.cacheCallbacks.storeCrossSigningKeyCache(type, privkey);
       }
-
       return result;
     }
-    /* No keysource even returned a key */
-
 
+    /* No keysource even returned a key */
     if (!privkey) {
       throw new Error("getCrossSigningKey callback for " + type + " returned falsey");
     }
-    /* We got some keys from the keysource, but none of them were valid */
-
 
+    /* We got some keys from the keysource, but none of them were valid */
     throw new Error("Key type " + type + " from getCrossSigningKey callback did not match");
   }
+
   /**
    * Check whether the private keys exist in secret storage.
    * XXX: This could be static, be we often seem to have an instance when we
    * want to know this anyway...
    *
-   * @param {SecretStorage} secretStorage The secret store using account data
-   * @returns {object} map of key name to key info the secret is encrypted
+   * @param secretStorage - The secret store using account data
+   * @returns map of key name to key info the secret is encrypted
    *     with, or null if it is not present or not encrypted with a trusted
    *     key
    */
-
-
   async isStoredInSecretStorage(secretStorage) {
     // check what SSSS keys have encrypted the master key (if any)
-    const stored = (await secretStorage.isStored("m.cross_signing.master")) || {}; // then check which of those SSSS keys have also encrypted the SSK and USK
-
+    const stored = (await secretStorage.isStored("m.cross_signing.master")) || {};
+    // then check which of those SSSS keys have also encrypted the SSK and USK
     function intersect(s) {
       for (const k of Object.keys(stored)) {
         if (!s[k]) {
@@ -163,137 +133,119 @@
         }
       }
     }
-
     for (const type of ["self_signing", "user_signing"]) {
       intersect((await secretStorage.isStored(`m.cross_signing.${type}`)) || {});
     }
-
     return Object.keys(stored).length ? stored : null;
   }
+
   /**
    * Store private keys in secret storage for use by other devices. This is
    * typically called in conjunction with the creation of new cross-signing
    * keys.
    *
-   * @param {Map} keys The keys to store
-   * @param {SecretStorage} secretStorage The secret store using account data
+   * @param keys - The keys to store
+   * @param secretStorage - The secret store using account data
    */
-
-
   static async storeInSecretStorage(keys, secretStorage) {
     for (const [type, privateKey] of keys) {
       const encodedKey = (0, _olmlib.encodeBase64)(privateKey);
       await secretStorage.store(`m.cross_signing.${type}`, encodedKey);
     }
   }
+
   /**
    * Get private keys from secret storage created by some other device. This
    * also passes the private keys to the app-specific callback.
    *
-   * @param {string} type The type of key to get.  One of "master",
+   * @param type - The type of key to get.  One of "master",
    * "self_signing", or "user_signing".
-   * @param {SecretStorage} secretStorage The secret store using account data
-   * @return {Uint8Array} The private key
+   * @param secretStorage - The secret store using account data
+   * @returns The private key
    */
-
-
   static async getFromSecretStorage(type, secretStorage) {
     const encodedKey = await secretStorage.get(`m.cross_signing.${type}`);
-
     if (!encodedKey) {
       return null;
     }
-
     return (0, _olmlib.decodeBase64)(encodedKey);
   }
+
   /**
    * Check whether the private keys exist in the local key cache.
    *
-   * @param {string} [type] The type of key to get. One of "master",
+   * @param type - The type of key to get. One of "master",
    * "self_signing", or "user_signing". Optional, will check all by default.
-   * @returns {boolean} True if all keys are stored in the local cache.
+   * @returns True if all keys are stored in the local cache.
    */
-
-
   async isStoredInKeyCache(type) {
     const cacheCallbacks = this.cacheCallbacks;
     if (!cacheCallbacks) return false;
     const types = type ? [type] : ["master", "self_signing", "user_signing"];
-
     for (const t of types) {
-      if (!(await cacheCallbacks.getCrossSigningKeyCache(t))) {
+      if (!(await cacheCallbacks.getCrossSigningKeyCache?.(t))) {
         return false;
       }
     }
-
     return true;
   }
+
   /**
    * Get cross-signing private keys from the local cache.
    *
-   * @returns {Map} A map from key type (string) to private key (Uint8Array)
+   * @returns A map from key type (string) to private key (Uint8Array)
    */
-
-
   async getCrossSigningKeysFromCache() {
     const keys = new Map();
     const cacheCallbacks = this.cacheCallbacks;
     if (!cacheCallbacks) return keys;
-
     for (const type of ["master", "self_signing", "user_signing"]) {
-      const privKey = await cacheCallbacks.getCrossSigningKeyCache(type);
-
+      const privKey = await cacheCallbacks.getCrossSigningKeyCache?.(type);
       if (!privKey) {
         continue;
       }
-
       keys.set(type, privKey);
     }
-
     return keys;
   }
+
   /**
    * Get the ID used to identify the user. This can also be used to test for
    * the existence of a given key type.
    *
-   * @param {string} type The type of key to get the ID of.  One of "master",
+   * @param type - The type of key to get the ID of.  One of "master",
    * "self_signing", or "user_signing".  Defaults to "master".
    *
-   * @return {string} the ID
+   * @returns the ID
    */
-
-
   getId(type = "master") {
     if (!this.keys[type]) return null;
     const keyInfo = this.keys[type];
     return publicKeyFromKeyInfo(keyInfo);
   }
+
   /**
    * Create new cross-signing keys for the given key types. The public keys
    * will be held in this class, while the private keys are passed off to the
    * `saveCrossSigningKeys` application callback.
    *
-   * @param {CrossSigningLevel} level The key types to reset
+   * @param level - The key types to reset
    */
-
-
   async resetKeys(level) {
     if (!this.callbacks.saveCrossSigningKeys) {
       throw new Error("No saveCrossSigningKeys callback supplied");
-    } // If we're resetting the master key, we reset all keys
-
+    }
 
+    // If we're resetting the master key, we reset all keys
     if (level === undefined || level & CrossSigningLevel.MASTER || !this.keys.master) {
       level = CrossSigningLevel.MASTER | CrossSigningLevel.USER_SIGNING | CrossSigningLevel.SELF_SIGNING;
     } else if (level === 0) {
       return;
     }
-
     const privateKeys = {};
     const keys = {};
     let masterSigning;
     let masterPub;
-
     try {
       if (level & CrossSigningLevel.MASTER) {
         masterSigning = new global.Olm.PkSigning();
@@ -301,26 +253,24 @@
         masterPub = masterSigning.init_with_seed(privateKeys.master);
         keys.master = {
           user_id: this.userId,
-          usage: ['master'],
+          usage: ["master"],
           keys: {
-            ['ed25519:' + masterPub]: masterPub
+            ["ed25519:" + masterPub]: masterPub
           }
         };
       } else {
         [masterPub, masterSigning] = await this.getCrossSigningKey("master");
       }
-
       if (level & CrossSigningLevel.SELF_SIGNING) {
         const sskSigning = new global.Olm.PkSigning();
-
         try {
           privateKeys.self_signing = sskSigning.generate_seed();
           const sskPub = sskSigning.init_with_seed(privateKeys.self_signing);
           keys.self_signing = {
             user_id: this.userId,
-            usage: ['self_signing'],
+            usage: ["self_signing"],
             keys: {
-              ['ed25519:' + sskPub]: sskPub
+              ["ed25519:" + sskPub]: sskPub
             }
           };
           (0, _olmlib.pkSign)(keys.self_signing, masterSigning, this.userId, masterPub);
@@ -328,18 +278,16 @@
           sskSigning.free();
         }
       }
-
       if (level & CrossSigningLevel.USER_SIGNING) {
         const uskSigning = new global.Olm.PkSigning();
-
         try {
           privateKeys.user_signing = uskSigning.generate_seed();
           const uskPub = uskSigning.init_with_seed(privateKeys.user_signing);
           keys.user_signing = {
             user_id: this.userId,
-            usage: ['user_signing'],
+            usage: ["user_signing"],
             keys: {
-              ['ed25519:' + uskPub]: uskPub
+              ["ed25519:" + uskPub]: uskPub
             }
           };
           (0, _olmlib.pkSign)(keys.user_signing, masterSigning, this.userId, masterPub);
@@ -347,7 +295,6 @@
           uskSigning.free();
         }
       }
-
       Object.assign(this.keys, keys);
       this.callbacks.saveCrossSigningKeys(privateKeys);
     } finally {
@@ -356,27 +303,21 @@
       }
     }
   }
+
   /**
    * unsets the keys, used when another session has reset the keys, to disable cross-signing
    */
-
-
   clearKeys() {
     this.keys = {};
   }
-
   setKeys(keys) {
     const signingKeys = {};
-
     if (keys.master) {
       if (keys.master.user_id !== this.userId) {
         const error = "Mismatched user ID " + keys.master.user_id + " in master key from " + this.userId;
-
         _logger.logger.error(error);
-
         throw new Error(error);
       }
-
       if (!this.keys.master) {
         // this is the first key we've seen, so first-use is true
         this.firstUse = true;
@@ -384,73 +325,58 @@
         // this is a different key, so first-use is false
         this.firstUse = false;
       } // otherwise, same key, so no change
-
-
       signingKeys.master = keys.master;
     } else if (this.keys.master) {
       signingKeys.master = this.keys.master;
     } else {
       throw new Error("Tried to set cross-signing keys without a master key");
     }
+    const masterKey = publicKeyFromKeyInfo(signingKeys.master);
 
-    const masterKey = publicKeyFromKeyInfo(signingKeys.master); // verify signatures
-
+    // verify signatures
     if (keys.user_signing) {
       if (keys.user_signing.user_id !== this.userId) {
         const error = "Mismatched user ID " + keys.master.user_id + " in user_signing key from " + this.userId;
-
         _logger.logger.error(error);
-
         throw new Error(error);
       }
-
       try {
         (0, _olmlib.pkVerify)(keys.user_signing, masterKey, this.userId);
       } catch (e) {
-        _logger.logger.error("invalid signature on user-signing key"); // FIXME: what do we want to do here?
-
-
+        _logger.logger.error("invalid signature on user-signing key");
+        // FIXME: what do we want to do here?
         throw e;
       }
     }
-
     if (keys.self_signing) {
       if (keys.self_signing.user_id !== this.userId) {
         const error = "Mismatched user ID " + keys.master.user_id + " in self_signing key from " + this.userId;
-
         _logger.logger.error(error);
-
         throw new Error(error);
       }
-
       try {
         (0, _olmlib.pkVerify)(keys.self_signing, masterKey, this.userId);
       } catch (e) {
-        _logger.logger.error("invalid signature on self-signing key"); // FIXME: what do we want to do here?
-
-
+        _logger.logger.error("invalid signature on self-signing key");
+        // FIXME: what do we want to do here?
         throw e;
       }
-    } // if everything checks out, then save the keys
-
+    }
 
+    // if everything checks out, then save the keys
     if (keys.master) {
-      this.keys.master = keys.master; // if the master key is set, then the old self-signing and
-      // user-signing keys are obsolete
-
-      this.keys.self_signing = null;
-      this.keys.user_signing = null;
+      this.keys.master = keys.master;
+      // if the master key is set, then the old self-signing and user-signing keys are obsolete
+      delete this.keys["self_signing"];
+      delete this.keys["user_signing"];
     }
-
     if (keys.self_signing) {
       this.keys.self_signing = keys.self_signing;
     }
-
     if (keys.user_signing) {
       this.keys.user_signing = keys.user_signing;
     }
   }
-
   updateCrossSigningVerifiedBefore(isCrossSigningVerified) {
     // It is critical that this value latches forward from false to true but
     // never back to false to avoid a downgrade attack.
@@ -458,14 +384,11 @@
       this.crossSigningVerifiedBefore = true;
     }
   }
-
   async signObject(data, type) {
     if (!this.keys[type]) {
       throw new Error("Attempted to sign with " + type + " key but no such key present");
     }
-
     const [pubkey, signing] = await this.getCrossSigningKey(type);
-
     try {
       (0, _olmlib.pkSign)(data, signing, this.userId, pubkey);
       return data;
@@ -473,28 +396,21 @@
       signing.free();
     }
   }
-
   async signUser(key) {
     if (!this.keys.user_signing) {
       _logger.logger.info("No user signing key: not signing user");
-
       return;
     }
-
     return this.signObject(key.keys.master, "user_signing");
   }
-
   async signDevice(userId, device) {
     if (userId !== this.userId) {
       throw new Error(`Trying to sign ${userId}'s device; can only sign our own device`);
     }
-
     if (!this.keys.self_signing) {
       _logger.logger.info("No self signing key: not signing device");
-
       return;
     }
-
     return this.signObject({
       algorithms: device.algorithms,
       keys: device.keys,
@@ -502,89 +418,76 @@
       user_id: userId
     }, "self_signing");
   }
+
   /**
    * Check whether a given user is trusted.
    *
-   * @param {CrossSigningInfo} userCrossSigning Cross signing info for user
+   * @param userCrossSigning - Cross signing info for user
    *
-   * @returns {UserTrustLevel}
+   * @returns
    */
-
-
   checkUserTrust(userCrossSigning) {
     // if we're checking our own key, then it's trusted if the master key
     // and self-signing key match
     if (this.userId === userCrossSigning.userId && this.getId() && this.getId() === userCrossSigning.getId() && this.getId("self_signing") && this.getId("self_signing") === userCrossSigning.getId("self_signing")) {
       return new UserTrustLevel(true, true, this.firstUse);
     }
-
     if (!this.keys.user_signing) {
       // If there's no user signing key, they can't possibly be verified.
       // They may be TOFU trusted though.
       return new UserTrustLevel(false, false, userCrossSigning.firstUse);
     }
-
     let userTrusted;
     const userMaster = userCrossSigning.keys.master;
-    const uskId = this.getId('user_signing');
-
+    const uskId = this.getId("user_signing");
     try {
       (0, _olmlib.pkVerify)(userMaster, uskId, this.userId);
       userTrusted = true;
     } catch (e) {
       userTrusted = false;
     }
-
     return new UserTrustLevel(userTrusted, userCrossSigning.crossSigningVerifiedBefore, userCrossSigning.firstUse);
   }
+
   /**
    * Check whether a given device is trusted.
    *
-   * @param {CrossSigningInfo} userCrossSigning Cross signing info for user
-   * @param {module:crypto/deviceinfo} device The device to check
-   * @param {boolean} localTrust Whether the device is trusted locally
-   * @param {boolean} trustCrossSignedDevices Whether we trust cross signed devices
+   * @param userCrossSigning - Cross signing info for user
+   * @param device - The device to check
+   * @param localTrust - Whether the device is trusted locally
+   * @param trustCrossSignedDevices - Whether we trust cross signed devices
    *
-   * @returns {DeviceTrustLevel}
+   * @returns
    */
-
-
   checkDeviceTrust(userCrossSigning, device, localTrust, trustCrossSignedDevices) {
     const userTrust = this.checkUserTrust(userCrossSigning);
     const userSSK = userCrossSigning.keys.self_signing;
-
     if (!userSSK) {
       // if the user has no self-signing key then we cannot make any
       // trust assertions about this device from cross-signing
       return new DeviceTrustLevel(false, false, localTrust, trustCrossSignedDevices);
     }
-
     const deviceObj = deviceToObject(device, userCrossSigning.userId);
-
     try {
       // if we can verify the user's SSK from their master key...
-      (0, _olmlib.pkVerify)(userSSK, userCrossSigning.getId(), userCrossSigning.userId); // ...and this device's key from their SSK...
-
-      (0, _olmlib.pkVerify)(deviceObj, publicKeyFromKeyInfo(userSSK), userCrossSigning.userId); // ...then we trust this device as much as far as we trust the user
-
+      (0, _olmlib.pkVerify)(userSSK, userCrossSigning.getId(), userCrossSigning.userId);
+      // ...and this device's key from their SSK...
+      (0, _olmlib.pkVerify)(deviceObj, publicKeyFromKeyInfo(userSSK), userCrossSigning.userId);
+      // ...then we trust this device as much as far as we trust the user
       return DeviceTrustLevel.fromUserTrustLevel(userTrust, localTrust, trustCrossSignedDevices);
     } catch (e) {
       return new DeviceTrustLevel(false, false, localTrust, trustCrossSignedDevices);
     }
   }
+
   /**
-   * @returns {object} Cache callbacks
+   * @returns Cache callbacks
    */
-
-
   getCacheCallbacks() {
     return this.cacheCallbacks;
   }
-
 }
-
 exports.CrossSigningInfo = CrossSigningInfo;
-
 function deviceToObject(device, userId) {
   return {
     algorithms: device.algorithms,
@@ -594,68 +497,57 @@
     signatures: device.signatures
   };
 }
-
 let CrossSigningLevel;
 /**
  * Represents the ways in which we trust a user
  */
-
 exports.CrossSigningLevel = CrossSigningLevel;
-
 (function (CrossSigningLevel) {
   CrossSigningLevel[CrossSigningLevel["MASTER"] = 4] = "MASTER";
   CrossSigningLevel[CrossSigningLevel["USER_SIGNING"] = 2] = "USER_SIGNING";
   CrossSigningLevel[CrossSigningLevel["SELF_SIGNING"] = 1] = "SELF_SIGNING";
 })(CrossSigningLevel || (exports.CrossSigningLevel = CrossSigningLevel = {}));
-
 class UserTrustLevel {
   constructor(crossSigningVerified, crossSigningVerifiedBefore, tofu) {
     this.crossSigningVerified = crossSigningVerified;
     this.crossSigningVerifiedBefore = crossSigningVerifiedBefore;
     this.tofu = tofu;
   }
+
   /**
-   * @returns {boolean} true if this user is verified via any means
+   * @returns true if this user is verified via any means
    */
-
-
   isVerified() {
     return this.isCrossSigningVerified();
   }
+
   /**
-   * @returns {boolean} true if this user is verified via cross signing
+   * @returns true if this user is verified via cross signing
    */
-
-
   isCrossSigningVerified() {
     return this.crossSigningVerified;
   }
+
   /**
-   * @returns {boolean} true if we ever verified this user before (at least for
+   * @returns true if we ever verified this user before (at least for
    * the history of verifications observed by this device).
    */
-
-
   wasCrossSigningVerified() {
     return this.crossSigningVerifiedBefore;
   }
+
   /**
-   * @returns {boolean} true if this user's key is trusted on first use
+   * @returns true if this user's key is trusted on first use
    */
-
-
   isTofu() {
     return this.tofu;
   }
-
 }
+
 /**
  * Represents the ways in which we trust a device
  */
-
-
 exports.UserTrustLevel = UserTrustLevel;
-
 class DeviceTrustLevel {
   constructor(crossSigningVerified, tofu, localVerified, trustCrossSignedDevices) {
     this.crossSigningVerified = crossSigningVerified;
@@ -663,57 +555,48 @@
     this.localVerified = localVerified;
     this.trustCrossSignedDevices = trustCrossSignedDevices;
   }
-
   static fromUserTrustLevel(userTrustLevel, localVerified, trustCrossSignedDevices) {
     return new DeviceTrustLevel(userTrustLevel.isCrossSigningVerified(), userTrustLevel.isTofu(), localVerified, trustCrossSignedDevices);
   }
+
   /**
-   * @returns {boolean} true if this device is verified via any means
+   * @returns true if this device is verified via any means
    */
-
-
   isVerified() {
     return Boolean(this.isLocallyVerified() || this.trustCrossSignedDevices && this.isCrossSigningVerified());
   }
+
   /**
-   * @returns {boolean} true if this device is verified via cross signing
+   * @returns true if this device is verified via cross signing
    */
-
-
   isCrossSigningVerified() {
     return this.crossSigningVerified;
   }
+
   /**
-   * @returns {boolean} true if this device is verified locally
+   * @returns true if this device is verified locally
    */
-
-
   isLocallyVerified() {
     return this.localVerified;
   }
+
   /**
-   * @returns {boolean} true if this device is trusted from a user's key
+   * @returns true if this device is trusted from a user's key
    * that is trusted on first use
    */
-
-
   isTofu() {
     return this.tofu;
   }
-
 }
-
 exports.DeviceTrustLevel = DeviceTrustLevel;
-
 function createCryptoStoreCacheCallbacks(store, olmDevice) {
   return {
     getCrossSigningKeyCache: async function (type, _expectedPublicKey) {
       const key = await new Promise(resolve => {
-        return store.doTxn('readonly', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
+        return store.doTxn("readonly", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
           store.getSecretStorePrivateKey(txn, resolve, type);
         });
       });
-
       if (key && key.ciphertext) {
         const pickleKey = Buffer.from(olmDevice.pickleKey);
         const decrypted = await (0, _aes.decryptAES)(key, pickleKey, type);
@@ -726,44 +609,40 @@
       if (!(key instanceof Uint8Array)) {
         throw new Error(`storeCrossSigningKeyCache expects Uint8Array, got ${key}`);
       }
-
       const pickleKey = Buffer.from(olmDevice.pickleKey);
       const encryptedKey = await (0, _aes.encryptAES)((0, _olmlib.encodeBase64)(key), pickleKey, type);
-      return store.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
+      return store.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
         store.storeSecretStorePrivateKey(txn, type, encryptedKey);
       });
     }
   };
 }
-
 /**
  * Request cross-signing keys from another device during verification.
  *
- * @param {MatrixClient} baseApis base Matrix API interface
- * @param {string} userId The user ID being verified
- * @param {string} deviceId The device ID being verified
+ * @param baseApis - base Matrix API interface
+ * @param userId - The user ID being verified
+ * @param deviceId - The device ID being verified
  */
-function requestKeysDuringVerification(baseApis, userId, deviceId) {
+async function requestKeysDuringVerification(baseApis, userId, deviceId) {
   // If this is a self-verification, ask the other party for keys
   if (baseApis.getUserId() !== userId) {
     return;
   }
-
-  _logger.logger.log("Cross-signing: Self-verification done; requesting keys"); // This happens asynchronously, and we're not concerned about waiting for
+  _logger.logger.log("Cross-signing: Self-verification done; requesting keys");
+  // This happens asynchronously, and we're not concerned about waiting for
   // it. We return here in order to test.
-
-
   return new Promise((resolve, reject) => {
     const client = baseApis;
-    const original = client.crypto.crossSigningInfo; // We already have all of the infrastructure we need to validate and
+    const original = client.crypto.crossSigningInfo;
+
+    // We already have all of the infrastructure we need to validate and
     // cache cross-signing keys, so instead of replicating that, here we set
     // up callbacks that request them from the other device and call
     // CrossSigningInfo.getCrossSigningKey() to validate/cache
-
     const crossSigning = new CrossSigningInfo(original.userId, {
       getCrossSigningKey: async type => {
         _logger.logger.debug("Cross-signing: requesting secret", type, deviceId);
-
         const {
           promise
         } = client.requestSecret(`m.cross_signing.${type}`, [deviceId]);
@@ -772,43 +651,37 @@
         return Uint8Array.from(decoded);
       }
     }, original.getCacheCallbacks());
-    crossSigning.keys = original.keys; // XXX: get all keys out if we get one key out
+    crossSigning.keys = original.keys;
+
+    // XXX: get all keys out if we get one key out
     // https://github.com/vector-im/element-web/issues/12604
     // then change here to reject on the timeout
     // Requests can be ignored, so don't wait around forever
-
     const timeout = new Promise(resolve => {
       setTimeout(resolve, KEY_REQUEST_TIMEOUT_MS, new Error("Timeout"));
-    }); // also request and cache the key backup key
+    });
 
+    // also request and cache the key backup key
     const backupKeyPromise = (async () => {
       const cachedKey = await client.crypto.getSessionBackupPrivateKey();
-
       if (!cachedKey) {
         _logger.logger.info("No cached backup key found. Requesting...");
-
-        const secretReq = client.requestSecret('m.megolm_backup.v1', [deviceId]);
+        const secretReq = client.requestSecret("m.megolm_backup.v1", [deviceId]);
         const base64Key = await secretReq.promise;
-
         _logger.logger.info("Got key backup key, decoding...");
-
         const decodedKey = (0, _olmlib.decodeBase64)(base64Key);
-
         _logger.logger.info("Decoded backup key, storing...");
-
         await client.crypto.storeSessionBackupPrivateKey(Uint8Array.from(decodedKey));
-
         _logger.logger.info("Backup key stored. Starting backup restore...");
-
-        const backupInfo = await client.getKeyBackupVersion(); // no need to await for this - just let it go in the bg
-
+        const backupInfo = await client.getKeyBackupVersion();
+        // no need to await for this - just let it go in the bg
         client.restoreKeyBackupWithCache(undefined, undefined, backupInfo).then(() => {
           _logger.logger.info("Backup restored.");
         });
       }
-    })(); // We call getCrossSigningKey() for its side-effects
-
+    })();
 
+    // We call getCrossSigningKey() for its side-effects
     return Promise.race([Promise.all([crossSigning.getCrossSigningKey("master"), crossSigning.getCrossSigningKey("self_signing"), crossSigning.getCrossSigningKey("user_signing"), backupKeyPromise]), timeout]).then(resolve, reject);
   }).catch(e => {
     _logger.logger.warn("Cross-signing: failure while requesting keys:", e);
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/crypto.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/crypto.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/crypto.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/crypto.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,60 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.crypto = exports.TextEncoder = void 0;
+exports.setCrypto = setCrypto;
+exports.setTextEncoder = setTextEncoder;
+exports.subtleCrypto = void 0;
+var _logger = require("../logger");
+/*
+Copyright 2022 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+let crypto = global.window?.crypto;
+exports.crypto = crypto;
+let subtleCrypto = global.window?.crypto?.subtle ?? global.window?.crypto?.webkitSubtle;
+exports.subtleCrypto = subtleCrypto;
+let TextEncoder = global.window?.TextEncoder;
+
+/* eslint-disable @typescript-eslint/no-var-requires */
+exports.TextEncoder = TextEncoder;
+if (!crypto) {
+  try {
+    exports.crypto = crypto = require("crypto").webcrypto;
+  } catch (e) {
+    _logger.logger.error("Failed to load webcrypto", e);
+  }
+}
+if (!subtleCrypto) {
+  exports.subtleCrypto = subtleCrypto = crypto?.subtle;
+}
+if (!TextEncoder) {
+  try {
+    exports.TextEncoder = TextEncoder = require("util").TextEncoder;
+  } catch (e) {
+    _logger.logger.error("Failed to load TextEncoder util", e);
+  }
+}
+/* eslint-enable @typescript-eslint/no-var-requires */
+
+function setCrypto(_crypto) {
+  exports.crypto = crypto = _crypto;
+  exports.subtleCrypto = subtleCrypto = _crypto.subtle ?? _crypto.webkitSubtle;
+}
+function setTextEncoder(_TextEncoder) {
+  exports.TextEncoder = TextEncoder = _TextEncoder;
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/dehydration.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/dehydration.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/dehydration.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/dehydration.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,46 +4,31 @@
   value: true
 });
 exports.DehydrationManager = exports.DEHYDRATION_ALGORITHM = void 0;
-
 var _anotherJson = _interopRequireDefault(require("another-json"));
-
 var _olmlib = require("./olmlib");
-
 var _indexeddbCryptoStore = require("../crypto/store/indexeddb-crypto-store");
-
 var _aes = require("./aes");
-
 var _logger = require("../logger");
-
 var _httpApi = require("../http-api");
-
 function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 const DEHYDRATION_ALGORITHM = "org.matrix.msc2697.v1.olm.libolm_pickle";
 exports.DEHYDRATION_ALGORITHM = DEHYDRATION_ALGORITHM;
 const oneweek = 7 * 24 * 60 * 60 * 1000;
-
 class DehydrationManager {
   constructor(crypto) {
     this.crypto = crypto;
-
     _defineProperty(this, "inProgress", false);
-
     _defineProperty(this, "timeoutId", void 0);
-
     _defineProperty(this, "key", void 0);
-
     _defineProperty(this, "keyInfo", void 0);
-
     _defineProperty(this, "deviceDisplayName", void 0);
-
     this.getDehydrationKeyFromCache();
   }
-
   getDehydrationKeyFromCache() {
-    return this.crypto.cryptoStore.doTxn('readonly', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
+    return this.crypto.cryptoStore.doTxn("readonly", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
       this.crypto.cryptoStore.getSecretStorePrivateKey(txn, async result => {
         if (result) {
           const {
@@ -64,77 +49,66 @@
       }, "dehydration");
     });
   }
-  /** set the key, and queue periodic dehydration to the server in the background */
-
 
-  async setKeyAndQueueDehydration(key, keyInfo = {}, deviceDisplayName = undefined) {
+  /** set the key, and queue periodic dehydration to the server in the background */
+  async setKeyAndQueueDehydration(key, keyInfo = {}, deviceDisplayName) {
     const matches = await this.setKey(key, keyInfo, deviceDisplayName);
-
     if (!matches) {
       // start dehydration in the background
       this.dehydrateDevice();
     }
   }
-
-  async setKey(key, keyInfo = {}, deviceDisplayName = undefined) {
+  async setKey(key, keyInfo = {}, deviceDisplayName) {
     if (!key) {
       // unsetting the key -- cancel any pending dehydration task
       if (this.timeoutId) {
         global.clearTimeout(this.timeoutId);
         this.timeoutId = undefined;
-      } // clear storage
-
-
-      await this.crypto.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
+      }
+      // clear storage
+      await this.crypto.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
         this.crypto.cryptoStore.storeSecretStorePrivateKey(txn, "dehydration", null);
       });
       this.key = undefined;
       this.keyInfo = undefined;
       return;
-    } // Check to see if it's the same key as before.  If it's different,
+    }
+
+    // Check to see if it's the same key as before.  If it's different,
     // dehydrate a new device.  If it's the same, we can keep the same
     // device.  (Assume that keyInfo and deviceDisplayName will be the
     // same if the key is the same.)
-
-
-    let matches = this.key && key.length == this.key.length;
-
+    let matches = !!this.key && key.length == this.key.length;
     for (let i = 0; matches && i < key.length; i++) {
       if (key[i] != this.key[i]) {
         matches = false;
       }
     }
-
     if (!matches) {
       this.key = key;
       this.keyInfo = keyInfo;
       this.deviceDisplayName = deviceDisplayName;
     }
-
     return matches;
   }
-  /** returns the device id of the newly created dehydrated device */
-
 
+  /** returns the device id of the newly created dehydrated device */
   async dehydrateDevice() {
     if (this.inProgress) {
       _logger.logger.log("Dehydration already in progress -- not starting new dehydration");
-
       return;
     }
-
     this.inProgress = true;
-
     if (this.timeoutId) {
       global.clearTimeout(this.timeoutId);
       this.timeoutId = undefined;
     }
-
     try {
-      const pickleKey = Buffer.from(this.crypto.olmDevice.pickleKey); // update the crypto store with the timestamp
+      const pickleKey = Buffer.from(this.crypto.olmDevice.pickleKey);
 
+      // update the crypto store with the timestamp
       const key = await (0, _aes.encryptAES)((0, _olmlib.encodeBase64)(this.key), pickleKey, DEHYDRATION_ALGORITHM);
-      await this.crypto.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
+      await this.crypto.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
         this.crypto.cryptoStore.storeSecretStorePrivateKey(txn, "dehydration", {
           keyInfo: this.keyInfo,
           key,
@@ -142,47 +116,41 @@
           time: Date.now()
         });
       });
-
       _logger.logger.log("Attempting to dehydrate device");
-
-      _logger.logger.log("Creating account"); // create the account and all the necessary keys
-
-
+      _logger.logger.log("Creating account");
+      // create the account and all the necessary keys
       const account = new global.Olm.Account();
       account.create();
       const e2eKeys = JSON.parse(account.identity_keys());
-      const maxKeys = account.max_number_of_one_time_keys(); // FIXME: generate in small batches?
-
+      const maxKeys = account.max_number_of_one_time_keys();
+      // FIXME: generate in small batches?
       account.generate_one_time_keys(maxKeys / 2);
       account.generate_fallback_key();
       const otks = JSON.parse(account.one_time_keys());
       const fallbacks = JSON.parse(account.fallback_key());
-      account.mark_keys_as_published(); // dehydrate the account and store it on the server
+      account.mark_keys_as_published();
 
+      // dehydrate the account and store it on the server
       const pickledAccount = account.pickle(new Uint8Array(this.key));
       const deviceData = {
         algorithm: DEHYDRATION_ALGORITHM,
         account: pickledAccount
       };
-
       if (this.keyInfo.passphrase) {
         deviceData.passphrase = this.keyInfo.passphrase;
       }
-
-      _logger.logger.log("Uploading account to server"); // eslint-disable-next-line camelcase
-
-
-      const dehydrateResult = await this.crypto.baseApis.http.authedRequest(undefined, _httpApi.Method.Put, "/dehydrated_device", undefined, {
+      _logger.logger.log("Uploading account to server");
+      // eslint-disable-next-line camelcase
+      const dehydrateResult = await this.crypto.baseApis.http.authedRequest(_httpApi.Method.Put, "/dehydrated_device", undefined, {
         device_data: deviceData,
         initial_device_display_name: this.deviceDisplayName
       }, {
         prefix: "/_matrix/client/unstable/org.matrix.msc2697.v2"
-      }); // send the keys to the server
+      });
 
+      // send the keys to the server
       const deviceId = dehydrateResult.device_id;
-
       _logger.logger.log("Preparing device keys", deviceId);
-
       const deviceKeys = {
         algorithms: this.crypto.supportedAlgorithms,
         device_id: deviceId,
@@ -198,15 +166,11 @@
           [`ed25519:${deviceId}`]: deviceSignature
         }
       };
-
       if (this.crypto.crossSigningInfo.getId("self_signing")) {
         await this.crypto.crossSigningInfo.signObject(deviceKeys, "self_signing");
       }
-
       _logger.logger.log("Preparing one-time keys");
-
       const oneTimeKeys = {};
-
       for (const [keyId, key] of Object.entries(otks.curve25519)) {
         const k = {
           key
@@ -219,11 +183,8 @@
         };
         oneTimeKeys[`signed_curve25519:${keyId}`] = k;
       }
-
       _logger.logger.log("Preparing fallback keys");
-
       const fallbackKeys = {};
-
       for (const [keyId, key] of Object.entries(fallbacks.curve25519)) {
         const k = {
           key,
@@ -237,32 +198,26 @@
         };
         fallbackKeys[`signed_curve25519:${keyId}`] = k;
       }
-
       _logger.logger.log("Uploading keys to server");
-
-      await this.crypto.baseApis.http.authedRequest(undefined, _httpApi.Method.Post, "/keys/upload/" + encodeURI(deviceId), undefined, {
+      await this.crypto.baseApis.http.authedRequest(_httpApi.Method.Post, "/keys/upload/" + encodeURI(deviceId), undefined, {
         "device_keys": deviceKeys,
         "one_time_keys": oneTimeKeys,
         "org.matrix.msc2732.fallback_keys": fallbackKeys
       });
+      _logger.logger.log("Done dehydrating");
 
-      _logger.logger.log("Done dehydrating"); // dehydrate again in a week
-
-
+      // dehydrate again in a week
       this.timeoutId = global.setTimeout(this.dehydrateDevice.bind(this), oneweek);
       return deviceId;
     } finally {
       this.inProgress = false;
     }
   }
-
   stop() {
     if (this.timeoutId) {
       global.clearTimeout(this.timeoutId);
       this.timeoutId = undefined;
     }
   }
-
 }
-
 exports.DehydrationManager = DehydrationManager;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/deviceinfo.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/deviceinfo.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/deviceinfo.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/deviceinfo.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,9 +4,9 @@
   value: true
 });
 exports.DeviceInfo = void 0;
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /*
 Copyright 2016 - 2021 The Matrix.org Foundation C.I.C.
 
@@ -22,89 +22,52 @@
 See the License for the specific language governing permissions and
 limitations under the License.
 */
-
-/**
- * @module crypto/deviceinfo
- */
 var DeviceVerification;
 /**
-  * Information about a user's device
-  *
-  * @constructor
-  * @alias module:crypto/deviceinfo
-  *
-  * @property {string} deviceId the ID of this device
-  *
-  * @property {string[]} algorithms list of algorithms supported by this device
-  *
-  * @property {Object.<string,string>} keys a map from
-  *      &lt;key type&gt;:&lt;id&gt; -> &lt;base64-encoded key&gt;>
-  *
-  * @property {module:crypto/deviceinfo.DeviceVerification} verified
-  *     whether the device has been verified/blocked by the user
-  *
-  * @property {boolean} known
-  *     whether the user knows of this device's existence (useful when warning
-  *     the user that a user has added new devices)
-  *
-  * @property {Object} unsigned  additional data from the homeserver
-  *
-  * @param {string} deviceId id of the device
-  */
-
+ * Information about a user's device
+ */
 (function (DeviceVerification) {
   DeviceVerification[DeviceVerification["Blocked"] = -1] = "Blocked";
   DeviceVerification[DeviceVerification["Unverified"] = 0] = "Unverified";
   DeviceVerification[DeviceVerification["Verified"] = 1] = "Verified";
 })(DeviceVerification || (DeviceVerification = {}));
-
 class DeviceInfo {
   /**
    * rehydrate a DeviceInfo from the session store
    *
-   * @param {object} obj  raw object from session store
-   * @param {string} deviceId id of the device
+   * @param obj -  raw object from session store
+   * @param deviceId - id of the device
    *
-   * @return {module:crypto~DeviceInfo} new DeviceInfo
+   * @returns new DeviceInfo
    */
   static fromStorage(obj, deviceId) {
     const res = new DeviceInfo(deviceId);
-
     for (const prop in obj) {
       if (obj.hasOwnProperty(prop)) {
+        // @ts-ignore - this is messy and typescript doesn't like it
         res[prop] = obj[prop];
       }
     }
-
     return res;
   }
   /**
-   * @enum
+   * @param deviceId - id of the device
    */
-
-
   constructor(deviceId) {
     this.deviceId = deviceId;
-
-    _defineProperty(this, "algorithms", void 0);
-
+    _defineProperty(this, "algorithms", []);
     _defineProperty(this, "keys", {});
-
     _defineProperty(this, "verified", DeviceVerification.Unverified);
-
     _defineProperty(this, "known", false);
-
     _defineProperty(this, "unsigned", {});
-
     _defineProperty(this, "signatures", {});
   }
+
   /**
    * Prepare a DeviceInfo for JSON serialisation in the session store
    *
-   * @return {object} deviceinfo with non-serialised members removed
+   * @returns deviceinfo with non-serialised members removed
    */
-
-
   toStorage() {
     return {
       algorithms: this.algorithms,
@@ -115,81 +78,71 @@
       signatures: this.signatures
     };
   }
+
   /**
    * Get the fingerprint for this device (ie, the Ed25519 key)
    *
-   * @return {string} base64-encoded fingerprint of this device
+   * @returns base64-encoded fingerprint of this device
    */
-
-
   getFingerprint() {
     return this.keys["ed25519:" + this.deviceId];
   }
+
   /**
    * Get the identity key for this device (ie, the Curve25519 key)
    *
-   * @return {string} base64-encoded identity key of this device
+   * @returns base64-encoded identity key of this device
    */
-
-
   getIdentityKey() {
     return this.keys["curve25519:" + this.deviceId];
   }
+
   /**
    * Get the configured display name for this device, if any
    *
-   * @return {string?} displayname
+   * @returns displayname
    */
-
-
   getDisplayName() {
     return this.unsigned.device_display_name || null;
   }
+
   /**
    * Returns true if this device is blocked
    *
-   * @return {Boolean} true if blocked
+   * @returns true if blocked
    */
-
-
   isBlocked() {
     return this.verified == DeviceVerification.Blocked;
   }
+
   /**
    * Returns true if this device is verified
    *
-   * @return {Boolean} true if verified
+   * @returns true if verified
    */
-
-
   isVerified() {
     return this.verified == DeviceVerification.Verified;
   }
+
   /**
    * Returns true if this device is unverified
    *
-   * @return {Boolean} true if unverified
+   * @returns true if unverified
    */
-
-
   isUnverified() {
     return this.verified == DeviceVerification.Unverified;
   }
+
   /**
    * Returns true if the user knows about this device's existence
    *
-   * @return {Boolean} true if known
+   * @returns true if known
    */
-
-
   isKnown() {
     return this.known === true;
   }
-
 }
-
 exports.DeviceInfo = DeviceInfo;
-
 _defineProperty(DeviceInfo, "DeviceVerification", {
   VERIFIED: DeviceVerification.Verified,
   UNVERIFIED: DeviceVerification.Unverified,
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/DeviceList.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/DeviceList.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/DeviceList.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/DeviceList.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,29 +4,19 @@
   value: true
 });
 exports.TrackingStatus = exports.DeviceList = void 0;
-
 var _logger = require("../logger");
-
 var _deviceinfo = require("./deviceinfo");
-
 var _CrossSigning = require("./CrossSigning");
-
 var olmlib = _interopRequireWildcard(require("./olmlib"));
-
 var _indexeddbCryptoStore = require("./store/indexeddb-crypto-store");
-
 var _utils = require("../utils");
-
 var _typedEventEmitter = require("../models/typed-event-emitter");
-
 var _index = require("./index");
-
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /* State transition diagram for DeviceList.deviceTrackingStatus
  *
  *                                |
@@ -47,88 +37,75 @@
  *   +----------------------- UP_TO_DATE ------------------------+
  */
 // constants for DeviceList.deviceTrackingStatus
-let TrackingStatus;
+let TrackingStatus; // user-Id → device-Id → DeviceInfo
 exports.TrackingStatus = TrackingStatus;
-
 (function (TrackingStatus) {
   TrackingStatus[TrackingStatus["NotTracked"] = 0] = "NotTracked";
   TrackingStatus[TrackingStatus["PendingDownload"] = 1] = "PendingDownload";
   TrackingStatus[TrackingStatus["DownloadInProgress"] = 2] = "DownloadInProgress";
   TrackingStatus[TrackingStatus["UpToDate"] = 3] = "UpToDate";
 })(TrackingStatus || (exports.TrackingStatus = TrackingStatus = {}));
-
-/**
- * @alias module:crypto/DeviceList
- */
 class DeviceList extends _typedEventEmitter.TypedEventEmitter {
   // map of identity keys to the user who owns it
+
   // which users we are tracking device status for.
   // loaded from storage in load()
+
   // The 'next_batch' sync token at the point the data was written,
   // ie. a token representing the point immediately after the
   // moment represented by the snapshot in the db.
+
   // Set whenever changes are made other than setting the sync token
+
   // Promise resolved when device data is saved
+
   // Function that resolves the save promise
+
   // The time the save is scheduled for
+
   // The timer used to delay the save
+
   // True if we have fetched data from the server or loaded a non-empty
   // set of device data from the store
-  constructor(baseApis, cryptoStore, olmDevice, // Maximum number of user IDs per request to prevent server overload (#1619)
+
+  constructor(baseApis, cryptoStore, olmDevice,
+  // Maximum number of user IDs per request to prevent server overload (#1619)
   keyDownloadChunkSize = 250) {
     super();
     this.cryptoStore = cryptoStore;
     this.keyDownloadChunkSize = keyDownloadChunkSize;
-
     _defineProperty(this, "devices", {});
-
     _defineProperty(this, "crossSigningInfo", {});
-
     _defineProperty(this, "userByIdentityKey", {});
-
     _defineProperty(this, "deviceTrackingStatus", {});
-
     _defineProperty(this, "syncToken", null);
-
-    _defineProperty(this, "keyDownloadsInProgressByUser", {});
-
+    _defineProperty(this, "keyDownloadsInProgressByUser", new Map());
     _defineProperty(this, "dirty", false);
-
     _defineProperty(this, "savePromise", null);
-
     _defineProperty(this, "resolveSavePromise", null);
-
     _defineProperty(this, "savePromiseTime", null);
-
     _defineProperty(this, "saveTimer", null);
-
     _defineProperty(this, "hasFetched", null);
-
     _defineProperty(this, "serialiser", void 0);
-
     this.serialiser = new DeviceListUpdateSerialiser(baseApis, olmDevice, this);
   }
+
   /**
    * Load the device tracking state from storage
    */
-
-
   async load() {
-    await this.cryptoStore.doTxn('readonly', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_DEVICE_DATA], txn => {
+    await this.cryptoStore.doTxn("readonly", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_DEVICE_DATA], txn => {
       this.cryptoStore.getEndToEndDeviceData(txn, deviceData => {
         this.hasFetched = Boolean(deviceData && deviceData.devices);
         this.devices = deviceData ? deviceData.devices : {};
         this.crossSigningInfo = deviceData ? deviceData.crossSigningInfo || {} : {};
         this.deviceTrackingStatus = deviceData ? deviceData.trackingStatus : {};
-        this.syncToken = deviceData ? deviceData.syncToken : null;
+        this.syncToken = deviceData?.syncToken ?? null;
         this.userByIdentityKey = {};
-
         for (const user of Object.keys(this.devices)) {
           const userDevices = this.devices[user];
-
           for (const device of Object.keys(userDevices)) {
-            const idKey = userDevices[device].keys['curve25519:' + device];
-
+            const idKey = userDevices[device].keys["curve25519:" + device];
             if (idKey !== undefined) {
               this.userByIdentityKey[idKey] = user;
             }
@@ -136,7 +113,6 @@
         }
       });
     });
-
     for (const u of Object.keys(this.deviceTrackingStatus)) {
       // if a download was in progress when we got shut down, it isn't any more.
       if (this.deviceTrackingStatus[u] == TrackingStatus.DownloadInProgress) {
@@ -144,12 +120,12 @@
       }
     }
   }
-
   stop() {
     if (this.saveTimer !== null) {
       clearTimeout(this.saveTimer);
     }
   }
+
   /**
    * Save the device tracking state to storage, if any changes are
    * pending other than updating the sync token
@@ -157,85 +133,80 @@
    * The actual save will be delayed by a short amount of time to
    * aggregate multiple writes to the database.
    *
-   * @param {number} delay Time in ms before which the save actually happens.
+   * @param delay - Time in ms before which the save actually happens.
    *     By default, the save is delayed for a short period in order to batch
    *     multiple writes, but this behaviour can be disabled by passing 0.
    *
-   * @return {Promise<boolean>} true if the data was saved, false if
+   * @returns true if the data was saved, false if
    *     it was not (eg. because no changes were pending). The promise
    *     will only resolve once the data is saved, so may take some time
    *     to resolve.
    */
-
-
   async saveIfDirty(delay = 500) {
-    if (!this.dirty) return Promise.resolve(false); // Delay saves for a bit so we can aggregate multiple saves that happen
+    if (!this.dirty) return Promise.resolve(false);
+    // Delay saves for a bit so we can aggregate multiple saves that happen
     // in quick succession (eg. when a whole room's devices are marked as known)
 
     const targetTime = Date.now() + delay;
-
     if (this.savePromiseTime && targetTime < this.savePromiseTime) {
       // There's a save scheduled but for after we would like: cancel
       // it & schedule one for the time we want
       clearTimeout(this.saveTimer);
       this.saveTimer = null;
-      this.savePromiseTime = null; // (but keep the save promise since whatever called save before
+      this.savePromiseTime = null;
+      // (but keep the save promise since whatever called save before
       // will still want to know when the save is done)
     }
 
     let savePromise = this.savePromise;
-
     if (savePromise === null) {
       savePromise = new Promise(resolve => {
         this.resolveSavePromise = resolve;
       });
       this.savePromise = savePromise;
     }
-
     if (this.saveTimer === null) {
       const resolveSavePromise = this.resolveSavePromise;
       this.savePromiseTime = targetTime;
       this.saveTimer = setTimeout(() => {
-        _logger.logger.log('Saving device tracking data', this.syncToken); // null out savePromise now (after the delay but before the write),
+        _logger.logger.log("Saving device tracking data", this.syncToken);
+
+        // null out savePromise now (after the delay but before the write),
         // otherwise we could return the existing promise when the save has
         // actually already happened.
-
-
         this.savePromiseTime = null;
         this.saveTimer = null;
         this.savePromise = null;
         this.resolveSavePromise = null;
-        this.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_DEVICE_DATA], txn => {
+        this.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_DEVICE_DATA], txn => {
           this.cryptoStore.storeEndToEndDeviceData({
             devices: this.devices,
             crossSigningInfo: this.crossSigningInfo,
             trackingStatus: this.deviceTrackingStatus,
-            syncToken: this.syncToken
+            syncToken: this.syncToken ?? undefined
           }, txn);
         }).then(() => {
           // The device list is considered dirty until the write completes.
           this.dirty = false;
-          resolveSavePromise(true);
+          resolveSavePromise?.(true);
         }, err => {
-          _logger.logger.error('Failed to save device tracking data', this.syncToken);
-
+          _logger.logger.error("Failed to save device tracking data", this.syncToken);
           _logger.logger.error(err);
         });
       }, delay);
     }
-
     return savePromise;
   }
+
   /**
    * Gets the sync token last set with setSyncToken
    *
-   * @return {string} The sync token
+   * @returns The sync token
    */
-
-
   getSyncToken() {
     return this.syncToken;
   }
+
   /**
    * Sets the sync token that the app will pass as the 'since' to the /sync
    * endpoint next time it syncs.
@@ -244,237 +215,198 @@
    * those changed will not be synced from the server if a new client starts
    * up with that data.
    *
-   * @param {string} st The sync token
+   * @param st - The sync token
    */
-
-
   setSyncToken(st) {
     this.syncToken = st;
   }
+
   /**
    * Ensures up to date keys for a list of users are stored in the session store,
    * downloading and storing them if they're not (or if forceDownload is
    * true).
-   * @param {Array} userIds The users to fetch.
-   * @param {boolean} forceDownload Always download the keys even if cached.
+   * @param userIds - The users to fetch.
+   * @param forceDownload - Always download the keys even if cached.
    *
-   * @return {Promise} A promise which resolves to a map userId->deviceId->{@link
-   * module:crypto/deviceinfo|DeviceInfo}.
+   * @returns A promise which resolves to a map userId-\>deviceId-\>{@link DeviceInfo}.
    */
-
-
   downloadKeys(userIds, forceDownload) {
     const usersToDownload = [];
     const promises = [];
     userIds.forEach(u => {
       const trackingStatus = this.deviceTrackingStatus[u];
-
-      if (this.keyDownloadsInProgressByUser[u]) {
+      if (this.keyDownloadsInProgressByUser.has(u)) {
         // already a key download in progress/queued for this user; its results
         // will be good enough for us.
         _logger.logger.log(`downloadKeys: already have a download in progress for ` + `${u}: awaiting its result`);
-
-        promises.push(this.keyDownloadsInProgressByUser[u]);
+        promises.push(this.keyDownloadsInProgressByUser.get(u));
       } else if (forceDownload || trackingStatus != TrackingStatus.UpToDate) {
         usersToDownload.push(u);
       }
     });
-
     if (usersToDownload.length != 0) {
       _logger.logger.log("downloadKeys: downloading for", usersToDownload);
-
       const downloadPromise = this.doKeyDownload(usersToDownload);
       promises.push(downloadPromise);
     }
-
     if (promises.length === 0) {
       _logger.logger.log("downloadKeys: already have all necessary keys");
     }
-
     return Promise.all(promises).then(() => {
       return this.getDevicesFromStore(userIds);
     });
   }
+
   /**
    * Get the stored device keys for a list of user ids
    *
-   * @param {string[]} userIds the list of users to list keys for.
+   * @param userIds - the list of users to list keys for.
    *
-   * @return {Object} userId->deviceId->{@link module:crypto/deviceinfo|DeviceInfo}.
+   * @returns userId-\>deviceId-\>{@link DeviceInfo}.
    */
-
-
   getDevicesFromStore(userIds) {
-    const stored = {};
-    userIds.forEach(u => {
-      stored[u] = {};
-      const devices = this.getStoredDevicesForUser(u) || [];
-      devices.forEach(function (dev) {
-        stored[u][dev.deviceId] = dev;
+    const stored = new Map();
+    userIds.forEach(userId => {
+      const deviceMap = new Map();
+      this.getStoredDevicesForUser(userId)?.forEach(function (device) {
+        deviceMap.set(device.deviceId, device);
       });
+      stored.set(userId, deviceMap);
     });
     return stored;
   }
+
   /**
    * Returns a list of all user IDs the DeviceList knows about
    *
-   * @return {array} All known user IDs
+   * @returns All known user IDs
    */
-
-
   getKnownUserIds() {
     return Object.keys(this.devices);
   }
+
   /**
    * Get the stored device keys for a user id
    *
-   * @param {string} userId the user to list keys for.
+   * @param userId - the user to list keys for.
    *
-   * @return {module:crypto/deviceinfo[]|null} list of devices, or null if we haven't
+   * @returns list of devices, or null if we haven't
    * managed to get a list of devices for this user yet.
    */
-
-
   getStoredDevicesForUser(userId) {
     const devs = this.devices[userId];
-
     if (!devs) {
       return null;
     }
-
     const res = [];
-
     for (const deviceId in devs) {
       if (devs.hasOwnProperty(deviceId)) {
         res.push(_deviceinfo.DeviceInfo.fromStorage(devs[deviceId], deviceId));
       }
     }
-
     return res;
   }
+
   /**
    * Get the stored device data for a user, in raw object form
    *
-   * @param {string} userId the user to get data for
+   * @param userId - the user to get data for
    *
-   * @return {Object} deviceId->{object} devices, or undefined if
+   * @returns `deviceId->{object}` devices, or undefined if
    * there is no data for this user.
    */
-
-
   getRawStoredDevicesForUser(userId) {
     return this.devices[userId];
   }
-
   getStoredCrossSigningForUser(userId) {
     if (!this.crossSigningInfo[userId]) return null;
     return _CrossSigning.CrossSigningInfo.fromStorage(this.crossSigningInfo[userId], userId);
   }
-
   storeCrossSigningForUser(userId, info) {
     this.crossSigningInfo[userId] = info;
     this.dirty = true;
   }
+
   /**
    * Get the stored keys for a single device
    *
-   * @param {string} userId
-   * @param {string} deviceId
    *
-   * @return {module:crypto/deviceinfo?} device, or undefined
+   * @returns device, or undefined
    * if we don't know about this device
    */
-
-
   getStoredDevice(userId, deviceId) {
     const devs = this.devices[userId];
-
-    if (!devs || !devs[deviceId]) {
+    if (!devs?.[deviceId]) {
       return undefined;
     }
-
     return _deviceinfo.DeviceInfo.fromStorage(devs[deviceId], deviceId);
   }
+
   /**
    * Get a user ID by one of their device's curve25519 identity key
    *
-   * @param {string} algorithm  encryption algorithm
-   * @param {string} senderKey  curve25519 key to match
+   * @param algorithm -  encryption algorithm
+   * @param senderKey -  curve25519 key to match
    *
-   * @return {string} user ID
+   * @returns user ID
    */
-
-
   getUserByIdentityKey(algorithm, senderKey) {
     if (algorithm !== olmlib.OLM_ALGORITHM && algorithm !== olmlib.MEGOLM_ALGORITHM) {
       // we only deal in olm keys
       return null;
     }
-
     return this.userByIdentityKey[senderKey];
   }
+
   /**
    * Find a device by curve25519 identity key
    *
-   * @param {string} algorithm  encryption algorithm
-   * @param {string} senderKey  curve25519 key to match
-   *
-   * @return {module:crypto/deviceinfo?}
+   * @param algorithm -  encryption algorithm
+   * @param senderKey -  curve25519 key to match
    */
-
-
   getDeviceByIdentityKey(algorithm, senderKey) {
     const userId = this.getUserByIdentityKey(algorithm, senderKey);
-
     if (!userId) {
       return null;
     }
-
     const devices = this.devices[userId];
-
     if (!devices) {
       return null;
     }
-
     for (const deviceId in devices) {
       if (!devices.hasOwnProperty(deviceId)) {
         continue;
       }
-
       const device = devices[deviceId];
-
       for (const keyId in device.keys) {
         if (!device.keys.hasOwnProperty(keyId)) {
           continue;
         }
-
         if (keyId.indexOf("curve25519:") !== 0) {
           continue;
         }
-
         const deviceKey = device.keys[keyId];
-
         if (deviceKey == senderKey) {
           return _deviceinfo.DeviceInfo.fromStorage(device, deviceId);
         }
       }
-    } // doesn't match a known device
-
+    }
 
+    // doesn't match a known device
     return null;
   }
+
   /**
    * Replaces the list of devices for a user with the given device list
    *
-   * @param {string} userId The user ID
-   * @param {Object} devices New device info for user
+   * @param userId - The user ID
+   * @param devices - New device info for user
    */
-
-
   storeDevicesForUser(userId, devices) {
     this.setRawStoredDevicesForUser(userId, devices);
     this.dirty = true;
   }
+
   /**
    * flag the given user for device-list tracking, if they are not already.
    *
@@ -482,10 +414,7 @@
    * will download the device list for the user, and that subsequent calls to
    * invalidateUserDeviceList will trigger more updates.
    *
-   * @param {String} userId
    */
-
-
   startTrackingDeviceList(userId) {
     // sanity-check the userId. This is mostly paranoia, but if synapse
     // can't parse the userId we give it as an mxid, it 500s the whole
@@ -494,19 +423,18 @@
     // refresh request).
     // By checking it is at least a string, we can eliminate a class of
     // silly errors.
-    if (typeof userId !== 'string') {
-      throw new Error('userId must be a string; was ' + userId);
+    if (typeof userId !== "string") {
+      throw new Error("userId must be a string; was " + userId);
     }
-
     if (!this.deviceTrackingStatus[userId]) {
-      _logger.logger.log('Now tracking device list for ' + userId);
-
-      this.deviceTrackingStatus[userId] = TrackingStatus.PendingDownload; // we don't yet persist the tracking status, since there may be a lot
+      _logger.logger.log("Now tracking device list for " + userId);
+      this.deviceTrackingStatus[userId] = TrackingStatus.PendingDownload;
+      // we don't yet persist the tracking status, since there may be a lot
       // of calls; we save all data together once the sync is done
-
       this.dirty = true;
     }
   }
+
   /**
    * Mark the given user as no longer being tracked for device-list updates.
    *
@@ -514,35 +442,31 @@
    * complete; it will just mean that we don't think that we have an up-to-date
    * list for future calls to downloadKeys.
    *
-   * @param {String} userId
    */
-
-
   stopTrackingDeviceList(userId) {
     if (this.deviceTrackingStatus[userId]) {
-      _logger.logger.log('No longer tracking device list for ' + userId);
+      _logger.logger.log("No longer tracking device list for " + userId);
+      this.deviceTrackingStatus[userId] = TrackingStatus.NotTracked;
 
-      this.deviceTrackingStatus[userId] = TrackingStatus.NotTracked; // we don't yet persist the tracking status, since there may be a lot
+      // we don't yet persist the tracking status, since there may be a lot
       // of calls; we save all data together once the sync is done
-
       this.dirty = true;
     }
   }
+
   /**
    * Set all users we're currently tracking to untracked
    *
    * This will flag each user whose devices we are tracking as in need of an
    * update.
    */
-
-
   stopTrackingAllDeviceLists() {
     for (const userId of Object.keys(this.deviceTrackingStatus)) {
       this.deviceTrackingStatus[userId] = TrackingStatus.NotTracked;
     }
-
     this.dirty = true;
   }
+
   /**
    * Mark the cached device list for the given user outdated.
    *
@@ -552,130 +476,113 @@
    * This doesn't actually set off an update, so that several users can be
    * batched together. Call refreshOutdatedDeviceLists() for that.
    *
-   * @param {String} userId
    */
-
-
   invalidateUserDeviceList(userId) {
     if (this.deviceTrackingStatus[userId]) {
       _logger.logger.log("Marking device list outdated for", userId);
+      this.deviceTrackingStatus[userId] = TrackingStatus.PendingDownload;
 
-      this.deviceTrackingStatus[userId] = TrackingStatus.PendingDownload; // we don't yet persist the tracking status, since there may be a lot
+      // we don't yet persist the tracking status, since there may be a lot
       // of calls; we save all data together once the sync is done
-
       this.dirty = true;
     }
   }
+
   /**
    * If we have users who have outdated device lists, start key downloads for them
    *
-   * @returns {Promise} which completes when the download completes; normally there
+   * @returns which completes when the download completes; normally there
    *    is no need to wait for this (it's mostly for the unit tests).
    */
-
-
   refreshOutdatedDeviceLists() {
     this.saveIfDirty();
     const usersToDownload = [];
-
     for (const userId of Object.keys(this.deviceTrackingStatus)) {
       const stat = this.deviceTrackingStatus[userId];
-
       if (stat == TrackingStatus.PendingDownload) {
         usersToDownload.push(userId);
       }
     }
-
     return this.doKeyDownload(usersToDownload);
   }
+
   /**
    * Set the stored device data for a user, in raw object form
    * Used only by internal class DeviceListUpdateSerialiser
    *
-   * @param {string} userId the user to get data for
+   * @param userId - the user to get data for
    *
-   * @param {Object} devices deviceId->{object} the new devices
+   * @param devices - `deviceId->{object}` the new devices
    */
-
-
   setRawStoredDevicesForUser(userId, devices) {
     // remove old devices from userByIdentityKey
     if (this.devices[userId] !== undefined) {
       for (const [deviceId, dev] of Object.entries(this.devices[userId])) {
-        const identityKey = dev.keys['curve25519:' + deviceId];
+        const identityKey = dev.keys["curve25519:" + deviceId];
         delete this.userByIdentityKey[identityKey];
       }
     }
+    this.devices[userId] = devices;
 
-    this.devices[userId] = devices; // add new devices into userByIdentityKey
-
+    // add new devices into userByIdentityKey
     for (const [deviceId, dev] of Object.entries(devices)) {
-      const identityKey = dev.keys['curve25519:' + deviceId];
+      const identityKey = dev.keys["curve25519:" + deviceId];
       this.userByIdentityKey[identityKey] = userId;
     }
   }
-
   setRawStoredCrossSigningForUser(userId, info) {
     this.crossSigningInfo[userId] = info;
   }
+
   /**
    * Fire off download update requests for the given users, and update the
    * device list tracking status for them, and the
    * keyDownloadsInProgressByUser map for them.
    *
-   * @param {String[]} users  list of userIds
+   * @param users -  list of userIds
    *
-   * @return {Promise} resolves when all the users listed have
+   * @returns resolves when all the users listed have
    *     been updated. rejects if there was a problem updating any of the
    *     users.
    */
-
-
   doKeyDownload(users) {
     if (users.length === 0) {
       // nothing to do
       return Promise.resolve();
     }
-
     const prom = this.serialiser.updateDevicesForUsers(users, this.syncToken).then(() => {
       finished(true);
     }, e => {
-      _logger.logger.error('Error downloading keys for ' + users + ":", e);
-
+      _logger.logger.error("Error downloading keys for " + users + ":", e);
       finished(false);
       throw e;
     });
     users.forEach(u => {
-      this.keyDownloadsInProgressByUser[u] = prom;
+      this.keyDownloadsInProgressByUser.set(u, prom);
       const stat = this.deviceTrackingStatus[u];
-
       if (stat == TrackingStatus.PendingDownload) {
         this.deviceTrackingStatus[u] = TrackingStatus.DownloadInProgress;
       }
     });
-
     const finished = success => {
       this.emit(_index.CryptoEvent.WillUpdateDevices, users, !this.hasFetched);
       users.forEach(u => {
-        this.dirty = true; // we may have queued up another download request for this user
+        this.dirty = true;
+
+        // we may have queued up another download request for this user
         // since we started this request. If that happens, we should
         // ignore the completion of the first one.
-
-        if (this.keyDownloadsInProgressByUser[u] !== prom) {
-          _logger.logger.log('Another update in the queue for', u, '- not marking up-to-date');
-
+        if (this.keyDownloadsInProgressByUser.get(u) !== prom) {
+          _logger.logger.log("Another update in the queue for", u, "- not marking up-to-date");
           return;
         }
-
-        delete this.keyDownloadsInProgressByUser[u];
+        this.keyDownloadsInProgressByUser.delete(u);
         const stat = this.deviceTrackingStatus[u];
-
         if (stat == TrackingStatus.DownloadInProgress) {
           if (success) {
             // we didn't get any new invalidations since this download started:
             // this user's device list is now up to date.
             this.deviceTrackingStatus[u] = TrackingStatus.UpToDate;
-
             _logger.logger.log("Device list for", u, "now up to date");
           } else {
             this.deviceTrackingStatus[u] = TrackingStatus.PendingDownload;
@@ -686,11 +593,10 @@
       this.emit(_index.CryptoEvent.DevicesUpdated, users, !this.hasFetched);
       this.hasFetched = true;
     };
-
     return prom;
   }
-
 }
+
 /**
  * Serialises updates to device lists
  *
@@ -700,119 +606,102 @@
  * It currently does this by ensuring only one call to /keys/query happens at a
  * time (and queuing other requests up).
  */
-
-
 exports.DeviceList = DeviceList;
-
 class DeviceListUpdateSerialiser {
   // users which are queued for download
   // userId -> true
+
   // deferred which is resolved when the queued users are downloaded.
   // non-null indicates that we have users queued for download.
+
   // The sync token we send with the requests
 
   /*
-   * @param {object} baseApis Base API object
-   * @param {object} olmDevice The Olm Device
-   * @param {object} deviceList The device list object, the device list to be updated
+   * @param baseApis - Base API object
+   * @param olmDevice - The Olm Device
+   * @param deviceList - The device list object, the device list to be updated
    */
   constructor(baseApis, olmDevice, deviceList) {
     this.baseApis = baseApis;
     this.olmDevice = olmDevice;
     this.deviceList = deviceList;
-
     _defineProperty(this, "downloadInProgress", false);
-
     _defineProperty(this, "keyDownloadsQueuedByUser", {});
-
-    _defineProperty(this, "queuedQueryDeferred", null);
-
-    _defineProperty(this, "syncToken", null);
+    _defineProperty(this, "queuedQueryDeferred", void 0);
+    _defineProperty(this, "syncToken", void 0);
   }
+
   /**
    * Make a key query request for the given users
    *
-   * @param {String[]} users list of user ids
+   * @param users - list of user ids
    *
-   * @param {String} syncToken sync token to pass in the query request, to
+   * @param syncToken - sync token to pass in the query request, to
    *     help the HS give the most recent results
    *
-   * @return {Promise} resolves when all the users listed have
+   * @returns resolves when all the users listed have
    *     been updated. rejects if there was a problem updating any of the
    *     users.
    */
-
-
   updateDevicesForUsers(users, syncToken) {
     users.forEach(u => {
       this.keyDownloadsQueuedByUser[u] = true;
     });
-
     if (!this.queuedQueryDeferred) {
       this.queuedQueryDeferred = (0, _utils.defer)();
-    } // We always take the new sync token and just use the latest one we've
+    }
+
+    // We always take the new sync token and just use the latest one we've
     // been given, since it just needs to be at least as recent as the
     // sync response the device invalidation message arrived in
-
-
     this.syncToken = syncToken;
-
     if (this.downloadInProgress) {
       // just queue up these users
-      _logger.logger.log('Queued key download for', users);
-
+      _logger.logger.log("Queued key download for", users);
       return this.queuedQueryDeferred.promise;
-    } // start a new download.
-
+    }
 
+    // start a new download.
     return this.doQueuedQueries();
   }
-
   doQueuedQueries() {
     if (this.downloadInProgress) {
       throw new Error("DeviceListUpdateSerialiser.doQueuedQueries called with request active");
     }
-
     const downloadUsers = Object.keys(this.keyDownloadsQueuedByUser);
     this.keyDownloadsQueuedByUser = {};
     const deferred = this.queuedQueryDeferred;
-    this.queuedQueryDeferred = null;
-
-    _logger.logger.log('Starting key download for', downloadUsers);
-
+    this.queuedQueryDeferred = undefined;
+    _logger.logger.log("Starting key download for", downloadUsers);
     this.downloadInProgress = true;
     const opts = {};
-
     if (this.syncToken) {
       opts.token = this.syncToken;
     }
-
     const factories = [];
-
     for (let i = 0; i < downloadUsers.length; i += this.deviceList.keyDownloadChunkSize) {
       const userSlice = downloadUsers.slice(i, i + this.deviceList.keyDownloadChunkSize);
       factories.push(() => this.baseApis.downloadKeysForUsers(userSlice, opts));
     }
-
     (0, _utils.chunkPromises)(factories, 3).then(async responses => {
       const dk = Object.assign({}, ...responses.map(res => res.device_keys || {}));
       const masterKeys = Object.assign({}, ...responses.map(res => res.master_keys || {}));
       const ssks = Object.assign({}, ...responses.map(res => res.self_signing_keys || {}));
-      const usks = Object.assign({}, ...responses.map(res => res.user_signing_keys || {})); // yield to other things that want to execute in between users, to
+      const usks = Object.assign({}, ...responses.map(res => res.user_signing_keys || {}));
+
+      // yield to other things that want to execute in between users, to
       // avoid wedging the CPU
       // (https://github.com/vector-im/element-web/issues/3158)
       //
       // of course we ought to do this in a web worker or similar, but
       // this serves as an easy solution for now.
-
       for (const userId of downloadUsers) {
         await (0, _utils.sleep)(5);
-
         try {
           await this.processQueryResponseForUser(userId, dk[userId], {
-            master: masterKeys[userId],
-            self_signing: ssks[userId],
-            user_signing: usks[userId]
+            master: masterKeys?.[userId],
+            self_signing: ssks?.[userId],
+            user_signing: usks?.[userId]
           });
         } catch (e) {
           // log the error but continue, so that one bad key
@@ -821,170 +710,144 @@
         }
       }
     }).then(() => {
-      _logger.logger.log('Completed key download for ' + downloadUsers);
-
+      _logger.logger.log("Completed key download for " + downloadUsers);
       this.downloadInProgress = false;
-      deferred.resolve(); // if we have queued users, fire off another request.
+      deferred?.resolve();
 
+      // if we have queued users, fire off another request.
       if (this.queuedQueryDeferred) {
         this.doQueuedQueries();
       }
     }, e => {
-      _logger.logger.warn('Error downloading keys for ' + downloadUsers + ':', e);
-
+      _logger.logger.warn("Error downloading keys for " + downloadUsers + ":", e);
       this.downloadInProgress = false;
-      deferred.reject(e);
+      deferred?.reject(e);
     });
     return deferred.promise;
   }
-
   async processQueryResponseForUser(userId, dkResponse, crossSigningResponse) {
-    _logger.logger.log('got device keys for ' + userId + ':', dkResponse);
-
-    _logger.logger.log('got cross-signing keys for ' + userId + ':', crossSigningResponse);
-
+    _logger.logger.log("got device keys for " + userId + ":", dkResponse);
+    _logger.logger.log("got cross-signing keys for " + userId + ":", crossSigningResponse);
     {
       // map from deviceid -> deviceinfo for this user
       const userStore = {};
       const devs = this.deviceList.getRawStoredDevicesForUser(userId);
-
       if (devs) {
         Object.keys(devs).forEach(deviceId => {
           const d = _deviceinfo.DeviceInfo.fromStorage(devs[deviceId], deviceId);
-
           userStore[deviceId] = d;
         });
       }
+      await updateStoredDeviceKeysForUser(this.olmDevice, userId, userStore, dkResponse || {}, this.baseApis.getUserId(), this.baseApis.deviceId);
 
-      await updateStoredDeviceKeysForUser(this.olmDevice, userId, userStore, dkResponse || {}, this.baseApis.getUserId(), this.baseApis.deviceId); // put the updates into the object that will be returned as our results
-
+      // put the updates into the object that will be returned as our results
       const storage = {};
       Object.keys(userStore).forEach(deviceId => {
         storage[deviceId] = userStore[deviceId].toStorage();
       });
       this.deviceList.setRawStoredDevicesForUser(userId, storage);
-    } // now do the same for the cross-signing keys
+    }
 
+    // now do the same for the cross-signing keys
     {
       // FIXME: should we be ignoring empty cross-signing responses, or
       // should we be dropping the keys?
       if (crossSigningResponse && (crossSigningResponse.master || crossSigningResponse.self_signing || crossSigningResponse.user_signing)) {
         const crossSigning = this.deviceList.getStoredCrossSigningForUser(userId) || new _CrossSigning.CrossSigningInfo(userId);
         crossSigning.setKeys(crossSigningResponse);
-        this.deviceList.setRawStoredCrossSigningForUser(userId, crossSigning.toStorage()); // NB. Unlike most events in the js-sdk, this one is internal to the
-        // js-sdk and is not re-emitted
+        this.deviceList.setRawStoredCrossSigningForUser(userId, crossSigning.toStorage());
 
+        // NB. Unlike most events in the js-sdk, this one is internal to the
+        // js-sdk and is not re-emitted
         this.deviceList.emit(_index.CryptoEvent.UserCrossSigningUpdated, userId);
       }
     }
   }
-
 }
-
 async function updateStoredDeviceKeysForUser(olmDevice, userId, userStore, userResult, localUserId, localDeviceId) {
-  let updated = false; // remove any devices in the store which aren't in the response
+  let updated = false;
 
+  // remove any devices in the store which aren't in the response
   for (const deviceId in userStore) {
     if (!userStore.hasOwnProperty(deviceId)) {
       continue;
     }
-
     if (!(deviceId in userResult)) {
       if (userId === localUserId && deviceId === localDeviceId) {
         _logger.logger.warn(`Local device ${deviceId} missing from sync, skipping removal`);
-
         continue;
       }
-
       _logger.logger.log("Device " + userId + ":" + deviceId + " has been removed");
-
       delete userStore[deviceId];
       updated = true;
     }
   }
-
   for (const deviceId in userResult) {
     if (!userResult.hasOwnProperty(deviceId)) {
       continue;
     }
+    const deviceResult = userResult[deviceId];
 
-    const deviceResult = userResult[deviceId]; // check that the user_id and device_id in the response object are
+    // check that the user_id and device_id in the response object are
     // correct
-
     if (deviceResult.user_id !== userId) {
       _logger.logger.warn("Mismatched user_id " + deviceResult.user_id + " in keys from " + userId + ":" + deviceId);
-
       continue;
     }
-
     if (deviceResult.device_id !== deviceId) {
       _logger.logger.warn("Mismatched device_id " + deviceResult.device_id + " in keys from " + userId + ":" + deviceId);
-
       continue;
     }
-
     if (await storeDeviceKeys(olmDevice, userStore, deviceResult)) {
       updated = true;
     }
   }
-
   return updated;
 }
+
 /*
  * Process a device in a /query response, and add it to the userStore
  *
  * returns (a promise for) true if a change was made, else false
  */
-
-
 async function storeDeviceKeys(olmDevice, userStore, deviceResult) {
   if (!deviceResult.keys) {
     // no keys?
     return false;
   }
-
   const deviceId = deviceResult.device_id;
   const userId = deviceResult.user_id;
   const signKeyId = "ed25519:" + deviceId;
   const signKey = deviceResult.keys[signKeyId];
-
   if (!signKey) {
     _logger.logger.warn("Device " + userId + ":" + deviceId + " has no ed25519 key");
-
     return false;
   }
-
   const unsigned = deviceResult.unsigned || {};
   const signatures = deviceResult.signatures || {};
-
   try {
     await olmlib.verifySignature(olmDevice, deviceResult, userId, deviceId, signKey);
   } catch (e) {
     _logger.logger.warn("Unable to verify signature on device " + userId + ":" + deviceId + ":" + e);
-
     return false;
-  } // DeviceInfo
-
+  }
 
+  // DeviceInfo
   let deviceStore;
-
   if (deviceId in userStore) {
     // already have this device.
     deviceStore = userStore[deviceId];
-
     if (deviceStore.getFingerprint() != signKey) {
       // this should only happen if the list has been MITMed; we are
       // best off sticking with the original keys.
       //
       // Should we warn the user about it somehow?
       _logger.logger.warn("Ed25519 key for device " + userId + ":" + deviceId + " has changed");
-
       return false;
     }
   } else {
     userStore[deviceId] = deviceStore = new _deviceinfo.DeviceInfo(deviceId);
   }
-
   deviceStore.keys = deviceResult.keys || {};
   deviceStore.algorithms = deviceResult.algorithms || [];
   deviceStore.unsigned = unsigned;
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/EncryptionSetup.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/EncryptionSetup.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/EncryptionSetup.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/EncryptionSetup.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,23 +4,16 @@
   value: true
 });
 exports.EncryptionSetupOperation = exports.EncryptionSetupBuilder = void 0;
-
 var _logger = require("../logger");
-
 var _event = require("../models/event");
-
 var _CrossSigning = require("./CrossSigning");
-
 var _indexeddbCryptoStore = require("./store/indexeddb-crypto-store");
-
 var _httpApi = require("../http-api");
-
-var _matrix = require("../matrix");
-
+var _client = require("../client");
 var _typedEventEmitter = require("../models/typed-event-emitter");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /**
  * Builds an EncryptionSetupOperation by calling any of the add.. methods.
  * Once done, `buildOperation()` can be called which allows to apply to operation.
@@ -32,163 +25,123 @@
  */
 class EncryptionSetupBuilder {
   /**
-   * @param {Object.<String, MatrixEvent>} accountData pre-existing account data, will only be read, not written.
-   * @param {CryptoCallbacks} delegateCryptoCallbacks crypto callbacks to delegate to if the key isn't in cache yet
+   * @param accountData - pre-existing account data, will only be read, not written.
+   * @param delegateCryptoCallbacks - crypto callbacks to delegate to if the key isn't in cache yet
    */
   constructor(accountData, delegateCryptoCallbacks) {
     _defineProperty(this, "accountDataClientAdapter", void 0);
-
     _defineProperty(this, "crossSigningCallbacks", void 0);
-
     _defineProperty(this, "ssssCryptoCallbacks", void 0);
-
-    _defineProperty(this, "crossSigningKeys", null);
-
-    _defineProperty(this, "keySignatures", null);
-
-    _defineProperty(this, "keyBackupInfo", null);
-
+    _defineProperty(this, "crossSigningKeys", void 0);
+    _defineProperty(this, "keySignatures", void 0);
+    _defineProperty(this, "keyBackupInfo", void 0);
     _defineProperty(this, "sessionBackupPrivateKey", void 0);
-
     this.accountDataClientAdapter = new AccountDataClientAdapter(accountData);
     this.crossSigningCallbacks = new CrossSigningCallbacks();
     this.ssssCryptoCallbacks = new SSSSCryptoCallbacks(delegateCryptoCallbacks);
   }
+
   /**
    * Adds new cross-signing public keys
    *
-   * @param {function} authUpload Function called to await an interactive auth
+   * @param authUpload - Function called to await an interactive auth
    * flow when uploading device signing keys.
    * Args:
-   *     {function} A function that makes the request requiring auth. Receives
+   *     A function that makes the request requiring auth. Receives
    *     the auth data as an object. Can be called multiple times, first with
    *     an empty authDict, to obtain the flows.
-   * @param {Object} keys the new keys
+   * @param keys - the new keys
    */
-
-
   addCrossSigningKeys(authUpload, keys) {
     this.crossSigningKeys = {
       authUpload,
       keys
     };
   }
+
   /**
    * Adds the key backup info to be updated on the server
    *
    * Used either to create a new key backup, or add signatures
    * from the new MSK.
    *
-   * @param {Object} keyBackupInfo as received from/sent to the server
+   * @param keyBackupInfo - as received from/sent to the server
    */
-
-
   addSessionBackup(keyBackupInfo) {
     this.keyBackupInfo = keyBackupInfo;
   }
+
   /**
    * Adds the session backup private key to be updated in the local cache
    *
    * Used after fixing the format of the key
    *
-   * @param {Uint8Array} privateKey
    */
-
-
   addSessionBackupPrivateKeyToCache(privateKey) {
     this.sessionBackupPrivateKey = privateKey;
   }
+
   /**
    * Add signatures from a given user and device/x-sign key
    * Used to sign the new cross-signing key with the device key
    *
-   * @param {String} userId
-   * @param {String} deviceId
-   * @param {Object} signature
    */
-
-
   addKeySignature(userId, deviceId, signature) {
     if (!this.keySignatures) {
       this.keySignatures = {};
     }
-
     const userSignatures = this.keySignatures[userId] || {};
     this.keySignatures[userId] = userSignatures;
     userSignatures[deviceId] = signature;
   }
-  /**
-   * @param {String} type
-   * @param {Object} content
-   * @return {Promise}
-   */
-
-
   async setAccountData(type, content) {
     await this.accountDataClientAdapter.setAccountData(type, content);
   }
+
   /**
    * builds the operation containing all the parts that have been added to the builder
-   * @return {EncryptionSetupOperation}
    */
-
-
   buildOperation() {
     const accountData = this.accountDataClientAdapter.values;
     return new EncryptionSetupOperation(accountData, this.crossSigningKeys, this.keyBackupInfo, this.keySignatures);
   }
+
   /**
    * Stores the created keys locally.
    *
    * This does not yet store the operation in a way that it can be restored,
    * but that is the idea in the future.
-   *
-   * @param  {Crypto} crypto
-   * @return {Promise}
    */
-
-
   async persist(crypto) {
     // store private keys in cache
     if (this.crossSigningKeys) {
       const cacheCallbacks = (0, _CrossSigning.createCryptoStoreCacheCallbacks)(crypto.cryptoStore, crypto.olmDevice);
-
       for (const type of ["master", "self_signing", "user_signing"]) {
         _logger.logger.log(`Cache ${type} cross-signing private key locally`);
-
         const privateKey = this.crossSigningCallbacks.privateKeys.get(type);
-        await cacheCallbacks.storeCrossSigningKeyCache(type, privateKey);
-      } // store own cross-sign pubkeys as trusted
-
-
-      await crypto.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
+        await cacheCallbacks.storeCrossSigningKeyCache?.(type, privateKey);
+      }
+      // store own cross-sign pubkeys as trusted
+      await crypto.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
         crypto.cryptoStore.storeCrossSigningKeys(txn, this.crossSigningKeys.keys);
       });
-    } // store session backup key in cache
-
-
+    }
+    // store session backup key in cache
     if (this.sessionBackupPrivateKey) {
       await crypto.storeSessionBackupPrivateKey(this.sessionBackupPrivateKey);
     }
   }
-
 }
+
 /**
  * Can be created from EncryptionSetupBuilder, or
  * (in a follow-up PR, not implemented yet) restored from storage, to retry.
  *
  * It does not have knowledge of any private keys, unlike the builder.
  */
-
-
 exports.EncryptionSetupBuilder = EncryptionSetupBuilder;
-
 class EncryptionSetupOperation {
   /**
-   * @param  {Map<String, Object>} accountData
-   * @param  {Object} crossSigningKeys
-   * @param  {Object} keyBackupInfo
-   * @param  {Object} keySignatures
    */
   constructor(accountData, crossSigningKeys, keyBackupInfo, keySignatures) {
     this.accountData = accountData;
@@ -196,221 +149,181 @@
     this.keyBackupInfo = keyBackupInfo;
     this.keySignatures = keySignatures;
   }
+
   /**
    * Runs the (remaining part of, in the future) operation by sending requests to the server.
-   * @param {Crypto} crypto
    */
-
-
   async apply(crypto) {
-    const baseApis = crypto.baseApis; // upload cross-signing keys
-
+    const baseApis = crypto.baseApis;
+    // upload cross-signing keys
     if (this.crossSigningKeys) {
       const keys = {};
-
       for (const [name, key] of Object.entries(this.crossSigningKeys.keys)) {
         keys[name + "_key"] = key;
-      } // We must only call `uploadDeviceSigningKeys` from inside this auth
-      // helper to ensure we properly handle auth errors.
-
+      }
 
-      await this.crossSigningKeys.authUpload(authDict => {
+      // We must only call `uploadDeviceSigningKeys` from inside this auth
+      // helper to ensure we properly handle auth errors.
+      await this.crossSigningKeys.authUpload?.(authDict => {
         return baseApis.uploadDeviceSigningKeys(authDict, keys);
-      }); // pass the new keys to the main instance of our own CrossSigningInfo.
+      });
 
+      // pass the new keys to the main instance of our own CrossSigningInfo.
       crypto.crossSigningInfo.setKeys(this.crossSigningKeys.keys);
-    } // set account data
-
-
+    }
+    // set account data
     if (this.accountData) {
       for (const [type, content] of this.accountData) {
         await baseApis.setAccountData(type, content);
       }
-    } // upload first cross-signing signatures with the new key
+    }
+    // upload first cross-signing signatures with the new key
     // (e.g. signing our own device)
-
-
     if (this.keySignatures) {
       await baseApis.uploadKeySignatures(this.keySignatures);
-    } // need to create/update key backup info
-
-
+    }
+    // need to create/update key backup info
     if (this.keyBackupInfo) {
       if (this.keyBackupInfo.version) {
         // session backup signature
         // The backup is trusted because the user provided the private key.
         // Sign the backup with the cross signing key so the key backup can
         // be trusted via cross-signing.
-        await baseApis.http.authedRequest(undefined, _httpApi.Method.Put, "/room_keys/version/" + this.keyBackupInfo.version, undefined, {
+        await baseApis.http.authedRequest(_httpApi.Method.Put, "/room_keys/version/" + this.keyBackupInfo.version, undefined, {
           algorithm: this.keyBackupInfo.algorithm,
           auth_data: this.keyBackupInfo.auth_data
         }, {
-          prefix: _httpApi.PREFIX_UNSTABLE
+          prefix: _httpApi.ClientPrefix.V3
         });
       } else {
         // add new key backup
-        await baseApis.http.authedRequest(undefined, _httpApi.Method.Post, "/room_keys/version", undefined, this.keyBackupInfo, {
-          prefix: _httpApi.PREFIX_UNSTABLE
+        await baseApis.http.authedRequest(_httpApi.Method.Post, "/room_keys/version", undefined, this.keyBackupInfo, {
+          prefix: _httpApi.ClientPrefix.V3
         });
       }
     }
   }
-
 }
+
 /**
  * Catches account data set by SecretStorage during bootstrapping by
  * implementing the methods related to account data in MatrixClient
  */
-
-
 exports.EncryptionSetupOperation = EncryptionSetupOperation;
-
 class AccountDataClientAdapter extends _typedEventEmitter.TypedEventEmitter {
   //
 
   /**
-   * @param  {Object.<String, MatrixEvent>} existingValues existing account data
+   * @param existingValues - existing account data
    */
   constructor(existingValues) {
     super();
     this.existingValues = existingValues;
-
     _defineProperty(this, "values", new Map());
   }
+
   /**
-   * @param  {String} type
-   * @return {Promise<Object>} the content of the account data
+   * @returns the content of the account data
    */
-
-
   getAccountDataFromServer(type) {
     return Promise.resolve(this.getAccountData(type));
   }
+
   /**
-   * @param  {String} type
-   * @return {Object} the content of the account data
+   * @returns the content of the account data
    */
-
-
   getAccountData(type) {
     const modifiedValue = this.values.get(type);
-
     if (modifiedValue) {
       return modifiedValue;
     }
-
-    const existingValue = this.existingValues[type];
-
+    const existingValue = this.existingValues.get(type);
     if (existingValue) {
       return existingValue.getContent();
     }
-
     return null;
   }
-  /**
-   * @param {String} type
-   * @param {Object} content
-   * @return {Promise}
-   */
-
-
   setAccountData(type, content) {
     const lastEvent = this.values.get(type);
-    this.values.set(type, content); // ensure accountData is emitted on the next tick,
+    this.values.set(type, content);
+    // ensure accountData is emitted on the next tick,
     // as SecretStorage listens for it while calling this method
     // and it seems to rely on this.
-
     return Promise.resolve().then(() => {
       const event = new _event.MatrixEvent({
         type,
         content
       });
-      this.emit(_matrix.ClientEvent.AccountData, event, lastEvent);
+      this.emit(_client.ClientEvent.AccountData, event, lastEvent);
       return {};
     });
   }
-
 }
+
 /**
  * Catches the private cross-signing keys set during bootstrapping
  * by both cache callbacks (see createCryptoStoreCacheCallbacks) as non-cache callbacks.
  * See CrossSigningInfo constructor
  */
-
-
 class CrossSigningCallbacks {
   constructor() {
     _defineProperty(this, "privateKeys", new Map());
   }
-
   // cache callbacks
   getCrossSigningKeyCache(type, expectedPublicKey) {
     return this.getCrossSigningKey(type, expectedPublicKey);
   }
-
   storeCrossSigningKeyCache(type, key) {
     this.privateKeys.set(type, key);
     return Promise.resolve();
-  } // non-cache callbacks
-
+  }
 
+  // non-cache callbacks
   getCrossSigningKey(type, expectedPubkey) {
-    return Promise.resolve(this.privateKeys.get(type));
+    return Promise.resolve(this.privateKeys.get(type) ?? null);
   }
-
   saveCrossSigningKeys(privateKeys) {
     for (const [type, privateKey] of Object.entries(privateKeys)) {
       this.privateKeys.set(type, privateKey);
     }
   }
-
 }
+
 /**
  * Catches the 4S private key set during bootstrapping by implementing
  * the SecretStorage crypto callbacks
  */
-
-
 class SSSSCryptoCallbacks {
   constructor(delegateCryptoCallbacks) {
     this.delegateCryptoCallbacks = delegateCryptoCallbacks;
-
     _defineProperty(this, "privateKeys", new Map());
   }
-
   async getSecretStorageKey({
     keys
   }, name) {
     for (const keyId of Object.keys(keys)) {
       const privateKey = this.privateKeys.get(keyId);
-
       if (privateKey) {
         return [keyId, privateKey];
       }
-    } // if we don't have the key cached yet, ask
+    }
+    // if we don't have the key cached yet, ask
     // for it to the general crypto callbacks and cache it
-
-
     if (this?.delegateCryptoCallbacks?.getSecretStorageKey) {
       const result = await this.delegateCryptoCallbacks.getSecretStorageKey({
         keys
       }, name);
-
       if (result) {
         const [keyId, privateKey] = result;
         this.privateKeys.set(keyId, privateKey);
       }
-
       return result;
     }
-
     return null;
   }
-
   addPrivateKey(keyId, keyInfo, privKey) {
-    this.privateKeys.set(keyId, privKey); // Also pass along to application to cache if it wishes
-
+    this.privateKeys.set(keyId, privKey);
+    // Also pass along to application to cache if it wishes
     this.delegateCryptoCallbacks?.cacheSecretStorageKey?.(keyId, keyInfo, privKey);
   }
-
 }
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/index.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/index.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/index.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/index.js	2023-04-11 06:11:52.000000000 +0000
@@ -7,81 +7,48 @@
 exports.fixBackupKey = fixBackupKey;
 exports.isCryptoAvailable = isCryptoAvailable;
 exports.verificationMethods = void 0;
-
 var _anotherJson = _interopRequireDefault(require("another-json"));
-
+var _uuid = require("uuid");
 var _event = require("../@types/event");
-
 var _ReEmitter = require("../ReEmitter");
-
 var _logger = require("../logger");
-
 var _OlmDevice = require("./OlmDevice");
-
 var olmlib = _interopRequireWildcard(require("./olmlib"));
-
 var _DeviceList = require("./DeviceList");
-
 var _deviceinfo = require("./deviceinfo");
-
 var algorithms = _interopRequireWildcard(require("./algorithms"));
-
 var _CrossSigning = require("./CrossSigning");
-
 var _EncryptionSetup = require("./EncryptionSetup");
-
 var _SecretStorage = require("./SecretStorage");
-
 var _OutgoingRoomKeyRequestManager = require("./OutgoingRoomKeyRequestManager");
-
 var _indexeddbCryptoStore = require("./store/indexeddb-crypto-store");
-
 var _QRCode = require("./verification/QRCode");
-
 var _SAS = require("./verification/SAS");
-
 var _key_passphrase = require("./key_passphrase");
-
 var _recoverykey = require("./recoverykey");
-
 var _VerificationRequest = require("./verification/request/VerificationRequest");
-
 var _InRoomChannel = require("./verification/request/InRoomChannel");
-
 var _ToDeviceChannel = require("./verification/request/ToDeviceChannel");
-
 var _IllegalMethod = require("./verification/IllegalMethod");
-
 var _errors = require("../errors");
-
 var _aes = require("./aes");
-
 var _dehydration = require("./dehydration");
-
 var _backup = require("./backup");
-
 var _room = require("../models/room");
-
 var _roomMember = require("../models/room-member");
-
 var _event2 = require("../models/event");
-
 var _client = require("../client");
-
 var _typedEventEmitter = require("../models/typed-event-emitter");
-
+var _roomState = require("../models/room-state");
+var _utils = require("../utils");
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
 function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; }
-
 function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
-
 function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 const DeviceVerification = _deviceinfo.DeviceInfo.DeviceVerification;
 const defaultVerificationMethods = {
   [_QRCode.ReciprocateQRCode.NAME]: _QRCode.ReciprocateQRCode,
@@ -92,27 +59,22 @@
   [_QRCode.SHOW_QR_CODE_METHOD]: _IllegalMethod.IllegalMethod,
   [_QRCode.SCAN_QR_CODE_METHOD]: _IllegalMethod.IllegalMethod
 };
+
 /**
  * verification method names
  */
 // legacy export identifier
-
 const verificationMethods = {
   RECIPROCATE_QR_CODE: _QRCode.ReciprocateQRCode.NAME,
   SAS: _SAS.SAS.NAME
 };
 exports.verificationMethods = verificationMethods;
-
 function isCryptoAvailable() {
   return Boolean(global.Olm);
 }
-
 const MIN_FORCE_SESSION_INTERVAL_MS = 60 * 60 * 1000;
-
-/* eslint-enable camelcase */
 let CryptoEvent;
 exports.CryptoEvent = CryptoEvent;
-
 (function (CryptoEvent) {
   CryptoEvent["DeviceVerificationChanged"] = "deviceVerificationChanged";
   CryptoEvent["UserTrustStatusChanged"] = "userTrustStatusChanged";
@@ -129,39 +91,33 @@
   CryptoEvent["DevicesUpdated"] = "crypto.devicesUpdated";
   CryptoEvent["KeysChanged"] = "crossSigning.keysChanged";
 })(CryptoEvent || (exports.CryptoEvent = CryptoEvent = {}));
-
 class Crypto extends _typedEventEmitter.TypedEventEmitter {
   /**
-   * @return {string} The version of Olm.
+   * @returns The version of Olm.
    */
   static getOlmVersion() {
     return _OlmDevice.OlmDevice.getOlmVersion();
   }
-
   /**
    * Cryptography bits
    *
    * This module is internal to the js-sdk; the public API is via MatrixClient.
    *
-   * @constructor
-   * @alias module:crypto
-   *
    * @internal
    *
-   * @param {MatrixClient} baseApis base matrix api interface
+   * @param baseApis - base matrix api interface
    *
-   * @param {string} userId The user ID for the local user
+   * @param userId - The user ID for the local user
    *
-   * @param {string} deviceId The identifier for this device.
+   * @param deviceId - The identifier for this device.
    *
-   * @param {Object} clientStore the MatrixClient data store.
+   * @param clientStore - the MatrixClient data store.
    *
-   * @param {module:crypto/store/base~CryptoStore} cryptoStore
-   *    storage for the crypto layer.
+   * @param cryptoStore - storage for the crypto layer.
    *
-   * @param {RoomList} roomList An initialised RoomList object
+   * @param roomList - An initialised RoomList object
    *
-   * @param {Array} verificationMethods Array of verification methods to use.
+   * @param verificationMethods - Array of verification methods to use.
    *    Each element can either be a string from MatrixClient.verificationMethods
    *    or a class that implements a verification method.
    */
@@ -173,67 +129,36 @@
     this.clientStore = clientStore;
     this.cryptoStore = cryptoStore;
     this.roomList = roomList;
-
     _defineProperty(this, "backupManager", void 0);
-
     _defineProperty(this, "crossSigningInfo", void 0);
-
     _defineProperty(this, "olmDevice", void 0);
-
     _defineProperty(this, "deviceList", void 0);
-
     _defineProperty(this, "dehydrationManager", void 0);
-
     _defineProperty(this, "secretStorage", void 0);
-
     _defineProperty(this, "reEmitter", void 0);
-
     _defineProperty(this, "verificationMethods", void 0);
-
     _defineProperty(this, "supportedAlgorithms", void 0);
-
     _defineProperty(this, "outgoingRoomKeyRequestManager", void 0);
-
     _defineProperty(this, "toDeviceVerificationRequests", void 0);
-
     _defineProperty(this, "inRoomVerificationRequests", void 0);
-
     _defineProperty(this, "trustCrossSignedDevices", true);
-
     _defineProperty(this, "lastOneTimeKeyCheck", null);
-
     _defineProperty(this, "oneTimeKeyCheckInProgress", false);
-
     _defineProperty(this, "roomEncryptors", new Map());
-
     _defineProperty(this, "roomDecryptors", new Map());
-
     _defineProperty(this, "deviceKeys", {});
-
     _defineProperty(this, "globalBlacklistUnverifiedDevices", false);
-
     _defineProperty(this, "globalErrorOnUnknownDevices", true);
-
     _defineProperty(this, "receivedRoomKeyRequests", []);
-
     _defineProperty(this, "receivedRoomKeyRequestCancellations", []);
-
     _defineProperty(this, "processingRoomKeyRequests", false);
-
     _defineProperty(this, "lazyLoadMembers", false);
-
     _defineProperty(this, "roomDeviceTrackingState", {});
-
-    _defineProperty(this, "lastNewSessionForced", {});
-
+    _defineProperty(this, "lastNewSessionForced", new _utils.MapWithDefault(() => new _utils.MapWithDefault(() => 0)));
     _defineProperty(this, "sendKeyRequestsImmediately", false);
-
     _defineProperty(this, "oneTimeKeyCount", void 0);
-
     _defineProperty(this, "needsNewFallback", void 0);
-
     _defineProperty(this, "fallbackCleanup", void 0);
-
     _defineProperty(this, "onDeviceListUserCrossSigningUpdated", async userId => {
       if (userId === this.userId) {
         // An update to our own cross-signing key.
@@ -242,7 +167,6 @@
         const seenPubkey = newCrossSigning ? newCrossSigning.getId() : null;
         const currentPubkey = this.crossSigningInfo.getId();
         const changed = currentPubkey !== seenPubkey;
-
         if (currentPubkey && seenPubkey && !changed) {
           // If it's not changed, just make sure everything is up to date
           await this.checkOwnCrossSigningTrust();
@@ -252,28 +176,26 @@
           // on the server for our account. So we clear our own stored cross-signing keys,
           // effectively disabling cross-signing until the user gets verified by the device
           // that reset the keys
-          this.storeTrustedSelfKeys(null); // emit cross-signing has been disabled
-
-          this.emit(CryptoEvent.KeysChanged, {}); // as the trust for our own user has changed,
+          this.storeTrustedSelfKeys(null);
+          // emit cross-signing has been disabled
+          this.emit(CryptoEvent.KeysChanged, {});
+          // as the trust for our own user has changed,
           // also emit an event for this
-
           this.emit(CryptoEvent.UserTrustStatusChanged, this.userId, this.checkUserTrust(userId));
         }
       } else {
-        await this.checkDeviceVerifications(userId); // Update verified before latch using the current state and save the new
-        // latch value in the device list store.
+        await this.checkDeviceVerifications(userId);
 
+        // Update verified before latch using the current state and save the new
+        // latch value in the device list store.
         const crossSigning = this.deviceList.getStoredCrossSigningForUser(userId);
-
         if (crossSigning) {
           crossSigning.updateCrossSigningVerifiedBefore(this.checkUserTrust(userId).isCrossSigningVerified());
           this.deviceList.setRawStoredCrossSigningForUser(userId, crossSigning.toStorage());
         }
-
         this.emit(CryptoEvent.UserTrustStatusChanged, userId, this.checkUserTrust(userId));
       }
     });
-
     _defineProperty(this, "onMembership", (event, member, oldMembership) => {
       try {
         this.onRoomMembership(event, member, oldMembership);
@@ -281,11 +203,9 @@
         _logger.logger.error("Error handling membership change:", e);
       }
     });
-
     _defineProperty(this, "onToDeviceEvent", event => {
       try {
-        _logger.logger.log(`received to_device ${event.getType()} from: ` + `${event.getSender()} id: ${event.getId()}`);
-
+        _logger.logger.log(`received to-device ${event.getType()} from: ` + `${event.getSender()} id: ${event.getContent()[_event.ToDeviceMessageId]}`);
         if (event.getType() == "m.room_key" || event.getType() == "m.forwarded_room_key") {
           this.onRoomKeyEvent(event);
         } else if (event.getType() == "m.room_key_request") {
@@ -303,9 +223,8 @@
         } else if (event.isBeingDecrypted() || event.shouldAttemptDecryption()) {
           if (!event.isBeingDecrypted()) {
             event.attemptDecryption(this);
-          } // once the event has been decrypted, try again
-
-
+          }
+          // once the event has been decrypted, try again
           event.once(_event2.MatrixEventEvent.Decrypted, ev => {
             this.onToDeviceEvent(ev);
           });
@@ -314,27 +233,21 @@
         _logger.logger.error("Error handling toDeviceEvent:", e);
       }
     });
-
     _defineProperty(this, "onTimelineEvent", (event, room, atStart, removed, {
       liveEvent = true
     } = {}) => {
       if (!_InRoomChannel.InRoomChannel.validateEvent(event, this.baseApis)) {
         return;
       }
-
       const createRequest = event => {
         const channel = new _InRoomChannel.InRoomChannel(this.baseApis, event.getRoomId());
         return new _VerificationRequest.VerificationRequest(channel, this.verificationMethods, this.baseApis);
       };
-
       this.handleVerificationEvent(event, this.inRoomVerificationRequests, createRequest, liveEvent);
     });
-
     this.reEmitter = new _ReEmitter.TypedReEmitter(this);
-
     if (verificationMethods) {
       this.verificationMethods = new Map();
-
       for (const method of verificationMethods) {
         if (typeof method === "string") {
           if (defaultVerificationMethods[method]) {
@@ -349,42 +262,37 @@
     } else {
       this.verificationMethods = new Map(Object.entries(defaultVerificationMethods));
     }
-
     this.backupManager = new _backup.BackupManager(baseApis, async () => {
       // try to get key from cache
       const cachedKey = await this.getSessionBackupPrivateKey();
-
       if (cachedKey) {
         return cachedKey;
-      } // try to get key from secret storage
-
+      }
 
+      // try to get key from secret storage
       const storedKey = await this.getSecret("m.megolm_backup.v1");
-
       if (storedKey) {
         // ensure that the key is in the right format.  If not, fix the key and
         // store the fixed version
         const fixedKey = fixBackupKey(storedKey);
-
         if (fixedKey) {
-          const [keyId] = await this.getSecretStorageKey();
-          await this.storeSecret("m.megolm_backup.v1", fixedKey, [keyId]);
+          const keys = await this.getSecretStorageKey();
+          await this.storeSecret("m.megolm_backup.v1", fixedKey, [keys[0]]);
         }
-
         return olmlib.decodeBase64(fixedKey || storedKey);
-      } // try to get key from app
-
+      }
 
+      // try to get key from app
       if (this.baseApis.cryptoCallbacks && this.baseApis.cryptoCallbacks.getBackupKey) {
         return this.baseApis.cryptoCallbacks.getBackupKey();
       }
-
       throw new Error("Unable to get private key");
     });
     this.olmDevice = new _OlmDevice.OlmDevice(cryptoStore);
-    this.deviceList = new _DeviceList.DeviceList(baseApis, cryptoStore, this.olmDevice); // XXX: This isn't removed at any point, but then none of the event listeners
-    // this class sets seem to be removed at any point... :/
+    this.deviceList = new _DeviceList.DeviceList(baseApis, cryptoStore, this.olmDevice);
 
+    // XXX: This isn't removed at any point, but then none of the event listeners
+    // this class sets seem to be removed at any point... :/
     this.deviceList.on(CryptoEvent.UserCrossSigningUpdated, this.onDeviceListUserCrossSigningUpdated);
     this.reEmitter.reEmit(this.deviceList, [CryptoEvent.DevicesUpdated, CryptoEvent.WillUpdateDevices]);
     this.supportedAlgorithms = Array.from(algorithms.DECRYPTION_CLASSES.keys());
@@ -393,62 +301,52 @@
     this.inRoomVerificationRequests = new _InRoomChannel.InRoomRequests();
     const cryptoCallbacks = this.baseApis.cryptoCallbacks || {};
     const cacheCallbacks = (0, _CrossSigning.createCryptoStoreCacheCallbacks)(cryptoStore, this.olmDevice);
-    this.crossSigningInfo = new _CrossSigning.CrossSigningInfo(userId, cryptoCallbacks, cacheCallbacks); // Yes, we pass the client twice here: see SecretStorage
-
+    this.crossSigningInfo = new _CrossSigning.CrossSigningInfo(userId, cryptoCallbacks, cacheCallbacks);
+    // Yes, we pass the client twice here: see SecretStorage
     this.secretStorage = new _SecretStorage.SecretStorage(baseApis, cryptoCallbacks, baseApis);
-    this.dehydrationManager = new _dehydration.DehydrationManager(this); // Assuming no app-supplied callback, default to getting from SSSS.
+    this.dehydrationManager = new _dehydration.DehydrationManager(this);
 
+    // Assuming no app-supplied callback, default to getting from SSSS.
     if (!cryptoCallbacks.getCrossSigningKey && cryptoCallbacks.getSecretStorageKey) {
       cryptoCallbacks.getCrossSigningKey = async type => {
         return _CrossSigning.CrossSigningInfo.getFromSecretStorage(type, this.secretStorage);
       };
     }
   }
+
   /**
    * Initialise the crypto module so that it is ready for use
    *
    * Returns a promise which resolves once the crypto module is ready for use.
    *
-   * @param {Object} opts keyword arguments.
-   * @param {string} opts.exportedOlmDevice (Optional) data from exported device
+   * @param exportedOlmDevice - (Optional) data from exported device
    *     that must be re-created.
    */
-
-
   async init({
     exportedOlmDevice,
     pickleKey
   } = {}) {
     _logger.logger.log("Crypto: initialising Olm...");
-
     await global.Olm.init();
-
     _logger.logger.log(exportedOlmDevice ? "Crypto: initialising Olm device from exported device..." : "Crypto: initialising Olm device...");
-
     await this.olmDevice.init({
       fromExportedDevice: exportedOlmDevice,
       pickleKey
     });
-
     _logger.logger.log("Crypto: loading device list...");
+    await this.deviceList.load();
 
-    await this.deviceList.load(); // build our device keys: these will later be uploaded
-
+    // build our device keys: these will later be uploaded
     this.deviceKeys["ed25519:" + this.deviceId] = this.olmDevice.deviceEd25519Key;
     this.deviceKeys["curve25519:" + this.deviceId] = this.olmDevice.deviceCurve25519Key;
-
     _logger.logger.log("Crypto: fetching own devices...");
-
     let myDevices = this.deviceList.getRawStoredDevicesForUser(this.userId);
-
     if (!myDevices) {
       myDevices = {};
     }
-
     if (!myDevices[this.deviceId]) {
       // add our own deviceinfo to the cryptoStore
       _logger.logger.log("Crypto: adding this device to the store...");
-
       const deviceInfo = {
         keys: this.deviceKeys,
         algorithms: this.supportedAlgorithms,
@@ -459,25 +357,22 @@
       this.deviceList.storeDevicesForUser(this.userId, myDevices);
       this.deviceList.saveIfDirty();
     }
-
-    await this.cryptoStore.doTxn('readonly', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
+    await this.cryptoStore.doTxn("readonly", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
       this.cryptoStore.getCrossSigningKeys(txn, keys => {
         // can be an empty object after resetting cross-signing keys, see storeTrustedSelfKeys
         if (keys && Object.keys(keys).length !== 0) {
           _logger.logger.log("Loaded cross-signing public keys from crypto store");
-
           this.crossSigningInfo.setKeys(keys);
         }
       });
-    }); // make sure we are keeping track of our own devices
+    });
+    // make sure we are keeping track of our own devices
     // (this is important for key backups & things)
-
     this.deviceList.startTrackingDeviceList(this.userId);
-
     _logger.logger.log("Crypto: checking for key backup...");
-
     this.backupManager.checkAndStart();
   }
+
   /**
    * Whether to trust a others users signatures of their devices.
    * If false, devices will only be considered 'verified' if we have
@@ -485,32 +380,27 @@
    *
    * Default: true
    *
-   * @return {boolean} True if trusting cross-signed devices
+   * @returns True if trusting cross-signed devices
    */
-
-
   getCryptoTrustCrossSignedDevices() {
     return this.trustCrossSignedDevices;
   }
+
   /**
    * See getCryptoTrustCrossSignedDevices
     * This may be set before initCrypto() is called to ensure no races occur.
    *
-   * @param {boolean} val True to trust cross-signed devices
+   * @param val - True to trust cross-signed devices
    */
-
-
   setCryptoTrustCrossSignedDevices(val) {
     this.trustCrossSignedDevices = val;
-
     for (const userId of this.deviceList.getKnownUserIds()) {
       const devices = this.deviceList.getRawStoredDevicesForUser(userId);
-
       for (const deviceId of Object.keys(devices)) {
-        const deviceTrust = this.checkDeviceTrust(userId, deviceId); // If the device is locally verified then isVerified() is always true,
+        const deviceTrust = this.checkDeviceTrust(userId, deviceId);
+        // If the device is locally verified then isVerified() is always true,
         // so this will only have caused the value to change if the device is
         // cross-signing verified but not locally verified
-
         if (!deviceTrust.isLocallyVerified() && deviceTrust.isCrossSigningVerified()) {
           const deviceObj = this.deviceList.getStoredDevice(userId, deviceId);
           this.emit(CryptoEvent.DeviceVerificationChanged, userId, deviceId, deviceObj);
@@ -518,24 +408,21 @@
       }
     }
   }
+
   /**
    * Create a recovery key from a user-supplied passphrase.
    *
-   * @param {string} password Passphrase string that can be entered by the user
+   * @param password - Passphrase string that can be entered by the user
    *     when restoring the backup as an alternative to entering the recovery key.
    *     Optional.
-   * @returns {Promise<Object>} Object with public key metadata, encoded private
+   * @returns Object with public key metadata, encoded private
    *     recovery key which should be disposed of after displaying to the user,
    *     and raw private key to avoid round tripping if needed.
    */
-
-
   async createRecoveryKeyFromPassphrase(password) {
     const decryption = new global.Olm.PkDecryption();
-
     try {
       const keyInfo = {};
-
       if (password) {
         const derivation = await (0, _key_passphrase.keyFromPassphrase)(password);
         keyInfo.passphrase = {
@@ -547,7 +434,6 @@
       } else {
         keyInfo.pubkey = decryption.generate_key();
       }
-
       const privateKey = decryption.get_private_key();
       const encodedPrivateKey = (0, _recoverykey.encodeRecoveryKey)(privateKey);
       return {
@@ -556,9 +442,23 @@
         privateKey
       };
     } finally {
-      if (decryption) decryption.free();
+      decryption?.free();
     }
   }
+
+  /**
+   * Checks if the user has previously published cross-signing keys
+   *
+   * This means downloading the devicelist for the user and checking if the list includes
+   * the cross-signing pseudo-device.
+   *
+   * @internal
+   */
+  async userHasCrossSigningKeys() {
+    await this.downloadKeys([this.userId]);
+    return this.deviceList.getStoredCrossSigningForUser(this.userId) !== null;
+  }
+
   /**
    * Checks whether cross signing:
    * - is enabled on this account and trusted by this device
@@ -571,15 +471,14 @@
    *
    * The cross-signing API is currently UNSTABLE and may change without notice.
    *
-   * @return {boolean} True if cross-signing is ready to be used on this device
+   * @returns True if cross-signing is ready to be used on this device
    */
-
-
   async isCrossSigningReady() {
     const publicKeysOnDevice = this.crossSigningInfo.getId();
     const privateKeysExistSomewhere = (await this.crossSigningInfo.isStoredInKeyCache()) || (await this.crossSigningInfo.isStoredInSecretStorage(this.secretStorage));
     return !!(publicKeysOnDevice && privateKeysExistSomewhere);
   }
+
   /**
    * Checks whether secret storage:
    * - is enabled on this account
@@ -593,16 +492,15 @@
    *
    * The Secure Secret Storage API is currently UNSTABLE and may change without notice.
    *
-   * @return {boolean} True if secret storage is ready to be used on this device
+   * @returns True if secret storage is ready to be used on this device
    */
-
-
   async isSecretStorageReady() {
     const secretStorageKeyInAccount = await this.secretStorage.hasKey();
     const privateKeysInStorage = await this.crossSigningInfo.isStoredInSecretStorage(this.secretStorage);
     const sessionBackupInStorage = !this.backupManager.getKeyBackupEnabled() || (await this.baseApis.isKeyBackupKeyStored());
     return !!(secretStorageKeyInAccount && privateKeysInStorage && sessionBackupInStorage);
   }
+
   /**
    * Bootstrap cross-signing by creating keys if needed. If everything is already
    * set up, then no changes are made, so this is safe to run to ensure
@@ -614,50 +512,51 @@
    *
    * The cross-signing API is currently UNSTABLE and may change without notice.
    *
-   * @param {function} opts.authUploadDeviceSigningKeys Function
+   * @param authUploadDeviceSigningKeys - Function
    * called to await an interactive auth flow when uploading device signing keys.
-   * @param {boolean} [opts.setupNewCrossSigning] Optional. Reset even if keys
+   * @param setupNewCrossSigning - Optional. Reset even if keys
    * already exist.
    * Args:
-   *     {function} A function that makes the request requiring auth. Receives the
+   *     A function that makes the request requiring auth. Receives the
    *     auth data as an object. Can be called multiple times, first with an empty
    *     authDict, to obtain the flows.
    */
-
-
   async bootstrapCrossSigning({
     authUploadDeviceSigningKeys,
     setupNewCrossSigning
   } = {}) {
     _logger.logger.log("Bootstrapping cross-signing");
-
     const delegateCryptoCallbacks = this.baseApis.cryptoCallbacks;
     const builder = new _EncryptionSetup.EncryptionSetupBuilder(this.baseApis.store.accountData, delegateCryptoCallbacks);
-    const crossSigningInfo = new _CrossSigning.CrossSigningInfo(this.userId, builder.crossSigningCallbacks, builder.crossSigningCallbacks); // Reset the cross-signing keys
+    const crossSigningInfo = new _CrossSigning.CrossSigningInfo(this.userId, builder.crossSigningCallbacks, builder.crossSigningCallbacks);
 
+    // Reset the cross-signing keys
     const resetCrossSigning = async () => {
-      crossSigningInfo.resetKeys(); // Sign master key with device key
+      crossSigningInfo.resetKeys();
+      // Sign master key with device key
+      await this.signObject(crossSigningInfo.keys.master);
 
-      await this.signObject(crossSigningInfo.keys.master); // Store auth flow helper function, as we need to call it when uploading
+      // Store auth flow helper function, as we need to call it when uploading
       // to ensure we handle auth errors properly.
+      builder.addCrossSigningKeys(authUploadDeviceSigningKeys, crossSigningInfo.keys);
 
-      builder.addCrossSigningKeys(authUploadDeviceSigningKeys, crossSigningInfo.keys); // Cross-sign own device
-
+      // Cross-sign own device
       const device = this.deviceList.getStoredDevice(this.userId, this.deviceId);
       const deviceSignature = await crossSigningInfo.signDevice(this.userId, device);
-      builder.addKeySignature(this.userId, this.deviceId, deviceSignature); // Sign message key backup with cross-signing master key
+      builder.addKeySignature(this.userId, this.deviceId, deviceSignature);
 
+      // Sign message key backup with cross-signing master key
       if (this.backupManager.backupInfo) {
         await crossSigningInfo.signObject(this.backupManager.backupInfo.auth_data, "master");
         builder.addSessionBackup(this.backupManager.backupInfo);
       }
     };
-
     const publicKeysOnDevice = this.crossSigningInfo.getId();
     const privateKeysInCache = await this.crossSigningInfo.isStoredInKeyCache();
     const privateKeysInStorage = await this.crossSigningInfo.isStoredInSecretStorage(this.secretStorage);
-    const privateKeysExistSomewhere = privateKeysInCache || privateKeysInStorage; // Log all relevant state for easier parsing of debug logs.
+    const privateKeysExistSomewhere = privateKeysInCache || privateKeysInStorage;
 
+    // Log all relevant state for easier parsing of debug logs.
     _logger.logger.log({
       setupNewCrossSigning,
       publicKeysOnDevice,
@@ -665,52 +564,45 @@
       privateKeysInStorage,
       privateKeysExistSomewhere
     });
-
     if (!privateKeysExistSomewhere || setupNewCrossSigning) {
-      _logger.logger.log("Cross-signing private keys not found locally or in secret storage, " + "creating new keys"); // If a user has multiple devices, it important to only call bootstrap
+      _logger.logger.log("Cross-signing private keys not found locally or in secret storage, " + "creating new keys");
+      // If a user has multiple devices, it important to only call bootstrap
       // as part of some UI flow (and not silently during startup), as they
       // may have setup cross-signing on a platform which has not saved keys
       // to secret storage, and this would reset them. In such a case, you
       // should prompt the user to verify any existing devices first (and
       // request private keys from those devices) before calling bootstrap.
-
-
       await resetCrossSigning();
     } else if (publicKeysOnDevice && privateKeysInCache) {
       _logger.logger.log("Cross-signing public keys trusted and private keys found locally");
     } else if (privateKeysInStorage) {
       _logger.logger.log("Cross-signing private keys not found locally, but they are available " + "in secret storage, reading storage and caching locally");
-
       await this.checkOwnCrossSigningTrust({
         allowPrivateKeyRequests: true
       });
-    } // Assuming no app-supplied callback, default to storing new private keys in
+    }
+
+    // Assuming no app-supplied callback, default to storing new private keys in
     // secret storage if it exists. If it does not, it is assumed this will be
     // done as part of setting up secret storage later.
-
-
     const crossSigningPrivateKeys = builder.crossSigningCallbacks.privateKeys;
-
     if (crossSigningPrivateKeys.size && !this.baseApis.cryptoCallbacks.saveCrossSigningKeys) {
-      const secretStorage = new _SecretStorage.SecretStorage(builder.accountDataClientAdapter, builder.ssssCryptoCallbacks);
-
+      const secretStorage = new _SecretStorage.SecretStorage(builder.accountDataClientAdapter, builder.ssssCryptoCallbacks, undefined);
       if (await secretStorage.hasKey()) {
-        _logger.logger.log("Storing new cross-signing private keys in secret storage"); // This is writing to in-memory account data in
+        _logger.logger.log("Storing new cross-signing private keys in secret storage");
+        // This is writing to in-memory account data in
         // builder.accountDataClientAdapter so won't fail
-
-
         await _CrossSigning.CrossSigningInfo.storeInSecretStorage(crossSigningPrivateKeys, secretStorage);
       }
     }
-
     const operation = builder.buildOperation();
-    await operation.apply(this); // This persists private keys and public keys as trusted,
+    await operation.apply(this);
+    // This persists private keys and public keys as trusted,
     // only do this if apply succeeded for now as retry isn't in place yet
-
     await builder.persist(this);
-
     _logger.logger.log("Cross-signing ready");
   }
+
   /**
    * Bootstrap Secure Secret Storage if needed by creating a default key. If everything is
    * already set up, then no changes are made, so this is safe to run to ensure secret
@@ -726,28 +618,25 @@
    *
    * The Secure Secret Storage API is currently UNSTABLE and may change without notice.
    *
-   * @param {function} [opts.createSecretStorageKey] Optional. Function
+   * @param createSecretStorageKey - Optional. Function
    * called to await a secret storage key creation flow.
-   * Returns:
-   *     {Promise<Object>} Object with public key metadata, encoded private
+   *     Returns a Promise which resolves to an object with public key metadata, encoded private
    *     recovery key which should be disposed of after displaying to the user,
    *     and raw private key to avoid round tripping if needed.
-   * @param {object} [opts.keyBackupInfo] The current key backup object. If passed,
+   * @param keyBackupInfo - The current key backup object. If passed,
    * the passphrase and recovery key from this backup will be used.
-   * @param {boolean} [opts.setupNewKeyBackup] If true, a new key backup version will be
+   * @param setupNewKeyBackup - If true, a new key backup version will be
    * created and the private key stored in the new SSSS store. Ignored if keyBackupInfo
    * is supplied.
-   * @param {boolean} [opts.setupNewSecretStorage] Optional. Reset even if keys already exist.
-   * @param {func} [opts.getKeyBackupPassphrase] Optional. Function called to get the user's
+   * @param setupNewSecretStorage - Optional. Reset even if keys already exist.
+   * @param getKeyBackupPassphrase - Optional. Function called to get the user's
    *     current key backup passphrase. Should return a promise that resolves with a Buffer
    *     containing the key, or rejects if the key cannot be obtained.
    * Returns:
-   *     {Promise} A promise which resolves to key creation data for
+   *     A promise which resolves to key creation data for
    *     SecretStorage#addKey: an object with `passphrase` etc fields.
    */
   // TODO this does not resolve with what it says it does
-
-
   async bootstrapSecretStorage({
     createSecretStorageKey = async () => ({}),
     keyBackupInfo,
@@ -756,40 +645,36 @@
     getKeyBackupPassphrase
   } = {}) {
     _logger.logger.log("Bootstrapping Secure Secret Storage");
-
     const delegateCryptoCallbacks = this.baseApis.cryptoCallbacks;
     const builder = new _EncryptionSetup.EncryptionSetupBuilder(this.baseApis.store.accountData, delegateCryptoCallbacks);
-    const secretStorage = new _SecretStorage.SecretStorage(builder.accountDataClientAdapter, builder.ssssCryptoCallbacks); // the ID of the new SSSS key, if we create one
+    const secretStorage = new _SecretStorage.SecretStorage(builder.accountDataClientAdapter, builder.ssssCryptoCallbacks, undefined);
 
-    let newKeyId = null; // create a new SSSS key and set it as default
+    // the ID of the new SSSS key, if we create one
+    let newKeyId = null;
 
+    // create a new SSSS key and set it as default
     const createSSSS = async (opts, privateKey) => {
       if (privateKey) {
         opts.key = privateKey;
       }
-
       const {
         keyId,
         keyInfo
       } = await secretStorage.addKey(_SecretStorage.SECRET_STORAGE_ALGORITHM_V1_AES, opts);
-
       if (privateKey) {
         // make the private key available to encrypt 4S secrets
         builder.ssssCryptoCallbacks.addPrivateKey(keyId, keyInfo, privateKey);
       }
-
       await secretStorage.setDefaultKeyId(keyId);
       return keyId;
     };
-
     const ensureCanCheckPassphrase = async (keyId, keyInfo) => {
       if (!keyInfo.mac) {
-        const key = await this.baseApis.cryptoCallbacks.getSecretStorageKey({
+        const key = await this.baseApis.cryptoCallbacks.getSecretStorageKey?.({
           keys: {
             [keyId]: keyInfo
           }
         }, "");
-
         if (key) {
           const privateKey = key[1];
           builder.ssssCryptoCallbacks.addPrivateKey(keyId, keyInfo, privateKey);
@@ -803,12 +688,10 @@
         }
       }
     };
-
     const signKeyBackupWithCrossSigning = async keyBackupAuthData => {
       if (this.crossSigningInfo.getId() && (await this.crossSigningInfo.isStoredInKeyCache("master"))) {
         try {
           _logger.logger.log("Adding cross-signing signature to key backup");
-
           await this.crossSigningInfo.signObject(keyBackupAuthData, "master");
         } catch (e) {
           // This step is not critical (just helpful), so we catch here
@@ -819,11 +702,11 @@
         _logger.logger.warn("Cross-signing keys not available, skipping signature on key backup");
       }
     };
-
     const oldSSSSKey = await this.getSecretStorageKey();
     const [oldKeyId, oldKeyInfo] = oldSSSSKey || [null, null];
-    const storageExists = !setupNewSecretStorage && oldKeyInfo && oldKeyInfo.algorithm === _SecretStorage.SECRET_STORAGE_ALGORITHM_V1_AES; // Log all relevant state for easier parsing of debug logs.
+    const storageExists = !setupNewSecretStorage && oldKeyInfo && oldKeyInfo.algorithm === _SecretStorage.SECRET_STORAGE_ALGORITHM_V1_AES;
 
+    // Log all relevant state for easier parsing of debug logs.
     _logger.logger.log({
       keyBackupInfo,
       setupNewKeyBackup,
@@ -831,18 +714,17 @@
       storageExists,
       oldKeyInfo
     });
-
     if (!storageExists && !keyBackupInfo) {
       // either we don't have anything, or we've been asked to restart
       // from scratch
-      _logger.logger.log("Secret storage does not exist, creating new storage key"); // if we already have a usable default SSSS key and aren't resetting
+      _logger.logger.log("Secret storage does not exist, creating new storage key");
+
+      // if we already have a usable default SSSS key and aren't resetting
       // SSSS just use it. otherwise, create a new one
       // Note: we leave the old SSSS key in place: there could be other
       // secrets using it, in theory. We could move them to the new key but a)
       // that would mean we'd need to prompt for the old passphrase, and b)
       // it's not clear that would be the right thing to do anyway.
-
-
       const {
         keyInfo = {},
         privateKey
@@ -850,14 +732,14 @@
       newKeyId = await createSSSS(keyInfo, privateKey);
     } else if (!storageExists && keyBackupInfo) {
       // we have an existing backup, but no SSSS
-      _logger.logger.log("Secret storage does not exist, using key backup key"); // if we have the backup key already cached, use it; otherwise use the
-      // callback to prompt for the key
+      _logger.logger.log("Secret storage does not exist, using key backup key");
 
+      // if we have the backup key already cached, use it; otherwise use the
+      // callback to prompt for the key
+      const backupKey = (await this.getSessionBackupPrivateKey()) || (await getKeyBackupPassphrase?.());
 
-      const backupKey = (await this.getSessionBackupPrivateKey()) || (await getKeyBackupPassphrase()); // create a new SSSS key and use the backup key as the new SSSS key
-
+      // create a new SSSS key and use the backup key as the new SSSS key
       const opts = {};
-
       if (keyBackupInfo.auth_data.private_key_salt && keyBackupInfo.auth_data.private_key_iterations) {
         // FIXME: ???
         opts.passphrase = {
@@ -867,259 +749,228 @@
           bits: 256
         };
       }
+      newKeyId = await createSSSS(opts, backupKey);
 
-      newKeyId = await createSSSS(opts, backupKey); // store the backup key in secret storage
+      // store the backup key in secret storage
+      await secretStorage.store("m.megolm_backup.v1", olmlib.encodeBase64(backupKey), [newKeyId]);
 
-      await secretStorage.store("m.megolm_backup.v1", olmlib.encodeBase64(backupKey), [newKeyId]); // The backup is trusted because the user provided the private key.
+      // The backup is trusted because the user provided the private key.
       // Sign the backup with the cross-signing key so the key backup can
       // be trusted via cross-signing.
-
       await signKeyBackupWithCrossSigning(keyBackupInfo.auth_data);
       builder.addSessionBackup(keyBackupInfo);
     } else {
       // 4S is already set up
       _logger.logger.log("Secret storage exists");
-
       if (oldKeyInfo && oldKeyInfo.algorithm === _SecretStorage.SECRET_STORAGE_ALGORITHM_V1_AES) {
         // make sure that the default key has the information needed to
         // check the passphrase
         await ensureCanCheckPassphrase(oldKeyId, oldKeyInfo);
       }
-    } // If we have cross-signing private keys cached, store them in secret
-    // storage if they are not there already.
-
+    }
 
+    // If we have cross-signing private keys cached, store them in secret
+    // storage if they are not there already.
     if (!this.baseApis.cryptoCallbacks.saveCrossSigningKeys && (await this.isCrossSigningReady()) && (newKeyId || !(await this.crossSigningInfo.isStoredInSecretStorage(secretStorage)))) {
       _logger.logger.log("Copying cross-signing private keys from cache to secret storage");
-
-      const crossSigningPrivateKeys = await this.crossSigningInfo.getCrossSigningKeysFromCache(); // This is writing to in-memory account data in
+      const crossSigningPrivateKeys = await this.crossSigningInfo.getCrossSigningKeysFromCache();
+      // This is writing to in-memory account data in
       // builder.accountDataClientAdapter so won't fail
-
       await _CrossSigning.CrossSigningInfo.storeInSecretStorage(crossSigningPrivateKeys, secretStorage);
     }
-
     if (setupNewKeyBackup && !keyBackupInfo) {
       _logger.logger.log("Creating new message key backup version");
-
-      const info = await this.baseApis.prepareKeyBackupVersion(null
-      /* random key */
-      , // don't write to secret storage, as it will write to this.secretStorage.
+      const info = await this.baseApis.prepareKeyBackupVersion(null /* random key */,
+      // don't write to secret storage, as it will write to this.secretStorage.
       // Here, we want to capture all the side-effects of bootstrapping,
       // and want to write to the local secretStorage object
       {
         secureSecretStorage: false
-      }); // write the key ourselves to 4S
-
+      });
+      // write the key ourselves to 4S
       const privateKey = (0, _recoverykey.decodeRecoveryKey)(info.recovery_key);
-      await secretStorage.store("m.megolm_backup.v1", olmlib.encodeBase64(privateKey)); // create keyBackupInfo object to add to builder
+      await secretStorage.store("m.megolm_backup.v1", olmlib.encodeBase64(privateKey));
 
+      // create keyBackupInfo object to add to builder
       const data = {
         algorithm: info.algorithm,
         auth_data: info.auth_data
-      }; // Sign with cross-signing master key
+      };
 
-      await signKeyBackupWithCrossSigning(data.auth_data); // sign with the device fingerprint
+      // Sign with cross-signing master key
+      await signKeyBackupWithCrossSigning(data.auth_data);
 
+      // sign with the device fingerprint
       await this.signObject(data.auth_data);
       builder.addSessionBackup(data);
-    } // Cache the session backup key
-
-
-    const sessionBackupKey = await secretStorage.get('m.megolm_backup.v1');
+    }
 
+    // Cache the session backup key
+    const sessionBackupKey = await secretStorage.get("m.megolm_backup.v1");
     if (sessionBackupKey) {
-      _logger.logger.info("Got session backup key from secret storage: caching"); // fix up the backup key if it's in the wrong format, and replace
+      _logger.logger.info("Got session backup key from secret storage: caching");
+      // fix up the backup key if it's in the wrong format, and replace
       // in secret storage
-
-
       const fixedBackupKey = fixBackupKey(sessionBackupKey);
-
       if (fixedBackupKey) {
-        await secretStorage.store("m.megolm_backup.v1", fixedBackupKey, [newKeyId || oldKeyId]);
+        const keyId = newKeyId || oldKeyId;
+        await secretStorage.store("m.megolm_backup.v1", fixedBackupKey, keyId ? [keyId] : null);
       }
-
       const decodedBackupKey = new Uint8Array(olmlib.decodeBase64(fixedBackupKey || sessionBackupKey));
       builder.addSessionBackupPrivateKeyToCache(decodedBackupKey);
     } else if (this.backupManager.getKeyBackupEnabled()) {
       // key backup is enabled but we don't have a session backup key in SSSS: see if we have one in
       // the cache or the user can provide one, and if so, write it to SSSS
-      const backupKey = (await this.getSessionBackupPrivateKey()) || (await getKeyBackupPassphrase());
-
+      const backupKey = (await this.getSessionBackupPrivateKey()) || (await getKeyBackupPassphrase?.());
       if (!backupKey) {
         // This will require user intervention to recover from since we don't have the key
         // backup key anywhere. The user should probably just set up a new key backup and
         // the key for the new backup will be stored. If we hit this scenario in the wild
         // with any frequency, we should do more than just log an error.
         _logger.logger.error("Key backup is enabled but couldn't get key backup key!");
-
         return;
       }
-
       _logger.logger.info("Got session backup key from cache/user that wasn't in SSSS: saving to SSSS");
-
       await secretStorage.store("m.megolm_backup.v1", olmlib.encodeBase64(backupKey));
     }
-
     const operation = builder.buildOperation();
-    await operation.apply(this); // this persists private keys and public keys as trusted,
+    await operation.apply(this);
+    // this persists private keys and public keys as trusted,
     // only do this if apply succeeded for now as retry isn't in place yet
-
     await builder.persist(this);
-
     _logger.logger.log("Secure Secret Storage ready");
   }
-
   addSecretStorageKey(algorithm, opts, keyID) {
     return this.secretStorage.addKey(algorithm, opts, keyID);
   }
-
   hasSecretStorageKey(keyID) {
     return this.secretStorage.hasKey(keyID);
   }
-
   getSecretStorageKey(keyID) {
     return this.secretStorage.getKey(keyID);
   }
-
   storeSecret(name, secret, keys) {
     return this.secretStorage.store(name, secret, keys);
   }
-
   getSecret(name) {
     return this.secretStorage.get(name);
   }
-
   isSecretStored(name) {
     return this.secretStorage.isStored(name);
   }
-
   requestSecret(name, devices) {
     if (!devices) {
       devices = Object.keys(this.deviceList.getRawStoredDevicesForUser(this.userId));
     }
-
     return this.secretStorage.request(name, devices);
   }
-
   getDefaultSecretStorageKeyId() {
     return this.secretStorage.getDefaultKeyId();
   }
-
   setDefaultSecretStorageKeyId(k) {
     return this.secretStorage.setDefaultKeyId(k);
   }
-
   checkSecretStorageKey(key, info) {
     return this.secretStorage.checkKey(key, info);
   }
+
   /**
    * Checks that a given secret storage private key matches a given public key.
    * This can be used by the getSecretStorageKey callback to verify that the
    * private key it is about to supply is the one that was requested.
    *
-   * @param {Uint8Array} privateKey The private key
-   * @param {string} expectedPublicKey The public key
-   * @returns {boolean} true if the key matches, otherwise false
+   * @param privateKey - The private key
+   * @param expectedPublicKey - The public key
+   * @returns true if the key matches, otherwise false
    */
-
-
   checkSecretStoragePrivateKey(privateKey, expectedPublicKey) {
     let decryption = null;
-
     try {
       decryption = new global.Olm.PkDecryption();
-      const gotPubkey = decryption.init_with_private_key(privateKey); // make sure it agrees with the given pubkey
-
+      const gotPubkey = decryption.init_with_private_key(privateKey);
+      // make sure it agrees with the given pubkey
       return gotPubkey === expectedPublicKey;
     } finally {
-      if (decryption) decryption.free();
+      decryption?.free();
     }
   }
+
   /**
    * Fetches the backup private key, if cached
-   * @returns {Promise} the key, if any, or null
+   * @returns the key, if any, or null
    */
-
-
   async getSessionBackupPrivateKey() {
     let key = await new Promise(resolve => {
       // TODO types
-      this.cryptoStore.doTxn('readonly', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
+      this.cryptoStore.doTxn("readonly", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
         this.cryptoStore.getSecretStorePrivateKey(txn, resolve, "m.megolm_backup.v1");
       });
-    }); // make sure we have a Uint8Array, rather than a string
+    });
 
+    // make sure we have a Uint8Array, rather than a string
     if (key && typeof key === "string") {
       key = new Uint8Array(olmlib.decodeBase64(fixBackupKey(key) || key));
       await this.storeSessionBackupPrivateKey(key);
     }
-
     if (key && key.ciphertext) {
       const pickleKey = Buffer.from(this.olmDevice.pickleKey);
       const decrypted = await (0, _aes.decryptAES)(key, pickleKey, "m.megolm_backup.v1");
       key = olmlib.decodeBase64(decrypted);
     }
-
     return key;
   }
+
   /**
    * Stores the session backup key to the cache
-   * @param {Uint8Array} key the private key
-   * @returns {Promise} so you can catch failures
+   * @param key - the private key
+   * @returns a promise so you can catch failures
    */
-
-
   async storeSessionBackupPrivateKey(key) {
     if (!(key instanceof Uint8Array)) {
+      // eslint-disable-next-line @typescript-eslint/no-base-to-string
       throw new Error(`storeSessionBackupPrivateKey expects Uint8Array, got ${key}`);
     }
-
     const pickleKey = Buffer.from(this.olmDevice.pickleKey);
     const encryptedKey = await (0, _aes.encryptAES)(olmlib.encodeBase64(key), pickleKey, "m.megolm_backup.v1");
-    return this.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
+    return this.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
       this.cryptoStore.storeSecretStorePrivateKey(txn, "m.megolm_backup.v1", encryptedKey);
     });
   }
+
   /**
    * Checks that a given cross-signing private key matches a given public key.
    * This can be used by the getCrossSigningKey callback to verify that the
    * private key it is about to supply is the one that was requested.
    *
-   * @param {Uint8Array} privateKey The private key
-   * @param {string} expectedPublicKey The public key
-   * @returns {boolean} true if the key matches, otherwise false
+   * @param privateKey - The private key
+   * @param expectedPublicKey - The public key
+   * @returns true if the key matches, otherwise false
    */
-
-
   checkCrossSigningPrivateKey(privateKey, expectedPublicKey) {
     let signing = null;
-
     try {
       signing = new global.Olm.PkSigning();
-      const gotPubkey = signing.init_with_seed(privateKey); // make sure it agrees with the given pubkey
-
+      const gotPubkey = signing.init_with_seed(privateKey);
+      // make sure it agrees with the given pubkey
       return gotPubkey === expectedPublicKey;
     } finally {
-      if (signing) signing.free();
+      signing?.free();
     }
   }
+
   /**
    * Run various follow-up actions after cross-signing keys have changed locally
    * (either by resetting the keys for the account or by getting them from secret
    * storage), such as signing the current device, upgrading device
    * verifications, etc.
    */
-
-
   async afterCrossSigningLocalKeyChange() {
-    _logger.logger.info("Starting cross-signing key change post-processing"); // sign the current device with the new key, and upload to the server
-
+    _logger.logger.info("Starting cross-signing key change post-processing");
 
+    // sign the current device with the new key, and upload to the server
     const device = this.deviceList.getStoredDevice(this.userId, this.deviceId);
     const signedDevice = await this.crossSigningInfo.signDevice(this.userId, device);
-
     _logger.logger.info(`Starting background key sig upload for ${this.deviceId}`);
-
     const upload = ({
       shouldEmit = false
     }) => {
@@ -1131,7 +982,6 @@
         const {
           failures
         } = response || {};
-
         if (Object.keys(failures || []).length > 0) {
           if (shouldEmit) {
             this.baseApis.emit(CryptoEvent.KeySignatureUploadFailure, failures, "afterCrossSigningLocalKeyChange", upload // continuation
@@ -1142,41 +992,33 @@
             failures
           });
         }
-
         _logger.logger.info(`Finished background key sig upload for ${this.deviceId}`);
       }).catch(e => {
         _logger.logger.error(`Error during background key sig upload for ${this.deviceId}`, e);
       });
     };
-
     upload({
       shouldEmit: true
     });
     const shouldUpgradeCb = this.baseApis.cryptoCallbacks.shouldUpgradeDeviceVerifications;
-
     if (shouldUpgradeCb) {
-      _logger.logger.info("Starting device verification upgrade"); // Check all users for signatures if upgrade callback present
-      // FIXME: do this in batches
-
+      _logger.logger.info("Starting device verification upgrade");
 
+      // Check all users for signatures if upgrade callback present
+      // FIXME: do this in batches
       const users = {};
-
       for (const [userId, crossSigningInfo] of Object.entries(this.deviceList.crossSigningInfo)) {
         const upgradeInfo = await this.checkForDeviceVerificationUpgrade(userId, _CrossSigning.CrossSigningInfo.fromStorage(crossSigningInfo, userId));
-
         if (upgradeInfo) {
           users[userId] = upgradeInfo;
         }
       }
-
       if (Object.keys(users).length > 0) {
         _logger.logger.info(`Found ${Object.keys(users).length} verif users to upgrade`);
-
         try {
           const usersToUpgrade = await shouldUpgradeCb({
             users: users
           });
-
           if (usersToUpgrade) {
             for (const userId of usersToUpgrade) {
               if (userId in users) {
@@ -1188,30 +1030,25 @@
           _logger.logger.log("shouldUpgradeDeviceVerifications threw an error: not upgrading", e);
         }
       }
-
       _logger.logger.info("Finished device verification upgrade");
     }
-
     _logger.logger.info("Finished cross-signing key change post-processing");
   }
+
   /**
    * Check if a user's cross-signing key is a candidate for upgrading from device
    * verification.
    *
-   * @param {string} userId the user whose cross-signing information is to be checked
-   * @param {object} crossSigningInfo the cross-signing information to check
+   * @param userId - the user whose cross-signing information is to be checked
+   * @param crossSigningInfo - the cross-signing information to check
    */
-
-
   async checkForDeviceVerificationUpgrade(userId, crossSigningInfo) {
     // only upgrade if this is the first cross-signing key that we've seen for
     // them, and if their cross-signing key isn't already verified
     const trustLevel = this.crossSigningInfo.checkUserTrust(crossSigningInfo);
-
     if (crossSigningInfo.firstUse && !trustLevel.isVerified()) {
       const devices = this.deviceList.getRawStoredDevicesForUser(userId);
       const deviceIds = await this.checkForValidDeviceSignature(userId, crossSigningInfo.keys.master, devices);
-
       if (deviceIds.length) {
         return {
           devices: deviceIds.map(deviceId => _deviceinfo.DeviceInfo.fromStorage(devices[deviceId], deviceId)),
@@ -1220,23 +1057,20 @@
       }
     }
   }
+
   /**
    * Check if the cross-signing key is signed by a verified device.
    *
-   * @param {string} userId the user ID whose key is being checked
-   * @param {object} key the key that is being checked
-   * @param {object} devices the user's devices.  Should be a map from device ID
+   * @param userId - the user ID whose key is being checked
+   * @param key - the key that is being checked
+   * @param devices - the user's devices.  Should be a map from device ID
    *     to device info
    */
-
-
   async checkForValidDeviceSignature(userId, key, devices) {
     const deviceIds = [];
-
     if (devices && key.signatures && key.signatures[userId]) {
       for (const signame of Object.keys(key.signatures[userId])) {
-        const [, deviceId] = signame.split(':', 2);
-
+        const [, deviceId] = signame.split(":", 2);
         if (deviceId in devices && devices[deviceId].verified === DeviceVerification.VERIFIED) {
           try {
             await olmlib.verifySignature(this.olmDevice, key, userId, deviceId, devices[deviceId].keys[signame]);
@@ -1245,80 +1079,71 @@
         }
       }
     }
-
     return deviceIds;
   }
+
   /**
    * Get the user's cross-signing key ID.
    *
-   * @param {string} [type=master] The type of key to get the ID of.  One of
+   * @param type - The type of key to get the ID of.  One of
    *     "master", "self_signing", or "user_signing".  Defaults to "master".
    *
-   * @returns {string} the key ID
+   * @returns the key ID
    */
-
-
   getCrossSigningId(type) {
     return this.crossSigningInfo.getId(type);
   }
+
   /**
    * Get the cross signing information for a given user.
    *
-   * @param {string} userId the user ID to get the cross-signing info for.
+   * @param userId - the user ID to get the cross-signing info for.
    *
-   * @returns {CrossSigningInfo} the cross signing information for the user.
+   * @returns the cross signing information for the user.
    */
-
-
   getStoredCrossSigningForUser(userId) {
     return this.deviceList.getStoredCrossSigningForUser(userId);
   }
+
   /**
    * Check whether a given user is trusted.
    *
-   * @param {string} userId The ID of the user to check.
+   * @param userId - The ID of the user to check.
    *
-   * @returns {UserTrustLevel}
+   * @returns
    */
-
-
   checkUserTrust(userId) {
     const userCrossSigning = this.deviceList.getStoredCrossSigningForUser(userId);
-
     if (!userCrossSigning) {
       return new _CrossSigning.UserTrustLevel(false, false, false);
     }
-
     return this.crossSigningInfo.checkUserTrust(userCrossSigning);
   }
+
   /**
    * Check whether a given device is trusted.
    *
-   * @param {string} userId The ID of the user whose devices is to be checked.
-   * @param {string} deviceId The ID of the device to check
+   * @param userId - The ID of the user whose devices is to be checked.
+   * @param deviceId - The ID of the device to check
    *
-   * @returns {DeviceTrustLevel}
+   * @returns
    */
-
-
   checkDeviceTrust(userId, deviceId) {
     const device = this.deviceList.getStoredDevice(userId, deviceId);
     return this.checkDeviceInfoTrust(userId, device);
   }
+
   /**
    * Check whether a given deviceinfo is trusted.
    *
-   * @param {string} userId The ID of the user whose devices is to be checked.
-   * @param {module:crypto/deviceinfo?} device The device info object to check
+   * @param userId - The ID of the user whose devices is to be checked.
+   * @param device - The device info object to check
    *
-   * @returns {DeviceTrustLevel}
+   * @returns
    */
-
-
   checkDeviceInfoTrust(userId, device) {
-    const trustedLocally = !!(device && device.isVerified());
+    const trustedLocally = !!device?.isVerified();
     const userCrossSigning = this.deviceList.getStoredCrossSigningForUser(userId);
-
     if (device && userCrossSigning) {
       // The trustCrossSignedDevices only affects trust of other people's cross-signing
       // signatures
@@ -1328,26 +1153,26 @@
       return new _CrossSigning.DeviceTrustLevel(false, false, trustedLocally, false);
     }
   }
+
   /**
    * Check whether one of our own devices is cross-signed by our
    * user's stored keys, regardless of whether we trust those keys yet.
    *
-   * @param {string} deviceId The ID of the device to check
+   * @param deviceId - The ID of the device to check
    *
-   * @returns {boolean} true if the device is cross-signed
+   * @returns true if the device is cross-signed
    */
-
-
   checkIfOwnDeviceCrossSigned(deviceId) {
     const device = this.deviceList.getStoredDevice(this.userId, deviceId);
+    if (!device) return false;
     const userCrossSigning = this.deviceList.getStoredCrossSigningForUser(this.userId);
-    return userCrossSigning.checkDeviceTrust(userCrossSigning, device, false, true).isCrossSigningVerified();
+    return userCrossSigning?.checkDeviceTrust(userCrossSigning, device, false, true).isCrossSigningVerified() ?? false;
   }
+
   /*
    * Event handler for DeviceList's userNewDevices event
    */
 
-
   /**
    * Check the copy of our cross-signing key that we have in the device list and
    * see if we can get the private key. If so, mark it as trusted.
@@ -1355,107 +1180,92 @@
   async checkOwnCrossSigningTrust({
     allowPrivateKeyRequests = false
   } = {}) {
-    const userId = this.userId; // Before proceeding, ensure our cross-signing public keys have been
+    const userId = this.userId;
+
+    // Before proceeding, ensure our cross-signing public keys have been
     // downloaded via the device list.
+    await this.downloadKeys([this.userId]);
 
-    await this.downloadKeys([this.userId]); // Also check which private keys are locally cached.
+    // Also check which private keys are locally cached.
+    const crossSigningPrivateKeys = await this.crossSigningInfo.getCrossSigningKeysFromCache();
 
-    const crossSigningPrivateKeys = await this.crossSigningInfo.getCrossSigningKeysFromCache(); // If we see an update to our own master key, check it against the master
+    // If we see an update to our own master key, check it against the master
     // key we have and, if it matches, mark it as verified
-    // First, get the new cross-signing info
 
+    // First, get the new cross-signing info
     const newCrossSigning = this.deviceList.getStoredCrossSigningForUser(userId);
-
     if (!newCrossSigning) {
       _logger.logger.error("Got cross-signing update event for user " + userId + " but no new cross-signing information found!");
-
       return;
     }
-
     const seenPubkey = newCrossSigning.getId();
     const masterChanged = this.crossSigningInfo.getId() !== seenPubkey;
     const masterExistsNotLocallyCached = newCrossSigning.getId() && !crossSigningPrivateKeys.has("master");
-
     if (masterChanged) {
       _logger.logger.info("Got new master public key", seenPubkey);
     }
-
     if (allowPrivateKeyRequests && (masterChanged || masterExistsNotLocallyCached)) {
       _logger.logger.info("Attempting to retrieve cross-signing master private key");
-
-      let signing = null; // It's important for control flow that we leave any errors alone for
+      let signing = null;
+      // It's important for control flow that we leave any errors alone for
       // higher levels to handle so that e.g. cancelling access properly
       // aborts any larger operation as well.
-
       try {
-        const ret = await this.crossSigningInfo.getCrossSigningKey('master', seenPubkey);
+        const ret = await this.crossSigningInfo.getCrossSigningKey("master", seenPubkey);
         signing = ret[1];
-
         _logger.logger.info("Got cross-signing master private key");
       } finally {
-        if (signing) signing.free();
+        signing?.free();
       }
     }
-
     const oldSelfSigningId = this.crossSigningInfo.getId("self_signing");
-    const oldUserSigningId = this.crossSigningInfo.getId("user_signing"); // Update the version of our keys in our cross-signing object and the local store
+    const oldUserSigningId = this.crossSigningInfo.getId("user_signing");
 
+    // Update the version of our keys in our cross-signing object and the local store
     this.storeTrustedSelfKeys(newCrossSigning.keys);
     const selfSigningChanged = oldSelfSigningId !== newCrossSigning.getId("self_signing");
     const userSigningChanged = oldUserSigningId !== newCrossSigning.getId("user_signing");
     const selfSigningExistsNotLocallyCached = newCrossSigning.getId("self_signing") && !crossSigningPrivateKeys.has("self_signing");
     const userSigningExistsNotLocallyCached = newCrossSigning.getId("user_signing") && !crossSigningPrivateKeys.has("user_signing");
     const keySignatures = {};
-
     if (selfSigningChanged) {
       _logger.logger.info("Got new self-signing key", newCrossSigning.getId("self_signing"));
     }
-
     if (allowPrivateKeyRequests && (selfSigningChanged || selfSigningExistsNotLocallyCached)) {
       _logger.logger.info("Attempting to retrieve cross-signing self-signing private key");
-
       let signing = null;
-
       try {
         const ret = await this.crossSigningInfo.getCrossSigningKey("self_signing", newCrossSigning.getId("self_signing"));
         signing = ret[1];
-
         _logger.logger.info("Got cross-signing self-signing private key");
       } finally {
-        if (signing) signing.free();
+        signing?.free();
       }
-
       const device = this.deviceList.getStoredDevice(this.userId, this.deviceId);
       const signedDevice = await this.crossSigningInfo.signDevice(this.userId, device);
       keySignatures[this.deviceId] = signedDevice;
     }
-
     if (userSigningChanged) {
       _logger.logger.info("Got new user-signing key", newCrossSigning.getId("user_signing"));
     }
-
     if (allowPrivateKeyRequests && (userSigningChanged || userSigningExistsNotLocallyCached)) {
       _logger.logger.info("Attempting to retrieve cross-signing user-signing private key");
-
       let signing = null;
-
       try {
         const ret = await this.crossSigningInfo.getCrossSigningKey("user_signing", newCrossSigning.getId("user_signing"));
         signing = ret[1];
-
         _logger.logger.info("Got cross-signing user-signing private key");
       } finally {
-        if (signing) signing.free();
+        signing?.free();
       }
     }
-
     if (masterChanged) {
       const masterKey = this.crossSigningInfo.keys.master;
       await this.signObject(masterKey);
-      const deviceSig = masterKey.signatures[this.userId]["ed25519:" + this.deviceId]; // Include only the _new_ device signature in the upload.
+      const deviceSig = masterKey.signatures[this.userId]["ed25519:" + this.deviceId];
+      // Include only the _new_ device signature in the upload.
       // We may have existing signatures from deleted devices, which will cause
       // the entire upload to fail.
-
       keySignatures[this.crossSigningInfo.getId()] = Object.assign({}, masterKey, {
         signatures: {
           [this.userId]: {
@@ -1464,29 +1274,23 @@
         }
       });
     }
-
     const keysToUpload = Object.keys(keySignatures);
-
     if (keysToUpload.length) {
       const upload = ({
         shouldEmit = false
       }) => {
         _logger.logger.info(`Starting background key sig upload for ${keysToUpload}`);
-
         return this.baseApis.uploadKeySignatures({
           [this.userId]: keySignatures
         }).then(response => {
           const {
             failures
           } = response || {};
-
           _logger.logger.info(`Finished background key sig upload for ${keysToUpload}`);
-
           if (Object.keys(failures || []).length > 0) {
             if (shouldEmit) {
               this.baseApis.emit(CryptoEvent.KeySignatureUploadFailure, failures, "checkOwnCrossSigningTrust", upload);
             }
-
             throw new _errors.KeySignatureUploadError("Key upload failed", {
               failures
             });
@@ -1495,188 +1299,150 @@
           _logger.logger.error(`Error during background key sig upload for ${keysToUpload}`, e);
         });
       };
-
       upload({
         shouldEmit: true
       });
     }
-
     this.emit(CryptoEvent.UserTrustStatusChanged, userId, this.checkUserTrust(userId));
-
     if (masterChanged) {
       this.emit(CryptoEvent.KeysChanged, {});
       await this.afterCrossSigningLocalKeyChange();
-    } // Now we may be able to trust our key backup
-
+    }
 
-    await this.backupManager.checkKeyBackup(); // FIXME: if we previously trusted the backup, should we automatically sign
+    // Now we may be able to trust our key backup
+    await this.backupManager.checkKeyBackup();
+    // FIXME: if we previously trusted the backup, should we automatically sign
     // the backup with the new key (if not already signed)?
   }
+
   /**
    * Store a set of keys as our own, trusted, cross-signing keys.
    *
-   * @param {object} keys The new trusted set of keys
+   * @param keys - The new trusted set of keys
    */
-
-
   async storeTrustedSelfKeys(keys) {
     if (keys) {
       this.crossSigningInfo.setKeys(keys);
     } else {
       this.crossSigningInfo.clearKeys();
     }
-
-    await this.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
+    await this.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
       this.cryptoStore.storeCrossSigningKeys(txn, this.crossSigningInfo.keys);
     });
   }
+
   /**
    * Check if the master key is signed by a verified device, and if so, prompt
    * the application to mark it as verified.
    *
-   * @param {string} userId the user ID whose key should be checked
+   * @param userId - the user ID whose key should be checked
    */
-
-
   async checkDeviceVerifications(userId) {
     const shouldUpgradeCb = this.baseApis.cryptoCallbacks.shouldUpgradeDeviceVerifications;
-
     if (!shouldUpgradeCb) {
       // Upgrading skipped when callback is not present.
       return;
     }
-
     _logger.logger.info(`Starting device verification upgrade for ${userId}`);
-
     if (this.crossSigningInfo.keys.user_signing) {
       const crossSigningInfo = this.deviceList.getStoredCrossSigningForUser(userId);
-
       if (crossSigningInfo) {
         const upgradeInfo = await this.checkForDeviceVerificationUpgrade(userId, crossSigningInfo);
-
         if (upgradeInfo) {
           const usersToUpgrade = await shouldUpgradeCb({
             users: {
               [userId]: upgradeInfo
             }
           });
-
           if (usersToUpgrade.includes(userId)) {
             await this.baseApis.setDeviceVerified(userId, crossSigningInfo.getId());
           }
         }
       }
     }
-
     _logger.logger.info(`Finished device verification upgrade for ${userId}`);
   }
+
   /**
    */
-
-
   enableLazyLoading() {
     this.lazyLoadMembers = true;
   }
+
   /**
    * Tell the crypto module to register for MatrixClient events which it needs to
    * listen for
    *
-   * @param {external:EventEmitter} eventEmitter event source where we can register
+   * @param eventEmitter - event source where we can register
    *    for event notifications
    */
-
-
   registerEventHandlers(eventEmitter) {
     eventEmitter.on(_roomMember.RoomMemberEvent.Membership, this.onMembership);
     eventEmitter.on(_client.ClientEvent.ToDeviceEvent, this.onToDeviceEvent);
     eventEmitter.on(_room.RoomEvent.Timeline, this.onTimelineEvent);
     eventEmitter.on(_event2.MatrixEventEvent.Decrypted, this.onTimelineEvent);
   }
-  /** Start background processes related to crypto */
-
 
+  /**
+   * @deprecated this does nothing and will be removed in a future version
+   */
   start() {
-    this.outgoingRoomKeyRequestManager.start();
+    _logger.logger.warn("MatrixClient.crypto.start() is deprecated");
   }
-  /** Stop background processes related to crypto */
-
 
+  /** Stop background processes related to crypto */
   stop() {
     this.outgoingRoomKeyRequestManager.stop();
     this.deviceList.stop();
     this.dehydrationManager.stop();
   }
+
   /**
    * Get the Ed25519 key for this device
    *
-   * @return {string} base64-encoded ed25519 key.
+   * @returns base64-encoded ed25519 key.
    */
-
-
   getDeviceEd25519Key() {
     return this.olmDevice.deviceEd25519Key;
   }
+
   /**
    * Get the Curve25519 key for this device
    *
-   * @return {string} base64-encoded curve25519 key.
+   * @returns base64-encoded curve25519 key.
    */
-
-
   getDeviceCurve25519Key() {
     return this.olmDevice.deviceCurve25519Key;
   }
+
   /**
    * Set the global override for whether the client should ever send encrypted
    * messages to unverified devices.  This provides the default for rooms which
    * do not specify a value.
    *
-   * @param {boolean} value whether to blacklist all unverified devices by default
+   * @param value - whether to blacklist all unverified devices by default
+   *
+   * @deprecated For external code, use {@link MatrixClient#setGlobalBlacklistUnverifiedDevices}. For
+   *   internal code, set {@link MatrixClient#globalBlacklistUnverifiedDevices} directly.
    */
-
-
   setGlobalBlacklistUnverifiedDevices(value) {
     this.globalBlacklistUnverifiedDevices = value;
   }
-  /**
-   * @return {boolean} whether to blacklist all unverified devices by default
-   */
 
-
-  getGlobalBlacklistUnverifiedDevices() {
-    return this.globalBlacklistUnverifiedDevices;
-  }
   /**
-   * Set whether sendMessage in a room with unknown and unverified devices
-   * should throw an error and not send them message. This has 'Global' for
-   * symmetry with setGlobalBlacklistUnverifiedDevices but there is currently
-   * no room-level equivalent for this setting.
+   * @returns whether to blacklist all unverified devices by default
    *
-   * This API is currently UNSTABLE and may change or be removed without notice.
-   *
-   * @param {boolean} value whether error on unknown devices
+   * @deprecated For external code, use {@link MatrixClient#getGlobalBlacklistUnverifiedDevices}. For
+   *   internal code, reference {@link MatrixClient#globalBlacklistUnverifiedDevices} directly.
    */
-
-
-  setGlobalErrorOnUnknownDevices(value) {
-    this.globalErrorOnUnknownDevices = value;
+  getGlobalBlacklistUnverifiedDevices() {
+    return this.globalBlacklistUnverifiedDevices;
   }
-  /**
-   * @return {boolean} whether to error on unknown devices
-   *
-   * This API is currently UNSTABLE and may change or be removed without notice.
-   */
 
-
-  getGlobalErrorOnUnknownDevices() {
-    return this.globalErrorOnUnknownDevices;
-  }
   /**
    * Upload the device keys to the homeserver.
-   * @return {object} A promise that will resolve when the keys are uploaded.
+   * @returns A promise that will resolve when the keys are uploaded.
    */
-
-
   uploadDeviceKeys() {
     const deviceKeys = {
       algorithms: this.supportedAlgorithms,
@@ -1690,14 +1456,13 @@
       });
     });
   }
+
   /**
    * Stores the current one_time_key count which will be handled later (in a call of
    * onSyncCompleted). The count is e.g. coming from a /sync response.
    *
-   * @param {Number} currentCount The current count of one_time_keys to be stored
+   * @param currentCount - The current count of one_time_keys to be stored
    */
-
-
   updateOneTimeKeyCount(currentCount) {
     if (isFinite(currentCount)) {
       this.oneTimeKeyCount = currentCount;
@@ -1705,38 +1470,34 @@
       throw new TypeError("Parameter for updateOneTimeKeyCount has to be a number");
     }
   }
-
   setNeedsNewFallback(needsNewFallback) {
-    this.needsNewFallback = !!needsNewFallback;
+    this.needsNewFallback = needsNewFallback;
   }
-
   getNeedsNewFallback() {
-    return this.needsNewFallback;
-  } // check if it's time to upload one-time keys, and do so if so.
-
+    return !!this.needsNewFallback;
+  }
 
+  // check if it's time to upload one-time keys, and do so if so.
   maybeUploadOneTimeKeys() {
     // frequency with which to check & upload one-time keys
     const uploadPeriod = 1000 * 60; // one minute
+
     // max number of keys to upload at once
     // Creating keys can be an expensive operation so we limit the
     // number we generate in one go to avoid blocking the application
     // for too long.
-
     const maxKeysPerCycle = 5;
-
     if (this.oneTimeKeyCheckInProgress) {
       return;
     }
-
     const now = Date.now();
-
     if (this.lastOneTimeKeyCheck !== null && now - this.lastOneTimeKeyCheck < uploadPeriod) {
       // we've done a key upload recently.
       return;
     }
+    this.lastOneTimeKeyCheck = now;
 
-    this.lastOneTimeKeyCheck = now; // We need to keep a pool of one time public keys on the server so that
+    // We need to keep a pool of one time public keys on the server so that
     // other devices can start conversations with us. But we can only store
     // a finite number of private keys in the olm Account object.
     // To complicate things further then can be a delay between a device
@@ -1747,35 +1508,31 @@
     // private keys clogging up our local storage.
     // So we need some kind of engineering compromise to balance all of
     // these factors.
-    // Check how many keys we can store in the Account object.
 
-    const maxOneTimeKeys = this.olmDevice.maxNumberOfOneTimeKeys(); // Try to keep at most half that number on the server. This leaves the
+    // Check how many keys we can store in the Account object.
+    const maxOneTimeKeys = this.olmDevice.maxNumberOfOneTimeKeys();
+    // Try to keep at most half that number on the server. This leaves the
     // rest of the slots free to hold keys that have been claimed from the
     // server but we haven't received a message for.
     // If we run out of slots when generating new keys then olm will
     // discard the oldest private keys first. This will eventually clean
     // out stale private keys that won't receive a message.
-
     const keyLimit = Math.floor(maxOneTimeKeys / 2);
-
     const uploadLoop = async keyCount => {
       while (keyLimit > keyCount || this.getNeedsNewFallback()) {
         // Ask olm to generate new one time keys, then upload them to synapse.
         if (keyLimit > keyCount) {
           _logger.logger.info("generating oneTimeKeys");
-
           const keysThisLoop = Math.min(keyLimit - keyCount, maxKeysPerCycle);
           await this.olmDevice.generateOneTimeKeys(keysThisLoop);
         }
-
         if (this.getNeedsNewFallback()) {
-          const fallbackKeys = await this.olmDevice.getFallbackKey(); // if fallbackKeys is non-empty, we've already generated a
+          const fallbackKeys = await this.olmDevice.getFallbackKey();
+          // if fallbackKeys is non-empty, we've already generated a
           // fallback key, but it hasn't been published yet, so we
           // can use that instead of generating a new one
-
           if (!fallbackKeys.curve25519 || Object.keys(fallbackKeys.curve25519).length == 0) {
             _logger.logger.info("generating fallback key");
-
             if (this.fallbackCleanup) {
               // cancel any pending fallback cleanup because generating
               // a new fallback key will already drop the old fallback
@@ -1784,15 +1541,11 @@
               clearTimeout(this.fallbackCleanup);
               delete this.fallbackCleanup;
             }
-
             await this.olmDevice.generateFallbackKey();
           }
         }
-
         _logger.logger.info("calling uploadOneTimeKeys");
-
         const res = await this.uploadOneTimeKeys();
-
         if (res.one_time_key_counts && res.one_time_key_counts.signed_curve25519) {
           // if the response contains a more up to date value use this
           // for the next loop
@@ -1802,16 +1555,14 @@
         }
       }
     };
-
     this.oneTimeKeyCheckInProgress = true;
     Promise.resolve().then(() => {
       if (this.oneTimeKeyCount !== undefined) {
         // We already have the current one_time_key count from a /sync response.
         // Use this value instead of asking the server for the current key count.
         return Promise.resolve(this.oneTimeKeyCount);
-      } // ask the server how many keys we have
-
-
+      }
+      // ask the server how many keys we have
       return this.baseApis.uploadKeysRequest({}).then(res => {
         return res.one_time_key_counts.signed_curve25519 || 0;
       });
@@ -1829,17 +1580,15 @@
       this.oneTimeKeyCount = undefined;
       this.oneTimeKeyCheckInProgress = false;
     });
-  } // returns a promise which resolves to the response
-
+  }
 
+  // returns a promise which resolves to the response
   async uploadOneTimeKeys() {
     const promises = [];
     let fallbackJson;
-
     if (this.getNeedsNewFallback()) {
       fallbackJson = {};
       const fallbackKeys = await this.olmDevice.getFallbackKey();
-
       for (const [keyId, key] of Object.entries(fallbackKeys.curve25519)) {
         const k = {
           key,
@@ -1848,13 +1597,10 @@
         fallbackJson["signed_curve25519:" + keyId] = k;
         promises.push(this.signObject(k));
       }
-
       this.setNeedsNewFallback(false);
     }
-
     const oneTimeKeys = await this.olmDevice.getOneTimeKeys();
     const oneTimeJson = {};
-
     for (const keyId in oneTimeKeys.curve25519) {
       if (oneTimeKeys.curve25519.hasOwnProperty(keyId)) {
         const k = {
@@ -1864,155 +1610,129 @@
         promises.push(this.signObject(k));
       }
     }
-
     await Promise.all(promises);
     const requestBody = {
-      "one_time_keys": oneTimeJson
+      one_time_keys: oneTimeJson
     };
-
     if (fallbackJson) {
       requestBody["org.matrix.msc2732.fallback_keys"] = fallbackJson;
       requestBody["fallback_keys"] = fallbackJson;
     }
-
     const res = await this.baseApis.uploadKeysRequest(requestBody);
-
     if (fallbackJson) {
       this.fallbackCleanup = setTimeout(() => {
         delete this.fallbackCleanup;
         this.olmDevice.forgetOldFallbackKey();
       }, 60 * 60 * 1000);
     }
-
     await this.olmDevice.markKeysAsPublished();
     return res;
   }
+
   /**
    * Download the keys for a list of users and stores the keys in the session
    * store.
-   * @param {Array} userIds The users to fetch.
-   * @param {boolean} forceDownload Always download the keys even if cached.
+   * @param userIds - The users to fetch.
+   * @param forceDownload - Always download the keys even if cached.
    *
-   * @return {Promise} A promise which resolves to a map userId->deviceId->{@link
-      * module:crypto/deviceinfo|DeviceInfo}.
+   * @returns A promise which resolves to a map `userId->deviceId->{@link DeviceInfo}`.
    */
-
-
   downloadKeys(userIds, forceDownload) {
-    return this.deviceList.downloadKeys(userIds, forceDownload);
+    return this.deviceList.downloadKeys(userIds, !!forceDownload);
   }
+
   /**
    * Get the stored device keys for a user id
    *
-   * @param {string} userId the user to list keys for.
+   * @param userId - the user to list keys for.
    *
-   * @return {module:crypto/deviceinfo[]|null} list of devices, or null if we haven't
+   * @returns list of devices, or null if we haven't
    * managed to get a list of devices for this user yet.
    */
-
-
   getStoredDevicesForUser(userId) {
     return this.deviceList.getStoredDevicesForUser(userId);
   }
+
   /**
    * Get the stored keys for a single device
    *
-   * @param {string} userId
-   * @param {string} deviceId
    *
-   * @return {module:crypto/deviceinfo?} device, or undefined
+   * @returns device, or undefined
    * if we don't know about this device
    */
-
-
   getStoredDevice(userId, deviceId) {
     return this.deviceList.getStoredDevice(userId, deviceId);
   }
+
   /**
    * Save the device list, if necessary
    *
-   * @param {number} delay Time in ms before which the save actually happens.
+   * @param delay - Time in ms before which the save actually happens.
    *     By default, the save is delayed for a short period in order to batch
    *     multiple writes, but this behaviour can be disabled by passing 0.
    *
-   * @return {Promise<boolean>} true if the data was saved, false if
+   * @returns true if the data was saved, false if
    *     it was not (eg. because no changes were pending). The promise
    *     will only resolve once the data is saved, so may take some time
    *     to resolve.
    */
-
-
   saveDeviceList(delay) {
     return this.deviceList.saveIfDirty(delay);
   }
+
   /**
    * Update the blocked/verified state of the given device
    *
-   * @param {string} userId owner of the device
-   * @param {string} deviceId unique identifier for the device or user's
+   * @param userId - owner of the device
+   * @param deviceId - unique identifier for the device or user's
    * cross-signing public key ID.
    *
-   * @param {?boolean} verified whether to mark the device as verified. Null to
+   * @param verified - whether to mark the device as verified. Null to
    *     leave unchanged.
    *
-   * @param {?boolean} blocked whether to mark the device as blocked. Null to
+   * @param blocked - whether to mark the device as blocked. Null to
    *      leave unchanged.
    *
-   * @param {?boolean} known whether to mark that the user has been made aware of
+   * @param known - whether to mark that the user has been made aware of
    *      the existence of this device. Null to leave unchanged
    *
-   * @param {?Record<string, any>} keys The list of keys that was present
+   * @param keys - The list of keys that was present
    * during the device verification. This will be double checked with the list
    * of keys the given device has currently.
    *
-   * @return {Promise<module:crypto/deviceinfo>} updated DeviceInfo
+   * @returns updated DeviceInfo
    */
-
-
-  async setDeviceVerification(userId, deviceId, verified, blocked, known, keys) {
-    // get rid of any `undefined`s here so we can just check
-    // for null rather than null or undefined
-    if (verified === undefined) verified = null;
-    if (blocked === undefined) blocked = null;
-    if (known === undefined) known = null; // Check if the 'device' is actually a cross signing key
+  async setDeviceVerification(userId, deviceId, verified = null, blocked = null, known = null, keys) {
+    // Check if the 'device' is actually a cross signing key
     // The js-sdk's verification treats cross-signing keys as devices
     // and so uses this method to mark them verified.
-
     const xsk = this.deviceList.getStoredCrossSigningForUser(userId);
-
     if (xsk && xsk.getId() === deviceId) {
       if (blocked !== null || known !== null) {
         throw new Error("Cannot set blocked or known for a cross-signing key");
       }
-
       if (!verified) {
         throw new Error("Cannot set a cross-signing key as unverified");
       }
-
       const gotKeyId = keys ? Object.values(keys)[0] : null;
-
       if (keys && (Object.values(keys).length !== 1 || gotKeyId !== xsk.getId())) {
         throw new Error(`Key did not match expected value: expected ${xsk.getId()}, got ${gotKeyId}`);
       }
-
       if (!this.crossSigningInfo.getId() && userId === this.crossSigningInfo.userId) {
-        this.storeTrustedSelfKeys(xsk.keys); // This will cause our own user trust to change, so emit the event
-
+        this.storeTrustedSelfKeys(xsk.keys);
+        // This will cause our own user trust to change, so emit the event
         this.emit(CryptoEvent.UserTrustStatusChanged, this.userId, this.checkUserTrust(userId));
-      } // Now sign the master key with our user signing key (unless it's ourself)
-
+      }
 
+      // Now sign the master key with our user signing key (unless it's ourself)
       if (userId !== this.userId) {
         _logger.logger.info("Master key " + xsk.getId() + " for " + userId + " marked verified. Signing...");
-
         const device = await this.crossSigningInfo.signUser(xsk);
-
         if (device) {
           const upload = async ({
             shouldEmit = false
           }) => {
             _logger.logger.info("Uploading signature for " + userId + "...");
-
             const response = await this.baseApis.uploadKeySignatures({
               [userId]: {
                 [deviceId]: device
@@ -2021,24 +1741,22 @@
             const {
               failures
             } = response || {};
-
             if (Object.keys(failures || []).length > 0) {
               if (shouldEmit) {
                 this.baseApis.emit(CryptoEvent.KeySignatureUploadFailure, failures, "setDeviceVerification", upload);
               }
               /* Throwing here causes the process to be cancelled and the other
-              * user to be notified */
-
-
+               * user to be notified */
               throw new _errors.KeySignatureUploadError("Key upload failed", {
                 failures
               });
             }
           };
-
           await upload({
             shouldEmit: true
-          }); // This will emit events when it comes back down the sync
+          });
+
+          // This will emit events when it comes back down the sync
           // (we could do local echo to speed things up)
         }
 
@@ -2047,16 +1765,12 @@
         return xsk;
       }
     }
-
     const devices = this.deviceList.getRawStoredDevicesForUser(userId);
-
     if (!devices || !devices[deviceId]) {
       throw new Error("Unknown device " + userId + ":" + deviceId);
     }
-
     const dev = devices[deviceId];
     let verificationStatus = dev.verified;
-
     if (verified) {
       if (keys) {
         for (const [keyId, key] of Object.entries(keys)) {
@@ -2065,51 +1779,43 @@
           }
         }
       }
-
       verificationStatus = DeviceVerification.VERIFIED;
     } else if (verified !== null && verificationStatus == DeviceVerification.VERIFIED) {
       verificationStatus = DeviceVerification.UNVERIFIED;
     }
-
     if (blocked) {
       verificationStatus = DeviceVerification.BLOCKED;
     } else if (blocked !== null && verificationStatus == DeviceVerification.BLOCKED) {
       verificationStatus = DeviceVerification.UNVERIFIED;
     }
-
     let knownStatus = dev.known;
-
     if (known !== null) {
       knownStatus = known;
     }
-
     if (dev.verified !== verificationStatus || dev.known !== knownStatus) {
       dev.verified = verificationStatus;
       dev.known = knownStatus;
       this.deviceList.storeDevicesForUser(userId, devices);
       this.deviceList.saveIfDirty();
-    } // do cross-signing
-
+    }
 
+    // do cross-signing
     if (verified && userId === this.userId) {
-      _logger.logger.info("Own device " + deviceId + " marked verified: signing"); // Signing only needed if other device not already signed
-
+      _logger.logger.info("Own device " + deviceId + " marked verified: signing");
 
+      // Signing only needed if other device not already signed
       let device;
       const deviceTrust = this.checkDeviceTrust(userId, deviceId);
-
       if (deviceTrust.isCrossSigningVerified()) {
         _logger.logger.log(`Own device ${deviceId} already cross-signing verified`);
       } else {
         device = await this.crossSigningInfo.signDevice(userId, _deviceinfo.DeviceInfo.fromStorage(dev, deviceId));
       }
-
       if (device) {
         const upload = async ({
           shouldEmit = false
         }) => {
           _logger.logger.info("Uploading signature for " + deviceId);
-
           const response = await this.baseApis.uploadKeySignatures({
             [userId]: {
               [deviceId]: device
@@ -2118,7 +1824,6 @@
           const {
             failures
           } = response || {};
-
           if (Object.keys(failures || []).length > 0) {
             if (shouldEmit) {
               this.baseApis.emit(CryptoEvent.KeySignatureUploadFailure, failures, "setDeviceVerification", upload // continuation
@@ -2130,81 +1835,63 @@
             });
           }
         };
-
         await upload({
           shouldEmit: true
-        }); // XXX: we'll need to wait for the device list to be updated
+        });
+        // XXX: we'll need to wait for the device list to be updated
       }
     }
 
     const deviceObj = _deviceinfo.DeviceInfo.fromStorage(dev, deviceId);
-
     this.emit(CryptoEvent.DeviceVerificationChanged, userId, deviceId, deviceObj);
     return deviceObj;
   }
-
   findVerificationRequestDMInProgress(roomId) {
     return this.inRoomVerificationRequests.findRequestInProgress(roomId);
   }
-
   getVerificationRequestsToDeviceInProgress(userId) {
     return this.toDeviceVerificationRequests.getRequestsInProgress(userId);
   }
-
   requestVerificationDM(userId, roomId) {
     const existingRequest = this.inRoomVerificationRequests.findRequestInProgress(roomId);
-
     if (existingRequest) {
       return Promise.resolve(existingRequest);
     }
-
     const channel = new _InRoomChannel.InRoomChannel(this.baseApis, roomId, userId);
     return this.requestVerificationWithChannel(userId, channel, this.inRoomVerificationRequests);
   }
-
   requestVerification(userId, devices) {
     if (!devices) {
       devices = Object.keys(this.deviceList.getRawStoredDevicesForUser(userId));
     }
-
     const existingRequest = this.toDeviceVerificationRequests.findRequestInProgress(userId, devices);
-
     if (existingRequest) {
       return Promise.resolve(existingRequest);
     }
-
     const channel = new _ToDeviceChannel.ToDeviceChannel(this.baseApis, userId, devices, _ToDeviceChannel.ToDeviceChannel.makeTransactionId());
     return this.requestVerificationWithChannel(userId, channel, this.toDeviceVerificationRequests);
   }
-
   async requestVerificationWithChannel(userId, channel, requestsMap) {
-    let request = new _VerificationRequest.VerificationRequest(channel, this.verificationMethods, this.baseApis); // if transaction id is already known, add request
-
+    let request = new _VerificationRequest.VerificationRequest(channel, this.verificationMethods, this.baseApis);
+    // if transaction id is already known, add request
     if (channel.transactionId) {
       requestsMap.setRequestByChannel(channel, request);
     }
-
-    await request.sendRequest(); // don't replace the request created by a racing remote echo
-
+    await request.sendRequest();
+    // don't replace the request created by a racing remote echo
     const racingRequest = requestsMap.getRequestByChannel(channel);
-
     if (racingRequest) {
       request = racingRequest;
     } else {
       _logger.logger.log(`Crypto: adding new request to ` + `requestsByTxnId with id ${channel.transactionId} ${channel.roomId}`);
-
       requestsMap.setRequestByChannel(channel, request);
     }
-
     return request;
   }
-
   beginKeyVerification(method, userId, deviceId, transactionId = null) {
     let request;
-
     if (transactionId) {
       request = this.toDeviceVerificationRequests.getRequestBySenderAndTxnId(userId, transactionId);
-
       if (!request) {
         throw new Error(`No request found for user ${userId} with ` + `transactionId ${transactionId}`);
       }
@@ -2214,51 +1901,43 @@
       request = new _VerificationRequest.VerificationRequest(channel, this.verificationMethods, this.baseApis);
       this.toDeviceVerificationRequests.setRequestBySenderAndTxnId(userId, transactionId, request);
     }
-
     return request.beginKeyVerification(method, {
       userId,
       deviceId
     });
   }
-
   async legacyDeviceVerification(userId, deviceId, method) {
     const transactionId = _ToDeviceChannel.ToDeviceChannel.makeTransactionId();
-
     const channel = new _ToDeviceChannel.ToDeviceChannel(this.baseApis, userId, [deviceId], transactionId, deviceId);
     const request = new _VerificationRequest.VerificationRequest(channel, this.verificationMethods, this.baseApis);
     this.toDeviceVerificationRequests.setRequestBySenderAndTxnId(userId, transactionId, request);
     const verifier = request.beginKeyVerification(method, {
       userId,
       deviceId
-    }); // either reject by an error from verify() while sending .start
+    });
+    // either reject by an error from verify() while sending .start
     // or resolve when the request receives the
     // local (fake remote) echo for sending the .start event
-
     await Promise.race([verifier.verify(), request.waitFor(r => r.started)]);
     return request;
   }
+
   /**
    * Get information on the active olm sessions with a user
    * <p>
    * Returns a map from device id to an object with keys 'deviceIdKey' (the
    * device's curve25519 identity key) and 'sessions' (an array of objects in the
    * same format as that returned by
-   * {@link module:crypto/OlmDevice#getSessionInfoForDevice}).
+   * {@link OlmDevice#getSessionInfoForDevice}).
    * <p>
    * This method is provided for debugging purposes.
    *
-   * @param {string} userId id of user to inspect
-   *
-   * @return {Promise<Object.<string, {deviceIdKey: string, sessions: object[]}>>}
+   * @param userId - id of user to inspect
    */
-
-
   async getOlmSessionsForUser(userId) {
     const devices = this.getStoredDevicesForUser(userId) || [];
     const result = {};
-
-    for (let j = 0; j < devices.length; ++j) {
-      const device = devices[j];
+    for (const device of devices) {
       const deviceKey = device.getIdentityKey();
       const sessions = await this.olmDevice.getSessionInfoForDevice(deviceKey);
       result[device.deviceId] = {
@@ -2266,40 +1945,36 @@
         sessions: sessions
       };
     }
-
     return result;
   }
+
   /**
    * Get the device which sent an event
    *
-   * @param {module:models/event.MatrixEvent} event event to be checked
-   *
-   * @return {module:crypto/deviceinfo?}
+   * @param event - event to be checked
    */
-
-
   getEventSenderDeviceInfo(event) {
     const senderKey = event.getSenderKey();
     const algorithm = event.getWireContent().algorithm;
-
     if (!senderKey || !algorithm) {
       return null;
     }
-
     if (event.isKeySourceUntrusted()) {
       // we got the key for this event from a source that we consider untrusted
       return null;
-    } // senderKey is the Curve25519 identity key of the device which the event
+    }
+
+    // senderKey is the Curve25519 identity key of the device which the event
     // was sent from. In the case of Megolm, it's actually the Curve25519
     // identity key of the device which set up the Megolm session.
 
-
     const device = this.deviceList.getDeviceByIdentityKey(algorithm, senderKey);
-
     if (device === null) {
       // we haven't downloaded the details of this device yet.
       return null;
-    } // so far so good, but now we need to check that the sender of this event
+    }
+
+    // so far so good, but now we need to check that the sender of this event
     // hadn't advertised someone else's Curve25519 key as their own. We do that
     // by checking the Ed25519 claimed by the event (or, in the case of megolm,
     // the event which set up the megolm session), to check that it matches the
@@ -2307,29 +1982,24 @@
     //
     // (see https://github.com/vector-im/vector-web/issues/2215)
 
-
     const claimedKey = event.getClaimedEd25519Key();
-
     if (!claimedKey) {
       _logger.logger.warn("Event " + event.getId() + " claims no ed25519 key: " + "cannot verify sending device");
-
       return null;
     }
-
     if (claimedKey !== device.getFingerprint()) {
       _logger.logger.warn("Event " + event.getId() + " claims ed25519 key " + claimedKey + " but sender device has key " + device.getFingerprint());
-
       return null;
     }
-
     return device;
   }
+
   /**
    * Get information about the encryption of an event
    *
-   * @param {module:models/event.MatrixEvent} event event to be checked
+   * @param event - event to be checked
    *
-   * @return {object} An object with the fields:
+   * @returns An object with the fields:
    *    - encrypted: whether the event is encrypted (if not encrypted, some of the
    *      other properties may not be set)
    *    - senderKey: the sender's key
@@ -2340,32 +2010,30 @@
    *    - mismatchedSender: if the event's ed25519 and curve25519 keys don't match
    *      (only meaningful if `sender` is set)
    */
-
-
   getEventEncryptionInfo(event) {
     const ret = {};
-    ret.senderKey = event.getSenderKey();
+    ret.senderKey = event.getSenderKey() ?? undefined;
     ret.algorithm = event.getWireContent().algorithm;
-
     if (!ret.senderKey || !ret.algorithm) {
       ret.encrypted = false;
       return ret;
     }
-
     ret.encrypted = true;
-
     if (event.isKeySourceUntrusted()) {
       // we got the key this event from somewhere else
       // TODO: check if we can trust the forwarders.
       ret.authenticated = false;
     } else {
       ret.authenticated = true;
-    } // senderKey is the Curve25519 identity key of the device which the event
+    }
+
+    // senderKey is the Curve25519 identity key of the device which the event
     // was sent from. In the case of Megolm, it's actually the Curve25519
     // identity key of the device which set up the Megolm session.
 
+    ret.sender = this.deviceList.getDeviceByIdentityKey(ret.algorithm, ret.senderKey) ?? undefined;
 
-    ret.sender = this.deviceList.getDeviceByIdentityKey(ret.algorithm, ret.senderKey); // so far so good, but now we need to check that the sender of this event
+    // so far so good, but now we need to check that the sender of this event
     // hadn't advertised someone else's Curve25519 key as their own. We do that
     // by checking the Ed25519 claimed by the event (or, in the case of megolm,
     // the event which set up the megolm session), to check that it matches the
@@ -2374,109 +2042,121 @@
     // (see https://github.com/vector-im/vector-web/issues/2215)
 
     const claimedKey = event.getClaimedEd25519Key();
-
     if (!claimedKey) {
       _logger.logger.warn("Event " + event.getId() + " claims no ed25519 key: " + "cannot verify sending device");
-
       ret.mismatchedSender = true;
     }
-
     if (ret.sender && claimedKey !== ret.sender.getFingerprint()) {
       _logger.logger.warn("Event " + event.getId() + " claims ed25519 key " + claimedKey + "but sender device has key " + ret.sender.getFingerprint());
-
       ret.mismatchedSender = true;
     }
-
     return ret;
   }
+
   /**
    * Forces the current outbound group session to be discarded such
    * that another one will be created next time an event is sent.
    *
-   * @param {string} roomId The ID of the room to discard the session for
+   * @param roomId - The ID of the room to discard the session for
    *
    * This should not normally be necessary.
    */
-
-
   forceDiscardSession(roomId) {
     const alg = this.roomEncryptors.get(roomId);
     if (alg === undefined) throw new Error("Room not encrypted");
-
     if (alg.forceDiscardSession === undefined) {
       throw new Error("Room encryption algorithm doesn't support session discarding");
     }
-
     alg.forceDiscardSession();
   }
+
   /**
    * Configure a room to use encryption (ie, save a flag in the cryptoStore).
    *
-   * @param {string} roomId The room ID to enable encryption in.
+   * @param roomId - The room ID to enable encryption in.
    *
-   * @param {object} config The encryption config for the room.
+   * @param config - The encryption config for the room.
    *
-   * @param {boolean=} inhibitDeviceQuery true to suppress device list query for
+   * @param inhibitDeviceQuery - true to suppress device list query for
    *   users in the room (for now). In case lazy loading is enabled,
    *   the device query is always inhibited as the members are not tracked.
+   *
+   * @deprecated It is normally incorrect to call this method directly. Encryption
+   *   is enabled by receiving an `m.room.encryption` event (which we may have sent
+   *   previously).
    */
+  async setRoomEncryption(roomId, config, inhibitDeviceQuery) {
+    const room = this.clientStore.getRoom(roomId);
+    if (!room) {
+      throw new Error(`Unable to enable encryption tracking devices in unknown room ${roomId}`);
+    }
+    await this.setRoomEncryptionImpl(room, config);
+    if (!this.lazyLoadMembers && !inhibitDeviceQuery) {
+      this.deviceList.refreshOutdatedDeviceLists();
+    }
+  }
 
+  /**
+   * Set up encryption for a room.
+   *
+   * This is called when an <tt>m.room.encryption</tt> event is received. It saves a flag
+   * for the room in the cryptoStore (if it wasn't already set), sets up an "encryptor" for
+   * the room, and enables device-list tracking for the room.
+   *
+   * It does <em>not</em> initiate a device list query for the room. That is normally
+   * done once we finish processing the sync, in onSyncCompleted.
+   *
+   * @param room - The room to enable encryption in.
+   * @param config - The encryption config for the room.
+   */
+  async setRoomEncryptionImpl(room, config) {
+    const roomId = room.roomId;
 
-  async setRoomEncryption(roomId, config, inhibitDeviceQuery) {
     // ignore crypto events with no algorithm defined
     // This will happen if a crypto event is redacted before we fetch the room state
     // It would otherwise just throw later as an unknown algorithm would, but we may
     // as well catch this here
     if (!config.algorithm) {
       _logger.logger.log("Ignoring setRoomEncryption with no algorithm");
-
       return;
-    } // if state is being replayed from storage, we might already have a configuration
+    }
+
+    // if state is being replayed from storage, we might already have a configuration
     // for this room as they are persisted as well.
     // We just need to make sure the algorithm is initialized in this case.
     // However, if the new config is different,
     // we should bail out as room encryption can't be changed once set.
-
-
     const existingConfig = this.roomList.getRoomEncryption(roomId);
-
     if (existingConfig) {
       if (JSON.stringify(existingConfig) != JSON.stringify(config)) {
         _logger.logger.error("Ignoring m.room.encryption event which requests " + "a change of config in " + roomId);
-
         return;
       }
-    } // if we already have encryption in this room, we should ignore this event,
+    }
+    // if we already have encryption in this room, we should ignore this event,
     // as it would reset the encryption algorithm.
     // This is at least expected to be called twice, as sync calls onCryptoEvent
     // for both the timeline and state sections in the /sync response,
     // the encryption event would appear in both.
     // If it's called more than twice though,
     // it signals a bug on client or server.
-
-
     const existingAlg = this.roomEncryptors.get(roomId);
-
     if (existingAlg) {
       return;
-    } // _roomList.getRoomEncryption will not race with _roomList.setRoomEncryption
+    }
+
+    // _roomList.getRoomEncryption will not race with _roomList.setRoomEncryption
     // because it first stores in memory. We should await the promise only
     // after all the in-memory state (roomEncryptors and _roomList) has been updated
     // to avoid races when calling this method multiple times. Hence keep a hold of the promise.
-
-
     let storeConfigPromise = null;
-
     if (!existingConfig) {
       storeConfigPromise = this.roomList.setRoomEncryption(roomId, config);
     }
-
     const AlgClass = algorithms.ENCRYPTION_CLASSES.get(config.algorithm);
-
     if (!AlgClass) {
       throw new Error("Unable to encrypt with " + config.algorithm);
     }
-
     const alg = new AlgClass({
       userId: this.userId,
       deviceId: this.deviceId,
@@ -2487,118 +2167,121 @@
       config
     });
     this.roomEncryptors.set(roomId, alg);
-
     if (storeConfigPromise) {
       await storeConfigPromise;
     }
+    _logger.logger.log(`Enabling encryption in ${roomId}`);
 
-    if (!this.lazyLoadMembers) {
-      _logger.logger.log("Enabling encryption in " + roomId + "; " + "starting to track device lists for all users therein");
-
-      await this.trackRoomDevices(roomId); // TODO: this flag is only not used from MatrixClient::setRoomEncryption
-      // which is never used (inside Element at least)
-      // but didn't want to remove it as it technically would
-      // be a breaking change.
-
-      if (!inhibitDeviceQuery) {
-        this.deviceList.refreshOutdatedDeviceLists();
-      }
+    // we don't want to force a download of the full membership list of this room, but as soon as we have that
+    // list we can start tracking the device list.
+    if (room.membersLoaded()) {
+      await this.trackRoomDevicesImpl(room);
     } else {
-      _logger.logger.log("Enabling encryption in " + roomId);
+      // wait for the membership list to be loaded
+      const onState = _state => {
+        room.off(_roomState.RoomStateEvent.Update, onState);
+        if (room.membersLoaded()) {
+          this.trackRoomDevicesImpl(room).catch(e => {
+            _logger.logger.error(`Error enabling device tracking in ${roomId}`, e);
+          });
+        }
+      };
+      room.on(_roomState.RoomStateEvent.Update, onState);
     }
   }
+
   /**
    * Make sure we are tracking the device lists for all users in this room.
    *
-   * @param {string} roomId The room ID to start tracking devices in.
-   * @returns {Promise} when all devices for the room have been fetched and marked to track
+   * @param roomId - The room ID to start tracking devices in.
+   * @returns when all devices for the room have been fetched and marked to track
+   * @deprecated there's normally no need to call this function: device list tracking
+   *    will be enabled as soon as we have the full membership list.
    */
-
-
   trackRoomDevices(roomId) {
+    const room = this.clientStore.getRoom(roomId);
+    if (!room) {
+      throw new Error(`Unable to start tracking devices in unknown room ${roomId}`);
+    }
+    return this.trackRoomDevicesImpl(room);
+  }
+
+  /**
+   * Make sure we are tracking the device lists for all users in this room.
+   *
+   * This is normally called when we are about to send an encrypted event, to make sure
+   * we have all the devices in the room; but it is also called when processing an
+   * m.room.encryption state event (if lazy-loading is disabled), or when members are
+   * loaded (if lazy-loading is enabled), to prepare the device list.
+   *
+   * @param room - Room to enable device-list tracking in
+   */
+  trackRoomDevicesImpl(room) {
+    const roomId = room.roomId;
     const trackMembers = async () => {
       // not an encrypted room
       if (!this.roomEncryptors.has(roomId)) {
         return;
       }
-
-      const room = this.clientStore.getRoom(roomId);
-
-      if (!room) {
-        throw new Error(`Unable to start tracking devices in unknown room ${roomId}`);
-      }
-
       _logger.logger.log(`Starting to track devices for room ${roomId} ...`);
-
       const members = await room.getEncryptionTargetMembers();
       members.forEach(m => {
         this.deviceList.startTrackingDeviceList(m.userId);
       });
     };
-
     let promise = this.roomDeviceTrackingState[roomId];
-
     if (!promise) {
       promise = trackMembers();
       this.roomDeviceTrackingState[roomId] = promise.catch(err => {
-        this.roomDeviceTrackingState[roomId] = null;
+        delete this.roomDeviceTrackingState[roomId];
         throw err;
       });
     }
-
     return promise;
   }
+
   /**
    * Try to make sure we have established olm sessions for all known devices for
    * the given users.
    *
-   * @param {string[]} users list of user ids
-   * @param {boolean} force If true, force a new Olm session to be created. Default false.
+   * @param users - list of user ids
+   * @param force - If true, force a new Olm session to be created. Default false.
    *
-   * @return {Promise} resolves once the sessions are complete, to
+   * @returns resolves once the sessions are complete, to
    *    an Object mapping from userId to deviceId to
-   *    {@link module:crypto~OlmSessionResult}
+   *    {@link OlmSessionResult}
    */
-
-
   ensureOlmSessionsForUsers(users, force) {
-    const devicesByUser = {};
-
-    for (let i = 0; i < users.length; ++i) {
-      const userId = users[i];
-      devicesByUser[userId] = [];
+    // map user Id → DeviceInfo[]
+    const devicesByUser = new Map();
+    for (const userId of users) {
+      const userDevices = [];
+      devicesByUser.set(userId, userDevices);
       const devices = this.getStoredDevicesForUser(userId) || [];
-
-      for (let j = 0; j < devices.length; ++j) {
-        const deviceInfo = devices[j];
+      for (const deviceInfo of devices) {
         const key = deviceInfo.getIdentityKey();
-
         if (key == this.olmDevice.deviceCurve25519Key) {
           // don't bother setting up session to ourself
           continue;
         }
-
         if (deviceInfo.verified == DeviceVerification.BLOCKED) {
           // don't bother setting up sessions with blocked users
           continue;
         }
-
-        devicesByUser[userId].push(deviceInfo);
+        userDevices.push(deviceInfo);
       }
     }
-
     return olmlib.ensureOlmSessionsForDevices(this.olmDevice, this.baseApis, devicesByUser, force);
   }
+
   /**
    * Get a list containing all of the room keys
    *
-   * @return {module:crypto/OlmDevice.MegolmSessionData[]} a list of session export objects
+   * @returns a list of session export objects
    */
-
-
   async exportRoomKeys() {
     const exportedSessions = [];
-    await this.cryptoStore.doTxn('readonly', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS], txn => {
+    await this.cryptoStore.doTxn("readonly", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS], txn => {
       this.cryptoStore.getAllEndToEndInboundGroupSessions(txn, s => {
         if (s === null) return;
         const sess = this.olmDevice.exportInboundGroupSession(s.senderKey, s.sessionId, s.sessionData);
@@ -2609,164 +2292,144 @@
     });
     return exportedSessions;
   }
+
   /**
    * Import a list of room keys previously exported by exportRoomKeys
    *
-   * @param {Object[]} keys a list of session export objects
-   * @param {Object} opts
-   * @param {Function} opts.progressCallback called with an object which has a stage param
-   * @return {Promise} a promise which resolves once the keys have been imported
+   * @param keys - a list of session export objects
+   * @returns a promise which resolves once the keys have been imported
    */
-
-
   importRoomKeys(keys, opts = {}) {
     let successes = 0;
     let failures = 0;
     const total = keys.length;
-
     function updateProgress() {
-      opts.progressCallback({
+      opts.progressCallback?.({
         stage: "load_keys",
         successes,
         failures,
         total
       });
     }
-
     return Promise.all(keys.map(key => {
       if (!key.room_id || !key.algorithm) {
         _logger.logger.warn("ignoring room key entry with missing fields", key);
-
         failures++;
-
         if (opts.progressCallback) {
           updateProgress();
         }
-
         return null;
       }
-
       const alg = this.getRoomDecryptor(key.room_id, key.algorithm);
       return alg.importRoomKey(key, opts).finally(() => {
         successes++;
-
         if (opts.progressCallback) {
           updateProgress();
         }
       });
     })).then();
   }
+
   /**
    * Counts the number of end to end session keys that are waiting to be backed up
-   * @returns {Promise<number>} Resolves to the number of sessions requiring backup
+   * @returns Promise which resolves to the number of sessions requiring backup
    */
-
-
   countSessionsNeedingBackup() {
     return this.backupManager.countSessionsNeedingBackup();
   }
+
   /**
    * Perform any background tasks that can be done before a message is ready to
    * send, in order to speed up sending of the message.
    *
-   * @param {module:models/room} room the room the event is in
+   * @param room - the room the event is in
    */
-
-
   prepareToEncrypt(room) {
     const alg = this.roomEncryptors.get(room.roomId);
-
     if (alg) {
       alg.prepareToEncrypt(room);
     }
   }
+
   /**
    * Encrypt an event according to the configuration of the room.
    *
-   * @param {module:models/event.MatrixEvent} event  event to be sent
+   * @param event -  event to be sent
    *
-   * @param {module:models/room} room destination room.
+   * @param room - destination room.
    *
-   * @return {Promise?} Promise which resolves when the event has been
+   * @returns Promise which resolves when the event has been
    *     encrypted, or null if nothing was needed
    */
-
-
   async encryptEvent(event, room) {
-    if (!room) {
-      throw new Error("Cannot send encrypted messages in unknown rooms");
-    }
-
     const roomId = event.getRoomId();
     const alg = this.roomEncryptors.get(roomId);
-
     if (!alg) {
       // MatrixClient has already checked that this room should be encrypted,
       // so this is an unexpected situation.
-      throw new Error("Room was previously configured to use encryption, but is " + "no longer. Perhaps the homeserver is hiding the " + "configuration event.");
+      throw new Error("Room " + roomId + " was previously configured to use encryption, but is " + "no longer. Perhaps the homeserver is hiding the " + "configuration event.");
     }
 
-    if (!this.roomDeviceTrackingState[roomId]) {
-      this.trackRoomDevices(roomId);
-    } // wait for all the room devices to be loaded
-
-
-    await this.roomDeviceTrackingState[roomId];
-    let content = event.getContent(); // If event has an m.relates_to then we need
+    // wait for all the room devices to be loaded
+    await this.trackRoomDevicesImpl(room);
+    let content = event.getContent();
+    // If event has an m.relates_to then we need
     // to put this on the wrapping event instead
-
-    const mRelatesTo = content['m.relates_to'];
-
+    const mRelatesTo = content["m.relates_to"];
     if (mRelatesTo) {
       // Clone content here so we don't remove `m.relates_to` from the local-echo
       content = Object.assign({}, content);
-      delete content['m.relates_to'];
-    } // Treat element's performance metrics the same as `m.relates_to` (when present)
-
-
-    const elementPerfMetrics = content['io.element.performance_metrics'];
+      delete content["m.relates_to"];
+    }
 
+    // Treat element's performance metrics the same as `m.relates_to` (when present)
+    const elementPerfMetrics = content["io.element.performance_metrics"];
     if (elementPerfMetrics) {
       content = Object.assign({}, content);
-      delete content['io.element.performance_metrics'];
+      delete content["io.element.performance_metrics"];
     }
-
     const encryptedContent = await alg.encryptMessage(room, event.getType(), content);
-
     if (mRelatesTo) {
-      encryptedContent['m.relates_to'] = mRelatesTo;
+      encryptedContent["m.relates_to"] = mRelatesTo;
     }
-
     if (elementPerfMetrics) {
-      encryptedContent['io.element.performance_metrics'] = elementPerfMetrics;
+      encryptedContent["io.element.performance_metrics"] = elementPerfMetrics;
     }
-
     event.makeEncrypted("m.room.encrypted", encryptedContent, this.olmDevice.deviceCurve25519Key, this.olmDevice.deviceEd25519Key);
   }
+
   /**
    * Decrypt a received event
    *
-   * @param {MatrixEvent} event
    *
-   * @return {Promise<module:crypto~EventDecryptionResult>} resolves once we have
+   * @returns resolves once we have
    *  finished decrypting. Rejects with an `algorithms.DecryptionError` if there
    *  is a problem decrypting the event.
    */
-
-
   async decryptEvent(event) {
     if (event.isRedacted()) {
+      // Try to decrypt the redaction event, to support encrypted
+      // redaction reasons.  If we can't decrypt, just fall back to using
+      // the original redacted_because.
       const redactionEvent = new _event2.MatrixEvent(_objectSpread({
         room_id: event.getRoomId()
       }, event.getUnsigned().redacted_because));
-      const decryptedEvent = await this.decryptEvent(redactionEvent);
+      let redactedBecause = event.getUnsigned().redacted_because;
+      if (redactionEvent.isEncrypted()) {
+        try {
+          const decryptedEvent = await this.decryptEvent(redactionEvent);
+          redactedBecause = decryptedEvent.clearEvent;
+        } catch (e) {
+          _logger.logger.warn("Decryption of redaction failed. Falling back to unencrypted event.", e);
+        }
+      }
       return {
         clearEvent: {
           room_id: event.getRoomId(),
           type: "m.room.message",
           content: {},
           unsigned: {
-            redacted_because: decryptedEvent.clearEvent
+            redacted_because: redactedBecause
           }
         }
       };
@@ -2776,20 +2439,21 @@
       return alg.decryptEvent(event);
     }
   }
+
   /**
    * Handle the notification from /sync or /keys/changes that device lists have
    * been changed.
    *
-   * @param {Object} syncData Object containing sync tokens associated with this sync
-   * @param {Object} syncDeviceLists device_lists field from /sync, or response from
+   * @param syncData - Object containing sync tokens associated with this sync
+   * @param syncDeviceLists - device_lists field from /sync, or response from
    * /keys/changes
    */
-
-
   async handleDeviceListChanges(syncData, syncDeviceLists) {
     // Initial syncs don't have device change lists. We'll either get the complete list
     // of changes for the interval or will have invalidated everything in willProcessSync
-    if (!syncData.oldSyncToken) return; // Here, we're relying on the fact that we only ever save the sync data after
+    if (!syncData.oldSyncToken) return;
+
+    // Here, we're relying on the fact that we only ever save the sync data after
     // sucessfully saving the device list data, so we're guaranteed that the device
     // list store is at least as fresh as the sync token from the sync store, ie.
     // any device changes received in sync tokens prior to the 'next' token here
@@ -2797,21 +2461,17 @@
     // If we didn't make this assumption, we'd have to use the /keys/changes API
     // to get key changes between the sync token in the device list and the 'old'
     // sync token used here to make sure we didn't miss any.
-
     await this.evalDeviceListChanges(syncDeviceLists);
   }
+
   /**
    * Send a request for some room keys, if we have not already done so
    *
-   * @param {module:crypto~RoomKeyRequestBody} requestBody
-   * @param {Array<{userId: string, deviceId: string}>} recipients
-   * @param {boolean} resend whether to resend the key request if there is
+   * @param resend - whether to resend the key request if there is
    *    already one
    *
-   * @return {Promise} a promise that resolves when the key request is queued
+   * @returns a promise that resolves when the key request is queued
    */
-
-
   requestRoomKey(requestBody, recipients, resend = false) {
     return this.outgoingRoomKeyRequestManager.queueRoomKeyRequest(requestBody, recipients, resend).then(() => {
       if (this.sendKeyRequestsImmediately) {
@@ -2819,57 +2479,45 @@
       }
     }).catch(e => {
       // this normally means we couldn't talk to the store
-      _logger.logger.error('Error requesting key for event', e);
+      _logger.logger.error("Error requesting key for event", e);
     });
   }
+
   /**
    * Cancel any earlier room key request
    *
-   * @param {module:crypto~RoomKeyRequestBody} requestBody
-   *    parameters to match for cancellation
+   * @param requestBody - parameters to match for cancellation
    */
-
-
   cancelRoomKeyRequest(requestBody) {
     this.outgoingRoomKeyRequestManager.cancelRoomKeyRequest(requestBody).catch(e => {
       _logger.logger.warn("Error clearing pending room key requests", e);
     });
   }
+
   /**
    * Re-send any outgoing key requests, eg after verification
-   * @returns {Promise}
+   * @returns
    */
-
-
   async cancelAndResendAllOutgoingKeyRequests() {
     await this.outgoingRoomKeyRequestManager.cancelAndResendAllOutgoingRequests();
   }
+
   /**
    * handle an m.room.encryption event
    *
-   * @param {module:models/event.MatrixEvent} event encryption event
+   * @param room - in which the event was received
+   * @param event - encryption event to be processed
    */
-
-
-  async onCryptoEvent(event) {
-    const roomId = event.getRoomId();
+  async onCryptoEvent(room, event) {
     const content = event.getContent();
-
-    try {
-      // inhibit the device list refresh for now - it will happen once we've
-      // finished processing the sync, in onSyncCompleted.
-      await this.setRoomEncryption(roomId, content, true);
-    } catch (e) {
-      _logger.logger.error("Error configuring encryption in room " + roomId + ":", e);
-    }
+    await this.setRoomEncryptionImpl(room, content);
   }
+
   /**
    * Called before the result of a sync is processed
    *
-   * @param {Object} syncData  the data from the 'MatrixClient.sync' event
+   * @param syncData -  the data from the 'MatrixClient.sync' event
    */
-
-
   async onSyncWillProcess(syncData) {
     if (!syncData.oldSyncToken) {
       // If there is no old sync token, we start all our tracking from
@@ -2877,63 +2525,62 @@
       // be called for all e2e rooms during the processing of the sync,
       // at which point we'll start tracking all the users of that room.
       _logger.logger.log("Initial sync performed - resetting device tracking state");
-
-      this.deviceList.stopTrackingAllDeviceLists(); // we always track our own device list (for key backups etc)
-
+      this.deviceList.stopTrackingAllDeviceLists();
+      // we always track our own device list (for key backups etc)
       this.deviceList.startTrackingDeviceList(this.userId);
       this.roomDeviceTrackingState = {};
     }
-
     this.sendKeyRequestsImmediately = false;
   }
+
   /**
    * handle the completion of a /sync
    *
    * This is called after the processing of each successful /sync response.
    * It is an opportunity to do a batch process on the information received.
    *
-   * @param {Object} syncData  the data from the 'MatrixClient.sync' event
+   * @param syncData -  the data from the 'MatrixClient.sync' event
    */
-
-
   async onSyncCompleted(syncData) {
-    this.deviceList.setSyncToken(syncData.nextSyncToken);
-    this.deviceList.saveIfDirty(); // we always track our own device list (for key backups etc)
+    this.deviceList.setSyncToken(syncData.nextSyncToken ?? null);
+    this.deviceList.saveIfDirty();
 
+    // we always track our own device list (for key backups etc)
     this.deviceList.startTrackingDeviceList(this.userId);
-    this.deviceList.refreshOutdatedDeviceLists(); // we don't start uploading one-time keys until we've caught up with
+    this.deviceList.refreshOutdatedDeviceLists();
+
+    // we don't start uploading one-time keys until we've caught up with
     // to-device messages, to help us avoid throwing away one-time-keys that we
     // are about to receive messages for
     // (https://github.com/vector-im/element-web/issues/2782).
-
     if (!syncData.catchingUp) {
       this.maybeUploadOneTimeKeys();
-      this.processReceivedRoomKeyRequests(); // likewise don't start requesting keys until we've caught up
+      this.processReceivedRoomKeyRequests();
+
+      // likewise don't start requesting keys until we've caught up
       // on to_device messages, otherwise we'll request keys that we're
       // just about to get.
+      this.outgoingRoomKeyRequestManager.sendQueuedRequests();
 
-      this.outgoingRoomKeyRequestManager.sendQueuedRequests(); // Sync has finished so send key requests straight away.
-
+      // Sync has finished so send key requests straight away.
       this.sendKeyRequestsImmediately = true;
     }
   }
+
   /**
    * Trigger the appropriate invalidations and removes for a given
    * device list
    *
-   * @param {Object} deviceLists device_lists field from /sync, or response from
+   * @param deviceLists - device_lists field from /sync, or response from
    * /keys/changes
    */
-
-
   async evalDeviceListChanges(deviceLists) {
-    if (deviceLists.changed && Array.isArray(deviceLists.changed)) {
+    if (Array.isArray(deviceLists?.changed)) {
       deviceLists.changed.forEach(u => {
         this.deviceList.invalidateUserDeviceList(u);
       });
     }
-
-    if (deviceLists.left && Array.isArray(deviceLists.left) && deviceLists.left.length) {
+    if (Array.isArray(deviceLists?.left) && deviceLists.left.length) {
       // Check we really don't share any rooms with these users
       // any more: the server isn't required to give us the
       // exact correct set.
@@ -2945,71 +2592,62 @@
       });
     }
   }
+
   /**
    * Get a list of all the IDs of users we share an e2e room with
    * for which we are tracking devices already
    *
-   * @returns {string[]} List of user IDs
+   * @returns List of user IDs
    */
-
-
   async getTrackedE2eUsers() {
     const e2eUserIds = [];
-
     for (const room of this.getTrackedE2eRooms()) {
       const members = await room.getEncryptionTargetMembers();
-
       for (const member of members) {
         e2eUserIds.push(member.userId);
       }
     }
-
     return e2eUserIds;
   }
+
   /**
    * Get a list of the e2e-enabled rooms we are members of,
    * and for which we are already tracking the devices
    *
-   * @returns {module:models.Room[]}
+   * @returns
    */
-
-
   getTrackedE2eRooms() {
     return this.clientStore.getRooms().filter(room => {
       // check for rooms with encryption enabled
       const alg = this.roomEncryptors.get(room.roomId);
-
       if (!alg) {
         return false;
       }
-
       if (!this.roomDeviceTrackingState[room.roomId]) {
         return false;
-      } // ignore any rooms which we have left
-
+      }
 
+      // ignore any rooms which we have left
       const myMembership = room.getMyMembership();
       return myMembership === "join" || myMembership === "invite";
     });
   }
+
   /**
    * Encrypts and sends a given object via Olm to-device messages to a given
    * set of devices.
-   * @param {object[]} userDeviceInfoArr the devices to send to
-   * @param {object} payload fields to include in the encrypted payload
-   * @return {Promise<{contentMap, deviceInfoByDeviceId}>} Promise which
+   * @param userDeviceInfoArr - the devices to send to
+   * @param payload - fields to include in the encrypted payload
+   * @returns Promise which
    *     resolves once the message has been encrypted and sent to the given
-   *     userDeviceMap, and returns the { contentMap, deviceInfoByDeviceId }
+   *     userDeviceMap, and returns the `{ contentMap, deviceInfoByDeviceId }`
    *     of the successfully sent messages.
    */
-
-
   async encryptAndSendToDevices(userDeviceInfoArr, payload) {
     const toDeviceBatch = {
       eventType: _event.EventType.RoomMessageEncrypted,
       batch: []
     };
-
     try {
       await Promise.all(userDeviceInfoArr.map(async ({
         userId,
@@ -3019,317 +2657,283 @@
         const encryptedContent = {
           algorithm: olmlib.OLM_ALGORITHM,
           sender_key: this.olmDevice.deviceCurve25519Key,
-          ciphertext: {}
+          ciphertext: {},
+          [_event.ToDeviceMessageId]: (0, _uuid.v4)()
         };
         toDeviceBatch.batch.push({
           userId,
           deviceId,
           payload: encryptedContent
         });
-        await olmlib.ensureOlmSessionsForDevices(this.olmDevice, this.baseApis, {
-          [userId]: [deviceInfo]
-        });
+        await olmlib.ensureOlmSessionsForDevices(this.olmDevice, this.baseApis, new Map([[userId, [deviceInfo]]]));
         await olmlib.encryptMessageForDevice(encryptedContent.ciphertext, this.userId, this.deviceId, this.olmDevice, userId, deviceInfo, payload);
-      })); // prune out any devices that encryptMessageForDevice could not encrypt for,
+      }));
+
+      // prune out any devices that encryptMessageForDevice could not encrypt for,
       // in which case it will have just not added anything to the ciphertext object.
       // There's no point sending messages to devices if we couldn't encrypt to them,
       // since that's effectively a blank message.
-
       toDeviceBatch.batch = toDeviceBatch.batch.filter(msg => {
         if (Object.keys(msg.payload.ciphertext).length > 0) {
           return true;
         } else {
           _logger.logger.log(`No ciphertext for device ${msg.userId}:${msg.deviceId}: pruning`);
-
           return false;
         }
       });
-
       try {
         await this.baseApis.queueToDevice(toDeviceBatch);
       } catch (e) {
         _logger.logger.error("sendToDevice failed", e);
-
         throw e;
       }
     } catch (e) {
       _logger.logger.error("encryptAndSendToDevices promises failed", e);
-
       throw e;
     }
   }
-
+  async preprocessToDeviceMessages(events) {
+    // all we do here is filter out encrypted to-device messages with the wrong algorithm. Decryption
+    // happens later in decryptEvent, via the EventMapper
+    return events.filter(toDevice => {
+      if (toDevice.type === _event.EventType.RoomMessageEncrypted && !["m.olm.v1.curve25519-aes-sha2"].includes(toDevice.content?.algorithm)) {
+        _logger.logger.log("Ignoring invalid encrypted to-device event from " + toDevice.sender);
+        return false;
+      }
+      return true;
+    });
+  }
   /**
    * Handle a key event
    *
-   * @private
-   * @param {module:models/event.MatrixEvent} event key event
+   * @internal
+   * @param event - key event
    */
   onRoomKeyEvent(event) {
     const content = event.getContent();
-
     if (!content.room_id || !content.algorithm) {
       _logger.logger.error("key event is missing fields");
-
       return;
     }
-
     if (!this.backupManager.checkedForBackup) {
       // don't bother awaiting on this - the important thing is that we retry if we
       // haven't managed to check before
       this.backupManager.checkAndStart();
     }
-
     const alg = this.getRoomDecryptor(content.room_id, content.algorithm);
     alg.onRoomKeyEvent(event);
   }
+
   /**
    * Handle a key withheld event
    *
-   * @private
-   * @param {module:models/event.MatrixEvent} event key withheld event
+   * @internal
+   * @param event - key withheld event
    */
-
-
   onRoomKeyWithheldEvent(event) {
     const content = event.getContent();
-
     if (content.code !== "m.no_olm" && (!content.room_id || !content.session_id) || !content.algorithm || !content.sender_key) {
       _logger.logger.error("key withheld event is missing fields");
-
       return;
     }
-
-    _logger.logger.info(`Got room key withheld event from ${event.getSender()} (${content.sender_key}) ` + `for ${content.algorithm}/${content.room_id}/${content.session_id} ` + `with reason ${content.code} (${content.reason})`);
-
+    _logger.logger.info(`Got room key withheld event from ${event.getSender()} ` + `for ${content.algorithm} session ${content.sender_key}|${content.session_id} ` + `in room ${content.room_id} with code ${content.code} (${content.reason})`);
     const alg = this.getRoomDecryptor(content.room_id, content.algorithm);
-
     if (alg.onRoomKeyWithheldEvent) {
       alg.onRoomKeyWithheldEvent(event);
     }
-
     if (!content.room_id) {
       // retry decryption for all events sent by the sender_key.  This will
       // update the events to show a message indicating that the olm session was
       // wedged.
       const roomDecryptors = this.getRoomDecryptors(content.algorithm);
-
       for (const decryptor of roomDecryptors) {
         decryptor.retryDecryptionFromSender(content.sender_key);
       }
     }
   }
+
   /**
    * Handle a general key verification event.
    *
-   * @private
-   * @param {module:models/event.MatrixEvent} event verification start event
+   * @internal
+   * @param event - verification start event
    */
-
-
   onKeyVerificationMessage(event) {
     if (!_ToDeviceChannel.ToDeviceChannel.validateEvent(event, this.baseApis)) {
       return;
     }
-
     const createRequest = event => {
       if (!_ToDeviceChannel.ToDeviceChannel.canCreateRequest(_ToDeviceChannel.ToDeviceChannel.getEventType(event))) {
         return;
       }
-
       const content = event.getContent();
       const deviceId = content && content.from_device;
-
       if (!deviceId) {
         return;
       }
-
       const userId = event.getSender();
       const channel = new _ToDeviceChannel.ToDeviceChannel(this.baseApis, userId, [deviceId]);
       return new _VerificationRequest.VerificationRequest(channel, this.verificationMethods, this.baseApis);
     };
-
     this.handleVerificationEvent(event, this.toDeviceVerificationRequests, createRequest);
   }
+
   /**
    * Handle key verification requests sent as timeline events
    *
-   * @private
-   * @param {module:models/event.MatrixEvent} event the timeline event
-   * @param {module:models/Room} room not used
-   * @param {boolean} atStart not used
-   * @param {boolean} removed not used
-   * @param {boolean} { liveEvent } whether this is a live event
+   * @internal
+   * @param event - the timeline event
+   * @param room - not used
+   * @param atStart - not used
+   * @param removed - not used
+   * @param whether - this is a live event
    */
 
-
   async handleVerificationEvent(event, requestsMap, createRequest, isLiveEvent = true) {
     // Wait for event to get its final ID with pendingEventOrdering: "chronological", since DM channels depend on it.
     if (event.isSending() && event.status != _event2.EventStatus.SENT) {
       let eventIdListener;
       let statusListener;
-
       try {
         await new Promise((resolve, reject) => {
           eventIdListener = resolve;
-
           statusListener = () => {
             if (event.status == _event2.EventStatus.CANCELLED) {
               reject(new Error("Event status set to CANCELLED."));
             }
           };
-
           event.once(_event2.MatrixEventEvent.LocalEventIdReplaced, eventIdListener);
           event.on(_event2.MatrixEventEvent.Status, statusListener);
         });
       } catch (err) {
         _logger.logger.error("error while waiting for the verification event to be sent: ", err);
-
         return;
       } finally {
         event.removeListener(_event2.MatrixEventEvent.LocalEventIdReplaced, eventIdListener);
         event.removeListener(_event2.MatrixEventEvent.Status, statusListener);
       }
     }
-
     let request = requestsMap.getRequest(event);
     let isNewRequest = false;
-
     if (!request) {
-      request = createRequest(event); // a request could not be made from this event, so ignore event
-
+      request = createRequest(event);
+      // a request could not be made from this event, so ignore event
       if (!request) {
         _logger.logger.log(`Crypto: could not find VerificationRequest for ` + `${event.getType()}, and could not create one, so ignoring.`);
-
         return;
       }
-
       isNewRequest = true;
       requestsMap.setRequest(event, request);
     }
-
     event.setVerificationRequest(request);
-
     try {
       await request.channel.handleEvent(event, request, isLiveEvent);
     } catch (err) {
       _logger.logger.error("error while handling verification event", err);
     }
-
-    const shouldEmit = isNewRequest && !request.initiatedByMe && !request.invalid && // check it has enough events to pass the UNSENT stage
+    const shouldEmit = isNewRequest && !request.initiatedByMe && !request.invalid &&
+    // check it has enough events to pass the UNSENT stage
     !request.observeOnly;
-
     if (shouldEmit) {
       this.baseApis.emit(CryptoEvent.VerificationRequest, request);
     }
   }
+
   /**
    * Handle a toDevice event that couldn't be decrypted
    *
-   * @private
-   * @param {module:models/event.MatrixEvent} event undecryptable event
+   * @internal
+   * @param event - undecryptable event
    */
-
-
   async onToDeviceBadEncrypted(event) {
     const content = event.getWireContent();
     const sender = event.getSender();
     const algorithm = content.algorithm;
-    const deviceKey = content.sender_key; // retry decryption for all events sent by the sender_key.  This will
+    const deviceKey = content.sender_key;
+    this.baseApis.emit(_client.ClientEvent.UndecryptableToDeviceEvent, event);
+
+    // retry decryption for all events sent by the sender_key.  This will
     // update the events to show a message indicating that the olm session was
     // wedged.
-
     const retryDecryption = () => {
       const roomDecryptors = this.getRoomDecryptors(olmlib.MEGOLM_ALGORITHM);
-
       for (const decryptor of roomDecryptors) {
         decryptor.retryDecryptionFromSender(deviceKey);
       }
     };
-
     if (sender === undefined || deviceKey === undefined || deviceKey === undefined) {
       return;
-    } // check when we last forced a new session with this device: if we've already done so
-    // recently, don't do it again.
-
-
-    this.lastNewSessionForced[sender] = this.lastNewSessionForced[sender] || {};
-    const lastNewSessionForced = this.lastNewSessionForced[sender][deviceKey] || 0;
+    }
 
+    // check when we last forced a new session with this device: if we've already done so
+    // recently, don't do it again.
+    const lastNewSessionDevices = this.lastNewSessionForced.getOrCreate(sender);
+    const lastNewSessionForced = lastNewSessionDevices.getOrCreate(deviceKey);
     if (lastNewSessionForced + MIN_FORCE_SESSION_INTERVAL_MS > Date.now()) {
       _logger.logger.debug("New session already forced with device " + sender + ":" + deviceKey + " at " + lastNewSessionForced + ": not forcing another");
-
       await this.olmDevice.recordSessionProblem(deviceKey, "wedged", true);
       retryDecryption();
       return;
-    } // establish a new olm session with this device since we're failing to decrypt messages
+    }
+
+    // establish a new olm session with this device since we're failing to decrypt messages
     // on a current session.
     // Note that an undecryptable message from another device could easily be spoofed -
     // is there anything we can do to mitigate this?
-
-
     let device = this.deviceList.getDeviceByIdentityKey(algorithm, deviceKey);
-
     if (!device) {
       // if we don't know about the device, fetch the user's devices again
       // and retry before giving up
       await this.downloadKeys([sender], false);
       device = this.deviceList.getDeviceByIdentityKey(algorithm, deviceKey);
-
       if (!device) {
         _logger.logger.info("Couldn't find device for identity key " + deviceKey + ": not re-establishing session");
-
         await this.olmDevice.recordSessionProblem(deviceKey, "wedged", false);
         retryDecryption();
         return;
       }
     }
-
-    const devicesByUser = {};
-    devicesByUser[sender] = [device];
+    const devicesByUser = new Map([[sender, [device]]]);
     await olmlib.ensureOlmSessionsForDevices(this.olmDevice, this.baseApis, devicesByUser, true);
-    this.lastNewSessionForced[sender][deviceKey] = Date.now(); // Now send a blank message on that session so the other side knows about it.
+    lastNewSessionDevices.set(deviceKey, Date.now());
+
+    // Now send a blank message on that session so the other side knows about it.
     // (The keyshare request is sent in the clear so that won't do)
     // We send this first such that, as long as the toDevice messages arrive in the
     // same order we sent them, the other end will get this first, set up the new session,
     // then get the keyshare request and send the key over this new session (because it
     // is the session it has most recently received a message on).
-
     const encryptedContent = {
       algorithm: olmlib.OLM_ALGORITHM,
       sender_key: this.olmDevice.deviceCurve25519Key,
-      ciphertext: {}
+      ciphertext: {},
+      [_event.ToDeviceMessageId]: (0, _uuid.v4)()
     };
     await olmlib.encryptMessageForDevice(encryptedContent.ciphertext, this.userId, this.deviceId, this.olmDevice, sender, device, {
       type: "m.dummy"
     });
     await this.olmDevice.recordSessionProblem(deviceKey, "wedged", true);
     retryDecryption();
-    await this.baseApis.sendToDevice("m.room.encrypted", {
-      [sender]: {
-        [device.deviceId]: encryptedContent
-      }
-    }); // Most of the time this probably won't be necessary since we'll have queued up a key request when
+    await this.baseApis.sendToDevice("m.room.encrypted", new Map([[sender, new Map([[device.deviceId, encryptedContent]])]]));
+
+    // Most of the time this probably won't be necessary since we'll have queued up a key request when
     // we failed to decrypt the message and will be waiting a bit for the key to arrive before sending
     // it. This won't always be the case though so we need to re-send any that have already been sent
     // to avoid races.
-
     const requestsToResend = await this.outgoingRoomKeyRequestManager.getOutgoingSentRoomKeyRequest(sender, device.deviceId);
-
     for (const keyReq of requestsToResend) {
       this.requestRoomKey(keyReq.requestBody, keyReq.recipients, true);
     }
   }
+
   /**
    * Handle a change in the membership state of a member of a room
    *
-   * @private
-   * @param {module:models/event.MatrixEvent} event  event causing the change
-   * @param {module:models/room-member} member  user whose membership changed
-   * @param {string=} oldMembership  previous membership
+   * @internal
+   * @param event -  event causing the change
+   * @param member -  user whose membership changed
+   * @param oldMembership -  previous membership
    */
-
-
   onRoomMembership(event, member, oldMembership) {
     // this event handler is registered on the *client* (as opposed to the room
     // member itself), which means it is only called on changes to the *live*
@@ -3338,44 +2942,38 @@
     //
     // Further, it is automatically registered and called when new members
     // arrive in the room.
+
     const roomId = member.roomId;
     const alg = this.roomEncryptors.get(roomId);
-
     if (!alg) {
       // not encrypting in this room
       return;
-    } // only mark users in this room as tracked if we already started tracking in this room
+    }
+    // only mark users in this room as tracked if we already started tracking in this room
     // this way we don't start device queries after sync on behalf of this room which we won't use
     // the result of anyway, as we'll need to do a query again once all the members are fetched
     // by calling _trackRoomDevices
-
-
-    if (this.roomDeviceTrackingState[roomId]) {
-      if (member.membership == 'join') {
-        _logger.logger.log('Join event for ' + member.userId + ' in ' + roomId); // make sure we are tracking the deviceList for this user
-
-
+    if (roomId in this.roomDeviceTrackingState) {
+      if (member.membership == "join") {
+        _logger.logger.log("Join event for " + member.userId + " in " + roomId);
+        // make sure we are tracking the deviceList for this user
         this.deviceList.startTrackingDeviceList(member.userId);
-      } else if (member.membership == 'invite' && this.clientStore.getRoom(roomId).shouldEncryptForInvitedMembers()) {
-        _logger.logger.log('Invite event for ' + member.userId + ' in ' + roomId);
-
+      } else if (member.membership == "invite" && this.clientStore.getRoom(roomId)?.shouldEncryptForInvitedMembers()) {
+        _logger.logger.log("Invite event for " + member.userId + " in " + roomId);
         this.deviceList.startTrackingDeviceList(member.userId);
       }
     }
-
     alg.onRoomMembership(event, member, oldMembership);
   }
+
   /**
    * Called when we get an m.room_key_request event.
    *
-   * @private
-   * @param {module:models/event.MatrixEvent} event key request event
+   * @internal
+   * @param event - key request event
    */
-
-
   onRoomKeyRequestEvent(event) {
     const content = event.getContent();
-
     if (content.action === "request") {
       // Queue it up for now, because they tend to arrive before the room state
       // events at initial sync, and we want to see if we know anything about the
@@ -3387,37 +2985,35 @@
       this.receivedRoomKeyRequestCancellations.push(req);
     }
   }
+
   /**
    * Process any m.room_key_request events which were queued up during the
    * current sync.
    *
-   * @private
+   * @internal
    */
-
-
   async processReceivedRoomKeyRequests() {
     if (this.processingRoomKeyRequests) {
       // we're still processing last time's requests; keep queuing new ones
       // up for now.
       return;
     }
-
     this.processingRoomKeyRequests = true;
-
     try {
       // we need to grab and clear the queues in the synchronous bit of this method,
       // so that we don't end up racing with the next /sync.
       const requests = this.receivedRoomKeyRequests;
       this.receivedRoomKeyRequests = [];
       const cancellations = this.receivedRoomKeyRequestCancellations;
-      this.receivedRoomKeyRequestCancellations = []; // Process all of the requests, *then* all of the cancellations.
+      this.receivedRoomKeyRequestCancellations = [];
+
+      // Process all of the requests, *then* all of the cancellations.
       //
       // This makes sure that if we get a request and its cancellation in the
       // same /sync result, then we process the request before the
       // cancellation (and end up with a cancelled request), rather than the
       // cancellation before the request (and end up with an outstanding
       // request which should have been cancelled.)
-
       await Promise.all(requests.map(req => this.processReceivedRoomKeyRequest(req)));
       await Promise.all(cancellations.map(cancellation => this.processReceivedRoomKeyRequestCancellation(cancellation)));
     } catch (e) {
@@ -3426,47 +3022,36 @@
       this.processingRoomKeyRequests = false;
     }
   }
+
   /**
    * Helper for processReceivedRoomKeyRequests
    *
-   * @param {IncomingRoomKeyRequest} req
    */
-
-
   async processReceivedRoomKeyRequest(req) {
     const userId = req.userId;
     const deviceId = req.deviceId;
     const body = req.requestBody;
     const roomId = body.room_id;
     const alg = body.algorithm;
-
     _logger.logger.log(`m.room_key_request from ${userId}:${deviceId}` + ` for ${roomId} / ${body.session_id} (id ${req.requestId})`);
-
     if (userId !== this.userId) {
       if (!this.roomEncryptors.get(roomId)) {
         _logger.logger.debug(`room key request for unencrypted room ${roomId}`);
-
         return;
       }
-
       const encryptor = this.roomEncryptors.get(roomId);
       const device = this.deviceList.getStoredDevice(userId, deviceId);
-
       if (!device) {
         _logger.logger.debug(`Ignoring keyshare for unknown device ${userId}:${deviceId}`);
-
         return;
       }
-
       try {
         await encryptor.reshareKeyWithDevice(body.sender_key, body.session_id, userId, device);
       } catch (e) {
         _logger.logger.warn("Failed to re-share keys for session " + body.session_id + " with device " + userId + ":" + device.deviceId, e);
       }
-
       return;
     }
-
     if (deviceId === this.deviceId) {
       // We'll always get these because we send room key requests to
       // '*' (ie. 'all devices') which includes the sending device,
@@ -3477,162 +3062,134 @@
       // always happen, but let's log anyway for now just in case it
       // causes issues.
       _logger.logger.log("Ignoring room key request from ourselves");
-
       return;
-    } // todo: should we queue up requests we don't yet have keys for,
+    }
+
+    // todo: should we queue up requests we don't yet have keys for,
     // in case they turn up later?
+
     // if we don't have a decryptor for this room/alg, we don't have
     // the keys for the requested events, and can drop the requests.
-
-
     if (!this.roomDecryptors.has(roomId)) {
       _logger.logger.log(`room key request for unencrypted room ${roomId}`);
-
       return;
     }
-
     const decryptor = this.roomDecryptors.get(roomId).get(alg);
-
     if (!decryptor) {
       _logger.logger.log(`room key request for unknown alg ${alg} in room ${roomId}`);
-
       return;
     }
-
     if (!(await decryptor.hasKeysForKeyRequest(req))) {
       _logger.logger.log(`room key request for unknown session ${roomId} / ` + body.session_id);
-
       return;
     }
-
     req.share = () => {
       decryptor.shareKeysWithDevice(req);
-    }; // if the device is verified already, share the keys
-
+    };
 
+    // if the device is verified already, share the keys
     if (this.checkDeviceTrust(userId, deviceId).isVerified()) {
-      _logger.logger.log('device is already verified: sharing keys');
-
+      _logger.logger.log("device is already verified: sharing keys");
       req.share();
       return;
     }
-
     this.emit(CryptoEvent.RoomKeyRequest, req);
   }
+
   /**
    * Helper for processReceivedRoomKeyRequests
    *
-   * @param {IncomingRoomKeyRequestCancellation} cancellation
    */
-
-
   async processReceivedRoomKeyRequestCancellation(cancellation) {
-    _logger.logger.log(`m.room_key_request cancellation for ${cancellation.userId}:` + `${cancellation.deviceId} (id ${cancellation.requestId})`); // we should probably only notify the app of cancellations we told it
+    _logger.logger.log(`m.room_key_request cancellation for ${cancellation.userId}:` + `${cancellation.deviceId} (id ${cancellation.requestId})`);
+
+    // we should probably only notify the app of cancellations we told it
     // about, but we don't currently have a record of that, so we just pass
     // everything through.
-
-
     this.emit(CryptoEvent.RoomKeyRequestCancellation, cancellation);
   }
+
   /**
    * Get a decryptor for a given room and algorithm.
    *
    * If we already have a decryptor for the given room and algorithm, return
    * it. Otherwise try to instantiate it.
    *
-   * @private
+   * @internal
    *
-   * @param {string?} roomId   room id for decryptor. If undefined, a temporary
+   * @param roomId -   room id for decryptor. If undefined, a temporary
    * decryptor is instantiated.
    *
-   * @param {string} algorithm  crypto algorithm
-   *
-   * @return {module:crypto.algorithms.base.DecryptionAlgorithm}
+   * @param algorithm -  crypto algorithm
    *
-   * @raises {module:crypto.algorithms.DecryptionError} if the algorithm is
-   * unknown
+   * @throws {@link DecryptionError} if the algorithm is unknown
    */
-
-
   getRoomDecryptor(roomId, algorithm) {
     let decryptors;
     let alg;
-    roomId = roomId || null;
-
     if (roomId) {
       decryptors = this.roomDecryptors.get(roomId);
-
       if (!decryptors) {
         decryptors = new Map();
         this.roomDecryptors.set(roomId, decryptors);
       }
-
       alg = decryptors.get(algorithm);
-
       if (alg) {
         return alg;
       }
     }
-
     const AlgClass = algorithms.DECRYPTION_CLASSES.get(algorithm);
-
     if (!AlgClass) {
-      throw new algorithms.DecryptionError('UNKNOWN_ENCRYPTION_ALGORITHM', 'Unknown encryption algorithm "' + algorithm + '".');
+      throw new algorithms.DecryptionError("UNKNOWN_ENCRYPTION_ALGORITHM", 'Unknown encryption algorithm "' + algorithm + '".');
     }
-
     alg = new AlgClass({
       userId: this.userId,
       crypto: this,
       olmDevice: this.olmDevice,
       baseApis: this.baseApis,
-      roomId: roomId
+      roomId: roomId ?? undefined
     });
-
     if (decryptors) {
       decryptors.set(algorithm, alg);
     }
-
     return alg;
   }
+
   /**
    * Get all the room decryptors for a given encryption algorithm.
    *
-   * @param {string} algorithm The encryption algorithm
+   * @param algorithm - The encryption algorithm
    *
-   * @return {array} An array of room decryptors
+   * @returns An array of room decryptors
    */
-
-
   getRoomDecryptors(algorithm) {
     const decryptors = [];
-
     for (const d of this.roomDecryptors.values()) {
       if (d.has(algorithm)) {
         decryptors.push(d.get(algorithm));
       }
     }
-
     return decryptors;
   }
+
   /**
    * sign the given object with our ed25519 key
    *
-   * @param {Object} obj  Object to which we will add a 'signatures' property
+   * @param obj -  Object to which we will add a 'signatures' property
    */
-
-
   async signObject(obj) {
-    const sigs = obj.signatures || {};
+    const sigs = new Map(Object.entries(obj.signatures || {}));
     const unsigned = obj.unsigned;
     delete obj.signatures;
     delete obj.unsigned;
-    sigs[this.userId] = sigs[this.userId] || {};
-    sigs[this.userId]["ed25519:" + this.deviceId] = await this.olmDevice.sign(_anotherJson.default.stringify(obj));
-    obj.signatures = sigs;
+    const userSignatures = sigs.get(this.userId) || {};
+    sigs.set(this.userId, userSignatures);
+    userSignatures["ed25519:" + this.deviceId] = await this.olmDevice.sign(_anotherJson.default.stringify(obj));
+    obj.signatures = (0, _utils.recursiveMapToObject)(sigs);
     if (unsigned !== undefined) obj.unsigned = unsigned;
   }
-
 }
+
 /**
  * Fix up the backup key, that may be in the wrong format due to a bug in a
  * migration step.  Some backup keys were stored as a comma-separated list of
@@ -3640,133 +3197,73 @@
  * passed a string that looks like a list of integers rather than a base64
  * string, it will attempt to convert it to the right format.
  *
- * @param {string} key the key to check
- * @returns {null | string} If the key is in the wrong format, then the fixed
+ * @param key - the key to check
+ * @returns If the key is in the wrong format, then the fixed
  * key will be returned. Otherwise null will be returned.
  *
  */
-
-
 exports.Crypto = Crypto;
-
 function fixBackupKey(key) {
   if (typeof key !== "string" || key.indexOf(",") < 0) {
     return null;
   }
-
   const fixedKey = Uint8Array.from(key.split(","), x => parseInt(x));
   return olmlib.encodeBase64(fixedKey);
 }
-/**
- * The parameters of a room key request. The details of the request may
- * vary with the crypto algorithm, but the management and storage layers for
- * outgoing requests expect it to have 'room_id' and 'session_id' properties.
- *
- * @typedef {Object} RoomKeyRequestBody
- */
 
 /**
  * Represents a received m.room_key_request event
- *
- * @property {string} userId    user requesting the key
- * @property {string} deviceId  device requesting the key
- * @property {string} requestId unique id for the request
- * @property {module:crypto~RoomKeyRequestBody} requestBody
- * @property {function()} share  callback which, when called, will ask
- *    the relevant crypto algorithm implementation to share the keys for
- *    this request.
  */
+class IncomingRoomKeyRequest {
+  /** user requesting the key */
 
+  /** device requesting the key */
+
+  /** unique id for the request */
+
+  /**
+   * callback which, when called, will ask
+   *    the relevant crypto algorithm implementation to share the keys for
+   *    this request.
+   */
 
-class IncomingRoomKeyRequest {
   constructor(event) {
     _defineProperty(this, "userId", void 0);
-
     _defineProperty(this, "deviceId", void 0);
-
     _defineProperty(this, "requestId", void 0);
-
     _defineProperty(this, "requestBody", void 0);
-
     _defineProperty(this, "share", void 0);
-
     const content = event.getContent();
     this.userId = event.getSender();
     this.deviceId = content.requesting_device_id;
     this.requestId = content.request_id;
     this.requestBody = content.body || {};
-
     this.share = () => {
       throw new Error("don't know how to share keys for this request yet");
     };
   }
-
 }
+
 /**
  * Represents a received m.room_key_request cancellation
- *
- * @property {string} userId    user requesting the cancellation
- * @property {string} deviceId  device requesting the cancellation
- * @property {string} requestId unique id for the request to be cancelled
  */
+exports.IncomingRoomKeyRequest = IncomingRoomKeyRequest;
+class IncomingRoomKeyRequestCancellation {
+  /** user requesting the cancellation */
 
+  /** device requesting the cancellation */
 
-exports.IncomingRoomKeyRequest = IncomingRoomKeyRequest;
+  /** unique id for the request to be cancelled */
 
-class IncomingRoomKeyRequestCancellation {
   constructor(event) {
     _defineProperty(this, "userId", void 0);
-
     _defineProperty(this, "deviceId", void 0);
-
     _defineProperty(this, "requestId", void 0);
-
     const content = event.getContent();
     this.userId = event.getSender();
     this.deviceId = content.requesting_device_id;
     this.requestId = content.request_id;
   }
-
 }
-/**
- * The result of a (successful) call to decryptEvent.
- *
- * @typedef {Object} EventDecryptionResult
- *
- * @property {Object} clearEvent The plaintext payload for the event
- *     (typically containing <tt>type</tt> and <tt>content</tt> fields).
- *
- * @property {?string} senderCurve25519Key Key owned by the sender of this
- *    event.  See {@link module:models/event.MatrixEvent#getSenderKey}.
- *
- * @property {?string} claimedEd25519Key ed25519 key claimed by the sender of
- *    this event. See
- *    {@link module:models/event.MatrixEvent#getClaimedEd25519Key}.
- *
- * @property {?Array<string>} forwardingCurve25519KeyChain list of curve25519
- *     keys involved in telling us about the senderCurve25519Key and
- *     claimedEd25519Key. See
- *     {@link module:models/event.MatrixEvent#getForwardingCurve25519KeyChain}.
- */
-
-/**
- * Fires when we receive a room key request
- *
- * @event module:client~MatrixClient#"crypto.roomKeyRequest"
- * @param {module:crypto~IncomingRoomKeyRequest} req  request details
- */
 
-/**
- * Fires when we receive a room key request cancellation
- *
- * @event module:client~MatrixClient#"crypto.roomKeyRequestCancellation"
- * @param {module:crypto~IncomingRoomKeyRequestCancellation} req
- */
-
-/**
- * Fires when the app may wish to warn the user about something related
- * the end-to-end crypto.
- *
- * @event module:client~MatrixClient#"crypto.warning"
- * @param {string} type One of the strings listed above
- */
\ No newline at end of file
+// a number of types are re-exported for backwards compatibility, in case any applications are referencing it.
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/key_passphrase.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/key_passphrase.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/key_passphrase.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/key_passphrase.js	2023-04-11 06:11:52.000000000 +0000
@@ -6,11 +6,8 @@
 exports.deriveKey = deriveKey;
 exports.keyFromAuthData = keyFromAuthData;
 exports.keyFromPassphrase = keyFromPassphrase;
-
 var _randomstring = require("../randomstring");
-
-var _utils = require("../utils");
-
+var _crypto = require("./crypto");
 /*
 Copyright 2018 - 2021 The Matrix.org Foundation C.I.C.
 
@@ -26,28 +23,25 @@
 See the License for the specific language governing permissions and
 limitations under the License.
 */
-const subtleCrypto = typeof window !== "undefined" && window.crypto ? window.crypto.subtle || window.crypto.webkitSubtle : null;
+
 const DEFAULT_ITERATIONS = 500000;
 const DEFAULT_BITSIZE = 256;
+
 /* eslint-disable camelcase */
 
 function keyFromAuthData(authData, password) {
   if (!global.Olm) {
     throw new Error("Olm is not available");
   }
-
   if (!authData.private_key_salt || !authData.private_key_iterations) {
     throw new Error("Salt and/or iterations not found: " + "this backup cannot be restored with a passphrase");
   }
-
   return deriveKey(password, authData.private_key_salt, authData.private_key_iterations, authData.private_key_bits || DEFAULT_BITSIZE);
 }
-
 async function keyFromPassphrase(password) {
   if (!global.Olm) {
     throw new Error("Olm is not available");
   }
-
   const salt = (0, _randomstring.randomString)(32);
   const key = await deriveKey(password, salt, DEFAULT_ITERATIONS, DEFAULT_BITSIZE);
   return {
@@ -56,37 +50,18 @@
     iterations: DEFAULT_ITERATIONS
   };
 }
-
 async function deriveKey(password, salt, iterations, numBits = DEFAULT_BITSIZE) {
-  return subtleCrypto ? deriveKeyBrowser(password, salt, iterations, numBits) : deriveKeyNode(password, salt, iterations, numBits);
-}
-
-async function deriveKeyBrowser(password, salt, iterations, numBits) {
-  const subtleCrypto = global.crypto.subtle;
-  const TextEncoder = global.TextEncoder;
-
-  if (!subtleCrypto || !TextEncoder) {
-    throw new Error("Password-based backup is not avaiable on this platform");
+  if (!_crypto.subtleCrypto || !_crypto.TextEncoder) {
+    throw new Error("Password-based backup is not available on this platform");
   }
-
-  const key = await subtleCrypto.importKey('raw', new TextEncoder().encode(password), {
-    name: 'PBKDF2'
-  }, false, ['deriveBits']);
-  const keybits = await subtleCrypto.deriveBits({
-    name: 'PBKDF2',
-    salt: new TextEncoder().encode(salt),
+  const key = await _crypto.subtleCrypto.importKey("raw", new _crypto.TextEncoder().encode(password), {
+    name: "PBKDF2"
+  }, false, ["deriveBits"]);
+  const keybits = await _crypto.subtleCrypto.deriveBits({
+    name: "PBKDF2",
+    salt: new _crypto.TextEncoder().encode(salt),
     iterations: iterations,
-    hash: 'SHA-512'
+    hash: "SHA-512"
   }, key, numBits);
   return new Uint8Array(keybits);
-}
-
-async function deriveKeyNode(password, salt, iterations, numBits) {
-  const crypto = (0, _utils.getCrypto)();
-
-  if (!crypto) {
-    throw new Error("No usable crypto implementation");
-  }
-
-  return crypto.pbkdf2Sync(password, Buffer.from(salt, 'binary'), iterations, numBits, 'sha512');
 }
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/OlmDevice.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/OlmDevice.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/OlmDevice.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/OlmDevice.js	2023-04-11 06:11:52.000000000 +0000
@@ -3,29 +3,32 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.WITHHELD_MESSAGES = exports.OlmDevice = void 0;
-
+exports.WITHHELD_MESSAGES = exports.PayloadTooLargeError = exports.OlmDevice = void 0;
 var _logger = require("../logger");
-
 var _indexeddbCryptoStore = require("./store/indexeddb-crypto-store");
-
 var algorithms = _interopRequireWildcard(require("./algorithms"));
-
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 // The maximum size of an event is 65K, and we base64 the content, so this is a
 // reasonable approximation to the biggest plaintext we can encrypt.
 const MAX_PLAINTEXT_LENGTH = 65536 * 3 / 4;
-
+class PayloadTooLargeError extends Error {
+  constructor(...args) {
+    super(...args);
+    _defineProperty(this, "data", {
+      errcode: "M_TOO_LARGE",
+      error: "Payload too large for encrypted message"
+    });
+  }
+}
+exports.PayloadTooLargeError = PayloadTooLargeError;
 function checkPayloadLength(payloadString) {
   if (payloadString === undefined) {
     throw new Error("payloadString undefined");
   }
-
   if (payloadString.length > MAX_PLAINTEXT_LENGTH) {
     // might as well fail early here rather than letting the olm library throw
     // a cryptic memory allocation error.
@@ -33,50 +36,25 @@
     // Note that even if we manage to do the encryption, the message send may fail,
     // because by the time we've wrapped the ciphertext in the event object, it may
     // exceed 65K. But at least we won't just fail with "abort()" in that case.
-    const err = new Error("Message too long (" + payloadString.length + " bytes). " + "The maximum for an encrypted message is " + MAX_PLAINTEXT_LENGTH + " bytes."); // TODO: [TypeScript] We should have our own error types
-
-    err["data"] = {
-      errcode: "M_TOO_LARGE",
-      error: "Payload too large for encrypted message"
-    };
-    throw err;
+    throw new PayloadTooLargeError(`Message too long (${payloadString.length} bytes). ` + `The maximum for an encrypted message is ${MAX_PLAINTEXT_LENGTH} bytes.`);
   }
 }
 /**
- * The type of object we use for importing and exporting megolm session data.
- *
- * @typedef {Object} module:crypto/OlmDevice.MegolmSessionData
- * @property {String} sender_key  Sender's Curve25519 device key
- * @property {String[]} forwarding_curve25519_key_chain Devices which forwarded
- *     this session to us (normally empty).
- * @property {Object<string, string>} sender_claimed_keys Other keys the sender claims.
- * @property {String} room_id     Room this session is used in
- * @property {String} session_id  Unique id for the session
- * @property {String} session_key Base64'ed key data
- */
-
-
-/* eslint-enable camelcase */
-
-/**
  * Manages the olm cryptography functions. Each OlmDevice has a single
  * OlmAccount and a number of OlmSessions.
  *
  * Accounts and sessions are kept pickled in the cryptoStore.
- *
- * @constructor
- * @alias module:crypto/OlmDevice
- *
- * @param {Object} cryptoStore A store for crypto data
- *
- * @property {string} deviceCurve25519Key   Curve25519 key for the account
- * @property {string} deviceEd25519Key      Ed25519 key for the account
  */
 class OlmDevice {
   // set by consumers
-  // don't know these until we load the account from storage in init()
+
+  /** Curve25519 key for the account, unknown until we load the account from storage in init() */
+
+  /** Ed25519 key for the account, unknown until we load the account from storage in init() */
+
   // we don't bother stashing outboundgroupsessions in the cryptoStore -
   // instead we keep them here.
+
   // Store a set of decrypted message indexes for each group session.
   // This partially mitigates a replay attack where a MITM resends a group
   // message into the room.
@@ -93,38 +71,33 @@
   //
   // Keys are strings of form "<senderKey>|<session_id>|<message_index>"
   // Values are objects of the form "{id: <event id>, timestamp: <ts>}"
+
   // Keep track of sessions that we're starting, so that we don't start
   // multiple sessions for the same device at the same time.
   // set by consumers
+
   // Used by olm to serialise prekey message decryptions
   // set by consumers
+
   constructor(cryptoStore) {
     this.cryptoStore = cryptoStore;
-
     _defineProperty(this, "pickleKey", "DEFAULT_KEY");
-
     _defineProperty(this, "deviceCurve25519Key", null);
-
     _defineProperty(this, "deviceEd25519Key", null);
-
     _defineProperty(this, "maxOneTimeKeys", null);
-
     _defineProperty(this, "outboundGroupSessionStore", {});
-
     _defineProperty(this, "inboundGroupSessionMessageIndexes", {});
-
     _defineProperty(this, "sessionsInProgress", {});
-
     _defineProperty(this, "olmPrekeyPromise", Promise.resolve());
   }
+
   /**
-   * @return {array} The version of Olm.
+   * @returns The version of Olm.
    */
-
-
   static getOlmVersion() {
     return global.Olm.get_library_version();
   }
+
   /**
    * Initialise the OlmAccount. This must be called before any other operations
    * on the OlmDevice.
@@ -137,60 +110,51 @@
    *
    * Reads the device keys from the OlmAccount object.
    *
-   * @param {object} opts
-   * @param {object} opts.fromExportedDevice (Optional) data from exported device
+   * @param fromExportedDevice - (Optional) data from exported device
    *     that must be re-created.
    *     If present, opts.pickleKey is ignored
    *     (exported data already provides a pickle key)
-   * @param {object} opts.pickleKey (Optional) pickle key to set instead of default one
+   * @param pickleKey - (Optional) pickle key to set instead of default one
    */
-
-
   async init({
     pickleKey,
     fromExportedDevice
   } = {}) {
     let e2eKeys;
     const account = new global.Olm.Account();
-
     try {
       if (fromExportedDevice) {
         if (pickleKey) {
-          _logger.logger.warn('ignoring opts.pickleKey' + ' because opts.fromExportedDevice is present.');
+          _logger.logger.warn("ignoring opts.pickleKey" + " because opts.fromExportedDevice is present.");
         }
-
         this.pickleKey = fromExportedDevice.pickleKey;
         await this.initialiseFromExportedDevice(fromExportedDevice, account);
       } else {
         if (pickleKey) {
           this.pickleKey = pickleKey;
         }
-
         await this.initialiseAccount(account);
       }
-
       e2eKeys = JSON.parse(account.identity_keys());
       this.maxOneTimeKeys = account.max_number_of_one_time_keys();
     } finally {
       account.free();
     }
-
     this.deviceCurve25519Key = e2eKeys.curve25519;
     this.deviceEd25519Key = e2eKeys.ed25519;
   }
+
   /**
    * Populates the crypto store using data that was exported from an existing device.
    * Note that for now only the “account” and “sessions” stores are populated;
    * Other stores will be as with a new device.
    *
-   * @param {IExportedDevice} exportedData Data exported from another device
+   * @param exportedData - Data exported from another device
    *     through the “export” method.
-   * @param {Olm.Account} account an olm account to initialize
+   * @param account - an olm account to initialize
    */
-
-
   async initialiseFromExportedDevice(exportedData, account) {
-    await this.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT, _indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SESSIONS], txn => {
+    await this.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT, _indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SESSIONS], txn => {
       this.cryptoStore.storeAccount(txn, exportedData.pickledAccount);
       exportedData.sessions.forEach(session => {
         const {
@@ -206,9 +170,8 @@
     });
     account.unpickle(this.pickleKey, exportedData.pickledAccount);
   }
-
   async initialiseAccount(account) {
-    await this.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
+    await this.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
       this.cryptoStore.getAccount(txn, pickledAccount => {
         if (pickledAccount !== null) {
           account.unpickle(this.pickleKey, pickledAccount);
@@ -220,6 +183,7 @@
       });
     });
   }
+
   /**
    * extract our OlmAccount from the crypto store and call the given function
    * with the account object
@@ -229,16 +193,12 @@
    * This function requires a live transaction object from cryptoStore.doTxn()
    * and therefore may only be called in a doTxn() callback.
    *
-   * @param {*} txn Opaque transaction object from cryptoStore.doTxn()
-   * @param {function} func
-   * @private
+   * @param txn - Opaque transaction object from cryptoStore.doTxn()
+   * @internal
    */
-
-
   getAccount(txn, func) {
     this.cryptoStore.getAccount(txn, pickledAccount => {
       const account = new global.Olm.Account();
-
       try {
         account.unpickle(this.pickleKey, pickledAccount);
         func(account);
@@ -247,79 +207,69 @@
       }
     });
   }
+
   /*
    * Saves an account to the crypto store.
    * This function requires a live transaction object from cryptoStore.doTxn()
    * and therefore may only be called in a doTxn() callback.
    *
-   * @param {*} txn Opaque transaction object from cryptoStore.doTxn()
-   * @param {object} Olm.Account object
-   * @private
+   * @param txn - Opaque transaction object from cryptoStore.doTxn()
+   * @param Olm.Account object
+   * @internal
    */
-
-
   storeAccount(txn, account) {
     this.cryptoStore.storeAccount(txn, account.pickle(this.pickleKey));
   }
+
   /**
    * Export data for re-creating the Olm device later.
    * TODO export data other than just account and (P2P) sessions.
    *
-   * @return {Promise<object>} The exported data
+   * @returns The exported data
    */
-
-
   async export() {
     const result = {
       pickleKey: this.pickleKey
     };
-    await this.cryptoStore.doTxn('readonly', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT, _indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SESSIONS], txn => {
+    await this.cryptoStore.doTxn("readonly", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT, _indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SESSIONS], txn => {
       this.cryptoStore.getAccount(txn, pickledAccount => {
         result.pickledAccount = pickledAccount;
       });
-      result.sessions = []; // Note that the pickledSession object we get in the callback
+      result.sessions = [];
+      // Note that the pickledSession object we get in the callback
       // is not exactly the same thing you get in method _getSession
       // see documentation of IndexedDBCryptoStore.getAllEndToEndSessions
-
       this.cryptoStore.getAllEndToEndSessions(txn, pickledSession => {
         result.sessions.push(pickledSession);
       });
     });
     return result;
   }
+
   /**
    * extract an OlmSession from the session store and call the given function
    * The session is usable only within the callback passed to this
    * function and will be freed as soon the callback returns. It is *not*
    * usable for the rest of the lifetime of the transaction.
    *
-   * @param {string} deviceKey
-   * @param {string} sessionId
-   * @param {*} txn Opaque transaction object from cryptoStore.doTxn()
-   * @param {function} func
-   * @private
+   * @param txn - Opaque transaction object from cryptoStore.doTxn()
+   * @internal
    */
-
-
   getSession(deviceKey, sessionId, txn, func) {
     this.cryptoStore.getEndToEndSession(deviceKey, sessionId, txn, sessionInfo => {
       this.unpickleSession(sessionInfo, func);
     });
   }
+
   /**
    * Creates a session object from a session pickle and executes the given
    * function with it. The session object is destroyed once the function
    * returns.
    *
-   * @param {object} sessionInfo
-   * @param {function} func
-   * @private
+   * @internal
    */
-
-
   unpickleSession(sessionInfo, func) {
     const session = new global.Olm.Session();
-
     try {
       session.unpickle(this.pickleKey, sessionInfo.session);
       const unpickledSessInfo = Object.assign({}, sessionInfo, {
@@ -330,166 +280,156 @@
       session.free();
     }
   }
+
   /**
    * store our OlmSession in the session store
    *
-   * @param {string} deviceKey
-   * @param {object} sessionInfo {session: OlmSession, lastReceivedMessageTs: int}
-   * @param {*} txn Opaque transaction object from cryptoStore.doTxn()
-   * @private
+   * @param sessionInfo - `{session: OlmSession, lastReceivedMessageTs: int}`
+   * @param txn - Opaque transaction object from cryptoStore.doTxn()
+   * @internal
    */
-
-
   saveSession(deviceKey, sessionInfo, txn) {
     const sessionId = sessionInfo.session.session_id();
+    _logger.logger.debug(`Saving Olm session ${sessionId} with device ${deviceKey}: ${sessionInfo.session.describe()}`);
+
+    // Why do we re-use the input object for this, overwriting the same key with a different
+    // type? Is it because we want to erase the unpickled session to enforce that it's no longer
+    // used? A comment would be great.
     const pickledSessionInfo = Object.assign(sessionInfo, {
       session: sessionInfo.session.pickle(this.pickleKey)
     });
     this.cryptoStore.storeEndToEndSession(deviceKey, sessionId, pickledSessionInfo, txn);
   }
+
   /**
    * get an OlmUtility and call the given function
    *
-   * @param {function} func
-   * @return {object} result of func
-   * @private
+   * @returns result of func
+   * @internal
    */
-
-
   getUtility(func) {
     const utility = new global.Olm.Utility();
-
     try {
       return func(utility);
     } finally {
       utility.free();
     }
   }
+
   /**
    * Signs a message with the ed25519 key for this account.
    *
-   * @param {string} message  message to be signed
-   * @return {Promise<string>} base64-encoded signature
+   * @param message -  message to be signed
+   * @returns base64-encoded signature
    */
-
-
   async sign(message) {
     let result;
-    await this.cryptoStore.doTxn('readonly', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
+    await this.cryptoStore.doTxn("readonly", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
       this.getAccount(txn, account => {
         result = account.sign(message);
       });
     });
     return result;
   }
+
   /**
    * Get the current (unused, unpublished) one-time keys for this account.
    *
-   * @return {object} one time keys; an object with the single property
+   * @returns one time keys; an object with the single property
    * <tt>curve25519</tt>, which is itself an object mapping key id to Curve25519
    * key.
    */
-
-
   async getOneTimeKeys() {
     let result;
-    await this.cryptoStore.doTxn('readonly', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
+    await this.cryptoStore.doTxn("readonly", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
       this.getAccount(txn, account => {
         result = JSON.parse(account.one_time_keys());
       });
     });
     return result;
   }
+
   /**
    * Get the maximum number of one-time keys we can store.
    *
-   * @return {number} number of keys
+   * @returns number of keys
    */
-
-
   maxNumberOfOneTimeKeys() {
-    return this.maxOneTimeKeys;
+    return this.maxOneTimeKeys ?? -1;
   }
+
   /**
    * Marks all of the one-time keys as published.
    */
-
-
   async markKeysAsPublished() {
-    await this.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
+    await this.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
       this.getAccount(txn, account => {
         account.mark_keys_as_published();
         this.storeAccount(txn, account);
       });
     });
   }
+
   /**
    * Generate some new one-time keys
    *
-   * @param {number} numKeys number of keys to generate
-   * @return {Promise} Resolved once the account is saved back having generated the keys
+   * @param numKeys - number of keys to generate
+   * @returns Resolved once the account is saved back having generated the keys
    */
-
-
   generateOneTimeKeys(numKeys) {
-    return this.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
+    return this.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
       this.getAccount(txn, account => {
         account.generate_one_time_keys(numKeys);
         this.storeAccount(txn, account);
       });
     });
   }
+
   /**
    * Generate a new fallback keys
    *
-   * @return {Promise} Resolved once the account is saved back having generated the key
+   * @returns Resolved once the account is saved back having generated the key
    */
-
-
   async generateFallbackKey() {
-    await this.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
+    await this.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
       this.getAccount(txn, account => {
         account.generate_fallback_key();
         this.storeAccount(txn, account);
       });
     });
   }
-
   async getFallbackKey() {
     let result;
-    await this.cryptoStore.doTxn('readonly', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
+    await this.cryptoStore.doTxn("readonly", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
       this.getAccount(txn, account => {
         result = JSON.parse(account.unpublished_fallback_key());
       });
     });
     return result;
   }
-
   async forgetOldFallbackKey() {
-    await this.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
+    await this.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT], txn => {
       this.getAccount(txn, account => {
         account.forget_old_fallback_key();
         this.storeAccount(txn, account);
       });
     });
   }
+
   /**
    * Generate a new outbound session
    *
    * The new session will be stored in the cryptoStore.
    *
-   * @param {string} theirIdentityKey remote user's Curve25519 identity key
-   * @param {string} theirOneTimeKey  remote user's one-time Curve25519 key
-   * @return {string} sessionId for the outbound session.
+   * @param theirIdentityKey - remote user's Curve25519 identity key
+   * @param theirOneTimeKey -  remote user's one-time Curve25519 key
+   * @returns sessionId for the outbound session.
    */
-
-
   async createOutboundSession(theirIdentityKey, theirOneTimeKey) {
     let newSessionId;
-    await this.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT, _indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SESSIONS], txn => {
+    await this.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT, _indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SESSIONS], txn => {
       this.getAccount(txn, account => {
         const session = new global.Olm.Session();
-
         try {
           session.create_outbound(account, theirIdentityKey, theirOneTimeKey);
           newSessionId = session.session_id();
@@ -509,32 +449,27 @@
     }, _logger.logger.withPrefix("[createOutboundSession]"));
     return newSessionId;
   }
+
   /**
    * Generate a new inbound session, given an incoming message
    *
-   * @param {string} theirDeviceIdentityKey remote user's Curve25519 identity key
-   * @param {number} messageType  messageType field from the received message (must be 0)
-   * @param {string} ciphertext base64-encoded body from the received message
+   * @param theirDeviceIdentityKey - remote user's Curve25519 identity key
+   * @param messageType -  messageType field from the received message (must be 0)
+   * @param ciphertext - base64-encoded body from the received message
    *
-   * @return {{payload: string, session_id: string}} decrypted payload, and
+   * @returns decrypted payload, and
    *     session id of new session
    *
-   * @raises {Error} if the received message was not valid (for instance, it
-   *     didn't use a valid one-time key).
+   * @throws Error if the received message was not valid (for instance, it didn't use a valid one-time key).
    */
-
-
   async createInboundSession(theirDeviceIdentityKey, messageType, ciphertext) {
     if (messageType !== 0) {
       throw new Error("Need messageType == 0 to create inbound session");
     }
-
     let result; // eslint-disable-line camelcase
-
-    await this.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT, _indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SESSIONS], txn => {
+    await this.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ACCOUNT, _indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SESSIONS], txn => {
       this.getAccount(txn, account => {
         const session = new global.Olm.Session();
-
         try {
           session.create_inbound_from(account, theirDeviceIdentityKey, ciphertext);
           account.remove_one_time_keys(session);
@@ -558,72 +493,64 @@
     }, _logger.logger.withPrefix("[createInboundSession]"));
     return result;
   }
+
   /**
    * Get a list of known session IDs for the given device
    *
-   * @param {string} theirDeviceIdentityKey Curve25519 identity key for the
+   * @param theirDeviceIdentityKey - Curve25519 identity key for the
    *     remote device
-   * @return {Promise<string[]>}  a list of known session ids for the device
+   * @returns  a list of known session ids for the device
    */
-
-
   async getSessionIdsForDevice(theirDeviceIdentityKey) {
     const log = _logger.logger.withPrefix("[getSessionIdsForDevice]");
-
-    if (this.sessionsInProgress[theirDeviceIdentityKey]) {
+    if (theirDeviceIdentityKey in this.sessionsInProgress) {
       log.debug(`Waiting for Olm session for ${theirDeviceIdentityKey} to be created`);
-
       try {
         await this.sessionsInProgress[theirDeviceIdentityKey];
-      } catch (e) {// if the session failed to be created, just fall through and
+      } catch (e) {
+        // if the session failed to be created, just fall through and
         // return an empty result
       }
     }
-
     let sessionIds;
-    await this.cryptoStore.doTxn('readonly', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SESSIONS], txn => {
+    await this.cryptoStore.doTxn("readonly", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SESSIONS], txn => {
       this.cryptoStore.getEndToEndSessions(theirDeviceIdentityKey, txn, sessions => {
         sessionIds = Object.keys(sessions);
       });
     }, log);
     return sessionIds;
   }
+
   /**
    * Get the right olm session id for encrypting messages to the given identity key
    *
-   * @param {string} theirDeviceIdentityKey Curve25519 identity key for the
+   * @param theirDeviceIdentityKey - Curve25519 identity key for the
    *     remote device
-   * @param {boolean} nowait Don't wait for an in-progress session to complete.
+   * @param nowait - Don't wait for an in-progress session to complete.
    *     This should only be set to true of the calling function is the function
    *     that marked the session as being in-progress.
-   * @param {Logger} [log] A possibly customised log
-   * @return {Promise<?string>}  session id, or null if no established session
+   * @param log - A possibly customised log
+   * @returns  session id, or null if no established session
    */
-
-
   async getSessionIdForDevice(theirDeviceIdentityKey, nowait = false, log) {
     const sessionInfos = await this.getSessionInfoForDevice(theirDeviceIdentityKey, nowait, log);
-
     if (sessionInfos.length === 0) {
       return null;
-    } // Use the session that has most recently received a message
-
-
+    }
+    // Use the session that has most recently received a message
     let idxOfBest = 0;
-
     for (let i = 1; i < sessionInfos.length; i++) {
       const thisSessInfo = sessionInfos[i];
       const thisLastReceived = thisSessInfo.lastReceivedMessageTs === undefined ? 0 : thisSessInfo.lastReceivedMessageTs;
       const bestSessInfo = sessionInfos[idxOfBest];
       const bestLastReceived = bestSessInfo.lastReceivedMessageTs === undefined ? 0 : bestSessInfo.lastReceivedMessageTs;
-
       if (thisLastReceived > bestLastReceived || thisLastReceived === bestLastReceived && thisSessInfo.sessionId < bestSessInfo.sessionId) {
         idxOfBest = i;
       }
     }
-
     return sessionInfos[idxOfBest].sessionId;
   }
+
   /**
    * Get information on the active Olm sessions for a device.
    * <p>
@@ -632,39 +559,33 @@
    * the keys 'hasReceivedMessage' (true if the session has received an incoming
    * message and is therefore past the pre-key stage), and 'sessionId'.
    *
-   * @param {string} deviceIdentityKey Curve25519 identity key for the device
-   * @param {boolean} nowait Don't wait for an in-progress session to complete.
+   * @param deviceIdentityKey - Curve25519 identity key for the device
+   * @param nowait - Don't wait for an in-progress session to complete.
    *     This should only be set to true of the calling function is the function
    *     that marked the session as being in-progress.
-   * @param {Logger} [log] A possibly customised log
-   * @return {Array.<{sessionId: string, hasReceivedMessage: boolean}>}
+   * @param log - A possibly customised log
    */
-
-
   async getSessionInfoForDevice(deviceIdentityKey, nowait = false, log = _logger.logger) {
     log = log.withPrefix("[getSessionInfoForDevice]");
-
-    if (this.sessionsInProgress[deviceIdentityKey] && !nowait) {
+    if (deviceIdentityKey in this.sessionsInProgress && !nowait) {
       log.debug(`Waiting for Olm session for ${deviceIdentityKey} to be created`);
-
       try {
         await this.sessionsInProgress[deviceIdentityKey];
-      } catch (e) {// if the session failed to be created, then just fall through and
+      } catch (e) {
+        // if the session failed to be created, then just fall through and
         // return an empty result
       }
     }
-
     const info = [];
-    await this.cryptoStore.doTxn('readonly', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SESSIONS], txn => {
+    await this.cryptoStore.doTxn("readonly", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SESSIONS], txn => {
       this.cryptoStore.getEndToEndSessions(deviceIdentityKey, txn, sessions => {
         const sessionIds = Object.keys(sessions).sort();
-
         for (const sessionId of sessionIds) {
           this.unpickleSession(sessions[sessionId], sessInfo => {
             info.push({
               lastReceivedMessageTs: sessInfo.lastReceivedMessageTs,
               hasReceivedMessage: sessInfo.session.has_received_message(),
-              sessionId: sessionId
+              sessionId
             });
           });
         }
@@ -672,54 +593,48 @@
     }, log);
     return info;
   }
+
   /**
    * Encrypt an outgoing message using an existing session
    *
-   * @param {string} theirDeviceIdentityKey Curve25519 identity key for the
+   * @param theirDeviceIdentityKey - Curve25519 identity key for the
    *     remote device
-   * @param {string} sessionId  the id of the active session
-   * @param {string} payloadString  payload to be encrypted and sent
+   * @param sessionId -  the id of the active session
+   * @param payloadString -  payload to be encrypted and sent
    *
-   * @return {Promise<string>} ciphertext
+   * @returns ciphertext
    */
-
-
   async encryptMessage(theirDeviceIdentityKey, sessionId, payloadString) {
     checkPayloadLength(payloadString);
     let res;
-    await this.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SESSIONS], txn => {
+    await this.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SESSIONS], txn => {
       this.getSession(theirDeviceIdentityKey, sessionId, txn, sessionInfo => {
         const sessionDesc = sessionInfo.session.describe();
-
         _logger.logger.log("encryptMessage: Olm Session ID " + sessionId + " to " + theirDeviceIdentityKey + ": " + sessionDesc);
-
         res = sessionInfo.session.encrypt(payloadString);
         this.saveSession(theirDeviceIdentityKey, sessionInfo, txn);
       });
     }, _logger.logger.withPrefix("[encryptMessage]"));
     return res;
   }
+
   /**
    * Decrypt an incoming message using an existing session
    *
-   * @param {string} theirDeviceIdentityKey Curve25519 identity key for the
+   * @param theirDeviceIdentityKey - Curve25519 identity key for the
    *     remote device
-   * @param {string} sessionId  the id of the active session
-   * @param {number} messageType  messageType field from the received message
-   * @param {string} ciphertext base64-encoded body from the received message
+   * @param sessionId -  the id of the active session
+   * @param messageType -  messageType field from the received message
+   * @param ciphertext - base64-encoded body from the received message
    *
-   * @return {Promise<string>} decrypted payload.
+   * @returns decrypted payload.
    */
-
-
   async decryptMessage(theirDeviceIdentityKey, sessionId, messageType, ciphertext) {
     let payloadString;
-    await this.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SESSIONS], txn => {
+    await this.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SESSIONS], txn => {
       this.getSession(theirDeviceIdentityKey, sessionId, txn, sessionInfo => {
         const sessionDesc = sessionInfo.session.describe();
-
         _logger.logger.log("decryptMessage: Olm Session ID " + sessionId + " from " + theirDeviceIdentityKey + ": " + sessionDesc);
-
         payloadString = sessionInfo.session.decrypt(messageType, ciphertext);
         sessionInfo.lastReceivedMessageTs = Date.now();
         this.saveSession(theirDeviceIdentityKey, sessionInfo, txn);
@@ -727,78 +642,67 @@
     }, _logger.logger.withPrefix("[decryptMessage]"));
     return payloadString;
   }
+
   /**
    * Determine if an incoming messages is a prekey message matching an existing session
    *
-   * @param {string} theirDeviceIdentityKey Curve25519 identity key for the
+   * @param theirDeviceIdentityKey - Curve25519 identity key for the
    *     remote device
-   * @param {string} sessionId  the id of the active session
-   * @param {number} messageType  messageType field from the received message
-   * @param {string} ciphertext base64-encoded body from the received message
+   * @param sessionId -  the id of the active session
+   * @param messageType -  messageType field from the received message
+   * @param ciphertext - base64-encoded body from the received message
    *
-   * @return {Promise<boolean>} true if the received message is a prekey message which matches
+   * @returns true if the received message is a prekey message which matches
    *    the given session.
    */
-
-
   async matchesSession(theirDeviceIdentityKey, sessionId, messageType, ciphertext) {
     if (messageType !== 0) {
       return false;
     }
-
     let matches;
-    await this.cryptoStore.doTxn('readonly', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SESSIONS], txn => {
+    await this.cryptoStore.doTxn("readonly", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SESSIONS], txn => {
       this.getSession(theirDeviceIdentityKey, sessionId, txn, sessionInfo => {
         matches = sessionInfo.session.matches_inbound(ciphertext);
       });
     }, _logger.logger.withPrefix("[matchesSession]"));
     return matches;
   }
-
   async recordSessionProblem(deviceKey, type, fixed) {
+    _logger.logger.info(`Recording problem on olm session with ${deviceKey} of type ${type}. Recreating: ${fixed}`);
     await this.cryptoStore.storeEndToEndSessionProblem(deviceKey, type, fixed);
   }
-
   sessionMayHaveProblems(deviceKey, timestamp) {
     return this.cryptoStore.getEndToEndSessionProblem(deviceKey, timestamp);
   }
-
   filterOutNotifiedErrorDevices(devices) {
     return this.cryptoStore.filterOutNotifiedErrorDevices(devices);
-  } // Outbound group session
+  }
+
+  // Outbound group session
   // ======================
 
   /**
    * store an OutboundGroupSession in outboundGroupSessionStore
    *
-   * @param {Olm.OutboundGroupSession} session
-   * @private
+   * @internal
    */
-
-
   saveOutboundGroupSession(session) {
     this.outboundGroupSessionStore[session.session_id()] = session.pickle(this.pickleKey);
   }
+
   /**
    * extract an OutboundGroupSession from outboundGroupSessionStore and call the
    * given function
    *
-   * @param {string} sessionId
-   * @param {function} func
-   * @return {object} result of func
-   * @private
+   * @returns result of func
+   * @internal
    */
-
-
   getOutboundGroupSession(sessionId, func) {
     const pickled = this.outboundGroupSessionStore[sessionId];
-
     if (pickled === undefined) {
       throw new Error("Unknown outbound group session " + sessionId);
     }
-
     const session = new global.Olm.OutboundGroupSession();
-
     try {
       session.unpickle(this.pickleKey, pickled);
       return func(session);
@@ -806,16 +710,14 @@
       session.free();
     }
   }
+
   /**
    * Generate a new outbound group session
    *
-   * @return {string} sessionId for the outbound session.
+   * @returns sessionId for the outbound session.
    */
-
-
   createOutboundGroupSession() {
     const session = new global.Olm.OutboundGroupSession();
-
     try {
       session.create();
       this.saveOutboundGroupSession(session);
@@ -824,19 +726,17 @@
       session.free();
     }
   }
+
   /**
    * Encrypt an outgoing message with an outbound group session
    *
-   * @param {string} sessionId  the id of the outboundgroupsession
-   * @param {string} payloadString  payload to be encrypted and sent
+   * @param sessionId -  the id of the outboundgroupsession
+   * @param payloadString -  payload to be encrypted and sent
    *
-   * @return {string} ciphertext
+   * @returns ciphertext
    */
-
-
   encryptGroupMessage(sessionId, payloadString) {
     _logger.logger.log(`encrypting msg with megolm session ${sessionId}`);
-
     checkPayloadLength(payloadString);
     return this.getOutboundGroupSession(sessionId, session => {
       const res = session.encrypt(payloadString);
@@ -844,16 +744,15 @@
       return res;
     });
   }
+
   /**
    * Get the session keys for an outbound group session
    *
-   * @param {string} sessionId  the id of the outbound group session
+   * @param sessionId -  the id of the outbound group session
    *
-   * @return {{chain_index: number, key: string}} current chain index, and
+   * @returns current chain index, and
    *     base64-encoded secret key.
    */
-
-
   getOutboundGroupSessionKey(sessionId) {
     return this.getOutboundGroupSession(sessionId, function (session) {
       return {
@@ -861,22 +760,21 @@
         key: session.session_key()
       };
     });
-  } // Inbound group session
+  }
+
+  // Inbound group session
   // =====================
 
   /**
    * Unpickle a session from a sessionData object and invoke the given function.
    * The session is valid only until func returns.
    *
-   * @param {Object} sessionData Object describing the session.
-   * @param {function(Olm.InboundGroupSession)} func Invoked with the unpickled session
-   * @return {*} result of func
+   * @param sessionData - Object describing the session.
+   * @param func - Invoked with the unpickled session
+   * @returns result of func
    */
-
-
   unpickleInboundGroupSession(sessionData, func) {
     const session = new global.Olm.InboundGroupSession();
-
     try {
       session.unpickle(this.pickleKey, sessionData.session);
       return func(session);
@@ -884,87 +782,75 @@
       session.free();
     }
   }
+
   /**
    * extract an InboundGroupSession from the crypto store and call the given function
    *
-   * @param {string} roomId The room ID to extract the session for, or null to fetch
+   * @param roomId - The room ID to extract the session for, or null to fetch
    *     sessions for any room.
-   * @param {string} senderKey
-   * @param {string} sessionId
-   * @param {*} txn Opaque transaction object from cryptoStore.doTxn()
-   * @param {function(Olm.InboundGroupSession, InboundGroupSessionData)} func
-   *   function to call.
+   * @param txn - Opaque transaction object from cryptoStore.doTxn()
+   * @param func - function to call.
    *
-   * @private
+   * @internal
    */
-
-
   getInboundGroupSession(roomId, senderKey, sessionId, txn, func) {
     this.cryptoStore.getEndToEndInboundGroupSession(senderKey, sessionId, txn, (sessionData, withheld) => {
       if (sessionData === null) {
         func(null, null, withheld);
         return;
-      } // if we were given a room ID, check that the it matches the original one for the session. This stops
-      // the HS pretending a message was targeting a different room.
-
+      }
 
+      // if we were given a room ID, check that the it matches the original one for the session. This stops
+      // the HS pretending a message was targeting a different room.
       if (roomId !== null && roomId !== sessionData.room_id) {
         throw new Error("Mismatched room_id for inbound group session (expected " + sessionData.room_id + ", was " + roomId + ")");
       }
-
       this.unpickleInboundGroupSession(sessionData, session => {
         func(session, sessionData, withheld);
       });
     });
   }
+
   /**
    * Add an inbound group session to the session store
    *
-   * @param {string} roomId     room in which this session will be used
-   * @param {string} senderKey  base64-encoded curve25519 key of the sender
-   * @param {Array<string>} forwardingCurve25519KeyChain  Devices involved in forwarding
+   * @param roomId -     room in which this session will be used
+   * @param senderKey -  base64-encoded curve25519 key of the sender
+   * @param forwardingCurve25519KeyChain -  Devices involved in forwarding
    *     this session to us.
-   * @param {string} sessionId  session identifier
-   * @param {string} sessionKey base64-encoded secret key
-   * @param {Object<string, string>} keysClaimed Other keys the sender claims.
-   * @param {boolean} exportFormat true if the megolm keys are in export format
+   * @param sessionId -  session identifier
+   * @param sessionKey - base64-encoded secret key
+   * @param keysClaimed - Other keys the sender claims.
+   * @param exportFormat - true if the megolm keys are in export format
    *    (ie, they lack an ed25519 signature)
-   * @param {Object} [extraSessionData={}] any other data to be include with the session
+   * @param extraSessionData - any other data to be include with the session
    */
-
-
   async addInboundGroupSession(roomId, senderKey, forwardingCurve25519KeyChain, sessionId, sessionKey, keysClaimed, exportFormat, extraSessionData = {}) {
-    await this.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS, _indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS_WITHHELD, _indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SHARED_HISTORY_INBOUND_GROUP_SESSIONS], txn => {
+    await this.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS, _indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS_WITHHELD, _indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SHARED_HISTORY_INBOUND_GROUP_SESSIONS], txn => {
       /* if we already have this session, consider updating it */
       this.getInboundGroupSession(roomId, senderKey, sessionId, txn, (existingSession, existingSessionData) => {
         // new session.
         const session = new global.Olm.InboundGroupSession();
-
         try {
           if (exportFormat) {
             session.import_session(sessionKey);
           } else {
             session.create(sessionKey);
           }
-
           if (sessionId != session.session_id()) {
             throw new Error("Mismatched group session ID from senderKey: " + senderKey);
           }
-
           if (existingSession) {
-            _logger.logger.log("Update for megolm session " + senderKey + "/" + sessionId);
-
+            _logger.logger.log(`Update for megolm session ${senderKey}|${sessionId}`);
             if (existingSession.first_known_index() <= session.first_known_index()) {
               if (!existingSessionData.untrusted || extraSessionData.untrusted) {
                 // existing session has less-than-or-equal index
                 // (i.e. can decrypt at least as much), and the
                 // new session's trust does not win over the old
                 // session's trust, so keep it
-                _logger.logger.log(`Keeping existing megolm session ${sessionId}`);
-
+                _logger.logger.log(`Keeping existing megolm session ${senderKey}|${sessionId}`);
                 return;
               }
-
               if (existingSession.first_known_index() < session.first_known_index()) {
                 // We want to upgrade the existing session's trust,
                 // but we can't just use the new session because we'll
@@ -972,22 +858,19 @@
                 // properly, and then manually set the existing session
                 // as trusted.
                 if (existingSession.export_session(session.first_known_index()) === session.export_session(session.first_known_index())) {
-                  _logger.logger.info("Upgrading trust of existing megolm session " + sessionId + " based on newly-received trusted session");
-
+                  _logger.logger.info("Upgrading trust of existing megolm session " + `${senderKey}|${sessionId} based on newly-received trusted session`);
                   existingSessionData.untrusted = false;
                   this.cryptoStore.storeEndToEndInboundGroupSession(senderKey, sessionId, existingSessionData, txn);
                 } else {
-                  _logger.logger.warn("Newly-received megolm session " + sessionId + " does not match existing session! Keeping existing session");
+                  _logger.logger.warn(`Newly-received megolm session ${senderKey}|$sessionId}` + " does not match existing session! Keeping existing session");
                 }
-
                 return;
-              } // If the sessions have the same index, go ahead and store the new trusted one.
-
+              }
+              // If the sessions have the same index, go ahead and store the new trusted one.
             }
           }
 
-          _logger.logger.info("Storing megolm session " + senderKey + "/" + sessionId + " with first index " + session.first_known_index());
-
+          _logger.logger.info(`Storing megolm session ${senderKey}|${sessionId} with first index ` + session.first_known_index());
           const sessionData = Object.assign({}, extraSessionData, {
             room_id: roomId,
             session: session.pickle(this.pickleKey),
@@ -995,7 +878,6 @@
             forwardingCurve25519KeyChain: forwardingCurve25519KeyChain
           });
           this.cryptoStore.storeEndToEndInboundGroupSession(senderKey, sessionId, sessionData, txn);
-
           if (!existingSession && extraSessionData.sharedHistory) {
             this.cryptoStore.addSharedHistoryInboundGroupSession(roomId, senderKey, sessionId, txn);
           }
@@ -1005,19 +887,18 @@
       });
     }, _logger.logger.withPrefix("[addInboundGroupSession]"));
   }
+
   /**
    * Record in the data store why an inbound group session was withheld.
    *
-   * @param {string} roomId     room that the session belongs to
-   * @param {string} senderKey  base64-encoded curve25519 key of the sender
-   * @param {string} sessionId  session identifier
-   * @param {string} code       reason code
-   * @param {string} reason     human-readable version of `code`
+   * @param roomId -     room that the session belongs to
+   * @param senderKey -  base64-encoded curve25519 key of the sender
+   * @param sessionId -  session identifier
+   * @param code -       reason code
+   * @param reason -     human-readable version of `code`
    */
-
-
   async addInboundGroupSessionWithheld(roomId, senderKey, sessionId, code, reason) {
-    await this.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS_WITHHELD], txn => {
+    await this.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS_WITHHELD], txn => {
       this.cryptoStore.storeEndToEndInboundGroupSessionWithheld(senderKey, sessionId, {
         room_id: roomId,
         code: code,
@@ -1025,64 +906,53 @@
       }, txn);
     });
   }
+
   /**
    * Decrypt a received message with an inbound group session
    *
-   * @param {string} roomId    room in which the message was received
-   * @param {string} senderKey base64-encoded curve25519 key of the sender
-   * @param {string} sessionId session identifier
-   * @param {string} body      base64-encoded body of the encrypted message
-   * @param {string} eventId   ID of the event being decrypted
-   * @param {Number} timestamp timestamp of the event being decrypted
-   *
-   * @return {null} the sessionId is unknown
-   *
-   * @return {Promise<{result: string, senderKey: string,
-   *    forwardingCurve25519KeyChain: Array<string>,
-   *    keysClaimed: Object<string, string>}>}
+   * @param roomId -    room in which the message was received
+   * @param senderKey - base64-encoded curve25519 key of the sender
+   * @param sessionId - session identifier
+   * @param body -      base64-encoded body of the encrypted message
+   * @param eventId -   ID of the event being decrypted
+   * @param timestamp - timestamp of the event being decrypted
+   *
+   * @returns null if the sessionId is unknown
    */
-
-
   async decryptGroupMessage(roomId, senderKey, sessionId, body, eventId, timestamp) {
-    let result; // when the localstorage crypto store is used as an indexeddb backend,
+    let result = null;
+    // when the localstorage crypto store is used as an indexeddb backend,
     // exceptions thrown from within the inner function are not passed through
     // to the top level, so we store exceptions in a variable and raise them at
     // the end
-
     let error;
-    await this.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS, _indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS_WITHHELD], txn => {
+    await this.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS, _indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS_WITHHELD], txn => {
       this.getInboundGroupSession(roomId, senderKey, sessionId, txn, (session, sessionData, withheld) => {
-        if (session === null) {
+        if (session === null || sessionData === null) {
           if (withheld) {
             error = new algorithms.DecryptionError("MEGOLM_UNKNOWN_INBOUND_SESSION_ID", calculateWithheldMessage(withheld), {
-              session: senderKey + '|' + sessionId
+              session: senderKey + "|" + sessionId
             });
           }
-
           result = null;
           return;
         }
-
         let res;
-
         try {
           res = session.decrypt(body);
         } catch (e) {
-          if (e && e.message === 'OLM.UNKNOWN_MESSAGE_INDEX' && withheld) {
+          if (e?.message === "OLM.UNKNOWN_MESSAGE_INDEX" && withheld) {
             error = new algorithms.DecryptionError("MEGOLM_UNKNOWN_INBOUND_SESSION_ID", calculateWithheldMessage(withheld), {
-              session: senderKey + '|' + sessionId
+              session: senderKey + "|" + sessionId
             });
           } else {
             error = e;
           }
-
           return;
         }
-
         let plaintext = res.plaintext;
-
         if (plaintext === undefined) {
-          // Compatibility for older olm versions.
+          // @ts-ignore - Compatibility for older olm versions.
           plaintext = res;
         } else {
           // Check if we have seen this message index before to detect replay attacks.
@@ -1090,22 +960,18 @@
           // and timestamp from the last time we used this message index, then we
           // don't consider it a replay attack.
           const messageIndexKey = senderKey + "|" + sessionId + "|" + res.message_index;
-
           if (messageIndexKey in this.inboundGroupSessionMessageIndexes) {
             const msgInfo = this.inboundGroupSessionMessageIndexes[messageIndexKey];
-
             if (msgInfo.id !== eventId || msgInfo.timestamp !== timestamp) {
               error = new Error("Duplicate message index, possible replay attack: " + messageIndexKey);
               return;
             }
           }
-
           this.inboundGroupSessionMessageIndexes[messageIndexKey] = {
             id: eventId,
             timestamp: timestamp
           };
         }
-
         sessionData.session = session.pickle(this.pickleKey);
         this.cryptoStore.storeEndToEndInboundGroupSession(senderKey, sessionId, sessionData, txn);
         result = {
@@ -1113,40 +979,35 @@
           keysClaimed: sessionData.keysClaimed || {},
           senderKey: senderKey,
           forwardingCurve25519KeyChain: sessionData.forwardingCurve25519KeyChain || [],
-          untrusted: sessionData.untrusted
+          untrusted: !!sessionData.untrusted
         };
       });
     }, _logger.logger.withPrefix("[decryptGroupMessage]"));
-
     if (error) {
       throw error;
     }
-
     return result;
   }
+
   /**
    * Determine if we have the keys for a given megolm session
    *
-   * @param {string} roomId    room in which the message was received
-   * @param {string} senderKey base64-encoded curve25519 key of the sender
-   * @param {string} sessionId session identifier
+   * @param roomId -    room in which the message was received
+   * @param senderKey - base64-encoded curve25519 key of the sender
+   * @param sessionId - session identifier
    *
-   * @returns {Promise<boolean>} true if we have the keys to this session
+   * @returns true if we have the keys to this session
    */
-
-
   async hasInboundSessionKeys(roomId, senderKey, sessionId) {
     let result;
-    await this.cryptoStore.doTxn('readonly', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS, _indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS_WITHHELD], txn => {
+    await this.cryptoStore.doTxn("readonly", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS, _indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS_WITHHELD], txn => {
       this.cryptoStore.getEndToEndInboundGroupSession(senderKey, sessionId, txn, sessionData => {
         if (sessionData === null) {
           result = false;
           return;
         }
-
         if (roomId !== sessionData.room_id) {
           _logger.logger.warn(`requested keys for inbound group session ${senderKey}|` + `${sessionId}, with incorrect room_id ` + `(expected ${sessionData.room_id}, ` + `was ${roomId})`);
-
           result = false;
         } else {
           result = true;
@@ -1155,72 +1016,65 @@
     }, _logger.logger.withPrefix("[hasInboundSessionKeys]"));
     return result;
   }
+
   /**
    * Extract the keys to a given megolm session, for sharing
    *
-   * @param {string} roomId    room in which the message was received
-   * @param {string} senderKey base64-encoded curve25519 key of the sender
-   * @param {string} sessionId session identifier
-   * @param {number} chainIndex The chain index at which to export the session.
+   * @param roomId -    room in which the message was received
+   * @param senderKey - base64-encoded curve25519 key of the sender
+   * @param sessionId - session identifier
+   * @param chainIndex - The chain index at which to export the session.
    *     If omitted, export at the first index we know about.
    *
-   * @returns {Promise<{chain_index: number, key: string,
-   *        forwarding_curve25519_key_chain: Array<string>,
-   *        sender_claimed_ed25519_key: string
-   *    }>}
+   * @returns
    *    details of the session key. The key is a base64-encoded megolm key in
    *    export format.
    *
    * @throws Error If the given chain index could not be obtained from the known
    *     index (ie. the given chain index is before the first we have).
    */
-
-
   async getInboundGroupSessionKey(roomId, senderKey, sessionId, chainIndex) {
-    let result;
-    await this.cryptoStore.doTxn('readonly', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS, _indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS_WITHHELD], txn => {
+    let result = null;
+    await this.cryptoStore.doTxn("readonly", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS, _indexeddbCryptoStore.IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS_WITHHELD], txn => {
       this.getInboundGroupSession(roomId, senderKey, sessionId, txn, (session, sessionData) => {
-        if (session === null) {
+        if (session === null || sessionData === null) {
           result = null;
           return;
         }
-
         if (chainIndex === undefined) {
           chainIndex = session.first_known_index();
         }
-
         const exportedSession = session.export_session(chainIndex);
         const claimedKeys = sessionData.keysClaimed || {};
         const senderEd25519Key = claimedKeys.ed25519 || null;
-        const forwardingKeyChain = sessionData.forwardingCurve25519KeyChain || []; // older forwarded keys didn't set the "untrusted"
+        const forwardingKeyChain = sessionData.forwardingCurve25519KeyChain || [];
+        // older forwarded keys didn't set the "untrusted"
         // property, but can be identified by having a
         // non-empty forwarding key chain.  These keys should
         // be marked as untrusted since we don't know that they
         // can be trusted
-
         const untrusted = "untrusted" in sessionData ? sessionData.untrusted : forwardingKeyChain.length > 0;
         result = {
-          "chain_index": chainIndex,
-          "key": exportedSession,
-          "forwarding_curve25519_key_chain": forwardingKeyChain,
-          "sender_claimed_ed25519_key": senderEd25519Key,
-          "shared_history": sessionData.sharedHistory || false,
-          "untrusted": untrusted
+          chain_index: chainIndex,
+          key: exportedSession,
+          forwarding_curve25519_key_chain: forwardingKeyChain,
+          sender_claimed_ed25519_key: senderEd25519Key,
+          shared_history: sessionData.sharedHistory || false,
+          untrusted: untrusted
         };
       });
     }, _logger.logger.withPrefix("[getInboundGroupSessionKey]"));
     return result;
   }
+
   /**
    * Export an inbound group session
    *
-   * @param {string} senderKey base64-encoded curve25519 key of the sender
-   * @param {string} sessionId session identifier
-   * @param {ISessionInfo} sessionData The session object from the store
-   * @return {module:crypto/OlmDevice.MegolmSessionData} exported session data
+   * @param senderKey - base64-encoded curve25519 key of the sender
+   * @param sessionId - session identifier
+   * @param sessionData - The session object from the store
+   * @returns exported session data
    */
-
-
   exportInboundGroupSession(senderKey, sessionId, sessionData) {
     return this.unpickleInboundGroupSession(sessionData, session => {
       const messageIndex = session.first_known_index();
@@ -1236,37 +1090,34 @@
       };
     });
   }
-
   async getSharedHistoryInboundGroupSessions(roomId) {
     let result;
-    await this.cryptoStore.doTxn('readonly', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SHARED_HISTORY_INBOUND_GROUP_SESSIONS], txn => {
+    await this.cryptoStore.doTxn("readonly", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_SHARED_HISTORY_INBOUND_GROUP_SESSIONS], txn => {
       result = this.cryptoStore.getSharedHistoryInboundGroupSessions(roomId, txn);
     }, _logger.logger.withPrefix("[getSharedHistoryInboundGroupSessionsForRoom]"));
     return result;
-  } // Utilities
+  }
+
+  // Utilities
   // =========
 
   /**
    * Verify an ed25519 signature.
    *
-   * @param {string} key ed25519 key
-   * @param {string} message message which was signed
-   * @param {string} signature base64-encoded signature to be checked
+   * @param key - ed25519 key
+   * @param message - message which was signed
+   * @param signature - base64-encoded signature to be checked
    *
-   * @raises {Error} if there is a problem with the verification. If the key was
+   * @throws Error if there is a problem with the verification. If the key was
    * too small then the message will be "OLM.INVALID_BASE64". If the signature
    * was invalid then the message will be "OLM.BAD_MESSAGE_MAC".
    */
-
-
   verifySignature(key, message, signature) {
     this.getUtility(function (util) {
       util.ed25519_verify(key, message, signature);
     });
   }
-
 }
-
 exports.OlmDevice = OlmDevice;
 const WITHHELD_MESSAGES = {
   "m.unverified": "The sender has disabled encrypting to unverified devices.",
@@ -1274,18 +1125,17 @@
   "m.unauthorised": "You are not authorised to read the message.",
   "m.no_olm": "Unable to establish a secure channel."
 };
+
 /**
  * Calculate the message to use for the exception when a session key is withheld.
  *
- * @param {object} withheld  An object that describes why the key was withheld.
+ * @param withheld -  An object that describes why the key was withheld.
  *
- * @return {string} the message
+ * @returns the message
  *
- * @private
+ * @internal
  */
-
 exports.WITHHELD_MESSAGES = WITHHELD_MESSAGES;
-
 function calculateWithheldMessage(withheld) {
   if (withheld.code && withheld.code in WITHHELD_MESSAGES) {
     return WITHHELD_MESSAGES[withheld.code];
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/olmlib.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/olmlib.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/olmlib.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/olmlib.js	2023-04-11 06:11:52.000000000 +0000
@@ -14,74 +14,47 @@
 exports.pkSign = pkSign;
 exports.pkVerify = pkVerify;
 exports.verifySignature = verifySignature;
-
 var _anotherJson = _interopRequireDefault(require("another-json"));
-
 var _logger = require("../logger");
-
 var _event = require("../@types/event");
-
+var _utils = require("../utils");
 function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; }
-
-/*
-Copyright 2016 - 2021 The Matrix.org Foundation C.I.C.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-/**
- * @module olmlib
- *
- * Utilities common to olm encryption algorithms
- */
+function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
+function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 var Algorithm;
 /**
  * matrix algorithm tag for olm
  */
-
 (function (Algorithm) {
   Algorithm["Olm"] = "m.olm.v1.curve25519-aes-sha2";
   Algorithm["Megolm"] = "m.megolm.v1.aes-sha2";
   Algorithm["MegolmBackup"] = "m.megolm_backup.v1.curve25519-aes-sha2";
 })(Algorithm || (Algorithm = {}));
-
 const OLM_ALGORITHM = Algorithm.Olm;
+
 /**
  * matrix algorithm tag for megolm
  */
-
 exports.OLM_ALGORITHM = OLM_ALGORITHM;
 const MEGOLM_ALGORITHM = Algorithm.Megolm;
+
 /**
  * matrix algorithm tag for megolm backups
  */
-
 exports.MEGOLM_ALGORITHM = MEGOLM_ALGORITHM;
 const MEGOLM_BACKUP_ALGORITHM = Algorithm.MegolmBackup;
 exports.MEGOLM_BACKUP_ALGORITHM = MEGOLM_BACKUP_ALGORITHM;
-
 /**
  * Encrypt an event payload for an Olm device
  *
- * @param {Object<string, string>} resultsObject  The `ciphertext` property
+ * @param resultsObject -  The `ciphertext` property
  *   of the m.room.encrypted event to which to add our result
  *
- * @param {string} ourUserId
- * @param {string} ourDeviceId
- * @param {module:crypto/OlmDevice} olmDevice olm.js wrapper
- * @param {string} recipientUserId
- * @param {module:crypto/deviceinfo} recipientDevice
- * @param {object} payloadFields fields to include in the encrypted payload
+ * @param olmDevice - olm.js wrapper
+ * @param payloadFields - fields to include in the encrypted payload
  *
  * Returns a promise which resolves (to undefined) when the payload
  *    has been encrypted into `resultsObject`
@@ -89,16 +62,14 @@
 async function encryptMessageForDevice(resultsObject, ourUserId, ourDeviceId, olmDevice, recipientUserId, recipientDevice, payloadFields) {
   const deviceKey = recipientDevice.getIdentityKey();
   const sessionId = await olmDevice.getSessionIdForDevice(deviceKey);
-
   if (sessionId === null) {
     // If we don't have a session for a device then
     // we can't encrypt a message for it.
+    _logger.logger.log(`[olmlib.encryptMessageForDevice] Unable to find Olm session for device ` + `${recipientUserId}:${recipientDevice.deviceId}`);
     return;
   }
-
-  _logger.logger.log("Using sessionid " + sessionId + " for device " + recipientUserId + ":" + recipientDevice.deviceId);
-
-  const payload = {
+  _logger.logger.log(`[olmlib.encryptMessageForDevice] Using Olm session ${sessionId} for device ` + `${recipientUserId}:${recipientDevice.deviceId}`);
+  const payload = _objectSpread({
     sender: ourUserId,
     // TODO this appears to no longer be used whatsoever
     sender_device: ourDeviceId,
@@ -111,148 +82,125 @@
     // the curve25519 key and the ed25519 key are owned by
     // the same device.
     keys: {
-      "ed25519": olmDevice.deviceEd25519Key
+      ed25519: olmDevice.deviceEd25519Key
     },
     // include the recipient device details in the payload,
     // to avoid unknown key attacks, per
     // https://github.com/vector-im/vector-web/issues/2483
     recipient: recipientUserId,
     recipient_keys: {
-      "ed25519": recipientDevice.getFingerprint()
+      ed25519: recipientDevice.getFingerprint()
     }
-  }; // TODO: technically, a bunch of that stuff only needs to be included for
+  }, payloadFields);
+
+  // TODO: technically, a bunch of that stuff only needs to be included for
   // pre-key messages: after that, both sides know exactly which devices are
   // involved in the session. If we're looking to reduce data transfer in the
   // future, we could elide them for subsequent messages.
 
-  Object.assign(payload, payloadFields);
   resultsObject[deviceKey] = await olmDevice.encryptMessage(deviceKey, sessionId, JSON.stringify(payload));
 }
-
 /**
  * Get the existing olm sessions for the given devices, and the devices that
  * don't have olm sessions.
  *
- * @param {module:crypto/OlmDevice} olmDevice
  *
- * @param {MatrixClient} baseApis
  *
- * @param {object<string, module:crypto/deviceinfo[]>} devicesByUser
- *    map from userid to list of devices to ensure sessions for
+ * @param devicesByUser - map from userid to list of devices to ensure sessions for
  *
- * @return {Promise} resolves to an array.  The first element of the array is a
+ * @returns resolves to an array.  The first element of the array is a
  *    a map of user IDs to arrays of deviceInfo, representing the devices that
  *    don't have established olm sessions.  The second element of the array is
- *    a map from userId to deviceId to {@link module:crypto~OlmSessionResult}
+ *    a map from userId to deviceId to {@link OlmSessionResult}
  */
 async function getExistingOlmSessions(olmDevice, baseApis, devicesByUser) {
-  const devicesWithoutSession = {};
-  const sessions = {};
+  // map user Id → DeviceInfo[]
+  const devicesWithoutSession = new _utils.MapWithDefault(() => []);
+  // map user Id → device Id → IExistingOlmSession
+  const sessions = new _utils.MapWithDefault(() => new Map());
   const promises = [];
-
   for (const [userId, devices] of Object.entries(devicesByUser)) {
     for (const deviceInfo of devices) {
       const deviceId = deviceInfo.deviceId;
       const key = deviceInfo.getIdentityKey();
       promises.push((async () => {
         const sessionId = await olmDevice.getSessionIdForDevice(key, true);
-
         if (sessionId === null) {
-          devicesWithoutSession[userId] = devicesWithoutSession[userId] || [];
-          devicesWithoutSession[userId].push(deviceInfo);
+          devicesWithoutSession.getOrCreate(userId).push(deviceInfo);
         } else {
-          sessions[userId] = sessions[userId] || {};
-          sessions[userId][deviceId] = {
+          sessions.getOrCreate(userId).set(deviceId, {
             device: deviceInfo,
             sessionId: sessionId
-          };
+          });
         }
       })());
     }
   }
-
   await Promise.all(promises);
   return [devicesWithoutSession, sessions];
 }
+
 /**
  * Try to make sure we have established olm sessions for the given devices.
  *
- * @param {module:crypto/OlmDevice} olmDevice
- *
- * @param {MatrixClient} baseApis
- *
- * @param {object<string, module:crypto/deviceinfo[]>} devicesByUser
- *    map from userid to list of devices to ensure sessions for
+ * @param devicesByUser - map from userid to list of devices to ensure sessions for
  *
- * @param {boolean} [force=false] If true, establish a new session even if one
+ * @param force - If true, establish a new session even if one
  *     already exists.
  *
- * @param {Number} [otkTimeout] The timeout in milliseconds when requesting
+ * @param otkTimeout - The timeout in milliseconds when requesting
  *     one-time keys for establishing new olm sessions.
  *
- * @param {Array} [failedServers] An array to fill with remote servers that
+ * @param failedServers - An array to fill with remote servers that
  *     failed to respond to one-time-key requests.
  *
- * @param {Logger} [log] A possibly customised log
+ * @param log - A possibly customised log
  *
- * @return {Promise} resolves once the sessions are complete, to
+ * @returns resolves once the sessions are complete, to
  *    an Object mapping from userId to deviceId to
- *    {@link module:crypto~OlmSessionResult}
+ *    {@link OlmSessionResult}
  */
-
-
 async function ensureOlmSessionsForDevices(olmDevice, baseApis, devicesByUser, force = false, otkTimeout, failedServers, log = _logger.logger) {
-  if (typeof force === "number") {
-    // eslint-disable-next-line @typescript-eslint/ban-ts-comment
-    // @ts-ignore - backwards compatibility
-    log = failedServers; // eslint-disable-next-line @typescript-eslint/ban-ts-comment
-    // @ts-ignore - backwards compatibility
-
-    failedServers = otkTimeout;
-    otkTimeout = force;
-    force = false;
-  }
-
-  const devicesWithoutSession = [// [userId, deviceId], ...
+  const devicesWithoutSession = [
+    // [userId, deviceId], ...
   ];
-  const result = {};
-  const resolveSession = {}; // Mark all sessions this task intends to update as in progress. It is
+  // map user Id → device Id → IExistingOlmSession
+  const result = new Map();
+  // map device key → resolve session fn
+  const resolveSession = new Map();
+
+  // Mark all sessions this task intends to update as in progress. It is
   // important to do this for all devices this task cares about in a single
   // synchronous operation, as otherwise it is possible to have deadlocks
   // where multiple tasks wait indefinitely on another task to update some set
   // of common devices.
-
-  for (const [, devices] of Object.entries(devicesByUser)) {
+  for (const devices of devicesByUser.values()) {
     for (const deviceInfo of devices) {
       const key = deviceInfo.getIdentityKey();
-
       if (key === olmDevice.deviceCurve25519Key) {
         // We don't start sessions with ourself, so there's no need to
         // mark it in progress.
         continue;
       }
-
       if (!olmDevice.sessionsInProgress[key]) {
         // pre-emptively mark the session as in-progress to avoid race
         // conditions.  If we find that we already have a session, then
         // we'll resolve
         olmDevice.sessionsInProgress[key] = new Promise(resolve => {
-          resolveSession[key] = v => {
+          resolveSession.set(key, v => {
             delete olmDevice.sessionsInProgress[key];
             resolve(v);
-          };
+          });
         });
       }
     }
   }
-
-  for (const [userId, devices] of Object.entries(devicesByUser)) {
-    result[userId] = {};
-
+  for (const [userId, devices] of devicesByUser) {
+    const resultDevices = new Map();
+    result.set(userId, resultDevices);
     for (const deviceInfo of devices) {
       const deviceId = deviceInfo.deviceId;
       const key = deviceInfo.getIdentityKey();
-
       if (key === olmDevice.deviceCurve25519Key) {
         // We should never be trying to start a session with ourself.
         // Apart from talking to yourself being the first sign of madness,
@@ -261,172 +209,134 @@
         // new chain when this side has an active sender chain.
         // If you see this message being logged in the wild, we should find
         // the thing that is trying to send Olm messages to itself and fix it.
-        log.info("Attempted to start session with ourself! Ignoring"); // We must fill in the section in the return value though, as callers
+        log.info("Attempted to start session with ourself! Ignoring");
+        // We must fill in the section in the return value though, as callers
         // expect it to be there.
-
-        result[userId][deviceId] = {
+        resultDevices.set(deviceId, {
           device: deviceInfo,
           sessionId: null
-        };
+        });
         continue;
       }
-
       const forWhom = `for ${key} (${userId}:${deviceId})`;
-      const sessionId = await olmDevice.getSessionIdForDevice(key, !!resolveSession[key], log);
-
-      if (sessionId !== null && resolveSession[key]) {
+      const sessionId = await olmDevice.getSessionIdForDevice(key, !!resolveSession.get(key), log);
+      const resolveSessionFn = resolveSession.get(key);
+      if (sessionId !== null && resolveSessionFn) {
         // we found a session, but we had marked the session as
         // in-progress, so resolve it now, which will unmark it and
         // unblock anything that was waiting
-        resolveSession[key]();
+        resolveSessionFn();
       }
-
       if (sessionId === null || force) {
         if (force) {
           log.info(`Forcing new Olm session ${forWhom}`);
         } else {
           log.info(`Making new Olm session ${forWhom}`);
         }
-
         devicesWithoutSession.push([userId, deviceId]);
       }
-
-      result[userId][deviceId] = {
+      resultDevices.set(deviceId, {
         device: deviceInfo,
         sessionId: sessionId
-      };
+      });
     }
   }
-
   if (devicesWithoutSession.length === 0) {
     return result;
   }
-
   const oneTimeKeyAlgorithm = "signed_curve25519";
   let res;
   let taskDetail = `one-time keys for ${devicesWithoutSession.length} devices`;
-
   try {
     log.debug(`Claiming ${taskDetail}`);
     res = await baseApis.claimOneTimeKeys(devicesWithoutSession, oneTimeKeyAlgorithm, otkTimeout);
     log.debug(`Claimed ${taskDetail}`);
   } catch (e) {
-    for (const resolver of Object.values(resolveSession)) {
+    for (const resolver of resolveSession.values()) {
       resolver();
     }
-
     log.log(`Failed to claim ${taskDetail}`, e, devicesWithoutSession);
     throw e;
   }
-
   if (failedServers && "failures" in res) {
     failedServers.push(...Object.keys(res.failures));
   }
-
   const otkResult = res.one_time_keys || {};
   const promises = [];
-
-  for (const [userId, devices] of Object.entries(devicesByUser)) {
+  for (const [userId, devices] of devicesByUser) {
     const userRes = otkResult[userId] || {};
-
-    for (let j = 0; j < devices.length; j++) {
-      const deviceInfo = devices[j];
+    for (const deviceInfo of devices) {
       const deviceId = deviceInfo.deviceId;
       const key = deviceInfo.getIdentityKey();
-
       if (key === olmDevice.deviceCurve25519Key) {
         // We've already logged about this above. Skip here too
         // otherwise we'll log saying there are no one-time keys
         // which will be confusing.
         continue;
       }
-
-      if (result[userId][deviceId].sessionId && !force) {
+      if (result.get(userId)?.get(deviceId)?.sessionId && !force) {
         // we already have a result for this device
         continue;
       }
-
       const deviceRes = userRes[deviceId] || {};
       let oneTimeKey = null;
-
       for (const keyId in deviceRes) {
         if (keyId.indexOf(oneTimeKeyAlgorithm + ":") === 0) {
           oneTimeKey = deviceRes[keyId];
         }
       }
-
       if (!oneTimeKey) {
         log.warn(`No one-time keys (alg=${oneTimeKeyAlgorithm}) ` + `for device ${userId}:${deviceId}`);
-
-        if (resolveSession[key]) {
-          resolveSession[key]();
-        }
-
+        resolveSession.get(key)?.();
         continue;
       }
-
       promises.push(_verifyKeyAndStartSession(olmDevice, oneTimeKey, userId, deviceInfo).then(sid => {
-        if (resolveSession[key]) {
-          resolveSession[key](sid);
-        }
-
-        result[userId][deviceId].sessionId = sid;
+        resolveSession.get(key)?.(sid ?? undefined);
+        const deviceInfo = result.get(userId)?.get(deviceId);
+        if (deviceInfo) deviceInfo.sessionId = sid;
       }, e => {
-        if (resolveSession[key]) {
-          resolveSession[key]();
-        }
-
+        resolveSession.get(key)?.();
         throw e;
       }));
     }
   }
-
   taskDetail = `Olm sessions for ${promises.length} devices`;
   log.debug(`Starting ${taskDetail}`);
   await Promise.all(promises);
   log.debug(`Started ${taskDetail}`);
   return result;
 }
-
 async function _verifyKeyAndStartSession(olmDevice, oneTimeKey, userId, deviceInfo) {
   const deviceId = deviceInfo.deviceId;
-
   try {
     await verifySignature(olmDevice, oneTimeKey, userId, deviceId, deviceInfo.getFingerprint());
   } catch (e) {
     _logger.logger.error("Unable to verify signature on one-time key for device " + userId + ":" + deviceId + ":", e);
-
     return null;
   }
-
   let sid;
-
   try {
     sid = await olmDevice.createOutboundSession(deviceInfo.getIdentityKey(), oneTimeKey.key);
   } catch (e) {
     // possibly a bad key
     _logger.logger.error("Error starting olm session with device " + userId + ":" + deviceId + ": " + e);
-
     return null;
   }
-
   _logger.logger.log("Started new olm sessionid " + sid + " for device " + userId + ":" + deviceId);
-
   return sid;
 }
-
 /**
  * Verify the signature on an object
  *
- * @param {module:crypto/OlmDevice} olmDevice olm wrapper to use for verify op
+ * @param olmDevice - olm wrapper to use for verify op
  *
- * @param {Object} obj object to check signature on.
+ * @param obj - object to check signature on.
  *
- * @param {string} signingUserId  ID of the user whose signature should be checked
+ * @param signingUserId -  ID of the user whose signature should be checked
  *
- * @param {string} signingDeviceId  ID of the device whose signature should be checked
+ * @param signingDeviceId -  ID of the device whose signature should be checked
  *
- * @param {string} signingKey   base64-ed ed25519 public key
+ * @param signingKey -   base64-ed ed25519 public key
  *
  * Returns a promise which resolves (to undefined) if the the signature is good,
  * or rejects with an Error if it is bad.
@@ -436,86 +346,72 @@
   const signatures = obj.signatures || {};
   const userSigs = signatures[signingUserId] || {};
   const signature = userSigs[signKeyId];
-
   if (!signature) {
     throw Error("No signature");
-  } // prepare the canonical json: remove unsigned and signatures, and stringify with anotherjson
-
+  }
 
+  // prepare the canonical json: remove unsigned and signatures, and stringify with anotherjson
   const mangledObj = Object.assign({}, obj);
-
   if ("unsigned" in mangledObj) {
     delete mangledObj.unsigned;
   }
-
   delete mangledObj.signatures;
-
   const json = _anotherJson.default.stringify(mangledObj);
-
   olmDevice.verifySignature(signingKey, json, signature);
 }
+
 /**
  * Sign a JSON object using public key cryptography
- * @param {Object} obj Object to sign.  The object will be modified to include
+ * @param obj - Object to sign.  The object will be modified to include
  *     the new signature
- * @param {Olm.PkSigning|Uint8Array} key the signing object or the private key
+ * @param key - the signing object or the private key
  * seed
- * @param {string} userId The user ID who owns the signing key
- * @param {string} pubKey The public key (ignored if key is a seed)
- * @returns {string} the signature for the object
+ * @param userId - The user ID who owns the signing key
+ * @param pubKey - The public key (ignored if key is a seed)
+ * @returns the signature for the object
  */
-
-
 function pkSign(obj, key, userId, pubKey) {
   let createdKey = false;
-
   if (key instanceof Uint8Array) {
     const keyObj = new global.Olm.PkSigning();
     pubKey = keyObj.init_with_seed(key);
     key = keyObj;
     createdKey = true;
   }
-
   const sigs = obj.signatures || {};
   delete obj.signatures;
   const unsigned = obj.unsigned;
   if (obj.unsigned) delete obj.unsigned;
-
   try {
     const mysigs = sigs[userId] || {};
     sigs[userId] = mysigs;
-    return mysigs['ed25519:' + pubKey] = key.sign(_anotherJson.default.stringify(obj));
+    return mysigs["ed25519:" + pubKey] = key.sign(_anotherJson.default.stringify(obj));
   } finally {
     obj.signatures = sigs;
     if (unsigned) obj.unsigned = unsigned;
-
     if (createdKey) {
       key.free();
     }
   }
 }
+
 /**
  * Verify a signed JSON object
- * @param {Object} obj Object to verify
- * @param {string} pubKey The public key to use to verify
- * @param {string} userId The user ID who signed the object
+ * @param obj - Object to verify
+ * @param pubKey - The public key to use to verify
+ * @param userId - The user ID who signed the object
  */
-
-
 function pkVerify(obj, pubKey, userId) {
   const keyId = "ed25519:" + pubKey;
-
   if (!(obj.signatures && obj.signatures[userId] && obj.signatures[userId][keyId])) {
     throw new Error("No signature");
   }
-
   const signature = obj.signatures[userId][keyId];
   const util = new global.Olm.Utility();
   const sigs = obj.signatures;
   delete obj.signatures;
   const unsigned = obj.unsigned;
   if (obj.unsigned) delete obj.unsigned;
-
   try {
     util.ed25519_verify(pubKey, _anotherJson.default.stringify(obj), signature);
   } finally {
@@ -524,53 +420,45 @@
     util.free();
   }
 }
+
 /**
  * Check that an event was encrypted using olm.
  */
-
-
 function isOlmEncrypted(event) {
   if (!event.getSenderKey()) {
     _logger.logger.error("Event has no sender key (not encrypted?)");
-
     return false;
   }
-
   if (event.getWireType() !== _event.EventType.RoomMessageEncrypted || !["m.olm.v1.curve25519-aes-sha2"].includes(event.getWireContent().algorithm)) {
     _logger.logger.error("Event was not encrypted using an appropriate algorithm");
-
     return false;
   }
-
   return true;
 }
+
 /**
  * Encode a typed array of uint8 as base64.
- * @param {Uint8Array} uint8Array The data to encode.
- * @return {string} The base64.
+ * @param uint8Array - The data to encode.
+ * @returns The base64.
  */
-
-
 function encodeBase64(uint8Array) {
   return Buffer.from(uint8Array).toString("base64");
 }
+
 /**
  * Encode a typed array of uint8 as unpadded base64.
- * @param {Uint8Array} uint8Array The data to encode.
- * @return {string} The unpadded base64.
+ * @param uint8Array - The data to encode.
+ * @returns The unpadded base64.
  */
-
-
 function encodeUnpaddedBase64(uint8Array) {
-  return encodeBase64(uint8Array).replace(/=+$/g, '');
+  return encodeBase64(uint8Array).replace(/=+$/g, "");
 }
+
 /**
  * Decode a base64 string to a typed array of uint8.
- * @param {string} base64 The base64 to decode.
- * @return {Uint8Array} The decoded data.
+ * @param base64 - The base64 to decode.
+ * @returns The decoded data.
  */
-
-
 function decodeBase64(base64) {
   return Buffer.from(base64, "base64");
 }
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/OutgoingRoomKeyRequestManager.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/OutgoingRoomKeyRequestManager.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/OutgoingRoomKeyRequestManager.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/OutgoingRoomKeyRequestManager.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,27 +4,31 @@
   value: true
 });
 exports.RoomKeyRequestState = exports.OutgoingRoomKeyRequestManager = void 0;
-
+var _uuid = require("uuid");
 var _logger = require("../logger");
-
 var _event = require("../@types/event");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+var _utils = require("../utils");
+function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
+function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /**
  * Internal module. Management of outgoing room key requests.
  *
  * See https://docs.google.com/document/d/1m4gQkcnJkxNuBmb5NoFCIadIY-DyqqNAS3lloE73BlQ
  * for draft documentation on what we're supposed to be implementing here.
- *
- * @module
  */
+
 // delay between deciding we want some keys, and sending out the request, to
 // allow for (a) it turning up anyway, (b) grouping requests together
 const SEND_KEY_REQUESTS_DELAY_MS = 500;
-/** possible states for a room key request
+
+/**
+ *  possible states for a room key request
  *
  * The state machine looks like:
+ * ```
  *
  *     |         (cancellation sent)
  *     | .-------------------------------------------------.
@@ -47,63 +51,48 @@
  *     | (cancellation sent)              |
  *     V                                  |
  * (deleted)  <---------------------------+
- *
- * @enum {number}
+ * ```
  */
-
 let RoomKeyRequestState;
 exports.RoomKeyRequestState = RoomKeyRequestState;
-
 (function (RoomKeyRequestState) {
   RoomKeyRequestState[RoomKeyRequestState["Unsent"] = 0] = "Unsent";
   RoomKeyRequestState[RoomKeyRequestState["Sent"] = 1] = "Sent";
   RoomKeyRequestState[RoomKeyRequestState["CancellationPending"] = 2] = "CancellationPending";
   RoomKeyRequestState[RoomKeyRequestState["CancellationPendingAndWillResend"] = 3] = "CancellationPendingAndWillResend";
 })(RoomKeyRequestState || (exports.RoomKeyRequestState = RoomKeyRequestState = {}));
-
 class OutgoingRoomKeyRequestManager {
   // handle for the delayed call to sendOutgoingRoomKeyRequests. Non-null
   // if the callback has been set, or if it is still running.
+
   // sanity check to ensure that we don't end up with two concurrent runs
   // of sendOutgoingRoomKeyRequests
+
   constructor(baseApis, deviceId, cryptoStore) {
     this.baseApis = baseApis;
     this.deviceId = deviceId;
     this.cryptoStore = cryptoStore;
-
-    _defineProperty(this, "sendOutgoingRoomKeyRequestsTimer", null);
-
+    _defineProperty(this, "sendOutgoingRoomKeyRequestsTimer", void 0);
     _defineProperty(this, "sendOutgoingRoomKeyRequestsRunning", false);
-
-    _defineProperty(this, "clientRunning", false);
+    _defineProperty(this, "clientRunning", true);
   }
-  /**
-   * Called when the client is started. Sets background processes running.
-   */
-
 
-  start() {
-    this.clientRunning = true;
-  }
   /**
    * Called when the client is stopped. Stops any running background processes.
    */
-
-
   stop() {
-    _logger.logger.log('stopping OutgoingRoomKeyRequestManager'); // stop the timer on the next run
-
-
+    _logger.logger.log("stopping OutgoingRoomKeyRequestManager");
+    // stop the timer on the next run
     this.clientRunning = false;
   }
+
   /**
    * Send any requests that have been queued
    */
-
-
   sendQueuedRequests() {
     this.startTimer();
   }
+
   /**
    * Queue up a room key request, if we haven't already queued or sent one.
    *
@@ -112,20 +101,15 @@
    * Otherwise, a request is added to the pending list, and a job is started
    * in the background to send it.
    *
-   * @param {module:crypto~RoomKeyRequestBody} requestBody
-   * @param {Array<{userId: string, deviceId: string}>} recipients
-   * @param {boolean} resend whether to resend the key request if there is
+   * @param resend - whether to resend the key request if there is
    *    already one
    *
-   * @returns {Promise} resolves when the request has been added to the
+   * @returns resolves when the request has been added to the
    *    pending list (or we have established that a similar request already
    *    exists)
    */
-
-
   async queueRoomKeyRequest(requestBody, recipients, resend = false) {
     const req = await this.cryptoStore.getOutgoingRoomKeyRequest(requestBody);
-
     if (!req) {
       await this.cryptoStore.getOrAddOutgoingRoomKeyRequest({
         requestBody: requestBody,
@@ -139,7 +123,6 @@
         case RoomKeyRequestState.Unsent:
           // nothing to do here, since we're going to send a request anyways
           return;
-
         case RoomKeyRequestState.CancellationPending:
           {
             // existing request is about to be cancelled.  If we want to
@@ -152,7 +135,6 @@
             });
             break;
           }
-
         case RoomKeyRequestState.Sent:
           {
             // a request has already been sent.  If we don't want to
@@ -167,14 +149,15 @@
                 // the request gets sent
                 requestTxnId: this.baseApis.makeTxnId()
               });
-
               if (!updatedReq) {
                 // updateOutgoingRoomKeyRequest couldn't find the request
                 // in state ROOM_KEY_REQUEST_STATES.SENT, so we must have
                 // raced with another tab to mark the request cancelled.
                 // Try again, to make sure the request is resent.
                 return this.queueRoomKeyRequest(requestBody, recipients, resend);
-              } // We don't want to wait for the timer, so we send it
+              }
+
+              // We don't want to wait for the timer, so we send it
               // immediately. (We might actually end up racing with the timer,
               // but that's ok: even if we make the request twice, we'll do it
               // with the same transaction_id, so only one message will get
@@ -183,60 +166,53 @@
               // (We also don't want to wait for the response from the server
               // here, as it will slow down processing of received keys if we
               // do.)
-
-
               try {
                 await this.sendOutgoingRoomKeyRequestCancellation(updatedReq, true);
               } catch (e) {
                 _logger.logger.error("Error sending room key request cancellation;" + " will retry later.", e);
-              } // The request has transitioned from
+              }
+              // The request has transitioned from
               // CANCELLATION_PENDING_AND_WILL_RESEND to UNSENT. We
               // still need to resend the request which is now UNSENT, so
               // start the timer if it isn't already started.
-
             }
 
             break;
           }
-
         default:
-          throw new Error('unhandled state: ' + req.state);
+          throw new Error("unhandled state: " + req.state);
       }
     }
   }
+
   /**
    * Cancel room key requests, if any match the given requestBody
    *
-   * @param {module:crypto~RoomKeyRequestBody} requestBody
    *
-   * @returns {Promise} resolves when the request has been updated in our
+   * @returns resolves when the request has been updated in our
    *    pending list.
    */
-
-
   cancelRoomKeyRequest(requestBody) {
     return this.cryptoStore.getOutgoingRoomKeyRequest(requestBody).then(req => {
       if (!req) {
         // no request was made for this key
         return;
       }
-
       switch (req.state) {
         case RoomKeyRequestState.CancellationPending:
         case RoomKeyRequestState.CancellationPendingAndWillResend:
           // nothing to do here
           return;
-
         case RoomKeyRequestState.Unsent:
           // just delete it
+
           // FIXME: ghahah we may have attempted to send it, and
           // not yet got a successful response. So the server
           // may have seen it, so we still need to send a cancellation
           // in that case :/
-          _logger.logger.log('deleting unnecessary room key request for ' + stringifyRequestBody(requestBody));
 
+          _logger.logger.log("deleting unnecessary room key request for " + stringifyRequestBody(requestBody));
           return this.cryptoStore.deleteOutgoingRoomKeyRequest(req.requestId, RoomKeyRequestState.Unsent);
-
         case RoomKeyRequestState.Sent:
           {
             // send a cancellation.
@@ -251,10 +227,11 @@
                 // the request cancelled. There is no point in
                 // sending another cancellation since the other tab
                 // will do it.
-                _logger.logger.log('Tried to cancel room key request for ' + stringifyRequestBody(requestBody) + ' but it was already cancelled in another tab');
-
+                _logger.logger.log("Tried to cancel room key request for " + stringifyRequestBody(requestBody) + " but it was already cancelled in another tab");
                 return;
-              } // We don't want to wait for the timer, so we send it
+              }
+
+              // We don't want to wait for the timer, so we send it
               // immediately. (We might actually end up racing with the timer,
               // but that's ok: even if we make the request twice, we'll do it
               // with the same transaction_id, so only one message will get
@@ -263,64 +240,55 @@
               // (We also don't want to wait for the response from the server
               // here, as it will slow down processing of received keys if we
               // do.)
-
-
               this.sendOutgoingRoomKeyRequestCancellation(updatedReq).catch(e => {
                 _logger.logger.error("Error sending room key request cancellation;" + " will retry later.", e);
-
                 this.startTimer();
               });
             });
           }
-
         default:
-          throw new Error('unhandled state: ' + req.state);
+          throw new Error("unhandled state: " + req.state);
       }
     });
   }
+
   /**
    * Look for room key requests by target device and state
    *
-   * @param {string} userId Target user ID
-   * @param {string} deviceId Target device ID
+   * @param userId - Target user ID
+   * @param deviceId - Target device ID
    *
-   * @return {Promise} resolves to a list of all the
-   *    {@link module:crypto/store/base~OutgoingRoomKeyRequest}
+   * @returns resolves to a list of all the {@link OutgoingRoomKeyRequest}
    */
-
-
   getOutgoingSentRoomKeyRequest(userId, deviceId) {
     return this.cryptoStore.getOutgoingRoomKeyRequestsByTarget(userId, deviceId, [RoomKeyRequestState.Sent]);
   }
+
   /**
    * Find anything in `sent` state, and kick it around the loop again.
    * This is intended for situations where something substantial has changed, and we
    * don't really expect the other end to even care about the cancellation.
    * For example, after initialization or self-verification.
-   * @return {Promise} An array of `queueRoomKeyRequest` outputs.
+   * @returns An array of `queueRoomKeyRequest` outputs.
    */
-
-
   async cancelAndResendAllOutgoingRequests() {
     const outgoings = await this.cryptoStore.getAllOutgoingRoomKeyRequestsByState(RoomKeyRequestState.Sent);
     return Promise.all(outgoings.map(({
       requestBody,
       recipients
     }) => this.queueRoomKeyRequest(requestBody, recipients, true)));
-  } // start the background timer to send queued requests, if the timer isn't
-  // already running
-
+  }
 
+  // start the background timer to send queued requests, if the timer isn't
+  // already running
   startTimer() {
     if (this.sendOutgoingRoomKeyRequestsTimer) {
       return;
     }
-
     const startSendingOutgoingRoomKeyRequests = () => {
       if (this.sendOutgoingRoomKeyRequestsRunning) {
         throw new Error("RoomKeyRequestSend already in progress!");
       }
-
       this.sendOutgoingRoomKeyRequestsRunning = true;
       this.sendOutgoingRoomKeyRequests().finally(() => {
         this.sendOutgoingRoomKeyRequestsRunning = false;
@@ -330,56 +298,46 @@
         _logger.logger.warn(`error in OutgoingRoomKeyRequestManager: ${e}`);
       });
     };
-
     this.sendOutgoingRoomKeyRequestsTimer = setTimeout(startSendingOutgoingRoomKeyRequests, SEND_KEY_REQUESTS_DELAY_MS);
-  } // look for and send any queued requests. Runs itself recursively until
+  }
+
+  // look for and send any queued requests. Runs itself recursively until
   // there are no more requests, or there is an error (in which case, the
   // timer will be restarted before the promise resolves).
-
-
-  sendOutgoingRoomKeyRequests() {
+  async sendOutgoingRoomKeyRequests() {
     if (!this.clientRunning) {
-      this.sendOutgoingRoomKeyRequestsTimer = null;
-      return Promise.resolve();
+      this.sendOutgoingRoomKeyRequestsTimer = undefined;
+      return;
     }
-
-    return this.cryptoStore.getOutgoingRoomKeyRequestByState([RoomKeyRequestState.CancellationPending, RoomKeyRequestState.CancellationPendingAndWillResend, RoomKeyRequestState.Unsent]).then(req => {
-      if (!req) {
-        this.sendOutgoingRoomKeyRequestsTimer = null;
-        return;
-      }
-
-      let prom;
-
+    const req = await this.cryptoStore.getOutgoingRoomKeyRequestByState([RoomKeyRequestState.CancellationPending, RoomKeyRequestState.CancellationPendingAndWillResend, RoomKeyRequestState.Unsent]);
+    if (!req) {
+      this.sendOutgoingRoomKeyRequestsTimer = undefined;
+      return;
+    }
+    try {
       switch (req.state) {
         case RoomKeyRequestState.Unsent:
-          prom = this.sendOutgoingRoomKeyRequest(req);
+          await this.sendOutgoingRoomKeyRequest(req);
           break;
-
         case RoomKeyRequestState.CancellationPending:
-          prom = this.sendOutgoingRoomKeyRequestCancellation(req);
+          await this.sendOutgoingRoomKeyRequestCancellation(req);
           break;
-
         case RoomKeyRequestState.CancellationPendingAndWillResend:
-          prom = this.sendOutgoingRoomKeyRequestCancellation(req, true);
+          await this.sendOutgoingRoomKeyRequestCancellation(req, true);
           break;
       }
 
-      return prom.then(() => {
-        // go around the loop again
-        return this.sendOutgoingRoomKeyRequests();
-      }).catch(e => {
-        _logger.logger.error("Error sending room key request; will retry later.", e);
-
-        this.sendOutgoingRoomKeyRequestsTimer = null;
-      });
-    });
-  } // given a RoomKeyRequest, send it and update the request record
-
+      // go around the loop again
+      return this.sendOutgoingRoomKeyRequests();
+    } catch (e) {
+      _logger.logger.error("Error sending room key request; will retry later.", e);
+      this.sendOutgoingRoomKeyRequestsTimer = undefined;
+    }
+  }
 
+  // given a RoomKeyRequest, send it and update the request record
   sendOutgoingRoomKeyRequest(req) {
     _logger.logger.log(`Requesting keys for ${stringifyRequestBody(req.requestBody)}` + ` from ${stringifyRecipientList(req.recipients)}` + `(id ${req.requestId})`);
-
     const requestMessage = {
       action: "request",
       requesting_device_id: this.deviceId,
@@ -391,13 +349,12 @@
         state: RoomKeyRequestState.Sent
       });
     });
-  } // Given a RoomKeyRequest, cancel it and delete the request record unless
-  // andResend is set, in which case transition to UNSENT.
-
+  }
 
+  // Given a RoomKeyRequest, cancel it and delete the request record unless
+  // andResend is set, in which case transition to UNSENT.
   sendOutgoingRoomKeyRequestCancellation(req, andResend = false) {
     _logger.logger.log(`Sending cancellation for key request for ` + `${stringifyRequestBody(req.requestBody)} to ` + `${stringifyRecipientList(req.recipients)} ` + `(cancellation id ${req.cancellationTxnId})`);
-
     const requestMessage = {
       action: "request_cancellation",
       requesting_device_id: this.deviceId,
@@ -410,36 +367,28 @@
           state: RoomKeyRequestState.Unsent
         });
       }
-
       return this.cryptoStore.deleteOutgoingRoomKeyRequest(req.requestId, RoomKeyRequestState.CancellationPending);
     });
-  } // send a RoomKeyRequest to a list of recipients
-
+  }
 
+  // send a RoomKeyRequest to a list of recipients
   sendMessageToDevices(message, recipients, txnId) {
-    const contentMap = {};
-
+    const contentMap = new _utils.MapWithDefault(() => new Map());
     for (const recip of recipients) {
-      if (!contentMap[recip.userId]) {
-        contentMap[recip.userId] = {};
-      }
-
-      contentMap[recip.userId][recip.deviceId] = message;
+      const userDeviceMap = contentMap.getOrCreate(recip.userId);
+      userDeviceMap.set(recip.deviceId, _objectSpread(_objectSpread({}, message), {}, {
+        [_event.ToDeviceMessageId]: (0, _uuid.v4)()
+      }));
     }
-
     return this.baseApis.sendToDevice(_event.EventType.RoomKeyRequest, contentMap, txnId);
   }
-
 }
-
 exports.OutgoingRoomKeyRequestManager = OutgoingRoomKeyRequestManager;
-
 function stringifyRequestBody(requestBody) {
   // we assume that the request is for megolm keys, which are identified by
   // room id and session id
   return requestBody.room_id + " / " + requestBody.session_id;
 }
-
 function stringifyRecipientList(recipients) {
-  return '[' + recipients.map(r => `${r.userId}:${r.deviceId}`).join(",") + ']';
+  return `[${recipients.map(r => `${r.userId}:${r.deviceId}`).join(",")}]`;
 }
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/recoverykey.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/recoverykey.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/recoverykey.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/recoverykey.js	2023-04-11 06:11:52.000000000 +0000
@@ -5,13 +5,9 @@
 });
 exports.decodeRecoveryKey = decodeRecoveryKey;
 exports.encodeRecoveryKey = encodeRecoveryKey;
-
 var bs58 = _interopRequireWildcard(require("bs58"));
-
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
 /*
 Copyright 2018 New Vector Ltd
 
@@ -27,46 +23,38 @@
 See the License for the specific language governing permissions and
 limitations under the License.
 */
+
 // picked arbitrarily but to try & avoid clashing with any bitcoin ones
 // (which are also base58 encoded, but bitcoin's involve a lot more hashing)
-const OLM_RECOVERY_KEY_PREFIX = [0x8B, 0x01];
-
+const OLM_RECOVERY_KEY_PREFIX = [0x8b, 0x01];
 function encodeRecoveryKey(key) {
   const buf = Buffer.alloc(OLM_RECOVERY_KEY_PREFIX.length + key.length + 1);
   buf.set(OLM_RECOVERY_KEY_PREFIX, 0);
   buf.set(key, OLM_RECOVERY_KEY_PREFIX.length);
   let parity = 0;
-
   for (let i = 0; i < buf.length - 1; ++i) {
     parity ^= buf[i];
   }
-
   buf[buf.length - 1] = parity;
   const base58key = bs58.encode(buf);
-  return base58key.match(/.{1,4}/g).join(" ");
+  return base58key.match(/.{1,4}/g)?.join(" ");
 }
-
 function decodeRecoveryKey(recoveryKey) {
-  const result = bs58.decode(recoveryKey.replace(/ /g, ''));
+  const result = bs58.decode(recoveryKey.replace(/ /g, ""));
   let parity = 0;
-
   for (const b of result) {
     parity ^= b;
   }
-
   if (parity !== 0) {
     throw new Error("Incorrect parity");
   }
-
   for (let i = 0; i < OLM_RECOVERY_KEY_PREFIX.length; ++i) {
     if (result[i] !== OLM_RECOVERY_KEY_PREFIX[i]) {
       throw new Error("Incorrect prefix");
     }
   }
-
   if (result.length !== OLM_RECOVERY_KEY_PREFIX.length + global.Olm.PRIVATE_KEY_LENGTH + 1) {
     throw new Error("Incorrect length");
   }
-
   return Uint8Array.from(result.slice(OLM_RECOVERY_KEY_PREFIX.length, OLM_RECOVERY_KEY_PREFIX.length + global.Olm.PRIVATE_KEY_LENGTH));
 }
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/RoomList.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/RoomList.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/RoomList.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/RoomList.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,50 +4,40 @@
   value: true
 });
 exports.RoomList = void 0;
-
 var _indexeddbCryptoStore = require("./store/indexeddb-crypto-store");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /* eslint-enable camelcase */
 
-/**
- * @alias module:crypto/RoomList
- */
 class RoomList {
   // Object of roomId -> room e2e info object (body of the m.room.encryption event)
+
   constructor(cryptoStore) {
     this.cryptoStore = cryptoStore;
-
     _defineProperty(this, "roomEncryption", {});
   }
-
   async init() {
-    await this.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ROOMS], txn => {
+    await this.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ROOMS], txn => {
       this.cryptoStore.getEndToEndRooms(txn, result => {
         this.roomEncryption = result;
       });
     });
   }
-
   getRoomEncryption(roomId) {
     return this.roomEncryption[roomId] || null;
   }
-
   isRoomEncrypted(roomId) {
     return Boolean(this.getRoomEncryption(roomId));
   }
-
   async setRoomEncryption(roomId, roomInfo) {
     // important that this happens before calling into the store
     // as it prevents the Crypto::setRoomEncryption from calling
     // this twice for consecutive m.room.encryption events
     this.roomEncryption[roomId] = roomInfo;
-    await this.cryptoStore.doTxn('readwrite', [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ROOMS], txn => {
+    await this.cryptoStore.doTxn("readwrite", [_indexeddbCryptoStore.IndexedDBCryptoStore.STORE_ROOMS], txn => {
       this.cryptoStore.storeEndToEndRoom(roomId, roomInfo, txn);
     });
   }
-
 }
-
 exports.RoomList = RoomList;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/SecretStorage.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/SecretStorage.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/SecretStorage.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/SecretStorage.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,30 +4,25 @@
   value: true
 });
 exports.SecretStorage = exports.SECRET_STORAGE_ALGORITHM_V1_AES = void 0;
-
+var _uuid = require("uuid");
 var _logger = require("../logger");
-
 var olmlib = _interopRequireWildcard(require("./olmlib"));
-
 var _randomstring = require("../randomstring");
-
 var _aes = require("./aes");
-
-var _matrix = require("../matrix");
-
+var _client = require("../client");
+var _utils = require("../utils");
+var _event = require("../@types/event");
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+const SECRET_STORAGE_ALGORITHM_V1_AES = "m.secret_storage.v1.aes-hmac-sha2";
 
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
-const SECRET_STORAGE_ALGORITHM_V1_AES = "m.secret_storage.v1.aes-hmac-sha2"; // Some of the key functions use a tuple and some use an object...
-
+// Some of the key functions use a tuple and some use an object...
 exports.SECRET_STORAGE_ALGORITHM_V1_AES = SECRET_STORAGE_ALGORITHM_V1_AES;
-
 /**
  * Implements Secure Secret Storage and Sharing (MSC1946)
- * @module crypto/SecretStorage
  */
 class SecretStorage {
   // In it's pure javascript days, this was relying on some proper Javascript-style
@@ -42,64 +37,55 @@
     this.accountDataAdapter = accountDataAdapter;
     this.cryptoCallbacks = cryptoCallbacks;
     this.baseApis = baseApis;
-
     _defineProperty(this, "requests", new Map());
   }
-
   async getDefaultKeyId() {
-    const defaultKey = await this.accountDataAdapter.getAccountDataFromServer('m.secret_storage.default_key');
+    const defaultKey = await this.accountDataAdapter.getAccountDataFromServer("m.secret_storage.default_key");
     if (!defaultKey) return null;
     return defaultKey.key;
   }
-
   setDefaultKeyId(keyId) {
     return new Promise((resolve, reject) => {
       const listener = ev => {
-        if (ev.getType() === 'm.secret_storage.default_key' && ev.getContent().key === keyId) {
-          this.accountDataAdapter.removeListener(_matrix.ClientEvent.AccountData, listener);
+        if (ev.getType() === "m.secret_storage.default_key" && ev.getContent().key === keyId) {
+          this.accountDataAdapter.removeListener(_client.ClientEvent.AccountData, listener);
           resolve();
         }
       };
-
-      this.accountDataAdapter.on(_matrix.ClientEvent.AccountData, listener);
-      this.accountDataAdapter.setAccountData('m.secret_storage.default_key', {
+      this.accountDataAdapter.on(_client.ClientEvent.AccountData, listener);
+      this.accountDataAdapter.setAccountData("m.secret_storage.default_key", {
         key: keyId
       }).catch(e => {
-        this.accountDataAdapter.removeListener(_matrix.ClientEvent.AccountData, listener);
+        this.accountDataAdapter.removeListener(_client.ClientEvent.AccountData, listener);
         reject(e);
       });
     });
   }
+
   /**
    * Add a key for encrypting secrets.
    *
-   * @param {string} algorithm the algorithm used by the key.
-   * @param {object} opts the options for the algorithm.  The properties used
+   * @param algorithm - the algorithm used by the key.
+   * @param opts - the options for the algorithm.  The properties used
    *     depend on the algorithm given.
-   * @param {string} [keyId] the ID of the key.  If not given, a random
+   * @param keyId - the ID of the key.  If not given, a random
    *     ID will be generated.
    *
-   * @return {object} An object with:
-   *     keyId: {string} the ID of the key
-   *     keyInfo: {object} details about the key (iv, mac, passphrase)
+   * @returns An object with:
+   *     keyId: the ID of the key
+   *     keyInfo: details about the key (iv, mac, passphrase)
    */
-
-
-  async addKey(algorithm, opts, keyId) {
+  async addKey(algorithm, opts = {}, keyId) {
     const keyInfo = {
       algorithm
     };
-    if (!opts) opts = {};
-
     if (opts.name) {
       keyInfo.name = opts.name;
     }
-
     if (algorithm === SECRET_STORAGE_ALGORITHM_V1_AES) {
       if (opts.passphrase) {
         keyInfo.passphrase = opts.passphrase;
       }
-
       if (opts.key) {
         const {
           iv,
@@ -111,71 +97,64 @@
     } else {
       throw new Error(`Unknown key algorithm ${algorithm}`);
     }
-
     if (!keyId) {
       do {
         keyId = (0, _randomstring.randomString)(32);
       } while (await this.accountDataAdapter.getAccountDataFromServer(`m.secret_storage.key.${keyId}`));
     }
-
     await this.accountDataAdapter.setAccountData(`m.secret_storage.key.${keyId}`, keyInfo);
     return {
       keyId,
       keyInfo
     };
   }
+
   /**
    * Get the key information for a given ID.
    *
-   * @param {string} [keyId = default key's ID] The ID of the key to check
+   * @param keyId - The ID of the key to check
    *     for. Defaults to the default key ID if not provided.
-   * @returns {Array?} If the key was found, the return value is an array of
+   * @returns If the key was found, the return value is an array of
    *     the form [keyId, keyInfo].  Otherwise, null is returned.
    *     XXX: why is this an array when addKey returns an object?
    */
-
-
   async getKey(keyId) {
     if (!keyId) {
       keyId = await this.getDefaultKeyId();
     }
-
     if (!keyId) {
       return null;
     }
-
     const keyInfo = await this.accountDataAdapter.getAccountDataFromServer("m.secret_storage.key." + keyId);
     return keyInfo ? [keyId, keyInfo] : null;
   }
+
   /**
    * Check whether we have a key with a given ID.
    *
-   * @param {string} [keyId = default key's ID] The ID of the key to check
+   * @param keyId - The ID of the key to check
    *     for. Defaults to the default key ID if not provided.
-   * @return {boolean} Whether we have the key.
+   * @returns Whether we have the key.
    */
-
-
   async hasKey(keyId) {
     return Boolean(await this.getKey(keyId));
   }
+
   /**
    * Check whether a key matches what we expect based on the key info
    *
-   * @param {Uint8Array} key the key to check
-   * @param {object} info the key info
+   * @param key - the key to check
+   * @param info - the key info
    *
-   * @return {boolean} whether or not the key matches
+   * @returns whether or not the key matches
    */
-
-
   async checkKey(key, info) {
     if (info.algorithm === SECRET_STORAGE_ALGORITHM_V1_AES) {
       if (info.mac) {
         const {
           mac
         } = await (0, _aes.calculateKeyCheck)(key, info.iv);
-        return info.mac.replace(/=+$/g, '') === mac.replace(/=+$/g, '');
+        return info.mac.replace(/=+$/g, "") === mac.replace(/=+$/g, "");
       } else {
         // if we have no information, we have to assume the key is right
         return true;
@@ -184,42 +163,35 @@
       throw new Error("Unknown algorithm");
     }
   }
+
   /**
    * Store an encrypted secret on the server
    *
-   * @param {string} name The name of the secret
-   * @param {string} secret The secret contents.
-   * @param {Array} keys The IDs of the keys to use to encrypt the secret
+   * @param name - The name of the secret
+   * @param secret - The secret contents.
+   * @param keys - The IDs of the keys to use to encrypt the secret
    *     or null/undefined to use the default key.
    */
-
-
   async store(name, secret, keys) {
     const encrypted = {};
-
     if (!keys) {
       const defaultKeyId = await this.getDefaultKeyId();
-
       if (!defaultKeyId) {
         throw new Error("No keys specified and no default key present");
       }
-
       keys = [defaultKeyId];
     }
-
     if (keys.length === 0) {
       throw new Error("Zero keys given to encrypt with!");
     }
-
     for (const keyId of keys) {
       // get key information from key storage
       const keyInfo = await this.accountDataAdapter.getAccountDataFromServer("m.secret_storage.key." + keyId);
-
       if (!keyInfo) {
         throw new Error("Unknown key: " + keyId);
-      } // encrypt secret, based on the algorithm
-
+      }
 
+      // encrypt secret, based on the algorithm
       if (keyInfo.algorithm === SECRET_STORAGE_ALGORITHM_V1_AES) {
         const keys = {
           [keyId]: keyInfo
@@ -227,126 +199,102 @@
         const [, encryption] = await this.getSecretStorageKey(keys, name);
         encrypted[keyId] = await encryption.encrypt(secret);
       } else {
-        _logger.logger.warn("unknown algorithm for secret storage key " + keyId + ": " + keyInfo.algorithm); // do nothing if we don't understand the encryption algorithm
-
+        _logger.logger.warn("unknown algorithm for secret storage key " + keyId + ": " + keyInfo.algorithm);
+        // do nothing if we don't understand the encryption algorithm
       }
-    } // save encrypted secret
-
+    }
 
+    // save encrypted secret
     await this.accountDataAdapter.setAccountData(name, {
       encrypted
     });
   }
+
   /**
    * Get a secret from storage.
    *
-   * @param {string} name the name of the secret
+   * @param name - the name of the secret
    *
-   * @return {string} the contents of the secret
+   * @returns the contents of the secret
    */
-
-
   async get(name) {
     const secretInfo = await this.accountDataAdapter.getAccountDataFromServer(name);
-
     if (!secretInfo) {
       return;
     }
-
     if (!secretInfo.encrypted) {
       throw new Error("Content is not encrypted!");
-    } // get possible keys to decrypt
-
+    }
 
+    // get possible keys to decrypt
     const keys = {};
-
     for (const keyId of Object.keys(secretInfo.encrypted)) {
       // get key information from key storage
       const keyInfo = await this.accountDataAdapter.getAccountDataFromServer("m.secret_storage.key." + keyId);
-      const encInfo = secretInfo.encrypted[keyId]; // only use keys we understand the encryption algorithm of
-
+      const encInfo = secretInfo.encrypted[keyId];
+      // only use keys we understand the encryption algorithm of
       if (keyInfo.algorithm === SECRET_STORAGE_ALGORITHM_V1_AES) {
         if (encInfo.iv && encInfo.ciphertext && encInfo.mac) {
           keys[keyId] = keyInfo;
         }
       }
     }
-
     if (Object.keys(keys).length === 0) {
       throw new Error(`Could not decrypt ${name} because none of ` + `the keys it is encrypted with are for a supported algorithm`);
     }
 
-    let keyId;
-    let decryption;
-
-    try {
-      // fetch private key from app
-      [keyId, decryption] = await this.getSecretStorageKey(keys, name);
-      const encInfo = secretInfo.encrypted[keyId]; // We don't actually need the decryption object if it's a passthrough
-      // since we just want to return the key itself. It must be base64
-      // encoded, since this is how a key would normally be stored.
-
-      if (encInfo.passthrough) return (0, olmlib.encodeBase64)(decryption.get_private_key());
-      return decryption.decrypt(encInfo);
-    } finally {
-      if (decryption && decryption.free) decryption.free();
-    }
+    // fetch private key from app
+    const [keyId, decryption] = await this.getSecretStorageKey(keys, name);
+    const encInfo = secretInfo.encrypted[keyId];
+    return decryption.decrypt(encInfo);
   }
+
   /**
    * Check if a secret is stored on the server.
    *
-   * @param {string} name the name of the secret
+   * @param name - the name of the secret
    *
-   * @return {object?} map of key name to key info the secret is encrypted
+   * @returns map of key name to key info the secret is encrypted
    *     with, or null if it is not present or not encrypted with a trusted
    *     key
    */
-
-
   async isStored(name) {
     // check if secret exists
     const secretInfo = await this.accountDataAdapter.getAccountDataFromServer(name);
     if (!secretInfo?.encrypted) return null;
-    const ret = {}; // filter secret encryption keys with supported algorithm
+    const ret = {};
 
+    // filter secret encryption keys with supported algorithm
     for (const keyId of Object.keys(secretInfo.encrypted)) {
       // get key information from key storage
       const keyInfo = await this.accountDataAdapter.getAccountDataFromServer("m.secret_storage.key." + keyId);
       if (!keyInfo) continue;
-      const encInfo = secretInfo.encrypted[keyId]; // only use keys we understand the encryption algorithm of
+      const encInfo = secretInfo.encrypted[keyId];
 
+      // only use keys we understand the encryption algorithm of
       if (keyInfo.algorithm === SECRET_STORAGE_ALGORITHM_V1_AES) {
         if (encInfo.iv && encInfo.ciphertext && encInfo.mac) {
           ret[keyId] = keyInfo;
         }
       }
     }
-
     return Object.keys(ret).length ? ret : null;
   }
+
   /**
    * Request a secret from another device
    *
-   * @param {string} name the name of the secret to request
-   * @param {string[]} devices the devices to request the secret from
+   * @param name - the name of the secret to request
+   * @param devices - the devices to request the secret from
    */
-
-
   request(name, devices) {
     const requestId = this.baseApis.makeTxnId();
-    let resolve;
-    let reject;
-    const promise = new Promise((res, rej) => {
-      resolve = res;
-      reject = rej;
-    });
+    const deferred = (0, _utils.defer)();
     this.requests.set(requestId, {
       name,
       devices,
-      resolve,
-      reject
+      deferred
     });
-
     const cancel = reason => {
       // send cancellation event
       const cancelData = {
@@ -354,56 +302,46 @@
         requesting_device_id: this.baseApis.deviceId,
         request_id: requestId
       };
-      const toDevice = {};
-
+      const toDevice = new Map();
       for (const device of devices) {
-        toDevice[device] = cancelData;
+        toDevice.set(device, cancelData);
       }
+      this.baseApis.sendToDevice("m.secret.request", new Map([[this.baseApis.getUserId(), toDevice]]));
 
-      this.baseApis.sendToDevice("m.secret.request", {
-        [this.baseApis.getUserId()]: toDevice
-      }); // and reject the promise so that anyone waiting on it will be
+      // and reject the promise so that anyone waiting on it will be
       // notified
+      deferred.reject(new Error(reason || "Cancelled"));
+    };
 
-      reject(new Error(reason || "Cancelled"));
-    }; // send request to devices
-
-
+    // send request to devices
     const requestData = {
       name,
       action: "request",
       requesting_device_id: this.baseApis.deviceId,
-      request_id: requestId
+      request_id: requestId,
+      [_event.ToDeviceMessageId]: (0, _uuid.v4)()
     };
-    const toDevice = {};
-
+    const toDevice = new Map();
     for (const device of devices) {
-      toDevice[device] = requestData;
+      toDevice.set(device, requestData);
     }
-
     _logger.logger.info(`Request secret ${name} from ${devices}, id ${requestId}`);
-
-    this.baseApis.sendToDevice("m.secret.request", {
-      [this.baseApis.getUserId()]: toDevice
-    });
+    this.baseApis.sendToDevice("m.secret.request", new Map([[this.baseApis.getUserId(), toDevice]]));
     return {
       requestId,
-      promise,
+      promise: deferred.promise,
       cancel
     };
   }
-
   async onRequestReceived(event) {
     const sender = event.getSender();
     const content = event.getContent();
-
     if (sender !== this.baseApis.getUserId() || !(content.name && content.action && content.requesting_device_id && content.request_id)) {
       // ignore requests from anyone else, for now
       return;
     }
-
-    const deviceId = content.requesting_device_id; // check if it's a cancel
-
+    const deviceId = content.requesting_device_id;
+    // check if it's a cancel
     if (content.action === "request_cancellation") {
       /*
       Looks like we intended to emit events when we got cancelations, but
@@ -428,20 +366,16 @@
       if (deviceId === this.baseApis.deviceId) {
         // no point in trying to send ourself the secret
         return;
-      } // check if we have the secret
-
+      }
 
+      // check if we have the secret
       _logger.logger.info("received request for secret (" + sender + ", " + deviceId + ", " + content.request_id + ")");
-
       if (!this.cryptoCallbacks.onSecretRequested) {
         return;
       }
-
       const secret = await this.cryptoCallbacks.onSecretRequested(sender, deviceId, content.request_id, content.name, this.baseApis.checkDeviceTrust(sender, deviceId));
-
       if (secret) {
         _logger.logger.info(`Preparing ${content.name} secret for ${deviceId}`);
-
         const payload = {
           type: "m.secret.send",
           content: {
@@ -452,110 +386,78 @@
         const encryptedContent = {
           algorithm: olmlib.OLM_ALGORITHM,
           sender_key: this.baseApis.crypto.olmDevice.deviceCurve25519Key,
-          ciphertext: {}
+          ciphertext: {},
+          [_event.ToDeviceMessageId]: (0, _uuid.v4)()
         };
-        await olmlib.ensureOlmSessionsForDevices(this.baseApis.crypto.olmDevice, this.baseApis, {
-          [sender]: [this.baseApis.getStoredDevice(sender, deviceId)]
-        });
+        await olmlib.ensureOlmSessionsForDevices(this.baseApis.crypto.olmDevice, this.baseApis, new Map([[sender, [this.baseApis.getStoredDevice(sender, deviceId)]]]));
         await olmlib.encryptMessageForDevice(encryptedContent.ciphertext, this.baseApis.getUserId(), this.baseApis.deviceId, this.baseApis.crypto.olmDevice, sender, this.baseApis.getStoredDevice(sender, deviceId), payload);
-        const contentMap = {
-          [sender]: {
-            [deviceId]: encryptedContent
-          }
-        };
-
+        const contentMap = new Map([[sender, new Map([[deviceId, encryptedContent]])]]);
         _logger.logger.info(`Sending ${content.name} secret for ${deviceId}`);
-
         this.baseApis.sendToDevice("m.room.encrypted", contentMap);
       } else {
         _logger.logger.info(`Request denied for ${content.name} secret for ${deviceId}`);
       }
     }
   }
-
   onSecretReceived(event) {
     if (event.getSender() !== this.baseApis.getUserId()) {
       // we shouldn't be receiving secrets from anyone else, so ignore
       // because someone could be trying to send us bogus data
       return;
     }
-
     if (!olmlib.isOlmEncrypted(event)) {
       _logger.logger.error("secret event not properly encrypted");
-
       return;
     }
-
     const content = event.getContent();
-    const senderKeyUser = this.baseApis.crypto.deviceList.getUserByIdentityKey(olmlib.OLM_ALGORITHM, content.sender_key);
-
+    const senderKeyUser = this.baseApis.crypto.deviceList.getUserByIdentityKey(olmlib.OLM_ALGORITHM, event.getSenderKey() || "");
     if (senderKeyUser !== event.getSender()) {
       _logger.logger.error("sending device does not belong to the user it claims to be from");
-
       return;
     }
-
     _logger.logger.log("got secret share for request", content.request_id);
-
     const requestControl = this.requests.get(content.request_id);
-
     if (requestControl) {
       // make sure that the device that sent it is one of the devices that
       // we requested from
       const deviceInfo = this.baseApis.crypto.deviceList.getDeviceByIdentityKey(olmlib.OLM_ALGORITHM, event.getSenderKey());
-
       if (!deviceInfo) {
         _logger.logger.log("secret share from unknown device with key", event.getSenderKey());
-
         return;
       }
-
       if (!requestControl.devices.includes(deviceInfo.deviceId)) {
         _logger.logger.log("unsolicited secret share from device", deviceInfo.deviceId);
-
         return;
-      } // unsure that the sender is trusted.  In theory, this check is
+      }
+      // unsure that the sender is trusted.  In theory, this check is
       // unnecessary since we only accept secret shares from devices that
       // we requested from, but it doesn't hurt.
-
-
       const deviceTrust = this.baseApis.crypto.checkDeviceInfoTrust(event.getSender(), deviceInfo);
-
       if (!deviceTrust.isVerified()) {
         _logger.logger.log("secret share from unverified device");
-
         return;
       }
-
       _logger.logger.log(`Successfully received secret ${requestControl.name} ` + `from ${deviceInfo.deviceId}`);
-
-      requestControl.resolve(content.secret);
+      requestControl.deferred.resolve(content.secret);
     }
   }
-
   async getSecretStorageKey(keys, name) {
     if (!this.cryptoCallbacks.getSecretStorageKey) {
       throw new Error("No getSecretStorageKey callback supplied");
     }
-
     const returned = await this.cryptoCallbacks.getSecretStorageKey({
       keys
     }, name);
-
     if (!returned) {
       throw new Error("getSecretStorageKey callback returned falsey");
     }
-
     if (returned.length < 2) {
       throw new Error("getSecretStorageKey callback returned invalid data");
     }
-
     const [keyId, privateKey] = returned;
-
     if (!keys[keyId]) {
       throw new Error("App returned unknown key from getSecretStorageKey!");
     }
-
     if (keys[keyId].algorithm === SECRET_STORAGE_ALGORITHM_V1_AES) {
       const decryption = {
         encrypt: function (secret) {
@@ -570,7 +472,5 @@
       throw new Error("Unknown key type: " + keys[keyId].algorithm);
     }
   }
-
 }
-
 exports.SecretStorage = SecretStorage;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/store/indexeddb-crypto-store-backend.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/store/indexeddb-crypto-store-backend.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/store/indexeddb-crypto-store-backend.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/store/indexeddb-crypto-store-backend.js	2023-04-11 06:11:52.000000000 +0000
@@ -5,205 +5,173 @@
 });
 exports.VERSION = exports.Backend = void 0;
 exports.upgradeDatabase = upgradeDatabase;
-
 var _logger = require("../../logger");
-
 var utils = _interopRequireWildcard(require("../../utils"));
-
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
-const VERSION = 11;
-exports.VERSION = VERSION;
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 const PROFILE_TRANSACTIONS = false;
+
 /**
  * Implementation of a CryptoStore which is backed by an existing
  * IndexedDB connection. Generally you want IndexedDBCryptoStore
  * which connects to the database and defers to one of these.
- *
- * @implements {module:crypto/store/base~CryptoStore}
  */
-
 class Backend {
   /**
-   * @param {IDBDatabase} db
    */
   constructor(db) {
     this.db = db;
-
     _defineProperty(this, "nextTxnId", 0);
-
     // make sure we close the db on `onversionchange` - otherwise
     // attempts to delete the database will block (and subsequent
     // attempts to re-create it will also block).
     db.onversionchange = () => {
       _logger.logger.log(`versionchange for indexeddb ${this.db.name}: closing`);
-
       db.close();
     };
   }
-
   async startup() {
     // No work to do, as the startup is done by the caller (e.g IndexedDBCryptoStore)
     // by passing us a ready IDBDatabase instance
     return this;
   }
-
   async deleteAllData() {
     throw Error("This is not implemented, call IDBFactory::deleteDatabase(dbName) instead.");
   }
+
   /**
    * Look for an existing outgoing room key request, and if none is found,
    * add a new one
    *
-   * @param {module:crypto/store/base~OutgoingRoomKeyRequest} request
    *
-   * @returns {Promise} resolves to
-   *    {@link module:crypto/store/base~OutgoingRoomKeyRequest}: either the
+   * @returns resolves to
+   *    {@link OutgoingRoomKeyRequest}: either the
    *    same instance as passed in, or the existing one.
    */
-
-
   getOrAddOutgoingRoomKeyRequest(request) {
     const requestBody = request.requestBody;
     return new Promise((resolve, reject) => {
       const txn = this.db.transaction("outgoingRoomKeyRequests", "readwrite");
-      txn.onerror = reject; // first see if we already have an entry for this request.
+      txn.onerror = reject;
 
+      // first see if we already have an entry for this request.
       this._getOutgoingRoomKeyRequest(txn, requestBody, existing => {
         if (existing) {
           // this entry matches the request - return it.
           _logger.logger.log(`already have key request outstanding for ` + `${requestBody.room_id} / ${requestBody.session_id}: ` + `not sending another`);
-
           resolve(existing);
           return;
-        } // we got to the end of the list without finding a match
-        // - add the new request.
-
+        }
 
+        // we got to the end of the list without finding a match
+        // - add the new request.
         _logger.logger.log(`enqueueing key request for ${requestBody.room_id} / ` + requestBody.session_id);
-
         txn.oncomplete = () => {
           resolve(request);
         };
-
         const store = txn.objectStore("outgoingRoomKeyRequests");
         store.add(request);
       });
     });
   }
+
   /**
    * Look for an existing room key request
    *
-   * @param {module:crypto~RoomKeyRequestBody} requestBody
-   *    existing request to look for
+   * @param requestBody - existing request to look for
    *
-   * @return {Promise} resolves to the matching
-   *    {@link module:crypto/store/base~OutgoingRoomKeyRequest}, or null if
+   * @returns resolves to the matching
+   *    {@link OutgoingRoomKeyRequest}, or null if
    *    not found
    */
-
-
   getOutgoingRoomKeyRequest(requestBody) {
     return new Promise((resolve, reject) => {
       const txn = this.db.transaction("outgoingRoomKeyRequests", "readonly");
       txn.onerror = reject;
-
       this._getOutgoingRoomKeyRequest(txn, requestBody, existing => {
         resolve(existing);
       });
     });
   }
+
   /**
    * look for an existing room key request in the db
    *
-   * @private
-   * @param {IDBTransaction} txn  database transaction
-   * @param {module:crypto~RoomKeyRequestBody} requestBody
-   *    existing request to look for
-   * @param {Function} callback  function to call with the results of the
+   * @internal
+   * @param txn -  database transaction
+   * @param requestBody - existing request to look for
+   * @param callback -  function to call with the results of the
    *    search. Either passed a matching
-   *    {@link module:crypto/store/base~OutgoingRoomKeyRequest}, or null if
+   *    {@link OutgoingRoomKeyRequest}, or null if
    *    not found.
    */
   // eslint-disable-next-line @typescript-eslint/naming-convention
-
-
   _getOutgoingRoomKeyRequest(txn, requestBody, callback) {
     const store = txn.objectStore("outgoingRoomKeyRequests");
     const idx = store.index("session");
     const cursorReq = idx.openCursor([requestBody.room_id, requestBody.session_id]);
-
     cursorReq.onsuccess = () => {
       const cursor = cursorReq.result;
-
       if (!cursor) {
         // no match found
         callback(null);
         return;
       }
-
       const existing = cursor.value;
-
       if (utils.deepCompare(existing.requestBody, requestBody)) {
         // got a match
         callback(existing);
         return;
-      } // look at the next entry in the index
-
+      }
 
+      // look at the next entry in the index
       cursor.continue();
     };
   }
+
   /**
    * Look for room key requests by state
    *
-   * @param {Array<Number>} wantedStates list of acceptable states
+   * @param wantedStates - list of acceptable states
    *
-   * @return {Promise} resolves to the a
-   *    {@link module:crypto/store/base~OutgoingRoomKeyRequest}, or null if
+   * @returns resolves to the a
+   *    {@link OutgoingRoomKeyRequest}, or null if
    *    there are no pending requests in those states. If there are multiple
    *    requests in those states, an arbitrary one is chosen.
    */
-
-
   getOutgoingRoomKeyRequestByState(wantedStates) {
     if (wantedStates.length === 0) {
       return Promise.resolve(null);
-    } // this is a bit tortuous because we need to make sure we do the lookup
+    }
+
+    // this is a bit tortuous because we need to make sure we do the lookup
     // in a single transaction, to avoid having a race with the insertion
     // code.
-    // index into the wantedStates array
-
 
+    // index into the wantedStates array
     let stateIndex = 0;
     let result;
-
     function onsuccess() {
       const cursor = this.result;
-
       if (cursor) {
         // got a match
         result = cursor.value;
         return;
-      } // try the next state in the list
-
+      }
 
+      // try the next state in the list
       stateIndex++;
-
       if (stateIndex >= wantedStates.length) {
         // no matches
         return;
       }
-
       const wantedState = wantedStates[stateIndex];
       const cursorReq = this.source.openCursor(wantedState);
       cursorReq.onsuccess = onsuccess;
     }
-
     const txn = this.db.transaction("outgoingRoomKeyRequests", "readonly");
     const store = txn.objectStore("outgoingRoomKeyRequests");
     const wantedState = wantedStates[stateIndex];
@@ -211,56 +179,44 @@
     cursorReq.onsuccess = onsuccess;
     return promiseifyTxn(txn).then(() => result);
   }
+
   /**
    *
-   * @param {Number} wantedState
-   * @return {Promise<Array<*>>} All elements in a given state
+   * @returns All elements in a given state
    */
-
-
   getAllOutgoingRoomKeyRequestsByState(wantedState) {
     return new Promise((resolve, reject) => {
       const txn = this.db.transaction("outgoingRoomKeyRequests", "readonly");
       const store = txn.objectStore("outgoingRoomKeyRequests");
       const index = store.index("state");
       const request = index.getAll(wantedState);
-
       request.onsuccess = () => resolve(request.result);
-
       request.onerror = () => reject(request.error);
     });
   }
-
   getOutgoingRoomKeyRequestsByTarget(userId, deviceId, wantedStates) {
     let stateIndex = 0;
     const results = [];
-
     function onsuccess() {
       const cursor = this.result;
-
       if (cursor) {
         const keyReq = cursor.value;
-
         if (keyReq.recipients.some(recipient => recipient.userId === userId && recipient.deviceId === deviceId)) {
           results.push(keyReq);
         }
-
         cursor.continue();
       } else {
         // try the next state in the list
         stateIndex++;
-
         if (stateIndex >= wantedStates.length) {
           // no matches
           return;
         }
-
         const wantedState = wantedStates[stateIndex];
         const cursorReq = this.source.openCursor(wantedState);
         cursorReq.onsuccess = onsuccess;
       }
     }
-
     const txn = this.db.transaction("outgoingRoomKeyRequests", "readonly");
     const store = txn.objectStore("outgoingRoomKeyRequests");
     const wantedState = wantedStates[stateIndex];
@@ -268,89 +224,73 @@
     cursorReq.onsuccess = onsuccess;
     return promiseifyTxn(txn).then(() => results);
   }
+
   /**
    * Look for an existing room key request by id and state, and update it if
    * found
    *
-   * @param {string} requestId      ID of request to update
-   * @param {number} expectedState  state we expect to find the request in
-   * @param {Object} updates        name/value map of updates to apply
+   * @param requestId -      ID of request to update
+   * @param expectedState -  state we expect to find the request in
+   * @param updates -        name/value map of updates to apply
    *
-   * @returns {Promise} resolves to
-   *    {@link module:crypto/store/base~OutgoingRoomKeyRequest}
+   * @returns resolves to
+   *    {@link OutgoingRoomKeyRequest}
    *    updated request, or null if no matching row was found
    */
-
-
   updateOutgoingRoomKeyRequest(requestId, expectedState, updates) {
     let result = null;
-
     function onsuccess() {
       const cursor = this.result;
-
       if (!cursor) {
         return;
       }
-
       const data = cursor.value;
-
       if (data.state != expectedState) {
         _logger.logger.warn(`Cannot update room key request from ${expectedState} ` + `as it was already updated to ${data.state}`);
-
         return;
       }
-
       Object.assign(data, updates);
       cursor.update(data);
       result = data;
     }
-
     const txn = this.db.transaction("outgoingRoomKeyRequests", "readwrite");
     const cursorReq = txn.objectStore("outgoingRoomKeyRequests").openCursor(requestId);
     cursorReq.onsuccess = onsuccess;
     return promiseifyTxn(txn).then(() => result);
   }
+
   /**
    * Look for an existing room key request by id and state, and delete it if
    * found
    *
-   * @param {string} requestId      ID of request to update
-   * @param {number} expectedState  state we expect to find the request in
+   * @param requestId -      ID of request to update
+   * @param expectedState -  state we expect to find the request in
    *
-   * @returns {Promise} resolves once the operation is completed
+   * @returns resolves once the operation is completed
    */
-
-
   deleteOutgoingRoomKeyRequest(requestId, expectedState) {
     const txn = this.db.transaction("outgoingRoomKeyRequests", "readwrite");
     const cursorReq = txn.objectStore("outgoingRoomKeyRequests").openCursor(requestId);
-
     cursorReq.onsuccess = () => {
       const cursor = cursorReq.result;
-
       if (!cursor) {
         return;
       }
-
       const data = cursor.value;
-
       if (data.state != expectedState) {
         _logger.logger.warn(`Cannot delete room key request in state ${data.state} ` + `(expected ${expectedState})`);
-
         return;
       }
-
       cursor.delete();
     };
-
     return promiseifyTxn(txn);
-  } // Olm Account
+  }
 
+  // Olm Account
 
   getAccount(txn, func) {
     const objectStore = txn.objectStore("account");
     const getReq = objectStore.get("-");
-
     getReq.onsuccess = function () {
       try {
         func(getReq.result || null);
@@ -359,16 +299,13 @@
       }
     };
   }
-
   storeAccount(txn, accountPickle) {
     const objectStore = txn.objectStore("account");
     objectStore.put(accountPickle, "-");
   }
-
   getCrossSigningKeys(txn, func) {
     const objectStore = txn.objectStore("account");
     const getReq = objectStore.get("crossSigningKeys");
-
     getReq.onsuccess = function () {
       try {
         func(getReq.result || null);
@@ -377,11 +314,9 @@
       }
     };
   }
-
   getSecretStorePrivateKey(txn, func, type) {
     const objectStore = txn.objectStore("account");
     const getReq = objectStore.get(`ssss_cache:${type}`);
-
     getReq.onsuccess = function () {
       try {
         func(getReq.result || null);
@@ -390,22 +325,20 @@
       }
     };
   }
-
   storeCrossSigningKeys(txn, keys) {
     const objectStore = txn.objectStore("account");
     objectStore.put(keys, "crossSigningKeys");
   }
-
   storeSecretStorePrivateKey(txn, type, key) {
     const objectStore = txn.objectStore("account");
     objectStore.put(key, `ssss_cache:${type}`);
-  } // Olm Sessions
+  }
 
+  // Olm Sessions
 
   countEndToEndSessions(txn, func) {
     const objectStore = txn.objectStore("sessions");
     const countReq = objectStore.count();
-
     countReq.onsuccess = function () {
       try {
         func(countReq.result);
@@ -414,16 +347,13 @@
       }
     };
   }
-
   getEndToEndSessions(deviceKey, txn, func) {
     const objectStore = txn.objectStore("sessions");
     const idx = objectStore.index("deviceKey");
     const getReq = idx.openCursor(deviceKey);
     const results = {};
-
     getReq.onsuccess = function () {
       const cursor = getReq.result;
-
       if (cursor) {
         results[cursor.value.sessionId] = {
           session: cursor.value.session,
@@ -439,11 +369,9 @@
       }
     };
   }
-
   getEndToEndSession(deviceKey, sessionId, txn, func) {
     const objectStore = txn.objectStore("sessions");
     const getReq = objectStore.get([deviceKey, sessionId]);
-
     getReq.onsuccess = function () {
       try {
         if (getReq.result) {
@@ -459,15 +387,12 @@
       }
     };
   }
-
   getAllEndToEndSessions(txn, func) {
     const objectStore = txn.objectStore("sessions");
     const getReq = objectStore.openCursor();
-
     getReq.onsuccess = function () {
       try {
         const cursor = getReq.result;
-
         if (cursor) {
           func(cursor.value);
           cursor.continue();
@@ -479,7 +404,6 @@
       }
     };
   }
-
   storeEndToEndSession(deviceKey, sessionId, sessionInfo, txn) {
     const objectStore = txn.objectStore("sessions");
     objectStore.put({
@@ -489,7 +413,6 @@
       lastReceivedMessageTs: sessionInfo.lastReceivedMessageTs
     });
   }
-
   async storeEndToEndSessionProblem(deviceKey, type, fixed) {
     const txn = this.db.transaction("session_problems", "readwrite");
     const objectStore = txn.objectStore("session_problems");
@@ -499,29 +422,24 @@
       fixed,
       time: Date.now()
     });
-    return promiseifyTxn(txn);
+    await promiseifyTxn(txn);
   }
-
   async getEndToEndSessionProblem(deviceKey, timestamp) {
-    let result;
+    let result = null;
     const txn = this.db.transaction("session_problems", "readwrite");
     const objectStore = txn.objectStore("session_problems");
     const index = objectStore.index("deviceKey");
     const req = index.getAll(deviceKey);
-
     req.onsuccess = () => {
       const problems = req.result;
-
       if (!problems.length) {
         result = null;
         return;
       }
-
       problems.sort((a, b) => {
         return a.time - b.time;
       });
       const lastProblem = problems[problems.length - 1];
-
       for (const problem of problems) {
         if (problem.time > timestamp) {
           result = Object.assign({}, problem, {
@@ -530,19 +448,17 @@
           return;
         }
       }
-
       if (lastProblem.fixed) {
         result = null;
       } else {
         result = lastProblem;
       }
     };
-
     await promiseifyTxn(txn);
     return result;
-  } // FIXME: we should probably prune this when devices get deleted
-
+  }
 
+  // FIXME: we should probably prune this when devices get deleted
   async filterOutNotifiedErrorDevices(devices) {
     const txn = this.db.transaction("notified_error_devices", "readwrite");
     const objectStore = txn.objectStore("notified_error_devices");
@@ -554,7 +470,6 @@
           deviceInfo
         } = device;
         const getReq = objectStore.get([userId, deviceInfo.deviceId]);
-
         getReq.onsuccess = function () {
           if (!getReq.result) {
             objectStore.put({
@@ -563,21 +478,20 @@
             });
             ret.push(device);
           }
-
           resolve();
         };
       });
     }));
     return ret;
-  } // Inbound group sessions
+  }
 
+  // Inbound group sessions
 
   getEndToEndInboundGroupSession(senderCurve25519Key, sessionId, txn, func) {
     let session = false;
     let withheld = false;
     const objectStore = txn.objectStore("inbound_group_sessions");
     const getReq = objectStore.get([senderCurve25519Key, sessionId]);
-
     getReq.onsuccess = function () {
       try {
         if (getReq.result) {
@@ -585,7 +499,6 @@
         } else {
           session = null;
         }
-
         if (withheld !== false) {
           func(session, withheld);
         }
@@ -593,10 +506,8 @@
         abortWithException(txn, e);
       }
     };
-
     const withheldObjectStore = txn.objectStore("inbound_group_sessions_withheld");
     const withheldGetReq = withheldObjectStore.get([senderCurve25519Key, sessionId]);
-
     withheldGetReq.onsuccess = function () {
       try {
         if (withheldGetReq.result) {
@@ -604,7 +515,6 @@
         } else {
           withheld = null;
         }
-
         if (session !== false) {
           func(session, withheld);
         }
@@ -613,14 +523,11 @@
       }
     };
   }
-
   getAllEndToEndInboundGroupSessions(txn, func) {
     const objectStore = txn.objectStore("inbound_group_sessions");
     const getReq = objectStore.openCursor();
-
     getReq.onsuccess = function () {
       const cursor = getReq.result;
-
       if (cursor) {
         try {
           func({
@@ -631,7 +538,6 @@
         } catch (e) {
           abortWithException(txn, e);
         }
-
         cursor.continue();
       } else {
         try {
@@ -642,7 +548,6 @@
       }
     };
   }
-
   addEndToEndInboundGroupSession(senderCurve25519Key, sessionId, sessionData, txn) {
     const objectStore = txn.objectStore("inbound_group_sessions");
     const addReq = objectStore.add({
@@ -650,21 +555,18 @@
       sessionId,
       session: sessionData
     });
-
     addReq.onerror = ev => {
-      if (addReq.error.name === 'ConstraintError') {
+      if (addReq.error?.name === "ConstraintError") {
         // This stops the error from triggering the txn's onerror
-        ev.stopPropagation(); // ...and this stops it from aborting the transaction
-
+        ev.stopPropagation();
+        // ...and this stops it from aborting the transaction
         ev.preventDefault();
-
         _logger.logger.log("Ignoring duplicate inbound group session: " + senderCurve25519Key + " / " + sessionId);
       } else {
         abortWithException(txn, new Error("Failed to add inbound group session: " + addReq.error));
       }
     };
   }
-
   storeEndToEndInboundGroupSession(senderCurve25519Key, sessionId, sessionData, txn) {
     const objectStore = txn.objectStore("inbound_group_sessions");
     objectStore.put({
@@ -673,7 +575,6 @@
       session: sessionData
     });
   }
-
   storeEndToEndInboundGroupSessionWithheld(senderCurve25519Key, sessionId, sessionData, txn) {
     const objectStore = txn.objectStore("inbound_group_sessions_withheld");
     objectStore.put({
@@ -682,11 +583,9 @@
       session: sessionData
     });
   }
-
   getEndToEndDeviceData(txn, func) {
     const objectStore = txn.objectStore("device_data");
     const getReq = objectStore.get("-");
-
     getReq.onsuccess = function () {
       try {
         func(getReq.result || null);
@@ -695,25 +594,20 @@
       }
     };
   }
-
   storeEndToEndDeviceData(deviceData, txn) {
     const objectStore = txn.objectStore("device_data");
     objectStore.put(deviceData, "-");
   }
-
   storeEndToEndRoom(roomId, roomInfo, txn) {
     const objectStore = txn.objectStore("rooms");
     objectStore.put(roomInfo, roomId);
   }
-
   getEndToEndRooms(txn, func) {
     const rooms = {};
     const objectStore = txn.objectStore("rooms");
     const getReq = objectStore.openCursor();
-
     getReq.onsuccess = function () {
       const cursor = getReq.result;
-
       if (cursor) {
         rooms[cursor.key] = cursor.value;
         cursor.continue();
@@ -725,29 +619,25 @@
         }
       }
     };
-  } // session backups
+  }
 
+  // session backups
 
   getSessionsNeedingBackup(limit) {
     return new Promise((resolve, reject) => {
       const sessions = [];
       const txn = this.db.transaction(["sessions_needing_backup", "inbound_group_sessions"], "readonly");
       txn.onerror = reject;
-
       txn.oncomplete = function () {
         resolve(sessions);
       };
-
       const objectStore = txn.objectStore("sessions_needing_backup");
       const sessionStore = txn.objectStore("inbound_group_sessions");
       const getReq = objectStore.openCursor();
-
       getReq.onsuccess = function () {
         const cursor = getReq.result;
-
         if (cursor) {
           const sessionGetReq = sessionStore.get(cursor.key);
-
           sessionGetReq.onsuccess = function () {
             sessions.push({
               senderKey: sessionGetReq.result.senderCurve25519Key,
@@ -755,7 +645,6 @@
               sessionData: sessionGetReq.result.session
             });
           };
-
           if (!limit || sessions.length < limit) {
             cursor.continue();
           }
@@ -763,26 +652,21 @@
       };
     });
   }
-
   countSessionsNeedingBackup(txn) {
     if (!txn) {
       txn = this.db.transaction("sessions_needing_backup", "readonly");
     }
-
     const objectStore = txn.objectStore("sessions_needing_backup");
     return new Promise((resolve, reject) => {
       const req = objectStore.count();
       req.onerror = reject;
-
       req.onsuccess = () => resolve(req.result);
     });
   }
-
   async unmarkSessionsNeedingBackup(sessions, txn) {
     if (!txn) {
       txn = this.db.transaction("sessions_needing_backup", "readwrite");
     }
-
     const objectStore = txn.objectStore("sessions_needing_backup");
     await Promise.all(sessions.map(session => {
       return new Promise((resolve, reject) => {
@@ -792,12 +676,10 @@
       });
     }));
   }
-
   async markSessionsNeedingBackup(sessions, txn) {
     if (!txn) {
       txn = this.db.transaction("sessions_needing_backup", "readwrite");
     }
-
     const objectStore = txn.objectStore("sessions_needing_backup");
     await Promise.all(sessions.map(session => {
       return new Promise((resolve, reject) => {
@@ -810,15 +692,12 @@
       });
     }));
   }
-
   addSharedHistoryInboundGroupSession(roomId, senderKey, sessionId, txn) {
     if (!txn) {
       txn = this.db.transaction("shared_history_inbound_group_sessions", "readwrite");
     }
-
     const objectStore = txn.objectStore("shared_history_inbound_group_sessions");
     const req = objectStore.get([roomId]);
-
     req.onsuccess = () => {
       const {
         sessions
@@ -832,12 +711,10 @@
       });
     };
   }
-
   getSharedHistoryInboundGroupSessions(roomId, txn) {
     if (!txn) {
       txn = this.db.transaction("shared_history_inbound_group_sessions", "readonly");
     }
-
     const objectStore = txn.objectStore("shared_history_inbound_group_sessions");
     const req = objectStore.get([roomId]);
     return new Promise((resolve, reject) => {
@@ -849,19 +726,15 @@
         };
         resolve(sessions);
       };
-
       req.onerror = reject;
     });
   }
-
   addParkedSharedHistory(roomId, parkedData, txn) {
     if (!txn) {
       txn = this.db.transaction("parked_shared_history", "readwrite");
     }
-
     const objectStore = txn.objectStore("parked_shared_history");
     const req = objectStore.get([roomId]);
-
     req.onsuccess = () => {
       const {
         parked
@@ -875,45 +748,37 @@
       });
     };
   }
-
   takeParkedSharedHistory(roomId, txn) {
     if (!txn) {
       txn = this.db.transaction("parked_shared_history", "readwrite");
     }
-
     const cursorReq = txn.objectStore("parked_shared_history").openCursor(roomId);
     return new Promise((resolve, reject) => {
       cursorReq.onsuccess = () => {
         const cursor = cursorReq.result;
-
         if (!cursor) {
           resolve([]);
+          return;
         }
-
         const data = cursor.value;
         cursor.delete();
         resolve(data);
       };
-
       cursorReq.onerror = reject;
     });
   }
-
   doTxn(mode, stores, func, log = _logger.logger) {
     let startTime;
     let description;
-
     if (PROFILE_TRANSACTIONS) {
       const txnId = this.nextTxnId++;
       startTime = Date.now();
       description = `${mode} crypto store transaction ${txnId} in ${stores}`;
       log.debug(`Starting ${description}`);
     }
-
     const txn = this.db.transaction(stores, mode);
     const promise = promiseifyTxn(txn);
     const result = func(txn);
-
     if (PROFILE_TRANSACTIONS) {
       promise.then(() => {
         const elapsedTime = Date.now() - startTime;
@@ -923,95 +788,75 @@
         log.error(`Failed ${description}, took ${elapsedTime} ms`);
       });
     }
-
     return promise.then(() => {
       return result;
     });
   }
-
 }
-
 exports.Backend = Backend;
+const DB_MIGRATIONS = [db => {
+  createDatabase(db);
+}, db => {
+  db.createObjectStore("account");
+}, db => {
+  const sessionsStore = db.createObjectStore("sessions", {
+    keyPath: ["deviceKey", "sessionId"]
+  });
+  sessionsStore.createIndex("deviceKey", "deviceKey");
+}, db => {
+  db.createObjectStore("inbound_group_sessions", {
+    keyPath: ["senderCurve25519Key", "sessionId"]
+  });
+}, db => {
+  db.createObjectStore("device_data");
+}, db => {
+  db.createObjectStore("rooms");
+}, db => {
+  db.createObjectStore("sessions_needing_backup", {
+    keyPath: ["senderCurve25519Key", "sessionId"]
+  });
+}, db => {
+  db.createObjectStore("inbound_group_sessions_withheld", {
+    keyPath: ["senderCurve25519Key", "sessionId"]
+  });
+}, db => {
+  const problemsStore = db.createObjectStore("session_problems", {
+    keyPath: ["deviceKey", "time"]
+  });
+  problemsStore.createIndex("deviceKey", "deviceKey");
+  db.createObjectStore("notified_error_devices", {
+    keyPath: ["userId", "deviceId"]
+  });
+}, db => {
+  db.createObjectStore("shared_history_inbound_group_sessions", {
+    keyPath: ["roomId"]
+  });
+}, db => {
+  db.createObjectStore("parked_shared_history", {
+    keyPath: ["roomId"]
+  });
+}
+// Expand as needed.
+];
 
+const VERSION = DB_MIGRATIONS.length;
+exports.VERSION = VERSION;
 function upgradeDatabase(db, oldVersion) {
   _logger.logger.log(`Upgrading IndexedDBCryptoStore from version ${oldVersion}` + ` to ${VERSION}`);
-
-  if (oldVersion < 1) {
-    // The database did not previously exist.
-    createDatabase(db);
-  }
-
-  if (oldVersion < 2) {
-    db.createObjectStore("account");
-  }
-
-  if (oldVersion < 3) {
-    const sessionsStore = db.createObjectStore("sessions", {
-      keyPath: ["deviceKey", "sessionId"]
-    });
-    sessionsStore.createIndex("deviceKey", "deviceKey");
-  }
-
-  if (oldVersion < 4) {
-    db.createObjectStore("inbound_group_sessions", {
-      keyPath: ["senderCurve25519Key", "sessionId"]
-    });
-  }
-
-  if (oldVersion < 5) {
-    db.createObjectStore("device_data");
-  }
-
-  if (oldVersion < 6) {
-    db.createObjectStore("rooms");
-  }
-
-  if (oldVersion < 7) {
-    db.createObjectStore("sessions_needing_backup", {
-      keyPath: ["senderCurve25519Key", "sessionId"]
-    });
-  }
-
-  if (oldVersion < 8) {
-    db.createObjectStore("inbound_group_sessions_withheld", {
-      keyPath: ["senderCurve25519Key", "sessionId"]
-    });
-  }
-
-  if (oldVersion < 9) {
-    const problemsStore = db.createObjectStore("session_problems", {
-      keyPath: ["deviceKey", "time"]
-    });
-    problemsStore.createIndex("deviceKey", "deviceKey");
-    db.createObjectStore("notified_error_devices", {
-      keyPath: ["userId", "deviceId"]
-    });
-  }
-
-  if (oldVersion < 10) {
-    db.createObjectStore("shared_history_inbound_group_sessions", {
-      keyPath: ["roomId"]
-    });
-  }
-
-  if (oldVersion < 11) {
-    db.createObjectStore("parked_shared_history", {
-      keyPath: ["roomId"]
-    });
-  } // Expand as needed.
-
+  DB_MIGRATIONS.forEach((migration, index) => {
+    if (oldVersion <= index) migration(db);
+  });
 }
-
 function createDatabase(db) {
   const outgoingRoomKeyRequestsStore = db.createObjectStore("outgoingRoomKeyRequests", {
     keyPath: "requestId"
-  }); // we assume that the RoomKeyRequestBody will have room_id and session_id
-  // properties, to make the index efficient.
+  });
 
+  // we assume that the RoomKeyRequestBody will have room_id and session_id
+  // properties, to make the index efficient.
   outgoingRoomKeyRequestsStore.createIndex("session", ["requestBody.room_id", "requestBody.session_id"]);
   outgoingRoomKeyRequestsStore.createIndex("state", "state");
 }
-
 /*
  * Aborts a transaction with a given exception
  * The transaction promise will be rejected with this exception.
@@ -1021,40 +866,34 @@
   // We could alternatively make the thing we pass back to the app
   // an object containing the transaction and exception.
   txn._mx_abortexception = e;
-
   try {
     txn.abort();
-  } catch (e) {// sometimes we won't be able to abort the transaction
+  } catch (e) {
+    // sometimes we won't be able to abort the transaction
     // (ie. if it's aborted or completed)
   }
 }
-
 function promiseifyTxn(txn) {
   return new Promise((resolve, reject) => {
     txn.oncomplete = () => {
       if (txn._mx_abortexception !== undefined) {
         reject(txn._mx_abortexception);
       }
-
       resolve(null);
     };
-
     txn.onerror = event => {
       if (txn._mx_abortexception !== undefined) {
         reject(txn._mx_abortexception);
       } else {
         _logger.logger.log("Error performing indexeddb txn", event);
-
         reject(txn.error);
       }
     };
-
     txn.onabort = event => {
       if (txn._mx_abortexception !== undefined) {
         reject(txn._mx_abortexception);
       } else {
         _logger.logger.log("Error performing indexeddb txn", event);
-
         reject(txn.error);
       }
     };
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/store/indexeddb-crypto-store.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/store/indexeddb-crypto-store.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/store/indexeddb-crypto-store.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/store/indexeddb-crypto-store.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,128 +4,98 @@
   value: true
 });
 exports.IndexedDBCryptoStore = void 0;
-
 var _logger = require("../../logger");
-
 var _localStorageCryptoStore = require("./localStorage-crypto-store");
-
 var _memoryCryptoStore = require("./memory-crypto-store");
-
 var IndexedDBCryptoStoreBackend = _interopRequireWildcard(require("./indexeddb-crypto-store-backend"));
-
 var _errors = require("../../errors");
-
 var IndexedDBHelpers = _interopRequireWildcard(require("../../indexeddb-helpers"));
-
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /**
  * Internal module. indexeddb storage for e2e.
- *
- * @module
  */
 
 /**
  * An implementation of CryptoStore, which is normally backed by an indexeddb,
  * but with fallback to MemoryCryptoStore.
- *
- * @implements {module:crypto/store/base~CryptoStore}
  */
 class IndexedDBCryptoStore {
   static exists(indexedDB, dbName) {
     return IndexedDBHelpers.exists(indexedDB, dbName);
   }
-
   /**
    * Create a new IndexedDBCryptoStore
    *
-   * @param {IDBFactory} indexedDB  global indexedDB instance
-   * @param {string} dbName   name of db to connect to
+   * @param indexedDB -  global indexedDB instance
+   * @param dbName -   name of db to connect to
    */
   constructor(indexedDB, dbName) {
     this.indexedDB = indexedDB;
     this.dbName = dbName;
-
-    _defineProperty(this, "backendPromise", null);
-
-    _defineProperty(this, "backend", null);
+    _defineProperty(this, "backendPromise", void 0);
+    _defineProperty(this, "backend", void 0);
   }
+
   /**
    * Ensure the database exists and is up-to-date, or fall back to
    * a local storage or in-memory store.
    *
    * This must be called before the store can be used.
    *
-   * @return {Promise} resolves to either an IndexedDBCryptoStoreBackend.Backend,
+   * @returns resolves to either an IndexedDBCryptoStoreBackend.Backend,
    * or a MemoryCryptoStore
    */
-
-
   startup() {
     if (this.backendPromise) {
       return this.backendPromise;
     }
-
     this.backendPromise = new Promise((resolve, reject) => {
       if (!this.indexedDB) {
-        reject(new Error('no indexeddb support available'));
+        reject(new Error("no indexeddb support available"));
         return;
       }
-
       _logger.logger.log(`connecting to indexeddb ${this.dbName}`);
-
       const req = this.indexedDB.open(this.dbName, IndexedDBCryptoStoreBackend.VERSION);
-
       req.onupgradeneeded = ev => {
         const db = req.result;
         const oldVersion = ev.oldVersion;
         IndexedDBCryptoStoreBackend.upgradeDatabase(db, oldVersion);
       };
-
       req.onblocked = () => {
         _logger.logger.log(`can't yet open IndexedDBCryptoStore because it is open elsewhere`);
       };
-
       req.onerror = ev => {
         _logger.logger.log("Error connecting to indexeddb", ev);
-
         reject(req.error);
       };
-
       req.onsuccess = () => {
         const db = req.result;
-
         _logger.logger.log(`connected to indexeddb ${this.dbName}`);
-
         resolve(new IndexedDBCryptoStoreBackend.Backend(db));
       };
     }).then(backend => {
       // Edge has IndexedDB but doesn't support compund keys which we use fairly extensively.
       // Try a dummy query which will fail if the browser doesn't support compund keys, so
       // we can fall back to a different backend.
-      return backend.doTxn('readonly', [IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS, IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS_WITHHELD], txn => {
-        backend.getEndToEndInboundGroupSession('', '', txn, () => {});
+      return backend.doTxn("readonly", [IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS, IndexedDBCryptoStore.STORE_INBOUND_GROUP_SESSIONS_WITHHELD], txn => {
+        backend.getEndToEndInboundGroupSession("", "", txn, () => {});
       }).then(() => backend);
     }).catch(e => {
-      if (e.name === 'VersionError') {
-        _logger.logger.warn("Crypto DB is too new for us to use!", e); // don't fall back to a different store: the user has crypto data
+      if (e.name === "VersionError") {
+        _logger.logger.warn("Crypto DB is too new for us to use!", e);
+        // don't fall back to a different store: the user has crypto data
         // in this db so we should use it or nothing at all.
-
-
-        throw new _errors.InvalidCryptoStoreError(_errors.InvalidCryptoStoreError.TOO_NEW);
+        throw new _errors.InvalidCryptoStoreError(_errors.InvalidCryptoStoreState.TooNew);
       }
-
       _logger.logger.warn(`unable to connect to indexeddb ${this.dbName}` + `: falling back to localStorage store: ${e}`);
-
       try {
         return new _localStorageCryptoStore.LocalStorageCryptoStore(global.localStorage);
       } catch (e) {
         _logger.logger.warn(`unable to open localStorage: falling back to in-memory store: ${e}`);
-
         return new _memoryCryptoStore.MemoryCryptoStore();
       }
     }).then(backend => {
@@ -134,37 +104,29 @@
     });
     return this.backendPromise;
   }
+
   /**
    * Delete all data from this store.
    *
-   * @returns {Promise} resolves when the store has been cleared.
+   * @returns resolves when the store has been cleared.
    */
-
-
   deleteAllData() {
     return new Promise((resolve, reject) => {
       if (!this.indexedDB) {
-        reject(new Error('no indexeddb support available'));
+        reject(new Error("no indexeddb support available"));
         return;
       }
-
       _logger.logger.log(`Removing indexeddb instance: ${this.dbName}`);
-
       const req = this.indexedDB.deleteDatabase(this.dbName);
-
       req.onblocked = () => {
         _logger.logger.log(`can't yet delete IndexedDBCryptoStore because it is open elsewhere`);
       };
-
       req.onerror = ev => {
         _logger.logger.log("Error deleting data from indexeddb", ev);
-
         reject(req.error);
       };
-
       req.onsuccess = () => {
         _logger.logger.log(`Removed indexeddb instance: ${this.dbName}`);
-
         resolve();
       };
     }).catch(e => {
@@ -174,319 +136,295 @@
       _logger.logger.warn(`unable to delete IndexedDBCryptoStore: ${e}`);
     });
   }
+
   /**
    * Look for an existing outgoing room key request, and if none is found,
    * add a new one
    *
-   * @param {module:crypto/store/base~OutgoingRoomKeyRequest} request
    *
-   * @returns {Promise} resolves to
-   *    {@link module:crypto/store/base~OutgoingRoomKeyRequest}: either the
+   * @returns resolves to
+   *    {@link OutgoingRoomKeyRequest}: either the
    *    same instance as passed in, or the existing one.
    */
-
-
   getOrAddOutgoingRoomKeyRequest(request) {
     return this.backend.getOrAddOutgoingRoomKeyRequest(request);
   }
+
   /**
    * Look for an existing room key request
    *
-   * @param {module:crypto~RoomKeyRequestBody} requestBody
-   *    existing request to look for
+   * @param requestBody - existing request to look for
    *
-   * @return {Promise} resolves to the matching
-   *    {@link module:crypto/store/base~OutgoingRoomKeyRequest}, or null if
+   * @returns resolves to the matching
+   *    {@link OutgoingRoomKeyRequest}, or null if
    *    not found
    */
-
-
   getOutgoingRoomKeyRequest(requestBody) {
     return this.backend.getOutgoingRoomKeyRequest(requestBody);
   }
+
   /**
    * Look for room key requests by state
    *
-   * @param {Array<Number>} wantedStates list of acceptable states
+   * @param wantedStates - list of acceptable states
    *
-   * @return {Promise} resolves to the a
-   *    {@link module:crypto/store/base~OutgoingRoomKeyRequest}, or null if
+   * @returns resolves to the a
+   *    {@link OutgoingRoomKeyRequest}, or null if
    *    there are no pending requests in those states. If there are multiple
    *    requests in those states, an arbitrary one is chosen.
    */
-
-
   getOutgoingRoomKeyRequestByState(wantedStates) {
     return this.backend.getOutgoingRoomKeyRequestByState(wantedStates);
   }
+
   /**
    * Look for room key requests by state –
    * unlike above, return a list of all entries in one state.
    *
-   * @param {Number} wantedState
-   * @return {Promise<Array<*>>} Returns an array of requests in the given state
+   * @returns Returns an array of requests in the given state
    */
-
-
   getAllOutgoingRoomKeyRequestsByState(wantedState) {
     return this.backend.getAllOutgoingRoomKeyRequestsByState(wantedState);
   }
+
   /**
    * Look for room key requests by target device and state
    *
-   * @param {string} userId Target user ID
-   * @param {string} deviceId Target device ID
-   * @param {Array<Number>} wantedStates list of acceptable states
+   * @param userId - Target user ID
+   * @param deviceId - Target device ID
+   * @param wantedStates - list of acceptable states
    *
-   * @return {Promise} resolves to a list of all the
-   *    {@link module:crypto/store/base~OutgoingRoomKeyRequest}
+   * @returns resolves to a list of all the
+   *    {@link OutgoingRoomKeyRequest}
    */
-
-
   getOutgoingRoomKeyRequestsByTarget(userId, deviceId, wantedStates) {
     return this.backend.getOutgoingRoomKeyRequestsByTarget(userId, deviceId, wantedStates);
   }
+
   /**
    * Look for an existing room key request by id and state, and update it if
    * found
    *
-   * @param {string} requestId      ID of request to update
-   * @param {number} expectedState  state we expect to find the request in
-   * @param {Object} updates        name/value map of updates to apply
+   * @param requestId -      ID of request to update
+   * @param expectedState -  state we expect to find the request in
+   * @param updates -        name/value map of updates to apply
    *
-   * @returns {Promise} resolves to
-   *    {@link module:crypto/store/base~OutgoingRoomKeyRequest}
+   * @returns resolves to
+   *    {@link OutgoingRoomKeyRequest}
    *    updated request, or null if no matching row was found
    */
-
-
   updateOutgoingRoomKeyRequest(requestId, expectedState, updates) {
     return this.backend.updateOutgoingRoomKeyRequest(requestId, expectedState, updates);
   }
+
   /**
    * Look for an existing room key request by id and state, and delete it if
    * found
    *
-   * @param {string} requestId      ID of request to update
-   * @param {number} expectedState  state we expect to find the request in
+   * @param requestId -      ID of request to update
+   * @param expectedState -  state we expect to find the request in
    *
-   * @returns {Promise} resolves once the operation is completed
+   * @returns resolves once the operation is completed
    */
-
-
   deleteOutgoingRoomKeyRequest(requestId, expectedState) {
     return this.backend.deleteOutgoingRoomKeyRequest(requestId, expectedState);
-  } // Olm Account
+  }
+
+  // Olm Account
 
   /*
    * Get the account pickle from the store.
    * This requires an active transaction. See doTxn().
    *
-   * @param {*} txn An active transaction. See doTxn().
-   * @param {function(string)} func Called with the account pickle
+   * @param txn - An active transaction. See doTxn().
+   * @param func - Called with the account pickle
    */
-
-
   getAccount(txn, func) {
     this.backend.getAccount(txn, func);
   }
+
   /**
    * Write the account pickle to the store.
    * This requires an active transaction. See doTxn().
    *
-   * @param {*} txn An active transaction. See doTxn().
-   * @param {string} accountPickle The new account pickle to store.
+   * @param txn - An active transaction. See doTxn().
+   * @param accountPickle - The new account pickle to store.
    */
-
-
   storeAccount(txn, accountPickle) {
     this.backend.storeAccount(txn, accountPickle);
   }
+
   /**
    * Get the public part of the cross-signing keys (eg. self-signing key,
    * user signing key).
    *
-   * @param {*} txn An active transaction. See doTxn().
-   * @param {function(string)} func Called with the account keys object:
-   *        { key_type: base64 encoded seed } where key type = user_signing_key_seed or self_signing_key_seed
+   * @param txn - An active transaction. See doTxn().
+   * @param func - Called with the account keys object:
+   *        `{ key_type: base64 encoded seed }` where key type = user_signing_key_seed or self_signing_key_seed
    */
-
-
   getCrossSigningKeys(txn, func) {
     this.backend.getCrossSigningKeys(txn, func);
   }
+
   /**
-   * @param {*} txn An active transaction. See doTxn().
-   * @param {function(string)} func Called with the private key
-   * @param {string} type A key type
+   * @param txn - An active transaction. See doTxn().
+   * @param func - Called with the private key
+   * @param type - A key type
    */
-
-
   getSecretStorePrivateKey(txn, func, type) {
     this.backend.getSecretStorePrivateKey(txn, func, type);
   }
+
   /**
    * Write the cross-signing keys back to the store
    *
-   * @param {*} txn An active transaction. See doTxn().
-   * @param {string} keys keys object as getCrossSigningKeys()
+   * @param txn - An active transaction. See doTxn().
+   * @param keys - keys object as getCrossSigningKeys()
    */
-
-
   storeCrossSigningKeys(txn, keys) {
     this.backend.storeCrossSigningKeys(txn, keys);
   }
+
   /**
    * Write the cross-signing private keys back to the store
    *
-   * @param {*} txn An active transaction. See doTxn().
-   * @param {string} type The type of cross-signing private key to store
-   * @param {string} key keys object as getCrossSigningKeys()
+   * @param txn - An active transaction. See doTxn().
+   * @param type - The type of cross-signing private key to store
+   * @param key - keys object as getCrossSigningKeys()
    */
-
-
   storeSecretStorePrivateKey(txn, type, key) {
     this.backend.storeSecretStorePrivateKey(txn, type, key);
-  } // Olm sessions
+  }
+
+  // Olm sessions
 
   /**
    * Returns the number of end-to-end sessions in the store
-   * @param {*} txn An active transaction. See doTxn().
-   * @param {function(int)} func Called with the count of sessions
+   * @param txn - An active transaction. See doTxn().
+   * @param func - Called with the count of sessions
    */
-
-
   countEndToEndSessions(txn, func) {
     this.backend.countEndToEndSessions(txn, func);
   }
+
   /**
    * Retrieve a specific end-to-end session between the logged-in user
    * and another device.
-   * @param {string} deviceKey The public key of the other device.
-   * @param {string} sessionId The ID of the session to retrieve
-   * @param {*} txn An active transaction. See doTxn().
-   * @param {function(object)} func Called with A map from sessionId
+   * @param deviceKey - The public key of the other device.
+   * @param sessionId - The ID of the session to retrieve
+   * @param txn - An active transaction. See doTxn().
+   * @param func - Called with A map from sessionId
    *     to session information object with 'session' key being the
    *     Base64 end-to-end session and lastReceivedMessageTs being the
    *     timestamp in milliseconds at which the session last received
    *     a message.
    */
-
-
   getEndToEndSession(deviceKey, sessionId, txn, func) {
     this.backend.getEndToEndSession(deviceKey, sessionId, txn, func);
   }
+
   /**
    * Retrieve the end-to-end sessions between the logged-in user and another
    * device.
-   * @param {string} deviceKey The public key of the other device.
-   * @param {*} txn An active transaction. See doTxn().
-   * @param {function(object)} func Called with A map from sessionId
+   * @param deviceKey - The public key of the other device.
+   * @param txn - An active transaction. See doTxn().
+   * @param func - Called with A map from sessionId
    *     to session information object with 'session' key being the
    *     Base64 end-to-end session and lastReceivedMessageTs being the
    *     timestamp in milliseconds at which the session last received
    *     a message.
    */
-
-
   getEndToEndSessions(deviceKey, txn, func) {
     this.backend.getEndToEndSessions(deviceKey, txn, func);
   }
+
   /**
    * Retrieve all end-to-end sessions
-   * @param {*} txn An active transaction. See doTxn().
-   * @param {function(object)} func Called one for each session with
+   * @param txn - An active transaction. See doTxn().
+   * @param func - Called one for each session with
    *     an object with, deviceKey, lastReceivedMessageTs, sessionId
    *     and session keys.
    */
-
-
   getAllEndToEndSessions(txn, func) {
     this.backend.getAllEndToEndSessions(txn, func);
   }
+
   /**
    * Store a session between the logged-in user and another device
-   * @param {string} deviceKey The public key of the other device.
-   * @param {string} sessionId The ID for this end-to-end session.
-   * @param {string} sessionInfo Session information object
-   * @param {*} txn An active transaction. See doTxn().
+   * @param deviceKey - The public key of the other device.
+   * @param sessionId - The ID for this end-to-end session.
+   * @param sessionInfo - Session information object
+   * @param txn - An active transaction. See doTxn().
    */
-
-
   storeEndToEndSession(deviceKey, sessionId, sessionInfo, txn) {
     this.backend.storeEndToEndSession(deviceKey, sessionId, sessionInfo, txn);
   }
-
   storeEndToEndSessionProblem(deviceKey, type, fixed) {
     return this.backend.storeEndToEndSessionProblem(deviceKey, type, fixed);
   }
-
   getEndToEndSessionProblem(deviceKey, timestamp) {
     return this.backend.getEndToEndSessionProblem(deviceKey, timestamp);
   }
-
   filterOutNotifiedErrorDevices(devices) {
     return this.backend.filterOutNotifiedErrorDevices(devices);
-  } // Inbound group sessions
+  }
+
+  // Inbound group sessions
 
   /**
    * Retrieve the end-to-end inbound group session for a given
    * server key and session ID
-   * @param {string} senderCurve25519Key The sender's curve 25519 key
-   * @param {string} sessionId The ID of the session
-   * @param {*} txn An active transaction. See doTxn().
-   * @param {function(object)} func Called with A map from sessionId
+   * @param senderCurve25519Key - The sender's curve 25519 key
+   * @param sessionId - The ID of the session
+   * @param txn - An active transaction. See doTxn().
+   * @param func - Called with A map from sessionId
    *     to Base64 end-to-end session.
    */
-
-
   getEndToEndInboundGroupSession(senderCurve25519Key, sessionId, txn, func) {
     this.backend.getEndToEndInboundGroupSession(senderCurve25519Key, sessionId, txn, func);
   }
+
   /**
    * Fetches all inbound group sessions in the store
-   * @param {*} txn An active transaction. See doTxn().
-   * @param {function(object)} func Called once for each group session
-   *     in the store with an object having keys {senderKey, sessionId,
-   *     sessionData}, then once with null to indicate the end of the list.
+   * @param txn - An active transaction. See doTxn().
+   * @param func - Called once for each group session
+   *     in the store with an object having keys `{senderKey, sessionId, sessionData}`,
+   *     then once with null to indicate the end of the list.
    */
-
-
   getAllEndToEndInboundGroupSessions(txn, func) {
     this.backend.getAllEndToEndInboundGroupSessions(txn, func);
   }
+
   /**
    * Adds an end-to-end inbound group session to the store.
    * If there already exists an inbound group session with the same
    * senderCurve25519Key and sessionID, the session will not be added.
-   * @param {string} senderCurve25519Key The sender's curve 25519 key
-   * @param {string} sessionId The ID of the session
-   * @param {object} sessionData The session data structure
-   * @param {*} txn An active transaction. See doTxn().
+   * @param senderCurve25519Key - The sender's curve 25519 key
+   * @param sessionId - The ID of the session
+   * @param sessionData - The session data structure
+   * @param txn - An active transaction. See doTxn().
    */
-
-
   addEndToEndInboundGroupSession(senderCurve25519Key, sessionId, sessionData, txn) {
     this.backend.addEndToEndInboundGroupSession(senderCurve25519Key, sessionId, sessionData, txn);
   }
+
   /**
    * Writes an end-to-end inbound group session to the store.
    * If there already exists an inbound group session with the same
    * senderCurve25519Key and sessionID, it will be overwritten.
-   * @param {string} senderCurve25519Key The sender's curve 25519 key
-   * @param {string} sessionId The ID of the session
-   * @param {object} sessionData The session data structure
-   * @param {*} txn An active transaction. See doTxn().
+   * @param senderCurve25519Key - The sender's curve 25519 key
+   * @param sessionId - The ID of the session
+   * @param sessionData - The session data structure
+   * @param txn - An active transaction. See doTxn().
    */
-
-
   storeEndToEndInboundGroupSession(senderCurve25519Key, sessionId, sessionData, txn) {
     this.backend.storeEndToEndInboundGroupSession(senderCurve25519Key, sessionId, sessionData, txn);
   }
-
   storeEndToEndInboundGroupSessionWithheld(senderCurve25519Key, sessionId, sessionData, txn) {
     this.backend.storeEndToEndInboundGroupSessionWithheld(senderCurve25519Key, sessionId, sessionData, txn);
-  } // End-to-end device tracking
+  }
+
+  // End-to-end device tracking
 
   /**
    * Store the state of all tracked devices
@@ -495,177 +433,153 @@
    * These all need to be written out in full each time such that the snapshot
    * is always consistent, so they are stored in one object.
    *
-   * @param {Object} deviceData
-   * @param {*} txn An active transaction. See doTxn().
+   * @param txn - An active transaction. See doTxn().
    */
-
-
   storeEndToEndDeviceData(deviceData, txn) {
     this.backend.storeEndToEndDeviceData(deviceData, txn);
   }
+
   /**
    * Get the state of all tracked devices
    *
-   * @param {*} txn An active transaction. See doTxn().
-   * @param {function(Object)} func Function called with the
+   * @param txn - An active transaction. See doTxn().
+   * @param func - Function called with the
    *     device data
    */
-
-
   getEndToEndDeviceData(txn, func) {
     this.backend.getEndToEndDeviceData(txn, func);
-  } // End to End Rooms
+  }
+
+  // End to End Rooms
 
   /**
    * Store the end-to-end state for a room.
-   * @param {string} roomId The room's ID.
-   * @param {object} roomInfo The end-to-end info for the room.
-   * @param {*} txn An active transaction. See doTxn().
+   * @param roomId - The room's ID.
+   * @param roomInfo - The end-to-end info for the room.
+   * @param txn - An active transaction. See doTxn().
    */
-
-
   storeEndToEndRoom(roomId, roomInfo, txn) {
     this.backend.storeEndToEndRoom(roomId, roomInfo, txn);
   }
+
   /**
-   * Get an object of roomId->roomInfo for all e2e rooms in the store
-   * @param {*} txn An active transaction. See doTxn().
-   * @param {function(Object)} func Function called with the end to end encrypted rooms
+   * Get an object of `roomId->roomInfo` for all e2e rooms in the store
+   * @param txn - An active transaction. See doTxn().
+   * @param func - Function called with the end-to-end encrypted rooms
    */
-
-
   getEndToEndRooms(txn, func) {
     this.backend.getEndToEndRooms(txn, func);
-  } // session backups
+  }
+
+  // session backups
 
   /**
    * Get the inbound group sessions that need to be backed up.
-   * @param {number} limit The maximum number of sessions to retrieve.  0
+   * @param limit - The maximum number of sessions to retrieve.  0
    * for no limit.
-   * @returns {Promise} resolves to an array of inbound group sessions
+   * @returns resolves to an array of inbound group sessions
    */
-
-
   getSessionsNeedingBackup(limit) {
     return this.backend.getSessionsNeedingBackup(limit);
   }
+
   /**
    * Count the inbound group sessions that need to be backed up.
-   * @param {*} txn An active transaction. See doTxn(). (optional)
-   * @returns {Promise} resolves to the number of sessions
+   * @param txn - An active transaction. See doTxn(). (optional)
+   * @returns resolves to the number of sessions
    */
-
-
   countSessionsNeedingBackup(txn) {
     return this.backend.countSessionsNeedingBackup(txn);
   }
+
   /**
    * Unmark sessions as needing to be backed up.
-   * @param {Array<object>} sessions The sessions that need to be backed up.
-   * @param {*} txn An active transaction. See doTxn(). (optional)
-   * @returns {Promise} resolves when the sessions are unmarked
+   * @param sessions - The sessions that need to be backed up.
+   * @param txn - An active transaction. See doTxn(). (optional)
+   * @returns resolves when the sessions are unmarked
    */
-
-
   unmarkSessionsNeedingBackup(sessions, txn) {
     return this.backend.unmarkSessionsNeedingBackup(sessions, txn);
   }
+
   /**
    * Mark sessions as needing to be backed up.
-   * @param {Array<object>} sessions The sessions that need to be backed up.
-   * @param {*} txn An active transaction. See doTxn(). (optional)
-   * @returns {Promise} resolves when the sessions are marked
+   * @param sessions - The sessions that need to be backed up.
+   * @param txn - An active transaction. See doTxn(). (optional)
+   * @returns resolves when the sessions are marked
    */
-
-
   markSessionsNeedingBackup(sessions, txn) {
     return this.backend.markSessionsNeedingBackup(sessions, txn);
   }
+
   /**
    * Add a shared-history group session for a room.
-   * @param {string} roomId The room that the key belongs to
-   * @param {string} senderKey The sender's curve 25519 key
-   * @param {string} sessionId The ID of the session
-   * @param {*} txn An active transaction. See doTxn(). (optional)
+   * @param roomId - The room that the key belongs to
+   * @param senderKey - The sender's curve 25519 key
+   * @param sessionId - The ID of the session
+   * @param txn - An active transaction. See doTxn(). (optional)
    */
-
-
   addSharedHistoryInboundGroupSession(roomId, senderKey, sessionId, txn) {
     this.backend.addSharedHistoryInboundGroupSession(roomId, senderKey, sessionId, txn);
   }
+
   /**
    * Get the shared-history group session for a room.
-   * @param {string} roomId The room that the key belongs to
-   * @param {*} txn An active transaction. See doTxn(). (optional)
-   * @returns {Promise} Resolves to an array of [senderKey, sessionId]
+   * @param roomId - The room that the key belongs to
+   * @param txn - An active transaction. See doTxn(). (optional)
+   * @returns Promise which resolves to an array of [senderKey, sessionId]
    */
-
-
   getSharedHistoryInboundGroupSessions(roomId, txn) {
     return this.backend.getSharedHistoryInboundGroupSessions(roomId, txn);
   }
+
   /**
    * Park a shared-history group session for a room we may be invited to later.
    */
-
-
   addParkedSharedHistory(roomId, parkedData, txn) {
     this.backend.addParkedSharedHistory(roomId, parkedData, txn);
   }
+
   /**
    * Pop out all shared-history group sessions for a room.
    */
-
-
   takeParkedSharedHistory(roomId, txn) {
     return this.backend.takeParkedSharedHistory(roomId, txn);
   }
+
   /**
    * Perform a transaction on the crypto store. Any store methods
    * that require a transaction (txn) object to be passed in may
    * only be called within a callback of either this function or
    * one of the store functions operating on the same transaction.
    *
-   * @param {string} mode 'readwrite' if you need to call setter
+   * @param mode - 'readwrite' if you need to call setter
    *     functions with this transaction. Otherwise, 'readonly'.
-   * @param {string[]} stores List IndexedDBCryptoStore.STORE_*
+   * @param stores - List IndexedDBCryptoStore.STORE_*
    *     options representing all types of object that will be
    *     accessed or written to with this transaction.
-   * @param {function(*)} func Function called with the
+   * @param func - Function called with the
    *     transaction object: an opaque object that should be passed
    *     to store functions.
-   * @param {Logger} [log] A possibly customised log
-   * @return {Promise} Promise that resolves with the result of the `func`
+   * @param log - A possibly customised log
+   * @returns Promise that resolves with the result of the `func`
    *     when the transaction is complete. If the backend is
    *     async (ie. the indexeddb backend) any of the callback
    *     functions throwing an exception will cause this promise to
    *     reject with that exception. On synchronous backends, the
    *     exception will propagate to the caller of the getFoo method.
    */
-
-
   doTxn(mode, stores, func, log) {
     return this.backend.doTxn(mode, stores, func, log);
   }
-
 }
-
 exports.IndexedDBCryptoStore = IndexedDBCryptoStore;
-
-_defineProperty(IndexedDBCryptoStore, "STORE_ACCOUNT", 'account');
-
-_defineProperty(IndexedDBCryptoStore, "STORE_SESSIONS", 'sessions');
-
-_defineProperty(IndexedDBCryptoStore, "STORE_INBOUND_GROUP_SESSIONS", 'inbound_group_sessions');
-
-_defineProperty(IndexedDBCryptoStore, "STORE_INBOUND_GROUP_SESSIONS_WITHHELD", 'inbound_group_sessions_withheld');
-
-_defineProperty(IndexedDBCryptoStore, "STORE_SHARED_HISTORY_INBOUND_GROUP_SESSIONS", 'shared_history_inbound_group_sessions');
-
-_defineProperty(IndexedDBCryptoStore, "STORE_PARKED_SHARED_HISTORY", 'parked_shared_history');
-
-_defineProperty(IndexedDBCryptoStore, "STORE_DEVICE_DATA", 'device_data');
-
-_defineProperty(IndexedDBCryptoStore, "STORE_ROOMS", 'rooms');
-
-_defineProperty(IndexedDBCryptoStore, "STORE_BACKUP", 'sessions_needing_backup');
\ No newline at end of file
+_defineProperty(IndexedDBCryptoStore, "STORE_ACCOUNT", "account");
+_defineProperty(IndexedDBCryptoStore, "STORE_SESSIONS", "sessions");
+_defineProperty(IndexedDBCryptoStore, "STORE_INBOUND_GROUP_SESSIONS", "inbound_group_sessions");
+_defineProperty(IndexedDBCryptoStore, "STORE_INBOUND_GROUP_SESSIONS_WITHHELD", "inbound_group_sessions_withheld");
+_defineProperty(IndexedDBCryptoStore, "STORE_SHARED_HISTORY_INBOUND_GROUP_SESSIONS", "shared_history_inbound_group_sessions");
+_defineProperty(IndexedDBCryptoStore, "STORE_PARKED_SHARED_HISTORY", "parked_shared_history");
+_defineProperty(IndexedDBCryptoStore, "STORE_DEVICE_DATA", "device_data");
+_defineProperty(IndexedDBCryptoStore, "STORE_ROOMS", "rooms");
+_defineProperty(IndexedDBCryptoStore, "STORE_BACKUP", "sessions_needing_backup");
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/store/localStorage-crypto-store.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/store/localStorage-crypto-store.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/store/localStorage-crypto-store.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/store/localStorage-crypto-store.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,11 +4,9 @@
   value: true
 });
 exports.LocalStorageCryptoStore = void 0;
-
 var _logger = require("../../logger");
-
 var _memoryCryptoStore = require("./memory-crypto-store");
-
+var _utils = require("../../utils");
 /*
 Copyright 2017 - 2021 The Matrix.org Foundation C.I.C.
 
@@ -31,9 +29,8 @@
  * some things backed by localStorage. It exists because indexedDB
  * is broken in Firefox private mode or set to, "will not remember
  * history".
- *
- * @module
  */
+
 const E2E_PREFIX = "crypto.";
 const KEY_END_TO_END_ACCOUNT = E2E_PREFIX + "account";
 const KEY_CROSS_SIGNING_KEYS = E2E_PREFIX + "cross_signing_keys";
@@ -43,67 +40,54 @@
 const KEY_INBOUND_SESSION_WITHHELD_PREFIX = E2E_PREFIX + "inboundgroupsessions.withheld/";
 const KEY_ROOMS_PREFIX = E2E_PREFIX + "rooms/";
 const KEY_SESSIONS_NEEDING_BACKUP = E2E_PREFIX + "sessionsneedingbackup";
-
 function keyEndToEndSessions(deviceKey) {
   return E2E_PREFIX + "sessions/" + deviceKey;
 }
-
 function keyEndToEndSessionProblems(deviceKey) {
   return E2E_PREFIX + "session.problems/" + deviceKey;
 }
-
 function keyEndToEndInboundGroupSession(senderKey, sessionId) {
   return KEY_INBOUND_SESSION_PREFIX + senderKey + "/" + sessionId;
 }
-
 function keyEndToEndInboundGroupSessionWithheld(senderKey, sessionId) {
   return KEY_INBOUND_SESSION_WITHHELD_PREFIX + senderKey + "/" + sessionId;
 }
-
 function keyEndToEndRoomsPrefix(roomId) {
   return KEY_ROOMS_PREFIX + roomId;
 }
-/**
- * @implements {module:crypto/store/base~CryptoStore}
- */
-
-
 class LocalStorageCryptoStore extends _memoryCryptoStore.MemoryCryptoStore {
   static exists(store) {
     const length = store.length;
-
     for (let i = 0; i < length; i++) {
-      if (store.key(i).startsWith(E2E_PREFIX)) {
+      if (store.key(i)?.startsWith(E2E_PREFIX)) {
         return true;
       }
     }
-
     return false;
   }
-
   constructor(store) {
     super();
     this.store = store;
-  } // Olm Sessions
+  }
 
+  // Olm Sessions
 
   countEndToEndSessions(txn, func) {
     let count = 0;
-
     for (let i = 0; i < this.store.length; ++i) {
-      if (this.store.key(i).startsWith(keyEndToEndSessions(''))) ++count;
+      if (this.store.key(i)?.startsWith(keyEndToEndSessions(""))) ++count;
     }
-
     func(count);
-  } // eslint-disable-next-line @typescript-eslint/naming-convention
-
+  }
 
+  // eslint-disable-next-line @typescript-eslint/naming-convention
   _getEndToEndSessions(deviceKey) {
     const sessions = getJsonItem(this.store, keyEndToEndSessions(deviceKey));
-    const fixedSessions = {}; // fix up any old sessions to be objects rather than just the base64 pickle
+    const fixedSessions = {};
 
+    // fix up any old sessions to be objects rather than just the base64 pickle
     for (const [sid, val] of Object.entries(sessions || {})) {
-      if (typeof val === 'string') {
+      if (typeof val === "string") {
         fixedSessions[sid] = {
           session: val
         };
@@ -111,38 +95,30 @@
         fixedSessions[sid] = val;
       }
     }
-
     return fixedSessions;
   }
-
   getEndToEndSession(deviceKey, sessionId, txn, func) {
     const sessions = this._getEndToEndSessions(deviceKey);
-
     func(sessions[sessionId] || {});
   }
-
   getEndToEndSessions(deviceKey, txn, func) {
     func(this._getEndToEndSessions(deviceKey) || {});
   }
-
   getAllEndToEndSessions(txn, func) {
     for (let i = 0; i < this.store.length; ++i) {
-      if (this.store.key(i).startsWith(keyEndToEndSessions(''))) {
-        const deviceKey = this.store.key(i).split('/')[1];
-
+      if (this.store.key(i)?.startsWith(keyEndToEndSessions(""))) {
+        const deviceKey = this.store.key(i).split("/")[1];
         for (const sess of Object.values(this._getEndToEndSessions(deviceKey))) {
           func(sess);
         }
       }
     }
   }
-
   storeEndToEndSession(deviceKey, sessionId, sessionInfo, txn) {
     const sessions = this._getEndToEndSessions(deviceKey) || {};
     sessions[sessionId] = sessionInfo;
     setJsonItem(this.store, keyEndToEndSessions(deviceKey), sessions);
   }
-
   async storeEndToEndSessionProblem(deviceKey, type, fixed) {
     const key = keyEndToEndSessionProblems(deviceKey);
     const problems = getJsonItem(this.store, key) || [];
@@ -156,17 +132,13 @@
     });
     setJsonItem(this.store, key, problems);
   }
-
   async getEndToEndSessionProblem(deviceKey, timestamp) {
     const key = keyEndToEndSessionProblems(deviceKey);
     const problems = getJsonItem(this.store, key) || [];
-
     if (!problems.length) {
       return null;
     }
-
     const lastProblem = problems[problems.length - 1];
-
     for (const problem of problems) {
       if (problem.time > timestamp) {
         return Object.assign({}, problem, {
@@ -174,55 +146,50 @@
         });
       }
     }
-
     if (lastProblem.fixed) {
       return null;
     } else {
       return lastProblem;
     }
   }
-
   async filterOutNotifiedErrorDevices(devices) {
     const notifiedErrorDevices = getJsonItem(this.store, KEY_NOTIFIED_ERROR_DEVICES) || {};
     const ret = [];
-
     for (const device of devices) {
       const {
         userId,
         deviceInfo
       } = device;
-
       if (userId in notifiedErrorDevices) {
         if (!(deviceInfo.deviceId in notifiedErrorDevices[userId])) {
           ret.push(device);
-          notifiedErrorDevices[userId][deviceInfo.deviceId] = true;
+          (0, _utils.safeSet)(notifiedErrorDevices[userId], deviceInfo.deviceId, true);
         }
       } else {
         ret.push(device);
-        notifiedErrorDevices[userId] = {
+        (0, _utils.safeSet)(notifiedErrorDevices, userId, {
           [deviceInfo.deviceId]: true
-        };
+        });
       }
     }
-
     setJsonItem(this.store, KEY_NOTIFIED_ERROR_DEVICES, notifiedErrorDevices);
     return ret;
-  } // Inbound Group Sessions
+  }
 
+  // Inbound Group Sessions
 
   getEndToEndInboundGroupSession(senderCurve25519Key, sessionId, txn, func) {
     func(getJsonItem(this.store, keyEndToEndInboundGroupSession(senderCurve25519Key, sessionId)), getJsonItem(this.store, keyEndToEndInboundGroupSessionWithheld(senderCurve25519Key, sessionId)));
   }
-
   getAllEndToEndInboundGroupSessions(txn, func) {
     for (let i = 0; i < this.store.length; ++i) {
       const key = this.store.key(i);
-
-      if (key.startsWith(KEY_INBOUND_SESSION_PREFIX)) {
+      if (key?.startsWith(KEY_INBOUND_SESSION_PREFIX)) {
         // we can't use split, as the components we are trying to split out
         // might themselves contain '/' characters. We rely on the
         // senderKey being a (32-byte) curve25519 key, base64-encoded
         // (hence 43 characters long).
+
         func({
           senderKey: key.slice(KEY_INBOUND_SESSION_PREFIX.length, KEY_INBOUND_SESSION_PREFIX.length + 43),
           sessionId: key.slice(KEY_INBOUND_SESSION_PREFIX.length + 44),
@@ -230,58 +197,44 @@
         });
       }
     }
-
     func(null);
   }
-
   addEndToEndInboundGroupSession(senderCurve25519Key, sessionId, sessionData, txn) {
     const existing = getJsonItem(this.store, keyEndToEndInboundGroupSession(senderCurve25519Key, sessionId));
-
     if (!existing) {
       this.storeEndToEndInboundGroupSession(senderCurve25519Key, sessionId, sessionData, txn);
     }
   }
-
   storeEndToEndInboundGroupSession(senderCurve25519Key, sessionId, sessionData, txn) {
     setJsonItem(this.store, keyEndToEndInboundGroupSession(senderCurve25519Key, sessionId), sessionData);
   }
-
   storeEndToEndInboundGroupSessionWithheld(senderCurve25519Key, sessionId, sessionData, txn) {
     setJsonItem(this.store, keyEndToEndInboundGroupSessionWithheld(senderCurve25519Key, sessionId), sessionData);
   }
-
   getEndToEndDeviceData(txn, func) {
     func(getJsonItem(this.store, KEY_DEVICE_DATA));
   }
-
   storeEndToEndDeviceData(deviceData, txn) {
     setJsonItem(this.store, KEY_DEVICE_DATA, deviceData);
   }
-
   storeEndToEndRoom(roomId, roomInfo, txn) {
     setJsonItem(this.store, keyEndToEndRoomsPrefix(roomId), roomInfo);
   }
-
   getEndToEndRooms(txn, func) {
     const result = {};
-    const prefix = keyEndToEndRoomsPrefix('');
-
+    const prefix = keyEndToEndRoomsPrefix("");
     for (let i = 0; i < this.store.length; ++i) {
       const key = this.store.key(i);
-
-      if (key.startsWith(prefix)) {
+      if (key?.startsWith(prefix)) {
         const roomId = key.slice(prefix.length);
         result[roomId] = getJsonItem(this.store, key);
       }
     }
-
     func(result);
   }
-
   getSessionsNeedingBackup(limit) {
     const sessionsNeedingBackup = getJsonItem(this.store, KEY_SESSIONS_NEEDING_BACKUP) || {};
     const sessions = [];
-
     for (const session in sessionsNeedingBackup) {
       if (Object.prototype.hasOwnProperty.call(sessionsNeedingBackup, session)) {
         // see getAllEndToEndInboundGroupSessions for the magic number explanations
@@ -294,104 +247,83 @@
             sessionData: sessionData
           });
         });
-
         if (limit && sessions.length >= limit) {
           break;
         }
       }
     }
-
     return Promise.resolve(sessions);
   }
-
   countSessionsNeedingBackup() {
     const sessionsNeedingBackup = getJsonItem(this.store, KEY_SESSIONS_NEEDING_BACKUP) || {};
     return Promise.resolve(Object.keys(sessionsNeedingBackup).length);
   }
-
   unmarkSessionsNeedingBackup(sessions) {
     const sessionsNeedingBackup = getJsonItem(this.store, KEY_SESSIONS_NEEDING_BACKUP) || {};
-
     for (const session of sessions) {
-      delete sessionsNeedingBackup[session.senderKey + '/' + session.sessionId];
+      delete sessionsNeedingBackup[session.senderKey + "/" + session.sessionId];
     }
-
     setJsonItem(this.store, KEY_SESSIONS_NEEDING_BACKUP, sessionsNeedingBackup);
     return Promise.resolve();
   }
-
   markSessionsNeedingBackup(sessions) {
     const sessionsNeedingBackup = getJsonItem(this.store, KEY_SESSIONS_NEEDING_BACKUP) || {};
-
     for (const session of sessions) {
-      sessionsNeedingBackup[session.senderKey + '/' + session.sessionId] = true;
+      sessionsNeedingBackup[session.senderKey + "/" + session.sessionId] = true;
     }
-
     setJsonItem(this.store, KEY_SESSIONS_NEEDING_BACKUP, sessionsNeedingBackup);
     return Promise.resolve();
   }
+
   /**
    * Delete all data from this store.
    *
-   * @returns {Promise} Promise which resolves when the store has been cleared.
+   * @returns Promise which resolves when the store has been cleared.
    */
-
-
   deleteAllData() {
     this.store.removeItem(KEY_END_TO_END_ACCOUNT);
     return Promise.resolve();
-  } // Olm account
+  }
 
+  // Olm account
 
   getAccount(txn, func) {
     const accountPickle = getJsonItem(this.store, KEY_END_TO_END_ACCOUNT);
     func(accountPickle);
   }
-
   storeAccount(txn, accountPickle) {
     setJsonItem(this.store, KEY_END_TO_END_ACCOUNT, accountPickle);
   }
-
   getCrossSigningKeys(txn, func) {
     const keys = getJsonItem(this.store, KEY_CROSS_SIGNING_KEYS);
     func(keys);
   }
-
   getSecretStorePrivateKey(txn, func, type) {
     const key = getJsonItem(this.store, E2E_PREFIX + `ssss_cache.${type}`);
     func(key);
   }
-
   storeCrossSigningKeys(txn, keys) {
     setJsonItem(this.store, KEY_CROSS_SIGNING_KEYS, keys);
   }
-
   storeSecretStorePrivateKey(txn, type, key) {
     setJsonItem(this.store, E2E_PREFIX + `ssss_cache.${type}`, key);
   }
-
   doTxn(mode, stores, func) {
     return Promise.resolve(func(null));
   }
-
 }
-
 exports.LocalStorageCryptoStore = LocalStorageCryptoStore;
-
 function getJsonItem(store, key) {
   try {
     // if the key is absent, store.getItem() returns null, and
     // JSON.parse(null) === null, so this returns null.
     return JSON.parse(store.getItem(key));
   } catch (e) {
-    _logger.logger.log("Error: Failed to get key %s: %s", key, e.stack || e);
-
+    _logger.logger.log("Error: Failed to get key %s: %s", key, e.message);
     _logger.logger.log(e.stack);
   }
-
   return null;
 }
-
 function setJsonItem(store, key, val) {
   store.setItem(key, JSON.stringify(val));
 }
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/store/memory-crypto-store.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/store/memory-crypto-store.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/store/memory-crypto-store.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/store/memory-crypto-store.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,61 +4,36 @@
   value: true
 });
 exports.MemoryCryptoStore = void 0;
-
 var _logger = require("../../logger");
-
 var utils = _interopRequireWildcard(require("../../utils"));
-
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
 function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
-
 function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /**
  * Internal module. in-memory storage for e2e.
- *
- * @module
  */
 
-/**
- * @implements {module:crypto/store/base~CryptoStore}
- */
 class MemoryCryptoStore {
   constructor() {
     _defineProperty(this, "outgoingRoomKeyRequests", []);
-
     _defineProperty(this, "account", null);
-
     _defineProperty(this, "crossSigningKeys", null);
-
     _defineProperty(this, "privateKeys", {});
-
     _defineProperty(this, "sessions", {});
-
     _defineProperty(this, "sessionProblems", {});
-
     _defineProperty(this, "notifiedErrorDevices", {});
-
     _defineProperty(this, "inboundGroupSessions", {});
-
     _defineProperty(this, "inboundGroupSessionsWithheld", {});
-
     _defineProperty(this, "deviceData", null);
-
     _defineProperty(this, "rooms", {});
-
     _defineProperty(this, "sessionsNeedingBackup", {});
-
     _defineProperty(this, "sharedHistoryInboundGroupSessions", {});
-
     _defineProperty(this, "parkedSharedHistory", new Map());
   }
-
   // keyed by room ID
 
   /**
@@ -66,104 +41,92 @@
    *
    * This must be called before the store can be used.
    *
-   * @return {Promise} resolves to the store.
+   * @returns resolves to the store.
    */
   async startup() {
     // No startup work to do for the memory store.
     return this;
   }
+
   /**
    * Delete all data from this store.
    *
-   * @returns {Promise} Promise which resolves when the store has been cleared.
+   * @returns Promise which resolves when the store has been cleared.
    */
-
-
   deleteAllData() {
     return Promise.resolve();
   }
+
   /**
    * Look for an existing outgoing room key request, and if none is found,
    * add a new one
    *
-   * @param {module:crypto/store/base~OutgoingRoomKeyRequest} request
    *
-   * @returns {Promise} resolves to
-   *    {@link module:crypto/store/base~OutgoingRoomKeyRequest}: either the
+   * @returns resolves to
+   *    {@link OutgoingRoomKeyRequest}: either the
    *    same instance as passed in, or the existing one.
    */
-
-
   getOrAddOutgoingRoomKeyRequest(request) {
     const requestBody = request.requestBody;
     return utils.promiseTry(() => {
       // first see if we already have an entry for this request.
       const existing = this._getOutgoingRoomKeyRequest(requestBody);
-
       if (existing) {
         // this entry matches the request - return it.
         _logger.logger.log(`already have key request outstanding for ` + `${requestBody.room_id} / ${requestBody.session_id}: ` + `not sending another`);
-
         return existing;
-      } // we got to the end of the list without finding a match
-      // - add the new request.
-
+      }
 
+      // we got to the end of the list without finding a match
+      // - add the new request.
       _logger.logger.log(`enqueueing key request for ${requestBody.room_id} / ` + requestBody.session_id);
-
       this.outgoingRoomKeyRequests.push(request);
       return request;
     });
   }
+
   /**
    * Look for an existing room key request
    *
-   * @param {module:crypto~RoomKeyRequestBody} requestBody
-   *    existing request to look for
+   * @param requestBody - existing request to look for
    *
-   * @return {Promise} resolves to the matching
-   *    {@link module:crypto/store/base~OutgoingRoomKeyRequest}, or null if
+   * @returns resolves to the matching
+   *    {@link OutgoingRoomKeyRequest}, or null if
    *    not found
    */
-
-
   getOutgoingRoomKeyRequest(requestBody) {
     return Promise.resolve(this._getOutgoingRoomKeyRequest(requestBody));
   }
+
   /**
    * Looks for existing room key request, and returns the result synchronously.
    *
    * @internal
    *
-   * @param {module:crypto~RoomKeyRequestBody} requestBody
-   *    existing request to look for
+   * @param requestBody - existing request to look for
    *
-   * @return {module:crypto/store/base~OutgoingRoomKeyRequest?}
+   * @returns
    *    the matching request, or null if not found
    */
   // eslint-disable-next-line @typescript-eslint/naming-convention
-
-
   _getOutgoingRoomKeyRequest(requestBody) {
     for (const existing of this.outgoingRoomKeyRequests) {
       if (utils.deepCompare(existing.requestBody, requestBody)) {
         return existing;
       }
     }
-
     return null;
   }
+
   /**
    * Look for room key requests by state
    *
-   * @param {Array<Number>} wantedStates list of acceptable states
+   * @param wantedStates - list of acceptable states
    *
-   * @return {Promise} resolves to the a
-   *    {@link module:crypto/store/base~OutgoingRoomKeyRequest}, or null if
+   * @returns resolves to the a
+   *    {@link OutgoingRoomKeyRequest}, or null if
    *    there are no pending requests in those states
    */
-
-
   getOutgoingRoomKeyRequestByState(wantedStates) {
     for (const req of this.outgoingRoomKeyRequests) {
       for (const state of wantedStates) {
@@ -172,23 +135,18 @@
         }
       }
     }
-
     return Promise.resolve(null);
   }
+
   /**
    *
-   * @param {Number} wantedState
-   * @return {Promise<Array<*>>} All OutgoingRoomKeyRequests in state
+   * @returns All OutgoingRoomKeyRequests in state
    */
-
-
   getAllOutgoingRoomKeyRequestsByState(wantedState) {
     return Promise.resolve(this.outgoingRoomKeyRequests.filter(r => r.state == wantedState));
   }
-
   getOutgoingRoomKeyRequestsByTarget(userId, deviceId, wantedStates) {
     const results = [];
-
     for (const req of this.outgoingRoomKeyRequests) {
       for (const state of wantedStates) {
         if (req.state === state && req.recipients.some(recipient => recipient.userId === userId && recipient.deviceId === deviceId)) {
@@ -196,113 +154,95 @@
         }
       }
     }
-
     return Promise.resolve(results);
   }
+
   /**
    * Look for an existing room key request by id and state, and update it if
    * found
    *
-   * @param {string} requestId      ID of request to update
-   * @param {number} expectedState  state we expect to find the request in
-   * @param {Object} updates        name/value map of updates to apply
+   * @param requestId -      ID of request to update
+   * @param expectedState -  state we expect to find the request in
+   * @param updates -        name/value map of updates to apply
    *
-   * @returns {Promise} resolves to
-   *    {@link module:crypto/store/base~OutgoingRoomKeyRequest}
+   * @returns resolves to
+   *    {@link OutgoingRoomKeyRequest}
    *    updated request, or null if no matching row was found
    */
-
-
   updateOutgoingRoomKeyRequest(requestId, expectedState, updates) {
     for (const req of this.outgoingRoomKeyRequests) {
       if (req.requestId !== requestId) {
         continue;
       }
-
       if (req.state !== expectedState) {
         _logger.logger.warn(`Cannot update room key request from ${expectedState} ` + `as it was already updated to ${req.state}`);
-
         return Promise.resolve(null);
       }
-
       Object.assign(req, updates);
       return Promise.resolve(req);
     }
-
     return Promise.resolve(null);
   }
+
   /**
    * Look for an existing room key request by id and state, and delete it if
    * found
    *
-   * @param {string} requestId      ID of request to update
-   * @param {number} expectedState  state we expect to find the request in
+   * @param requestId -      ID of request to update
+   * @param expectedState -  state we expect to find the request in
    *
-   * @returns {Promise} resolves once the operation is completed
+   * @returns resolves once the operation is completed
    */
-
-
   deleteOutgoingRoomKeyRequest(requestId, expectedState) {
     for (let i = 0; i < this.outgoingRoomKeyRequests.length; i++) {
       const req = this.outgoingRoomKeyRequests[i];
-
       if (req.requestId !== requestId) {
         continue;
       }
-
       if (req.state != expectedState) {
         _logger.logger.warn(`Cannot delete room key request in state ${req.state} ` + `(expected ${expectedState})`);
-
         return Promise.resolve(null);
       }
-
       this.outgoingRoomKeyRequests.splice(i, 1);
       return Promise.resolve(req);
     }
-
     return Promise.resolve(null);
-  } // Olm Account
+  }
 
+  // Olm Account
 
   getAccount(txn, func) {
     func(this.account);
   }
-
   storeAccount(txn, accountPickle) {
     this.account = accountPickle;
   }
-
   getCrossSigningKeys(txn, func) {
     func(this.crossSigningKeys);
   }
-
   getSecretStorePrivateKey(txn, func, type) {
     const result = this.privateKeys[type];
     func(result || null);
   }
-
   storeCrossSigningKeys(txn, keys) {
     this.crossSigningKeys = keys;
   }
-
   storeSecretStorePrivateKey(txn, type, key) {
     this.privateKeys[type] = key;
-  } // Olm Sessions
+  }
 
+  // Olm Sessions
 
   countEndToEndSessions(txn, func) {
     func(Object.keys(this.sessions).length);
   }
-
   getEndToEndSession(deviceKey, sessionId, txn, func) {
     const deviceSessions = this.sessions[deviceKey] || {};
     func(deviceSessions[sessionId] || null);
   }
-
   getEndToEndSessions(deviceKey, txn, func) {
     func(this.sessions[deviceKey] || {});
   }
-
   getAllEndToEndSessions(txn, func) {
     Object.entries(this.sessions).forEach(([deviceKey, deviceSessions]) => {
       Object.entries(deviceSessions).forEach(([sessionId, session]) => {
@@ -313,18 +253,14 @@
       });
     });
   }
-
   storeEndToEndSession(deviceKey, sessionId, sessionInfo, txn) {
     let deviceSessions = this.sessions[deviceKey];
-
     if (deviceSessions === undefined) {
       deviceSessions = {};
       this.sessions[deviceKey] = deviceSessions;
     }
-
     deviceSessions[sessionId] = sessionInfo;
   }
-
   async storeEndToEndSessionProblem(deviceKey, type, fixed) {
     const problems = this.sessionProblems[deviceKey] = this.sessionProblems[deviceKey] || [];
     problems.push({
@@ -336,16 +272,12 @@
       return a.time - b.time;
     });
   }
-
   async getEndToEndSessionProblem(deviceKey, timestamp) {
     const problems = this.sessionProblems[deviceKey] || [];
-
     if (!problems.length) {
       return null;
     }
-
     const lastProblem = problems[problems.length - 1];
-
     for (const problem of problems) {
       if (problem.time > timestamp) {
         return Object.assign({}, problem, {
@@ -353,100 +285,89 @@
         });
       }
     }
-
     if (lastProblem.fixed) {
       return null;
     } else {
       return lastProblem;
     }
   }
-
   async filterOutNotifiedErrorDevices(devices) {
     const notifiedErrorDevices = this.notifiedErrorDevices;
     const ret = [];
-
     for (const device of devices) {
       const {
         userId,
         deviceInfo
       } = device;
-
       if (userId in notifiedErrorDevices) {
         if (!(deviceInfo.deviceId in notifiedErrorDevices[userId])) {
           ret.push(device);
-          notifiedErrorDevices[userId][deviceInfo.deviceId] = true;
+          (0, utils.safeSet)(notifiedErrorDevices[userId], deviceInfo.deviceId, true);
         }
       } else {
         ret.push(device);
-        notifiedErrorDevices[userId] = {
+        (0, utils.safeSet)(notifiedErrorDevices, userId, {
           [deviceInfo.deviceId]: true
-        };
+        });
       }
     }
-
     return ret;
-  } // Inbound Group Sessions
+  }
 
+  // Inbound Group Sessions
 
   getEndToEndInboundGroupSession(senderCurve25519Key, sessionId, txn, func) {
-    const k = senderCurve25519Key + '/' + sessionId;
+    const k = senderCurve25519Key + "/" + sessionId;
     func(this.inboundGroupSessions[k] || null, this.inboundGroupSessionsWithheld[k] || null);
   }
-
   getAllEndToEndInboundGroupSessions(txn, func) {
     for (const key of Object.keys(this.inboundGroupSessions)) {
       // we can't use split, as the components we are trying to split out
       // might themselves contain '/' characters. We rely on the
       // senderKey being a (32-byte) curve25519 key, base64-encoded
       // (hence 43 characters long).
+
       func({
         senderKey: key.slice(0, 43),
         sessionId: key.slice(44),
         sessionData: this.inboundGroupSessions[key]
       });
     }
-
     func(null);
   }
-
   addEndToEndInboundGroupSession(senderCurve25519Key, sessionId, sessionData, txn) {
-    const k = senderCurve25519Key + '/' + sessionId;
-
+    const k = senderCurve25519Key + "/" + sessionId;
     if (this.inboundGroupSessions[k] === undefined) {
       this.inboundGroupSessions[k] = sessionData;
     }
   }
-
   storeEndToEndInboundGroupSession(senderCurve25519Key, sessionId, sessionData, txn) {
-    this.inboundGroupSessions[senderCurve25519Key + '/' + sessionId] = sessionData;
+    this.inboundGroupSessions[senderCurve25519Key + "/" + sessionId] = sessionData;
   }
-
   storeEndToEndInboundGroupSessionWithheld(senderCurve25519Key, sessionId, sessionData, txn) {
-    const k = senderCurve25519Key + '/' + sessionId;
+    const k = senderCurve25519Key + "/" + sessionId;
     this.inboundGroupSessionsWithheld[k] = sessionData;
-  } // Device Data
+  }
 
+  // Device Data
 
   getEndToEndDeviceData(txn, func) {
     func(this.deviceData);
   }
-
   storeEndToEndDeviceData(deviceData, txn) {
     this.deviceData = deviceData;
-  } // E2E rooms
+  }
 
+  // E2E rooms
 
   storeEndToEndRoom(roomId, roomInfo, txn) {
     this.rooms[roomId] = roomInfo;
   }
-
   getEndToEndRooms(txn, func) {
     func(this.rooms);
   }
-
   getSessionsNeedingBackup(limit) {
     const sessions = [];
-
     for (const session in this.sessionsNeedingBackup) {
       if (this.inboundGroupSessions[session]) {
         sessions.push({
@@ -454,65 +375,53 @@
           sessionId: session.slice(44),
           sessionData: this.inboundGroupSessions[session]
         });
-
         if (limit && session.length >= limit) {
           break;
         }
       }
     }
-
     return Promise.resolve(sessions);
   }
-
   countSessionsNeedingBackup() {
     return Promise.resolve(Object.keys(this.sessionsNeedingBackup).length);
   }
-
   unmarkSessionsNeedingBackup(sessions) {
     for (const session of sessions) {
-      const sessionKey = session.senderKey + '/' + session.sessionId;
+      const sessionKey = session.senderKey + "/" + session.sessionId;
       delete this.sessionsNeedingBackup[sessionKey];
     }
-
     return Promise.resolve();
   }
-
   markSessionsNeedingBackup(sessions) {
     for (const session of sessions) {
-      const sessionKey = session.senderKey + '/' + session.sessionId;
+      const sessionKey = session.senderKey + "/" + session.sessionId;
       this.sessionsNeedingBackup[sessionKey] = true;
     }
-
     return Promise.resolve();
   }
-
   addSharedHistoryInboundGroupSession(roomId, senderKey, sessionId) {
     const sessions = this.sharedHistoryInboundGroupSessions[roomId] || [];
     sessions.push([senderKey, sessionId]);
     this.sharedHistoryInboundGroupSessions[roomId] = sessions;
   }
-
   getSharedHistoryInboundGroupSessions(roomId) {
     return Promise.resolve(this.sharedHistoryInboundGroupSessions[roomId] || []);
   }
-
   addParkedSharedHistory(roomId, parkedData) {
     const parked = this.parkedSharedHistory.get(roomId) ?? [];
     parked.push(parkedData);
     this.parkedSharedHistory.set(roomId, parked);
   }
-
   takeParkedSharedHistory(roomId) {
     const parked = this.parkedSharedHistory.get(roomId) ?? [];
     this.parkedSharedHistory.delete(roomId);
     return Promise.resolve(parked);
-  } // Session key backups
+  }
 
+  // Session key backups
 
   doTxn(mode, stores, func) {
     return Promise.resolve(func(null));
   }
-
 }
-
 exports.MemoryCryptoStore = MemoryCryptoStore;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/Base.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/Base.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/Base.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/Base.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,39 +4,29 @@
   value: true
 });
 exports.VerificationEvent = exports.VerificationBase = exports.SwitchStartEventError = void 0;
-
 var _event = require("../../models/event");
-
+var _event2 = require("../../@types/event");
 var _logger = require("../../logger");
-
 var _deviceinfo = require("../deviceinfo");
-
 var _Error = require("./Error");
-
 var _CrossSigning = require("../CrossSigning");
-
 var _typedEventEmitter = require("../../models/typed-event-emitter");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 const timeoutException = new Error("Verification timed out");
-
 class SwitchStartEventError extends Error {
   constructor(startEvent) {
     super();
     this.startEvent = startEvent;
   }
-
 }
-
 exports.SwitchStartEventError = SwitchStartEventError;
 let VerificationEvent;
 exports.VerificationEvent = VerificationEvent;
-
 (function (VerificationEvent) {
   VerificationEvent["Cancel"] = "cancel";
 })(VerificationEvent || (exports.VerificationEvent = VerificationEvent = {}));
-
 class VerificationBase extends _typedEventEmitter.TypedEventEmitter {
   /**
    * Base class for verification methods.
@@ -48,21 +38,19 @@
    *
    * <p>Subclasses must have a NAME class property.</p>
    *
-   * @class
-   *
-   * @param {Object} channel the verification channel to send verification messages over.
+   * @param channel - the verification channel to send verification messages over.
    * TODO: Channel types
    *
-   * @param {MatrixClient} baseApis base matrix api interface
+   * @param baseApis - base matrix api interface
    *
-   * @param {string} userId the user ID that is being verified
+   * @param userId - the user ID that is being verified
    *
-   * @param {string} deviceId the device ID that is being verified
+   * @param deviceId - the device ID that is being verified
    *
-   * @param {object} [startEvent] the m.key.verification.start event that
+   * @param startEvent - the m.key.verification.start event that
    * initiated this verification, if any
    *
-   * @param {object} [request] the key verification request object related to
+   * @param request - the key verification request object related to
    * this verification, if any
    */
   constructor(channel, baseApis, userId, deviceId, startEvent, request) {
@@ -73,30 +61,18 @@
     this.deviceId = deviceId;
     this.startEvent = startEvent;
     this.request = request;
-
     _defineProperty(this, "cancelled", false);
-
     _defineProperty(this, "_done", false);
-
     _defineProperty(this, "promise", null);
-
     _defineProperty(this, "transactionTimeoutTimer", null);
-
     _defineProperty(this, "expectedEvent", void 0);
-
     _defineProperty(this, "resolve", void 0);
-
     _defineProperty(this, "reject", void 0);
-
     _defineProperty(this, "resolveEvent", void 0);
-
     _defineProperty(this, "rejectEvent", void 0);
-
     _defineProperty(this, "started", void 0);
-
     _defineProperty(this, "doVerification", void 0);
   }
-
   get initiatedByMe() {
     // if there is no start event yet,
     // we probably want to send it,
@@ -104,27 +80,21 @@
     if (!this.startEvent) {
       return true;
     }
-
     const sender = this.startEvent.getSender();
     const content = this.startEvent.getContent();
     return sender === this.baseApis.getUserId() && content.from_device === this.baseApis.getDeviceId();
   }
-
   get hasBeenCancelled() {
     return this.cancelled;
   }
-
   resetTimer() {
     _logger.logger.info("Refreshing/starting the verification transaction timeout timer");
-
     if (this.transactionTimeoutTimer !== null) {
       clearTimeout(this.transactionTimeoutTimer);
     }
-
     this.transactionTimeoutTimer = setTimeout(() => {
       if (!this._done && !this.cancelled) {
         _logger.logger.info("Triggering verification timeout");
-
         this.cancel(timeoutException);
       }
     }, 10 * 60 * 1000); // 10 minutes
@@ -136,39 +106,31 @@
       this.transactionTimeoutTimer = null;
     }
   }
-
   send(type, uncompletedContent) {
     return this.channel.send(type, uncompletedContent);
   }
-
   waitForEvent(type) {
     if (this._done) {
       return Promise.reject(new Error("Verification is already done"));
     }
-
     const existingEvent = this.request.getEventFromOtherParty(type);
-
     if (existingEvent) {
       return Promise.resolve(existingEvent);
     }
-
     this.expectedEvent = type;
     return new Promise((resolve, reject) => {
       this.resolveEvent = resolve;
       this.rejectEvent = reject;
     });
   }
-
   canSwitchStartEvent(event) {
     return false;
   }
-
   switchStartEvent(event) {
     if (this.canSwitchStartEvent(event)) {
       _logger.logger.log("Verification Base: switching verification start event", {
         restartingFlow: !!this.rejectEvent
       });
-
       if (this.rejectEvent) {
         const reject = this.rejectEvent;
         this.rejectEvent = undefined;
@@ -178,23 +140,22 @@
       }
     }
   }
-
   handleEvent(e) {
     if (this._done) {
       return;
     } else if (e.getType() === this.expectedEvent) {
       // if we receive an expected m.key.verification.done, then just
       // ignore it, since we don't need to do anything about it
-      if (this.expectedEvent !== "m.key.verification.done") {
+      if (this.expectedEvent !== _event2.EventType.KeyVerificationDone) {
         this.expectedEvent = undefined;
         this.rejectEvent = undefined;
         this.resetTimer();
-        this.resolveEvent(e);
+        this.resolveEvent?.(e);
       }
-    } else if (e.getType() === "m.key.verification.cancel") {
+    } else if (e.getType() === _event2.EventType.KeyVerificationCancel) {
       const reject = this.reject;
-      this.reject = undefined; // there is only promise to reject if verify has been called
-
+      this.reject = undefined;
+      // there is only promise to reject if verify has been called
       if (reject) {
         const content = e.getContent();
         const {
@@ -210,34 +171,27 @@
       // after a refresh when the events haven't been stored in the cache yet.
       const exception = new Error("Unexpected message: expecting " + this.expectedEvent + " but got " + e.getType());
       this.expectedEvent = undefined;
-
       if (this.rejectEvent) {
         const reject = this.rejectEvent;
         this.rejectEvent = undefined;
         reject(exception);
       }
-
       this.cancel(exception);
     }
   }
-
-  done() {
+  async done() {
     this.endTimer(); // always kill the activity timer
-
     if (!this._done) {
       this.request.onVerifierFinished();
-      this.resolve();
+      this.resolve?.();
       return (0, _CrossSigning.requestKeysDuringVerification)(this.baseApis, this.userId, this.deviceId);
     }
   }
-
   cancel(e) {
     this.endTimer(); // always kill the activity timer
-
     if (!this._done) {
       this.cancelled = true;
       this.request.onVerifierCancelled();
-
       if (this.userId && this.deviceId) {
         // send a cancellation to the other user (if it wasn't
         // cancelled by the other user)
@@ -246,29 +200,26 @@
           this.send(timeoutEvent.getType(), timeoutEvent.getContent());
         } else if (e instanceof _event.MatrixEvent) {
           const sender = e.getSender();
-
           if (sender !== this.userId) {
             const content = e.getContent();
-
-            if (e.getType() === "m.key.verification.cancel") {
+            if (e.getType() === _event2.EventType.KeyVerificationCancel) {
               content.code = content.code || "m.unknown";
               content.reason = content.reason || content.body || "Unknown reason";
-              this.send("m.key.verification.cancel", content);
+              this.send(_event2.EventType.KeyVerificationCancel, content);
             } else {
-              this.send("m.key.verification.cancel", {
+              this.send(_event2.EventType.KeyVerificationCancel, {
                 code: "m.unknown",
                 reason: content.body || "Unknown reason"
               });
             }
           }
         } else {
-          this.send("m.key.verification.cancel", {
+          this.send(_event2.EventType.KeyVerificationCancel, {
             code: "m.unknown",
             reason: e.toString()
           });
         }
       }
-
       if (this.promise !== null) {
         // when we cancel without a promise, we end up with a promise
         // but no reject function. If cancel is called again, we'd error.
@@ -277,21 +228,19 @@
         // FIXME: this causes an "Uncaught promise" console message
         // if nothing ends up chaining this promise.
         this.promise = Promise.reject(e);
-      } // Also emit a 'cancel' event that the app can listen for to detect cancellation
+      }
+      // Also emit a 'cancel' event that the app can listen for to detect cancellation
       // before calling verify()
-
-
       this.emit(VerificationEvent.Cancel, e);
     }
   }
+
   /**
    * Begin the key verification
    *
-   * @returns {Promise} Promise which resolves when the verification has
+   * @returns Promise which resolves when the verification has
    *     completed.
    */
-
-
   verify() {
     if (this.promise) return this.promise;
     this.promise = new Promise((resolve, reject) => {
@@ -300,48 +249,38 @@
         this.endTimer();
         resolve(...args);
       };
-
       this.reject = e => {
         this._done = true;
         this.endTimer();
         reject(e);
       };
     });
-
     if (this.doVerification && !this.started) {
       this.started = true;
       this.resetTimer(); // restart the timeout
-
       new Promise((resolve, reject) => {
         const crossSignId = this.baseApis.crypto.deviceList.getStoredCrossSigningForUser(this.userId)?.getId();
-
         if (crossSignId === this.deviceId) {
           reject(new Error("Device ID is the same as the cross-signing ID"));
         }
-
         resolve();
       }).then(() => this.doVerification()).then(this.done.bind(this), this.cancel.bind(this));
     }
-
     return this.promise;
   }
-
   async verifyKeys(userId, keys, verifier) {
     // we try to verify all the keys that we're told about, but we might
     // not know about all of them, so keep track of the keys that we know
     // about, and ignore the rest
     const verifiedDevices = [];
-
     for (const [keyId, keyInfo] of Object.entries(keys)) {
-      const deviceId = keyId.split(':', 2)[1];
+      const deviceId = keyId.split(":", 2)[1];
       const device = this.baseApis.getStoredDevice(userId, deviceId);
-
       if (device) {
         verifier(keyId, device, keyInfo);
         verifiedDevices.push([deviceId, keyId, device.keys[keyId]]);
       } else {
         const crossSigningInfo = this.baseApis.crypto.deviceList.getStoredCrossSigningForUser(userId);
-
         if (crossSigningInfo && crossSigningInfo.getId() === deviceId) {
           verifier(keyId, _deviceinfo.DeviceInfo.fromStorage({
             keys: {
@@ -353,37 +292,32 @@
           _logger.logger.warn(`verification: Could not find device ${deviceId} to verify`);
         }
       }
-    } // if none of the keys could be verified, then error because the app
-    // should be informed about that
-
+    }
 
+    // if none of the keys could be verified, then error because the app
+    // should be informed about that
     if (!verifiedDevices.length) {
       throw new Error("No devices could be verified");
     }
-
-    _logger.logger.info("Verification completed! Marking devices verified: ", verifiedDevices); // TODO: There should probably be a batch version of this, otherwise it's going
+    _logger.logger.info("Verification completed! Marking devices verified: ", verifiedDevices);
+    // TODO: There should probably be a batch version of this, otherwise it's going
     // to upload each signature in a separate API call which is silly because the
     // API supports as many signatures as you like.
-
-
     for (const [deviceId, keyId, key] of verifiedDevices) {
       await this.baseApis.crypto.setDeviceVerification(userId, deviceId, true, null, null, {
         [keyId]: key
       });
-    } // if one of the user's own devices is being marked as verified / unverified,
+    }
+
+    // if one of the user's own devices is being marked as verified / unverified,
     // check the key backup status, since whether or not we use this depends on
     // whether it has a signature from a verified device
-
-
     if (userId == this.baseApis.credentials.userId) {
       await this.baseApis.checkKeyBackup();
     }
   }
-
   get events() {
     return undefined;
   }
-
 }
-
 exports.VerificationBase = VerificationBase;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/Error.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/Error.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/Error.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/Error.js	2023-04-11 06:11:52.000000000 +0000
@@ -7,9 +7,8 @@
 exports.errorFromEvent = errorFromEvent;
 exports.newUserCancelledError = exports.newUnknownMethodError = exports.newUnexpectedMessageError = exports.newTimeoutError = exports.newKeyMismatchError = exports.newInvalidMessageError = void 0;
 exports.newVerificationError = newVerificationError;
-
 var _event = require("../../models/event");
-
+var _event2 = require("../../@types/event");
 /*
 Copyright 2018 - 2021 The Matrix.org Foundation C.I.C.
 
@@ -28,66 +27,61 @@
 
 /**
  * Error messages.
- *
- * @module crypto/verification/Error
  */
+
 function newVerificationError(code, reason, extraData) {
   const content = Object.assign({}, {
     code,
     reason
   }, extraData);
   return new _event.MatrixEvent({
-    type: "m.key.verification.cancel",
+    type: _event2.EventType.KeyVerificationCancel,
     content
   });
 }
-
 function errorFactory(code, reason) {
   return function (extraData) {
     return newVerificationError(code, reason, extraData);
   };
 }
+
 /**
  * The verification was cancelled by the user.
  */
-
-
 const newUserCancelledError = errorFactory("m.user", "Cancelled by user");
+
 /**
  * The verification timed out.
  */
-
 exports.newUserCancelledError = newUserCancelledError;
 const newTimeoutError = errorFactory("m.timeout", "Timed out");
+
 /**
  * An unknown method was selected.
  */
-
 exports.newTimeoutError = newTimeoutError;
 const newUnknownMethodError = errorFactory("m.unknown_method", "Unknown method");
+
 /**
  * An unexpected message was sent.
  */
-
 exports.newUnknownMethodError = newUnknownMethodError;
 const newUnexpectedMessageError = errorFactory("m.unexpected_message", "Unexpected message");
+
 /**
  * The key does not match.
  */
-
 exports.newUnexpectedMessageError = newUnexpectedMessageError;
 const newKeyMismatchError = errorFactory("m.key_mismatch", "Key mismatch");
+
 /**
  * An invalid message was sent.
  */
-
 exports.newKeyMismatchError = newKeyMismatchError;
 const newInvalidMessageError = errorFactory("m.invalid_message", "Invalid message");
 exports.newInvalidMessageError = newInvalidMessageError;
-
 function errorFromEvent(event) {
   const content = event.getContent();
-
   if (content) {
     const {
       code,
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/IllegalMethod.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/IllegalMethod.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/IllegalMethod.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/IllegalMethod.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,35 +4,26 @@
   value: true
 });
 exports.IllegalMethod = void 0;
-
 var _Base = require("./Base");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
-/**
- * @class crypto/verification/IllegalMethod/IllegalMethod
- * @extends {module:crypto/verification/Base}
- */
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 class IllegalMethod extends _Base.VerificationBase {
   constructor(...args) {
     super(...args);
-
     _defineProperty(this, "doVerification", async () => {
       throw new Error("Verification is not possible with this method");
     });
   }
-
   static factory(channel, baseApis, userId, deviceId, startEvent, request) {
     return new IllegalMethod(channel, baseApis, userId, deviceId, startEvent, request);
-  } // eslint-disable-next-line @typescript-eslint/naming-convention
-
+  }
 
+  // eslint-disable-next-line @typescript-eslint/naming-convention
   static get NAME() {
     // Typically the name will be something else, but to complete
     // the contract we offer a default one here.
     return "org.matrix.illegal_method";
   }
-
 }
-
 exports.IllegalMethod = IllegalMethod;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/QRCode.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/QRCode.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/QRCode.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/QRCode.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,64 +4,51 @@
   value: true
 });
 exports.SHOW_QR_CODE_METHOD = exports.SCAN_QR_CODE_METHOD = exports.ReciprocateQRCode = exports.QrCodeEvent = exports.QRCodeData = void 0;
-
 var _Base = require("./Base");
-
 var _Error = require("./Error");
-
 var _olmlib = require("../olmlib");
-
 var _logger = require("../../logger");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 const SHOW_QR_CODE_METHOD = "m.qr_code.show.v1";
 exports.SHOW_QR_CODE_METHOD = SHOW_QR_CODE_METHOD;
 const SCAN_QR_CODE_METHOD = "m.qr_code.scan.v1";
 exports.SCAN_QR_CODE_METHOD = SCAN_QR_CODE_METHOD;
 let QrCodeEvent;
 exports.QrCodeEvent = QrCodeEvent;
-
 (function (QrCodeEvent) {
   QrCodeEvent["ShowReciprocateQr"] = "show_reciprocate_qr";
 })(QrCodeEvent || (exports.QrCodeEvent = QrCodeEvent = {}));
-
-/**
- * @class crypto/verification/QRCode/ReciprocateQRCode
- * @extends {module:crypto/verification/Base}
- */
 class ReciprocateQRCode extends _Base.VerificationBase {
   constructor(...args) {
     super(...args);
-
     _defineProperty(this, "reciprocateQREvent", void 0);
-
     _defineProperty(this, "doVerification", async () => {
       if (!this.startEvent) {
         // TODO: Support scanning QR codes
         throw new Error("It is not currently possible to start verification" + "with this method yet.");
       }
-
       const {
         qrCodeData
-      } = this.request; // 1. check the secret
-
-      if (this.startEvent.getContent()['secret'] !== qrCodeData.encodedSharedSecret) {
+      } = this.request;
+      // 1. check the secret
+      if (this.startEvent.getContent()["secret"] !== qrCodeData?.encodedSharedSecret) {
         throw (0, _Error.newKeyMismatchError)();
-      } // 2. ask if other user shows shield as well
-
+      }
 
+      // 2. ask if other user shows shield as well
       await new Promise((resolve, reject) => {
         this.reciprocateQREvent = {
           confirm: resolve,
           cancel: () => reject((0, _Error.newUserCancelledError)())
         };
         this.emit(QrCodeEvent.ShowReciprocateQr, this.reciprocateQREvent);
-      }); // 3. determine key to sign / mark as trusted
+      });
 
+      // 3. determine key to sign / mark as trusted
       const keys = {};
-
-      switch (qrCodeData.mode) {
+      switch (qrCodeData?.mode) {
         case Mode.VerifyOtherUser:
           {
             // add master key to keys to be signed, only if we're not doing self-verification
@@ -69,77 +56,66 @@
             keys[`ed25519:${masterKey}`] = masterKey;
             break;
           }
-
         case Mode.VerifySelfTrusted:
           {
             const deviceId = this.request.targetDevice.deviceId;
             keys[`ed25519:${deviceId}`] = qrCodeData.otherDeviceKey;
             break;
           }
-
         case Mode.VerifySelfUntrusted:
           {
             const masterKey = qrCodeData.myMasterKey;
             keys[`ed25519:${masterKey}`] = masterKey;
             break;
           }
-      } // 4. sign the key (or mark own MSK as verified in case of MODE_VERIFY_SELF_TRUSTED)
-
+      }
 
+      // 4. sign the key (or mark own MSK as verified in case of MODE_VERIFY_SELF_TRUSTED)
       await this.verifyKeys(this.userId, keys, (keyId, device, keyInfo) => {
         // make sure the device has the expected keys
         const targetKey = keys[keyId];
         if (!targetKey) throw (0, _Error.newKeyMismatchError)();
-
         if (keyInfo !== targetKey) {
           _logger.logger.error("key ID from key info does not match");
-
           throw (0, _Error.newKeyMismatchError)();
         }
-
         for (const deviceKeyId in device.keys) {
           if (!deviceKeyId.startsWith("ed25519")) continue;
           const deviceTargetKey = keys[deviceKeyId];
           if (!deviceTargetKey) throw (0, _Error.newKeyMismatchError)();
-
           if (device.keys[deviceKeyId] !== deviceTargetKey) {
             _logger.logger.error("master key does not match");
-
             throw (0, _Error.newKeyMismatchError)();
           }
         }
       });
     });
   }
-
   static factory(channel, baseApis, userId, deviceId, startEvent, request) {
     return new ReciprocateQRCode(channel, baseApis, userId, deviceId, startEvent, request);
-  } // eslint-disable-next-line @typescript-eslint/naming-convention
-
+  }
 
+  // eslint-disable-next-line @typescript-eslint/naming-convention
   static get NAME() {
     return "m.reciprocate.v1";
   }
-
 }
-
 exports.ReciprocateQRCode = ReciprocateQRCode;
 const CODE_VERSION = 0x02; // the version of binary QR codes we support
-
 const BINARY_PREFIX = "MATRIX"; // ASCII, used to prefix the binary format
-
-var Mode;
-
+var Mode; // We do not trust the master key
 (function (Mode) {
   Mode[Mode["VerifyOtherUser"] = 0] = "VerifyOtherUser";
   Mode[Mode["VerifySelfTrusted"] = 1] = "VerifySelfTrusted";
   Mode[Mode["VerifySelfUntrusted"] = 2] = "VerifySelfUntrusted";
 })(Mode || (Mode = {}));
-
 class QRCodeData {
-  constructor(mode, sharedSecret, // only set when mode is MODE_VERIFY_OTHER_USER, master key of other party at time of generating QR code
-  otherUserMasterKey, // only set when mode is MODE_VERIFY_SELF_TRUSTED, device key of other party at time of generating QR code
-  otherDeviceKey, // only set when mode is MODE_VERIFY_SELF_UNTRUSTED, own master key at time of generating QR code
+  constructor(mode, sharedSecret,
+  // only set when mode is MODE_VERIFY_OTHER_USER, master key of other party at time of generating QR code
+  otherUserMasterKey,
+  // only set when mode is MODE_VERIFY_SELF_TRUSTED, device key of other party at time of generating QR code
+  otherDeviceKey,
+  // only set when mode is MODE_VERIFY_SELF_UNTRUSTED, own master key at time of generating QR code
   myMasterKey, buffer) {
     this.mode = mode;
     this.sharedSecret = sharedSecret;
@@ -148,14 +124,12 @@
     this.myMasterKey = myMasterKey;
     this.buffer = buffer;
   }
-
   static async create(request, client) {
     const sharedSecret = QRCodeData.generateSharedSecret();
     const mode = QRCodeData.determineMode(request, client);
     let otherUserMasterKey = null;
     let otherDeviceKey = null;
     let myMasterKey = null;
-
     if (mode === Mode.VerifyOtherUser) {
       const otherUserCrossSigningInfo = client.getStoredCrossSigningForUser(request.otherUserId);
       otherUserMasterKey = otherUserCrossSigningInfo.getId("master");
@@ -166,62 +140,49 @@
       const myCrossSigningInfo = client.getStoredCrossSigningForUser(myUserId);
       myMasterKey = myCrossSigningInfo.getId("master");
     }
-
     const qrData = QRCodeData.generateQrData(request, client, mode, sharedSecret, otherUserMasterKey, otherDeviceKey, myMasterKey);
     const buffer = QRCodeData.generateBuffer(qrData);
     return new QRCodeData(mode, sharedSecret, otherUserMasterKey, otherDeviceKey, myMasterKey, buffer);
   }
+
   /**
    * The unpadded base64 encoded shared secret.
    */
-
-
   get encodedSharedSecret() {
     return this.sharedSecret;
   }
-
   getBuffer() {
     return this.buffer;
   }
-
   static generateSharedSecret() {
     const secretBytes = new Uint8Array(11);
     global.crypto.getRandomValues(secretBytes);
     return (0, _olmlib.encodeUnpaddedBase64)(secretBytes);
   }
-
   static async getOtherDeviceKey(request, client) {
     const myUserId = client.getUserId();
     const otherDevice = request.targetDevice;
-    const otherDeviceId = otherDevice ? otherDevice.deviceId : null;
-    const device = client.getStoredDevice(myUserId, otherDeviceId);
-
+    const device = otherDevice.deviceId ? client.getStoredDevice(myUserId, otherDevice.deviceId) : undefined;
     if (!device) {
-      throw new Error("could not find device " + otherDeviceId);
+      throw new Error("could not find device " + otherDevice?.deviceId);
     }
-
     return device.getFingerprint();
   }
-
   static determineMode(request, client) {
     const myUserId = client.getUserId();
     const otherUserId = request.otherUserId;
     let mode = Mode.VerifyOtherUser;
-
     if (myUserId === otherUserId) {
       // Mode changes depending on whether or not we trust the master cross signing key
       const myTrust = client.checkUserTrust(myUserId);
-
       if (myTrust.isCrossSigningVerified()) {
         mode = Mode.VerifySelfTrusted;
       } else {
         mode = Mode.VerifySelfUntrusted;
       }
     }
-
     return mode;
   }
-
   static generateQrData(request, client, mode, encodedSharedSecret, otherUserMasterKey, otherDeviceKey, myMasterKey) {
     const myUserId = client.getUserId();
     const transactionId = request.channel.transactionId;
@@ -230,18 +191,17 @@
       version: CODE_VERSION,
       mode,
       transactionId,
-      firstKeyB64: '',
+      firstKeyB64: "",
       // worked out shortly
-      secondKeyB64: '',
+      secondKeyB64: "",
       // worked out shortly
       secretB64: encodedSharedSecret
     };
     const myCrossSigningInfo = client.getStoredCrossSigningForUser(myUserId);
-
     if (mode === Mode.VerifyOtherUser) {
       // First key is our master cross signing key
-      qrData.firstKeyB64 = myCrossSigningInfo.getId("master"); // Second key is the other user's master cross signing key
-
+      qrData.firstKeyB64 = myCrossSigningInfo.getId("master");
+      // Second key is the other user's master cross signing key
       qrData.secondKeyB64 = otherUserMasterKey;
     } else if (mode === Mode.VerifySelfTrusted) {
       // First key is our master cross signing key
@@ -249,14 +209,12 @@
       qrData.secondKeyB64 = otherDeviceKey;
     } else if (mode === Mode.VerifySelfUntrusted) {
       // First key is our device's key
-      qrData.firstKeyB64 = client.getDeviceEd25519Key(); // Second key is what we think our master cross signing key is
-
+      qrData.firstKeyB64 = client.getDeviceEd25519Key();
+      // Second key is what we think our master cross signing key is
       qrData.secondKeyB64 = myMasterKey;
     }
-
     return qrData;
   }
-
   static generateBuffer(qrData) {
     let buf = Buffer.alloc(0); // we'll concat our way through life
 
@@ -264,26 +222,23 @@
       const tmpBuf = Buffer.from([b]);
       buf = Buffer.concat([buf, tmpBuf]);
     };
-
     const appendInt = i => {
       const tmpBuf = Buffer.alloc(2);
       tmpBuf.writeInt16BE(i, 0);
       buf = Buffer.concat([buf, tmpBuf]);
     };
-
     const appendStr = (s, enc, withLengthPrefix = true) => {
       const tmpBuf = Buffer.from(s, enc);
       if (withLengthPrefix) appendInt(tmpBuf.byteLength);
       buf = Buffer.concat([buf, tmpBuf]);
     };
-
     const appendEncBase64 = b64 => {
       const b = (0, _olmlib.decodeBase64)(b64);
       const tmpBuf = Buffer.from(b);
       buf = Buffer.concat([buf, tmpBuf]);
-    }; // Actually build the buffer for the QR code
-
+    };
 
+    // Actually build the buffer for the QR code
     appendStr(qrData.prefix, "ascii", false);
     appendByte(qrData.version);
     appendByte(qrData.mode);
@@ -293,7 +248,5 @@
     appendEncBase64(qrData.secretB64);
     return buf;
   }
-
 }
-
 exports.QRCodeData = QRCodeData;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/request/InRoomChannel.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/request/InRoomChannel.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/request/InRoomChannel.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/request/InRoomChannel.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,239 +4,205 @@
   value: true
 });
 exports.InRoomRequests = exports.InRoomChannel = void 0;
-
 var _VerificationRequest = require("./VerificationRequest");
-
 var _logger = require("../../../logger");
-
 var _event = require("../../../@types/event");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 const MESSAGE_TYPE = _event.EventType.RoomMessage;
 const M_REFERENCE = "m.reference";
 const M_RELATES_TO = "m.relates_to";
+
 /**
  * A key verification channel that sends verification events in the timeline of a room.
  * Uses the event id of the initial m.key.verification.request event as a transaction id.
  */
-
 class InRoomChannel {
   /**
-   * @param {MatrixClient} client the matrix client, to send messages with and get current user & device from.
-   * @param {string} roomId id of the room where verification events should be posted in, should be a DM with the given user.
-   * @param {string} userId id of user that the verification request is directed at, should be present in the room.
+   * @param client - the matrix client, to send messages with and get current user & device from.
+   * @param roomId - id of the room where verification events should be posted in, should be a DM with the given user.
+   * @param userId - id of user that the verification request is directed at, should be present in the room.
    */
-  constructor(client, roomId, userId = null) {
+  constructor(client, roomId, userId) {
     this.client = client;
     this.roomId = roomId;
     this.userId = userId;
-
-    _defineProperty(this, "requestEventId", null);
+    _defineProperty(this, "requestEventId", void 0);
   }
-
   get receiveStartFromOtherDevices() {
     return true;
   }
-  /** The transaction id generated/used by this verification channel */
-
 
+  /** The transaction id generated/used by this verification channel */
   get transactionId() {
     return this.requestEventId;
   }
-
   static getOtherPartyUserId(event, client) {
     const type = InRoomChannel.getEventType(event);
-
     if (type !== _VerificationRequest.REQUEST_TYPE) {
       return;
     }
-
     const ownUserId = client.getUserId();
     const sender = event.getSender();
     const content = event.getContent();
     const receiver = content.to;
-
     if (sender === ownUserId) {
       return receiver;
     } else if (receiver === ownUserId) {
       return sender;
     }
   }
+
   /**
-   * @param {MatrixEvent} event the event to get the timestamp of
-   * @return {number} the timestamp when the event was sent
+   * @param event - the event to get the timestamp of
+   * @returns the timestamp when the event was sent
    */
-
-
   getTimestamp(event) {
     return event.getTs();
   }
+
   /**
    * Checks whether the given event type should be allowed to initiate a new VerificationRequest over this channel
-   * @param {string} type the event type to check
-   * @returns {boolean} boolean flag
+   * @param type - the event type to check
+   * @returns boolean flag
    */
-
-
   static canCreateRequest(type) {
     return type === _VerificationRequest.REQUEST_TYPE;
   }
-
   canCreateRequest(type) {
     return InRoomChannel.canCreateRequest(type);
   }
+
   /**
    * Extract the transaction id used by a given key verification event, if any
-   * @param {MatrixEvent} event the event
-   * @returns {string} the transaction id
+   * @param event - the event
+   * @returns the transaction id
    */
-
-
   static getTransactionId(event) {
     if (InRoomChannel.getEventType(event) === _VerificationRequest.REQUEST_TYPE) {
       return event.getId();
     } else {
       const relation = event.getRelation();
-
-      if (relation && relation.rel_type === M_REFERENCE) {
+      if (relation?.rel_type === M_REFERENCE) {
         return relation.event_id;
       }
     }
   }
+
   /**
    * Checks whether this event is a well-formed key verification event.
    * This only does checks that don't rely on the current state of a potentially already channel
    * so we can prevent channels being created by invalid events.
    * `handleEvent` can do more checks and choose to ignore invalid events.
-   * @param {MatrixEvent} event the event to validate
-   * @param {MatrixClient} client the client to get the current user and device id from
-   * @returns {boolean} whether the event is valid and should be passed to handleEvent
+   * @param event - the event to validate
+   * @param client - the client to get the current user and device id from
+   * @returns whether the event is valid and should be passed to handleEvent
    */
-
-
   static validateEvent(event, client) {
     const txnId = InRoomChannel.getTransactionId(event);
-
     if (typeof txnId !== "string" || txnId.length === 0) {
       return false;
     }
-
     const type = InRoomChannel.getEventType(event);
-    const content = event.getContent(); // from here on we're fairly sure that this is supposed to be
-    // part of a verification request, so be noisy when rejecting something
+    const content = event.getContent();
 
+    // from here on we're fairly sure that this is supposed to be
+    // part of a verification request, so be noisy when rejecting something
     if (type === _VerificationRequest.REQUEST_TYPE) {
       if (!content || typeof content.to !== "string" || !content.to.length) {
         _logger.logger.log("InRoomChannel: validateEvent: " + "no valid to " + (content && content.to));
-
         return false;
-      } // ignore requests that are not direct to or sent by the syncing user
-
+      }
 
+      // ignore requests that are not direct to or sent by the syncing user
       if (!InRoomChannel.getOtherPartyUserId(event, client)) {
         _logger.logger.log("InRoomChannel: validateEvent: " + `not directed to or sent by me: ${event.getSender()}` + `, ${content && content.to}`);
-
         return false;
       }
     }
-
     return _VerificationRequest.VerificationRequest.validateEvent(type, event, client);
   }
+
   /**
    * As m.key.verification.request events are as m.room.message events with the InRoomChannel
    * to have a fallback message in non-supporting clients, we map the real event type
    * to the symbolic one to keep things in unison with ToDeviceChannel
-   * @param {MatrixEvent} event the event to get the type of
-   * @returns {string} the "symbolic" event type
+   * @param event - the event to get the type of
+   * @returns the "symbolic" event type
    */
-
-
   static getEventType(event) {
     const type = event.getType();
-
     if (type === MESSAGE_TYPE) {
       const content = event.getContent();
-
       if (content) {
         const {
           msgtype
         } = content;
-
         if (msgtype === _VerificationRequest.REQUEST_TYPE) {
           return _VerificationRequest.REQUEST_TYPE;
         }
       }
     }
-
     if (type && type !== _VerificationRequest.REQUEST_TYPE) {
       return type;
     } else {
       return "";
     }
   }
+
   /**
    * Changes the state of the channel, request, and verifier in response to a key verification event.
-   * @param {MatrixEvent} event to handle
-   * @param {VerificationRequest} request the request to forward handling to
-   * @param {boolean} isLiveEvent whether this is an even received through sync or not
-   * @returns {Promise} a promise that resolves when any requests as an answer to the passed-in event are sent.
+   * @param event - to handle
+   * @param request - the request to forward handling to
+   * @param isLiveEvent - whether this is an even received through sync or not
+   * @returns a promise that resolves when any requests as an answer to the passed-in event are sent.
    */
-
-
-  handleEvent(event, request, isLiveEvent = false) {
+  async handleEvent(event, request, isLiveEvent = false) {
     // prevent processing the same event multiple times, as under
     // some circumstances Room.timeline can get emitted twice for the same event
     if (request.hasEventId(event.getId())) {
       return;
     }
-
-    const type = InRoomChannel.getEventType(event); // do validations that need state (roomId, userId),
+    const type = InRoomChannel.getEventType(event);
+    // do validations that need state (roomId, userId),
     // ignore if invalid
 
     if (event.getRoomId() !== this.roomId) {
       return;
-    } // set userId if not set already
-
-
-    if (this.userId === null) {
+    }
+    // set userId if not set already
+    if (!this.userId) {
       const userId = InRoomChannel.getOtherPartyUserId(event, this.client);
-
       if (userId) {
         this.userId = userId;
       }
-    } // ignore events not sent by us or the other party
-
-
+    }
+    // ignore events not sent by us or the other party
     const ownUserId = this.client.getUserId();
     const sender = event.getSender();
-
-    if (this.userId !== null) {
+    if (this.userId) {
       if (sender !== ownUserId && sender !== this.userId) {
-        _logger.logger.log(`InRoomChannel: ignoring verification event from ` + `non-participating sender ${sender}`);
-
+        _logger.logger.log(`InRoomChannel: ignoring verification event from non-participating sender ${sender}`);
         return;
       }
     }
-
-    if (this.requestEventId === null) {
+    if (!this.requestEventId) {
       this.requestEventId = InRoomChannel.getTransactionId(event);
     }
-
     const isRemoteEcho = !!event.getUnsigned().transaction_id;
     const isSentByUs = event.getSender() === this.client.getUserId();
     return request.handleEvent(type, event, isLiveEvent, isRemoteEcho, isSentByUs);
   }
+
   /**
    * Adds the transaction id (relation) back to a received event
    * so it has the same format as returned by `completeContent` before sending.
    * The relation can not appear on the event content because of encryption,
    * relations are excluded from encryption.
-   * @param {MatrixEvent} event the received event
-   * @returns {Object} the content object with the relation added again
+   * @param event - the received event
+   * @returns the content object with the relation added again
    */
-
-
   completedContentFromEvent(event) {
     // ensure m.related_to is included in e2ee rooms
     // as the field is excluded from encryption
@@ -244,24 +210,21 @@
     content[M_RELATES_TO] = event.getRelation();
     return content;
   }
+
   /**
    * Add all the fields to content needed for sending it over this channel.
    * This is public so verification methods (SAS uses this) can get the exact
    * content that will be sent independent of the used channel,
    * as they need to calculate the hash of it.
-   * @param {string} type the event type
-   * @param {object} content the (incomplete) content
-   * @returns {object} the complete content, as it will be sent.
+   * @param type - the event type
+   * @param content - the (incomplete) content
+   * @returns the complete content, as it will be sent.
    */
-
-
   completeContent(type, content) {
     content = Object.assign({}, content);
-
     if (type === _VerificationRequest.REQUEST_TYPE || type === _VerificationRequest.READY_TYPE || type === _VerificationRequest.START_TYPE) {
       content.from_device = this.client.getDeviceId();
     }
-
     if (type === _VerificationRequest.REQUEST_TYPE) {
       // type is mapped to m.room.message in the send method
       content = {
@@ -277,105 +240,81 @@
         event_id: this.transactionId
       };
     }
-
     return content;
   }
+
   /**
    * Send an event over the channel with the content not having gone through `completeContent`.
-   * @param {string} type the event type
-   * @param {object} uncompletedContent the (incomplete) content
-   * @returns {Promise} the promise of the request
+   * @param type - the event type
+   * @param uncompletedContent - the (incomplete) content
+   * @returns the promise of the request
    */
-
-
   send(type, uncompletedContent) {
     const content = this.completeContent(type, uncompletedContent);
     return this.sendCompleted(type, content);
   }
+
   /**
    * Send an event over the channel with the content having gone through `completeContent` already.
-   * @param {string} type the event type
-   * @param {object} content
-   * @returns {Promise} the promise of the request
+   * @param type - the event type
+   * @returns the promise of the request
    */
-
-
   async sendCompleted(type, content) {
     let sendType = type;
-
     if (type === _VerificationRequest.REQUEST_TYPE) {
       sendType = MESSAGE_TYPE;
     }
-
     const response = await this.client.sendEvent(this.roomId, sendType, content);
-
     if (type === _VerificationRequest.REQUEST_TYPE) {
       this.requestEventId = response.event_id;
     }
   }
-
 }
-
 exports.InRoomChannel = InRoomChannel;
-
 class InRoomRequests {
   constructor() {
     _defineProperty(this, "requestsByRoomId", new Map());
   }
-
   getRequest(event) {
     const roomId = event.getRoomId();
     const txnId = InRoomChannel.getTransactionId(event);
     return this.getRequestByTxnId(roomId, txnId);
   }
-
   getRequestByChannel(channel) {
     return this.getRequestByTxnId(channel.roomId, channel.transactionId);
   }
-
   getRequestByTxnId(roomId, txnId) {
     const requestsByTxnId = this.requestsByRoomId.get(roomId);
-
     if (requestsByTxnId) {
       return requestsByTxnId.get(txnId);
     }
   }
-
   setRequest(event, request) {
     this.doSetRequest(event.getRoomId(), InRoomChannel.getTransactionId(event), request);
   }
-
   setRequestByChannel(channel, request) {
     this.doSetRequest(channel.roomId, channel.transactionId, request);
   }
-
   doSetRequest(roomId, txnId, request) {
     let requestsByTxnId = this.requestsByRoomId.get(roomId);
-
     if (!requestsByTxnId) {
       requestsByTxnId = new Map();
       this.requestsByRoomId.set(roomId, requestsByTxnId);
     }
-
     requestsByTxnId.set(txnId, request);
   }
-
   removeRequest(event) {
     const roomId = event.getRoomId();
     const requestsByTxnId = this.requestsByRoomId.get(roomId);
-
     if (requestsByTxnId) {
       requestsByTxnId.delete(InRoomChannel.getTransactionId(event));
-
       if (requestsByTxnId.size === 0) {
         this.requestsByRoomId.delete(roomId);
       }
     }
   }
-
   findRequestInProgress(roomId) {
     const requestsByTxnId = this.requestsByRoomId.get(roomId);
-
     if (requestsByTxnId) {
       for (const request of requestsByTxnId.values()) {
         if (request.pending) {
@@ -384,7 +323,5 @@
       }
     }
   }
-
 }
-
 exports.InRoomRequests = InRoomRequests;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/request/ToDeviceChannel.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/request/ToDeviceChannel.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/request/ToDeviceChannel.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/request/ToDeviceChannel.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,35 +4,28 @@
   value: true
 });
 exports.ToDeviceRequests = exports.ToDeviceChannel = void 0;
-
 var _randomstring = require("../../../randomstring");
-
 var _logger = require("../../../logger");
-
 var _VerificationRequest = require("./VerificationRequest");
-
 var _Error = require("../Error");
-
 var _event = require("../../../models/event");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /**
  * A key verification channel that sends verification events over to_device messages.
  * Generates its own transaction ids.
  */
 class ToDeviceChannel {
   // userId and devices of user we're about to verify
-  constructor(client, userId, devices, transactionId = null, deviceId = null) {
+  constructor(client, userId, devices, transactionId, deviceId) {
     this.client = client;
     this.userId = userId;
     this.devices = devices;
     this.transactionId = transactionId;
     this.deviceId = deviceId;
-
     _defineProperty(this, "request", void 0);
   }
-
   isToDevices(devices) {
     if (devices.length === this.devices.length) {
       for (const device of devices) {
@@ -40,128 +33,105 @@
           return false;
         }
       }
-
       return true;
     } else {
       return false;
     }
   }
-
   static getEventType(event) {
     return event.getType();
   }
+
   /**
    * Extract the transaction id used by a given key verification event, if any
-   * @param {MatrixEvent} event the event
-   * @returns {string} the transaction id
+   * @param event - the event
+   * @returns the transaction id
    */
-
-
   static getTransactionId(event) {
     const content = event.getContent();
     return content && content.transaction_id;
   }
+
   /**
    * Checks whether the given event type should be allowed to initiate a new VerificationRequest over this channel
-   * @param {string} type the event type to check
-   * @returns {boolean} boolean flag
+   * @param type - the event type to check
+   * @returns boolean flag
    */
-
-
   static canCreateRequest(type) {
     return type === _VerificationRequest.REQUEST_TYPE || type === _VerificationRequest.START_TYPE;
   }
-
   canCreateRequest(type) {
     return ToDeviceChannel.canCreateRequest(type);
   }
+
   /**
    * Checks whether this event is a well-formed key verification event.
    * This only does checks that don't rely on the current state of a potentially already channel
    * so we can prevent channels being created by invalid events.
    * `handleEvent` can do more checks and choose to ignore invalid events.
-   * @param {MatrixEvent} event the event to validate
-   * @param {MatrixClient} client the client to get the current user and device id from
-   * @returns {boolean} whether the event is valid and should be passed to handleEvent
+   * @param event - the event to validate
+   * @param client - the client to get the current user and device id from
+   * @returns whether the event is valid and should be passed to handleEvent
    */
-
-
   static validateEvent(event, client) {
     if (event.isCancelled()) {
       _logger.logger.warn("Ignoring flagged verification request from " + event.getSender());
-
       return false;
     }
-
     const content = event.getContent();
-
     if (!content) {
       _logger.logger.warn("ToDeviceChannel.validateEvent: invalid: no content");
-
       return false;
     }
-
     if (!content.transaction_id) {
       _logger.logger.warn("ToDeviceChannel.validateEvent: invalid: no transaction_id");
-
       return false;
     }
-
     const type = event.getType();
-
     if (type === _VerificationRequest.REQUEST_TYPE) {
       if (!Number.isFinite(content.timestamp)) {
         _logger.logger.warn("ToDeviceChannel.validateEvent: invalid: no timestamp");
-
         return false;
       }
-
       if (event.getSender() === client.getUserId() && content.from_device == client.getDeviceId()) {
         // ignore requests from ourselves, because it doesn't make sense for a
         // device to verify itself
         _logger.logger.warn("ToDeviceChannel.validateEvent: invalid: from own device");
-
         return false;
       }
     }
-
     return _VerificationRequest.VerificationRequest.validateEvent(type, event, client);
   }
+
   /**
-   * @param {MatrixEvent} event the event to get the timestamp of
-   * @return {number} the timestamp when the event was sent
+   * @param event - the event to get the timestamp of
+   * @returns the timestamp when the event was sent
    */
-
-
   getTimestamp(event) {
     const content = event.getContent();
     return content && content.timestamp;
   }
+
   /**
    * Changes the state of the channel, request, and verifier in response to a key verification event.
-   * @param {MatrixEvent} event to handle
-   * @param {VerificationRequest} request the request to forward handling to
-   * @param {boolean} isLiveEvent whether this is an even received through sync or not
-   * @returns {Promise} a promise that resolves when any requests as an answer to the passed-in event are sent.
+   * @param event - to handle
+   * @param request - the request to forward handling to
+   * @param isLiveEvent - whether this is an even received through sync or not
+   * @returns a promise that resolves when any requests as an answer to the passed-in event are sent.
    */
-
-
   async handleEvent(event, request, isLiveEvent = false) {
     const type = event.getType();
     const content = event.getContent();
-
     if (type === _VerificationRequest.REQUEST_TYPE || type === _VerificationRequest.READY_TYPE || type === _VerificationRequest.START_TYPE) {
       if (!this.transactionId) {
         this.transactionId = content.transaction_id;
       }
-
-      const deviceId = content.from_device; // adopt deviceId if not set before and valid
-
+      const deviceId = content.from_device;
+      // adopt deviceId if not set before and valid
       if (!this.deviceId && this.devices.includes(deviceId)) {
         this.deviceId = deviceId;
-      } // if no device id or different from adopted one, cancel with sender
-
-
+      }
+      // if no device id or different from adopted one, cancel with sender
       if (!this.deviceId || this.deviceId !== deviceId) {
         // also check that message came from the device we sent the request to earlier on
         // and do send a cancel message to that device
@@ -170,15 +140,13 @@
         return this.sendToDevices(_VerificationRequest.CANCEL_TYPE, cancelContent, [deviceId]);
       }
     }
-
     const wasStarted = request.phase === _VerificationRequest.PHASE_STARTED || request.phase === _VerificationRequest.PHASE_READY;
     await request.handleEvent(event.getType(), event, isLiveEvent, false, false);
     const isStarted = request.phase === _VerificationRequest.PHASE_STARTED || request.phase === _VerificationRequest.PHASE_READY;
-    const isAcceptingEvent = type === _VerificationRequest.START_TYPE || type === _VerificationRequest.READY_TYPE; // the request has picked a ready or start event, tell the other devices about it
-
+    const isAcceptingEvent = type === _VerificationRequest.START_TYPE || type === _VerificationRequest.READY_TYPE;
+    // the request has picked a ready or start event, tell the other devices about it
     if (isAcceptingEvent && !wasStarted && isStarted && this.deviceId) {
       const nonChosenDevices = this.devices.filter(d => d !== this.deviceId && d !== this.client.getDeviceId());
-
       if (nonChosenDevices.length) {
         const message = this.completeContent(_VerificationRequest.CANCEL_TYPE, {
           code: "m.accepted",
@@ -188,179 +156,138 @@
       }
     }
   }
+
   /**
-   * See {InRoomChannel.completedContentFromEvent} why this is needed.
-   * @param {MatrixEvent} event the received event
-   * @returns {Object} the content object
+   * See {@link InRoomChannel#completedContentFromEvent} for why this is needed.
+   * @param event - the received event
+   * @returns the content object
    */
-
-
   completedContentFromEvent(event) {
     return event.getContent();
   }
+
   /**
    * Add all the fields to content needed for sending it over this channel.
    * This is public so verification methods (SAS uses this) can get the exact
    * content that will be sent independent of the used channel,
    * as they need to calculate the hash of it.
-   * @param {string} type the event type
-   * @param {object} content the (incomplete) content
-   * @returns {object} the complete content, as it will be sent.
+   * @param type - the event type
+   * @param content - the (incomplete) content
+   * @returns the complete content, as it will be sent.
    */
-
-
   completeContent(type, content) {
     // make a copy
     content = Object.assign({}, content);
-
     if (this.transactionId) {
       content.transaction_id = this.transactionId;
     }
-
     if (type === _VerificationRequest.REQUEST_TYPE || type === _VerificationRequest.READY_TYPE || type === _VerificationRequest.START_TYPE) {
       content.from_device = this.client.getDeviceId();
     }
-
     if (type === _VerificationRequest.REQUEST_TYPE) {
       content.timestamp = Date.now();
     }
-
     return content;
   }
+
   /**
    * Send an event over the channel with the content not having gone through `completeContent`.
-   * @param {string} type the event type
-   * @param {object} uncompletedContent the (incomplete) content
-   * @returns {Promise} the promise of the request
+   * @param type - the event type
+   * @param uncompletedContent - the (incomplete) content
+   * @returns the promise of the request
    */
-
-
   send(type, uncompletedContent = {}) {
     // create transaction id when sending request
     if ((type === _VerificationRequest.REQUEST_TYPE || type === _VerificationRequest.START_TYPE) && !this.transactionId) {
       this.transactionId = ToDeviceChannel.makeTransactionId();
     }
-
     const content = this.completeContent(type, uncompletedContent);
     return this.sendCompleted(type, content);
   }
+
   /**
    * Send an event over the channel with the content having gone through `completeContent` already.
-   * @param {string} type the event type
-   * @param {object} content
-   * @returns {Promise} the promise of the request
+   * @param type - the event type
+   * @returns the promise of the request
    */
-
-
   async sendCompleted(type, content) {
     let result;
-
     if (type === _VerificationRequest.REQUEST_TYPE || type === _VerificationRequest.CANCEL_TYPE && !this.deviceId) {
       result = await this.sendToDevices(type, content, this.devices);
     } else {
       result = await this.sendToDevices(type, content, [this.deviceId]);
-    } // the VerificationRequest state machine requires remote echos of the event
+    }
+    // the VerificationRequest state machine requires remote echos of the event
     // the client sends itself, so we fake this for to_device messages
-
-
     const remoteEchoEvent = new _event.MatrixEvent({
       sender: this.client.getUserId(),
       content,
       type
     });
-    await this.request.handleEvent(type, remoteEchoEvent,
-    /*isLiveEvent=*/
-    true,
-    /*isRemoteEcho=*/
-    true,
-    /*isSentByUs=*/
-    true);
+    await this.request.handleEvent(type, remoteEchoEvent, /*isLiveEvent=*/true, /*isRemoteEcho=*/true, /*isSentByUs=*/true);
     return result;
   }
-
   async sendToDevices(type, content, devices) {
     if (devices.length) {
-      const msgMap = {};
-
+      const deviceMessages = new Map();
       for (const deviceId of devices) {
-        msgMap[deviceId] = content;
+        deviceMessages.set(deviceId, content);
       }
-
-      await this.client.sendToDevice(type, {
-        [this.userId]: msgMap
-      });
+      await this.client.sendToDevice(type, new Map([[this.userId, deviceMessages]]));
     }
   }
+
   /**
    * Allow Crypto module to create and know the transaction id before the .start event gets sent.
-   * @returns {string} the transaction id
+   * @returns the transaction id
    */
-
-
   static makeTransactionId() {
     return (0, _randomstring.randomString)(32);
   }
-
 }
-
 exports.ToDeviceChannel = ToDeviceChannel;
-
 class ToDeviceRequests {
   constructor() {
     _defineProperty(this, "requestsByUserId", new Map());
   }
-
   getRequest(event) {
     return this.getRequestBySenderAndTxnId(event.getSender(), ToDeviceChannel.getTransactionId(event));
   }
-
   getRequestByChannel(channel) {
     return this.getRequestBySenderAndTxnId(channel.userId, channel.transactionId);
   }
-
   getRequestBySenderAndTxnId(sender, txnId) {
     const requestsByTxnId = this.requestsByUserId.get(sender);
-
     if (requestsByTxnId) {
       return requestsByTxnId.get(txnId);
     }
   }
-
   setRequest(event, request) {
     this.setRequestBySenderAndTxnId(event.getSender(), ToDeviceChannel.getTransactionId(event), request);
   }
-
   setRequestByChannel(channel, request) {
     this.setRequestBySenderAndTxnId(channel.userId, channel.transactionId, request);
   }
-
   setRequestBySenderAndTxnId(sender, txnId, request) {
     let requestsByTxnId = this.requestsByUserId.get(sender);
-
     if (!requestsByTxnId) {
       requestsByTxnId = new Map();
       this.requestsByUserId.set(sender, requestsByTxnId);
     }
-
     requestsByTxnId.set(txnId, request);
   }
-
   removeRequest(event) {
     const userId = event.getSender();
     const requestsByTxnId = this.requestsByUserId.get(userId);
-
     if (requestsByTxnId) {
       requestsByTxnId.delete(ToDeviceChannel.getTransactionId(event));
-
       if (requestsByTxnId.size === 0) {
         this.requestsByUserId.delete(userId);
       }
     }
   }
-
   findRequestInProgress(userId, devices) {
     const requestsByTxnId = this.requestsByUserId.get(userId);
-
     if (requestsByTxnId) {
       for (const request of requestsByTxnId.values()) {
         if (request.pending && request.channel.isToDevices(devices)) {
@@ -369,17 +296,12 @@
       }
     }
   }
-
   getRequestsInProgress(userId) {
     const requestsByTxnId = this.requestsByUserId.get(userId);
-
     if (requestsByTxnId) {
       return Array.from(requestsByTxnId.values()).filter(r => r.pending);
     }
-
     return [];
   }
-
 }
-
 exports.ToDeviceRequests = ToDeviceRequests;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/request/VerificationRequest.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/request/VerificationRequest.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/request/VerificationRequest.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/request/VerificationRequest.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,27 +4,24 @@
   value: true
 });
 exports.VerificationRequestEvent = exports.VerificationRequest = exports.START_TYPE = exports.REQUEST_TYPE = exports.READY_TYPE = exports.Phase = exports.PHASE_UNSENT = exports.PHASE_STARTED = exports.PHASE_REQUESTED = exports.PHASE_READY = exports.PHASE_DONE = exports.PHASE_CANCELLED = exports.EVENT_PREFIX = exports.DONE_TYPE = exports.CANCEL_TYPE = void 0;
-
 var _logger = require("../../../logger");
-
 var _Error = require("../Error");
-
 var _QRCode = require("../QRCode");
-
+var _event = require("../../../@types/event");
 var _typedEventEmitter = require("../../../models/typed-event-emitter");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 // How long after the event's timestamp that the request times out
 const TIMEOUT_FROM_EVENT_TS = 10 * 60 * 1000; // 10 minutes
-// How long after we receive the event that the request times out
 
+// How long after we receive the event that the request times out
 const TIMEOUT_FROM_EVENT_RECEIPT = 2 * 60 * 1000; // 2 minutes
+
 // to avoid almost expired verification notifications
 // from showing a notification and almost immediately
 // disappearing, also ignore verification requests that
 // are this amount of time away from expiring.
-
 const VERIFICATION_REQUEST_MARGIN = 3 * 1000; // 3 seconds
 
 const EVENT_PREFIX = "m.key.verification.";
@@ -40,9 +37,7 @@
 const READY_TYPE = EVENT_PREFIX + "ready";
 exports.READY_TYPE = READY_TYPE;
 let Phase; // Legacy export fields
-
 exports.Phase = Phase;
-
 (function (Phase) {
   Phase[Phase["Unsent"] = 1] = "Unsent";
   Phase[Phase["Requested"] = 2] = "Requested";
@@ -51,7 +46,6 @@
   Phase[Phase["Cancelled"] = 5] = "Cancelled";
   Phase[Phase["Done"] = 6] = "Done";
 })(Phase || (exports.Phase = Phase = {}));
-
 const PHASE_UNSENT = Phase.Unsent;
 exports.PHASE_UNSENT = PHASE_UNSENT;
 const PHASE_REQUESTED = Phase.Requested;
@@ -66,60 +60,44 @@
 exports.PHASE_DONE = PHASE_DONE;
 let VerificationRequestEvent;
 exports.VerificationRequestEvent = VerificationRequestEvent;
-
 (function (VerificationRequestEvent) {
   VerificationRequestEvent["Change"] = "change";
 })(VerificationRequestEvent || (exports.VerificationRequestEvent = VerificationRequestEvent = {}));
-
 /**
  * State machine for verification requests.
  * Things that differ based on what channel is used to
  * send and receive verification events are put in `InRoomChannel` or `ToDeviceChannel`.
- * @event "change" whenever the state of the request object has changed.
  */
 class VerificationRequest extends _typedEventEmitter.TypedEventEmitter {
   // we keep a copy of the QR Code data (including other user master key) around
   // for QR reciprocate verification, to protect against
   // cross-signing identity reset between the .ready and .start event
   // and signing the wrong key after .start
+
   // The timestamp when we received the request event from the other side
+
   // Used in tests only
+
   constructor(channel, verificationMethods, client) {
     super();
     this.channel = channel;
     this.verificationMethods = verificationMethods;
     this.client = client;
-
     _defineProperty(this, "eventsByUs", new Map());
-
     _defineProperty(this, "eventsByThem", new Map());
-
     _defineProperty(this, "_observeOnly", false);
-
     _defineProperty(this, "timeoutTimer", null);
-
     _defineProperty(this, "_accepting", false);
-
     _defineProperty(this, "_declining", false);
-
     _defineProperty(this, "verifierHasFinished", false);
-
     _defineProperty(this, "_cancelled", false);
-
     _defineProperty(this, "_chosenMethod", null);
-
     _defineProperty(this, "_qrCodeData", null);
-
     _defineProperty(this, "requestReceivedAt", null);
-
     _defineProperty(this, "commonMethods", []);
-
     _defineProperty(this, "_phase", void 0);
-
     _defineProperty(this, "_cancellingUserId", void 0);
-
     _defineProperty(this, "_verifier", void 0);
-
     _defineProperty(this, "cancelOnTimeout", async () => {
       try {
         if (this.initiatedByMe) {
@@ -137,183 +115,149 @@
         _logger.logger.error("Error while cancelling verification request", err);
       }
     });
-
     this.channel.request = this;
     this.setPhase(PHASE_UNSENT, false);
   }
+
   /**
    * Stateless validation logic not specific to the channel.
    * Invoked by the same static method in either channel.
-   * @param {string} type the "symbolic" event type, as returned by the `getEventType` function on the channel.
-   * @param {MatrixEvent} event the event to validate. Don't call getType() on it but use the `type` parameter instead.
-   * @param {MatrixClient} client the client to get the current user and device id from
-   * @returns {boolean} whether the event is valid and should be passed to handleEvent
+   * @param type - the "symbolic" event type, as returned by the `getEventType` function on the channel.
+   * @param event - the event to validate. Don't call getType() on it but use the `type` parameter instead.
+   * @param client - the client to get the current user and device id from
+   * @returns whether the event is valid and should be passed to handleEvent
    */
-
-
   static validateEvent(type, event, client) {
     const content = event.getContent();
-
     if (!type || !type.startsWith(EVENT_PREFIX)) {
       return false;
-    } // from here on we're fairly sure that this is supposed to be
-    // part of a verification request, so be noisy when rejecting something
-
+    }
 
+    // from here on we're fairly sure that this is supposed to be
+    // part of a verification request, so be noisy when rejecting something
     if (!content) {
       _logger.logger.log("VerificationRequest: validateEvent: no content");
-
       return false;
     }
-
     if (type === REQUEST_TYPE || type === READY_TYPE) {
       if (!Array.isArray(content.methods)) {
         _logger.logger.log("VerificationRequest: validateEvent: " + "fail because methods");
-
         return false;
       }
     }
-
     if (type === REQUEST_TYPE || type === READY_TYPE || type === START_TYPE) {
       if (typeof content.from_device !== "string" || content.from_device.length === 0) {
         _logger.logger.log("VerificationRequest: validateEvent: " + "fail because from_device");
-
         return false;
       }
     }
-
     return true;
   }
-
   get invalid() {
     return this.phase === PHASE_UNSENT;
   }
-  /** returns whether the phase is PHASE_REQUESTED */
-
 
+  /** returns whether the phase is PHASE_REQUESTED */
   get requested() {
     return this.phase === PHASE_REQUESTED;
   }
-  /** returns whether the phase is PHASE_CANCELLED */
-
 
+  /** returns whether the phase is PHASE_CANCELLED */
   get cancelled() {
     return this.phase === PHASE_CANCELLED;
   }
-  /** returns whether the phase is PHASE_READY */
-
 
+  /** returns whether the phase is PHASE_READY */
   get ready() {
     return this.phase === PHASE_READY;
   }
-  /** returns whether the phase is PHASE_STARTED */
-
 
+  /** returns whether the phase is PHASE_STARTED */
   get started() {
     return this.phase === PHASE_STARTED;
   }
-  /** returns whether the phase is PHASE_DONE */
-
 
+  /** returns whether the phase is PHASE_DONE */
   get done() {
     return this.phase === PHASE_DONE;
   }
-  /** once the phase is PHASE_STARTED (and !initiatedByMe) or PHASE_READY: common methods supported by both sides */
-
 
+  /** once the phase is PHASE_STARTED (and !initiatedByMe) or PHASE_READY: common methods supported by both sides */
   get methods() {
     return this.commonMethods;
   }
-  /** the method picked in the .start event */
-
 
+  /** the method picked in the .start event */
   get chosenMethod() {
     return this._chosenMethod;
   }
-
   calculateEventTimeout(event) {
     let effectiveExpiresAt = this.channel.getTimestamp(event) + TIMEOUT_FROM_EVENT_TS;
-
     if (this.requestReceivedAt && !this.initiatedByMe && this.phase <= PHASE_REQUESTED) {
       const expiresAtByReceipt = this.requestReceivedAt + TIMEOUT_FROM_EVENT_RECEIPT;
       effectiveExpiresAt = Math.min(effectiveExpiresAt, expiresAtByReceipt);
     }
-
     return Math.max(0, effectiveExpiresAt - Date.now());
   }
-  /** The current remaining amount of ms before the request should be automatically cancelled */
-
 
+  /** The current remaining amount of ms before the request should be automatically cancelled */
   get timeout() {
     const requestEvent = this.getEventByEither(REQUEST_TYPE);
-
     if (requestEvent) {
       return this.calculateEventTimeout(requestEvent);
     }
-
     return 0;
   }
+
   /**
    * The key verification request event.
-   * @returns {MatrixEvent} The request event, or falsey if not found.
+   * @returns The request event, or falsey if not found.
    */
-
-
   get requestEvent() {
     return this.getEventByEither(REQUEST_TYPE);
   }
-  /** current phase of the request. Some properties might only be defined in a current phase. */
-
 
+  /** current phase of the request. Some properties might only be defined in a current phase. */
   get phase() {
     return this._phase;
   }
-  /** The verifier to do the actual verification, once the method has been established. Only defined when the `phase` is PHASE_STARTED. */
-
 
+  /** The verifier to do the actual verification, once the method has been established. Only defined when the `phase` is PHASE_STARTED. */
   get verifier() {
     return this._verifier;
   }
-
   get canAccept() {
     return this.phase < PHASE_READY && !this._accepting && !this._declining;
   }
-
   get accepting() {
     return this._accepting;
   }
-
   get declining() {
     return this._declining;
   }
-  /** whether this request has sent it's initial event and needs more events to complete */
-
 
+  /** whether this request has sent it's initial event and needs more events to complete */
   get pending() {
     return !this.observeOnly && this._phase !== PHASE_DONE && this._phase !== PHASE_CANCELLED;
   }
-  /** Only set after a .ready if the other party can scan a QR code */
-
 
+  /** Only set after a .ready if the other party can scan a QR code */
   get qrCodeData() {
     return this._qrCodeData;
   }
+
   /** Checks whether the other party supports a given verification method.
    *  This is useful when setting up the QR code UI, as it is somewhat asymmetrical:
    *  if the other party supports SCAN_QR, we should show a QR code in the UI, and vice versa.
    *  For methods that need to be supported by both ends, use the `methods` property.
-   *  @param {string} method the method to check
-   *  @param {boolean} force to check even if the phase is not ready or started yet, internal usage
-   *  @return {boolean} whether or not the other party said the supported the method */
-
-
+   *  @param method - the method to check
+   *  @param force - to check even if the phase is not ready or started yet, internal usage
+   *  @returns whether or not the other party said the supported the method */
   otherPartySupportsMethod(method, force = false) {
     if (!force && !this.ready && !this.started) {
       return false;
     }
-
     const theirMethodEvent = this.eventsByThem.get(REQUEST_TYPE) || this.eventsByThem.get(READY_TYPE);
-
     if (!theirMethodEvent) {
       // if we started straight away with .start event,
       // we are assuming that the other side will support the
@@ -324,63 +268,48 @@
         const myStartMethod = content && content.method;
         return method == myStartMethod;
       }
-
       return false;
     }
-
     const content = theirMethodEvent.getContent();
-
     if (!content) {
       return false;
     }
-
     const {
       methods
     } = content;
-
     if (!Array.isArray(methods)) {
       return false;
     }
-
     return methods.includes(method);
   }
+
   /** Whether this request was initiated by the syncing user.
    * For InRoomChannel, this is who sent the .request event.
    * For ToDeviceChannel, this is who sent the .start event
    */
-
-
   get initiatedByMe() {
     // event created by us but no remote echo has been received yet
     const noEventsYet = this.eventsByUs.size + this.eventsByThem.size === 0;
-
     if (this._phase === PHASE_UNSENT && noEventsYet) {
       return true;
     }
-
     const hasMyRequest = this.eventsByUs.has(REQUEST_TYPE);
     const hasTheirRequest = this.eventsByThem.has(REQUEST_TYPE);
-
     if (hasMyRequest && !hasTheirRequest) {
       return true;
     }
-
     if (!hasMyRequest && hasTheirRequest) {
       return false;
     }
-
     const hasMyStart = this.eventsByUs.has(START_TYPE);
     const hasTheirStart = this.eventsByThem.has(START_TYPE);
-
     if (hasMyStart && !hasTheirStart) {
       return true;
     }
-
     return false;
   }
-  /** The id of the user that initiated the request */
-
 
+  /** The id of the user that initiated the request */
   get requestingUserId() {
     if (this.initiatedByMe) {
       return this.client.getUserId();
@@ -388,9 +317,8 @@
       return this.otherUserId;
     }
   }
-  /** The id of the user that (will) receive(d) the request */
-
 
+  /** The id of the user that (will) receive(d) the request */
   get receivingUserId() {
     if (this.initiatedByMe) {
       return this.otherUserId;
@@ -398,106 +326,90 @@
       return this.client.getUserId();
     }
   }
-  /** The user id of the other party in this request */
-
 
+  /** The user id of the other party in this request */
   get otherUserId() {
     return this.channel.userId;
   }
-
   get isSelfVerification() {
     return this.client.getUserId() === this.otherUserId;
   }
+
   /**
    * The id of the user that cancelled the request,
    * only defined when phase is PHASE_CANCELLED
    */
-
-
   get cancellingUserId() {
     const myCancel = this.eventsByUs.get(CANCEL_TYPE);
     const theirCancel = this.eventsByThem.get(CANCEL_TYPE);
-
     if (myCancel && (!theirCancel || myCancel.getId() < theirCancel.getId())) {
       return myCancel.getSender();
     }
-
     if (theirCancel) {
       return theirCancel.getSender();
     }
-
     return undefined;
   }
+
   /**
    * The cancellation code e.g m.user which is responsible for cancelling this verification
    */
-
-
   get cancellationCode() {
     const ev = this.getEventByEither(CANCEL_TYPE);
     return ev ? ev.getContent().code : null;
   }
-
   get observeOnly() {
     return this._observeOnly;
   }
+
   /**
    * Gets which device the verification should be started with
    * given the events sent so far in the verification. This is the
    * same algorithm used to determine which device to send the
    * verification to when no specific device is specified.
-   * @returns {{userId: *, deviceId: *}} The device information
+   * @returns The device information
    */
-
-
   get targetDevice() {
     const theirFirstEvent = this.eventsByThem.get(REQUEST_TYPE) || this.eventsByThem.get(READY_TYPE) || this.eventsByThem.get(START_TYPE);
-    const theirFirstContent = theirFirstEvent.getContent();
-    const fromDevice = theirFirstContent.from_device;
+    const theirFirstContent = theirFirstEvent?.getContent();
+    const fromDevice = theirFirstContent?.from_device;
     return {
       userId: this.otherUserId,
       deviceId: fromDevice
     };
   }
+
   /* Start the key verification, creating a verifier and sending a .start event.
    * If no previous events have been sent, pass in `targetDevice` to set who to direct this request to.
-   * @param {string} method the name of the verification method to use.
-   * @param {string?} targetDevice.userId the id of the user to direct this request to
-   * @param {string?} targetDevice.deviceId the id of the device to direct this request to
-   * @returns {VerifierBase} the verifier of the given method
+   * @param method - the name of the verification method to use.
+   * @param targetDevice.userId the id of the user to direct this request to
+   * @param targetDevice.deviceId the id of the device to direct this request to
+   * @returns the verifier of the given method
    */
-
-
   beginKeyVerification(method, targetDevice = null) {
     // need to allow also when unsent in case of to_device
     if (!this.observeOnly && !this._verifier) {
       const validStartPhase = this.phase === PHASE_REQUESTED || this.phase === PHASE_READY || this.phase === PHASE_UNSENT && this.channel.canCreateRequest(START_TYPE);
-
       if (validStartPhase) {
         // when called on a request that was initiated with .request event
         // check the method is supported by both sides
         if (this.commonMethods.length && !this.commonMethods.includes(method)) {
           throw (0, _Error.newUnknownMethodError)();
         }
-
         this._verifier = this.createVerifier(method, null, targetDevice);
-
         if (!this._verifier) {
           throw (0, _Error.newUnknownMethodError)();
         }
-
         this._chosenMethod = method;
       }
     }
-
     return this._verifier;
   }
+
   /**
    * sends the initial .request event.
-   * @returns {Promise} resolves when the event has been sent.
+   * @returns resolves when the event has been sent.
    */
-
-
   async sendRequest() {
     if (!this.observeOnly && this._phase === PHASE_UNSENT) {
       const methods = [...this.verificationMethods.keys()];
@@ -506,14 +418,13 @@
       });
     }
   }
+
   /**
    * Cancels the request, sending a cancellation to the other party
-   * @param {string?} error.reason the error reason to send the cancellation with
-   * @param {string?} error.code the error code to send the cancellation with
-   * @returns {Promise} resolves when the event has been sent.
+   * @param reason - the error reason to send the cancellation with
+   * @param code - the error code to send the cancellation with
+   * @returns resolves when the event has been sent.
    */
-
-
   async cancel({
     reason = "User declined",
     code = "m.user"
@@ -521,7 +432,6 @@
     if (!this.observeOnly && this._phase !== PHASE_CANCELLED) {
       this._declining = true;
       this.emit(VerificationRequestEvent.Change);
-
       if (this._verifier) {
         return this._verifier.cancel((0, _Error.errorFactory)(code, reason)());
       } else {
@@ -533,12 +443,11 @@
       }
     }
   }
+
   /**
    * Accepts the request, sending a .ready event to the other party
-   * @returns {Promise} resolves when the event has been sent.
+   * @returns resolves when the event has been sent.
    */
-
-
   async accept() {
     if (!this.observeOnly && this.phase === PHASE_REQUESTED && !this.initiatedByMe) {
       const methods = [...this.verificationMethods.keys()];
@@ -549,20 +458,18 @@
       });
     }
   }
+
   /**
    * Can be used to listen for state changes until the callback returns true.
-   * @param {Function} fn callback to evaluate whether the request is in the desired state.
+   * @param fn - callback to evaluate whether the request is in the desired state.
    *                      Takes the request as an argument.
-   * @returns {Promise} that resolves once the callback returns true
-   * @throws {Error} when the request is cancelled
+   * @returns that resolves once the callback returns true
+   * @throws Error when the request is cancelled
    */
-
-
   waitFor(fn) {
     return new Promise((resolve, reject) => {
       const check = () => {
         let handled = false;
-
         if (fn(this)) {
           resolve(this);
           handled = true;
@@ -570,32 +477,25 @@
           reject(new Error("cancelled"));
           handled = true;
         }
-
         if (handled) {
           this.off(VerificationRequestEvent.Change, check);
         }
-
         return handled;
       };
-
       if (!check()) {
         this.on(VerificationRequestEvent.Change, check);
       }
     });
   }
-
   setPhase(phase, notify = true) {
     this._phase = phase;
-
     if (notify) {
       this.emit(VerificationRequestEvent.Change);
     }
   }
-
   getEventByEither(type) {
     return this.eventsByThem.get(type) || this.eventsByUs.get(type);
   }
-
   getEventBy(type, byThem = false) {
     if (byThem) {
       return this.eventsByThem.get(type);
@@ -603,40 +503,33 @@
       return this.eventsByUs.get(type);
     }
   }
-
   calculatePhaseTransitions() {
     const transitions = [{
       phase: PHASE_UNSENT
     }];
+    const phase = () => transitions[transitions.length - 1].phase;
 
-    const phase = () => transitions[transitions.length - 1].phase; // always pass by .request first to be sure channel.userId has been set
-
-
+    // always pass by .request first to be sure channel.userId has been set
     const hasRequestByThem = this.eventsByThem.has(REQUEST_TYPE);
     const requestEvent = this.getEventBy(REQUEST_TYPE, hasRequestByThem);
-
     if (requestEvent) {
       transitions.push({
         phase: PHASE_REQUESTED,
         event: requestEvent
       });
     }
-
     const readyEvent = requestEvent && this.getEventBy(READY_TYPE, !hasRequestByThem);
-
     if (readyEvent && phase() === PHASE_REQUESTED) {
       transitions.push({
         phase: PHASE_READY,
         event: readyEvent
       });
     }
-
     let startEvent;
-
     if (readyEvent || !requestEvent) {
       const theirStartEvent = this.eventsByThem.get(START_TYPE);
-      const ourStartEvent = this.eventsByUs.get(START_TYPE); // any party can send .start after a .ready or unsent
-
+      const ourStartEvent = this.eventsByUs.get(START_TYPE);
+      // any party can send .start after a .ready or unsent
       if (theirStartEvent && ourStartEvent) {
         startEvent = theirStartEvent.getSender() < ourStartEvent.getSender() ? theirStartEvent : ourStartEvent;
       } else {
@@ -645,11 +538,9 @@
     } else {
       startEvent = this.getEventBy(START_TYPE, !hasRequestByThem);
     }
-
     if (startEvent) {
-      const fromRequestPhase = phase() === PHASE_REQUESTED && requestEvent.getSender() !== startEvent.getSender();
+      const fromRequestPhase = phase() === PHASE_REQUESTED && requestEvent?.getSender() !== startEvent.getSender();
       const fromUnsentPhase = phase() === PHASE_UNSENT && this.channel.canCreateRequest(START_TYPE);
-
       if (fromRequestPhase || phase() === PHASE_READY || fromUnsentPhase) {
         transitions.push({
           phase: PHASE_STARTED,
@@ -657,17 +548,13 @@
         });
       }
     }
-
     const ourDoneEvent = this.eventsByUs.get(DONE_TYPE);
-
     if (this.verifierHasFinished || ourDoneEvent && phase() === PHASE_STARTED) {
       transitions.push({
         phase: PHASE_DONE
       });
     }
-
     const cancelEvent = this.getEventByEither(CANCEL_TYPE);
-
     if ((this._cancelled || cancelEvent) && phase() !== PHASE_DONE) {
       transitions.push({
         phase: PHASE_CANCELLED,
@@ -675,24 +562,21 @@
       });
       return transitions;
     }
-
     return transitions;
   }
-
   transitionToPhase(transition) {
     const {
       phase,
       event
-    } = transition; // get common methods
-
+    } = transition;
+    // get common methods
     if (phase === PHASE_REQUESTED || phase === PHASE_READY) {
       if (!this.wasSentByOwnDevice(event)) {
         const content = event.getContent();
         this.commonMethods = content.methods.filter(m => this.verificationMethods.has(m));
       }
-    } // detect if we're not a party in the request, and we should just observe
-
-
+    }
+    // detect if we're not a party in the request, and we should just observe
     if (!this.observeOnly) {
       // if requested or accepted by one of my other devices
       if (phase === PHASE_REQUESTED || phase === PHASE_STARTED || phase === PHASE_READY) {
@@ -700,17 +584,14 @@
           this._observeOnly = true;
         }
       }
-    } // create verifier
-
-
+    }
+    // create verifier
     if (phase === PHASE_STARTED) {
       const {
         method
       } = event.getContent();
-
       if (!this._verifier && !this.observeOnly) {
         this._verifier = this.createVerifier(method, event);
-
         if (!this._verifier) {
           this.cancel({
             code: "m.unknown_method",
@@ -722,28 +603,23 @@
       }
     }
   }
-
   applyPhaseTransitions() {
     const transitions = this.calculatePhaseTransitions();
-    const existingIdx = transitions.findIndex(t => t.phase === this.phase); // trim off phases we already went through, if any
-
-    const newTransitions = transitions.slice(existingIdx + 1); // transition to all new phases
-
+    const existingIdx = transitions.findIndex(t => t.phase === this.phase);
+    // trim off phases we already went through, if any
+    const newTransitions = transitions.slice(existingIdx + 1);
+    // transition to all new phases
     for (const transition of newTransitions) {
       this.transitionToPhase(transition);
     }
-
     return newTransitions;
   }
-
   isWinningStartRace(newEvent) {
     if (newEvent.getType() !== START_TYPE) {
       return false;
     }
-
     const oldEvent = this._verifier.startEvent;
     let oldRaceIdentifier;
-
     if (this.isSelfVerification) {
       // if the verifier does not have a startEvent,
       // it is because it's still sending and we are on the initator side
@@ -762,83 +638,71 @@
         oldRaceIdentifier = this.client.getUserId();
       }
     }
-
     let newRaceIdentifier;
-
     if (this.isSelfVerification) {
       const newContent = newEvent.getContent();
       newRaceIdentifier = newContent && newContent.from_device;
     } else {
       newRaceIdentifier = newEvent.getSender();
     }
-
     return newRaceIdentifier < oldRaceIdentifier;
   }
-
   hasEventId(eventId) {
     for (const event of this.eventsByUs.values()) {
       if (event.getId() === eventId) {
         return true;
       }
     }
-
     for (const event of this.eventsByThem.values()) {
       if (event.getId() === eventId) {
         return true;
       }
     }
-
     return false;
   }
+
   /**
    * Changes the state of the request and verifier in response to a key verification event.
-   * @param {string} type the "symbolic" event type, as returned by the `getEventType` function on the channel.
-   * @param {MatrixEvent} event the event to handle. Don't call getType() on it but use the `type` parameter instead.
-   * @param {boolean} isLiveEvent whether this is an even received through sync or not
-   * @param {boolean} isRemoteEcho whether this is the remote echo of an event sent by the same device
-   * @param {boolean} isSentByUs whether this event is sent by a party that can accept and/or observe the request like one of our peers.
+   * @param type - the "symbolic" event type, as returned by the `getEventType` function on the channel.
+   * @param event - the event to handle. Don't call getType() on it but use the `type` parameter instead.
+   * @param isLiveEvent - whether this is an even received through sync or not
+   * @param isRemoteEcho - whether this is the remote echo of an event sent by the same device
+   * @param isSentByUs - whether this event is sent by a party that can accept and/or observe the request like one of our peers.
    *   For InRoomChannel this means any device for the syncing user. For ToDeviceChannel, just the syncing device.
-   * @returns {Promise} a promise that resolves when any requests as an answer to the passed-in event are sent.
+   * @returns a promise that resolves when any requests as an answer to the passed-in event are sent.
    */
-
-
   async handleEvent(type, event, isLiveEvent, isRemoteEcho, isSentByUs) {
     // if reached phase cancelled or done, ignore anything else that comes
     if (this.done || this.cancelled) {
       return;
     }
-
     const wasObserveOnly = this._observeOnly;
     this.adjustObserveOnly(event, isLiveEvent);
-
     if (!this.observeOnly && !isRemoteEcho) {
       if (await this.cancelOnError(type, event)) {
         return;
       }
-    } // This assumes verification won't need to send an event with
+    }
+
+    // This assumes verification won't need to send an event with
     // the same type for the same party twice.
     // This is true for QR and SAS verification, and was
     // added here to prevent verification getting cancelled
     // when the server duplicates an event (https://github.com/matrix-org/synapse/issues/3365)
-
-
     const isDuplicateEvent = isSentByUs ? this.eventsByUs.has(type) : this.eventsByThem.has(type);
-
     if (isDuplicateEvent) {
       return;
     }
-
     const oldPhase = this.phase;
-    this.addEvent(type, event, isSentByUs); // this will create if needed the verifier so needs to happen before calling it
+    this.addEvent(type, event, isSentByUs);
 
+    // this will create if needed the verifier so needs to happen before calling it
     const newTransitions = this.applyPhaseTransitions();
-
     try {
       // only pass events from the other side to the verifier,
       // no remote echos of our own events
       if (this._verifier && !this.observeOnly) {
         const newEventWinsRace = this.isWinningStartRace(event);
-
         if (this._verifier.canSwitchStartEvent(event) && newEventWinsRace) {
           this._verifier.switchStartEvent(event);
         } else if (!isRemoteEcho) {
@@ -847,7 +711,6 @@
           }
         }
       }
-
       if (newTransitions.length) {
         // create QRCodeData if the other side can scan
         // important this happens before emitting a phase change,
@@ -857,18 +720,16 @@
         // we happen to have at some later point in time.
         if (isLiveEvent && newTransitions.some(t => t.phase === PHASE_READY)) {
           const shouldGenerateQrCode = this.otherPartySupportsMethod(_QRCode.SCAN_QR_CODE_METHOD, true);
-
           if (shouldGenerateQrCode) {
             this._qrCodeData = await _QRCode.QRCodeData.create(this, this.client);
           }
         }
-
         const lastTransition = newTransitions[newTransitions.length - 1];
         const {
           phase
         } = lastTransition;
-        this.setupTimeout(phase); // set phase as last thing as this emits the "change" event
-
+        this.setupTimeout(phase);
+        // set phase as last thing as this emits the "change" event
         this.setPhase(phase);
       } else if (this._observeOnly !== wasObserveOnly) {
         this.emit(VerificationRequestEvent.Change);
@@ -878,150 +739,121 @@
       _logger.logger.log(`Verification request ${this.channel.transactionId}: ` + `${type} event with id:${event.getId()}, ` + `content:${JSON.stringify(event.getContent())} ` + `deviceId:${this.channel.deviceId}, ` + `sender:${event.getSender()}, isSentByUs:${isSentByUs}, ` + `isLiveEvent:${isLiveEvent}, isRemoteEcho:${isRemoteEcho}, ` + `phase:${oldPhase}=>${this.phase}, ` + `observeOnly:${wasObserveOnly}=>${this._observeOnly}`);
     }
   }
-
   setupTimeout(phase) {
     const shouldTimeout = !this.timeoutTimer && !this.observeOnly && phase === PHASE_REQUESTED;
-
     if (shouldTimeout) {
       this.timeoutTimer = setTimeout(this.cancelOnTimeout, this.timeout);
     }
-
     if (this.timeoutTimer) {
       const shouldClear = phase === PHASE_STARTED || phase === PHASE_READY || phase === PHASE_DONE || phase === PHASE_CANCELLED;
-
       if (shouldClear) {
         clearTimeout(this.timeoutTimer);
         this.timeoutTimer = null;
       }
     }
   }
-
   async cancelOnError(type, event) {
     if (type === START_TYPE) {
       const method = event.getContent().method;
-
       if (!this.verificationMethods.has(method)) {
         await this.cancel((0, _Error.errorFromEvent)((0, _Error.newUnknownMethodError)()));
         return true;
       }
     }
-
     const isUnexpectedRequest = type === REQUEST_TYPE && this.phase !== PHASE_UNSENT;
-    const isUnexpectedReady = type === READY_TYPE && this.phase !== PHASE_REQUESTED && this.phase !== PHASE_STARTED; // only if phase has passed from PHASE_UNSENT should we cancel, because events
+    const isUnexpectedReady = type === READY_TYPE && this.phase !== PHASE_REQUESTED && this.phase !== PHASE_STARTED;
+    // only if phase has passed from PHASE_UNSENT should we cancel, because events
     // are allowed to come in in any order (at least with InRoomChannel). So we only know
     // we're dealing with a valid request we should participate in once we've moved to PHASE_REQUESTED.
     // Before that, we could be looking at somebody else's verification request and we just
     // happen to be in the room
-
     if (this.phase !== PHASE_UNSENT && (isUnexpectedRequest || isUnexpectedReady)) {
       _logger.logger.warn(`Cancelling, unexpected ${type} verification ` + `event from ${event.getSender()}`);
-
       const reason = `Unexpected ${type} event in phase ${this.phase}`;
       await this.cancel((0, _Error.errorFromEvent)((0, _Error.newUnexpectedMessageError)({
         reason
       })));
       return true;
     }
-
     return false;
   }
-
   adjustObserveOnly(event, isLiveEvent = false) {
     // don't send out events for historical requests
     if (!isLiveEvent) {
       this._observeOnly = true;
     }
-
     if (this.calculateEventTimeout(event) < VERIFICATION_REQUEST_MARGIN) {
       this._observeOnly = true;
     }
   }
-
   addEvent(type, event, isSentByUs = false) {
     if (isSentByUs) {
       this.eventsByUs.set(type, event);
     } else {
       this.eventsByThem.set(type, event);
-    } // once we know the userId of the other party (from the .request event)
-    // see if any event by anyone else crept into this.eventsByThem
-
+    }
 
+    // once we know the userId of the other party (from the .request event)
+    // see if any event by anyone else crept into this.eventsByThem
     if (type === REQUEST_TYPE) {
       for (const [type, event] of this.eventsByThem.entries()) {
         if (event.getSender() !== this.otherUserId) {
           this.eventsByThem.delete(type);
         }
-      } // also remember when we received the request event
-
-
+      }
+      // also remember when we received the request event
       this.requestReceivedAt = Date.now();
     }
   }
-
   createVerifier(method, startEvent = null, targetDevice = null) {
     if (!targetDevice) {
       targetDevice = this.targetDevice;
     }
-
     const {
       userId,
       deviceId
     } = targetDevice;
     const VerifierCtor = this.verificationMethods.get(method);
-
     if (!VerifierCtor) {
       _logger.logger.warn("could not find verifier constructor for method", method);
-
       return;
     }
-
     return new VerifierCtor(this.channel, this.client, userId, deviceId, startEvent, this);
   }
-
   wasSentByOwnUser(event) {
-    return event.getSender() === this.client.getUserId();
-  } // only for .request, .ready or .start
-
+    return event?.getSender() === this.client.getUserId();
+  }
 
+  // only for .request, .ready or .start
   wasSentByOwnDevice(event) {
     if (!this.wasSentByOwnUser(event)) {
       return false;
     }
-
     const content = event.getContent();
-
     if (!content || content.from_device !== this.client.getDeviceId()) {
       return false;
     }
-
     return true;
   }
-
   onVerifierCancelled() {
-    this._cancelled = true; // move to cancelled phase
-
+    this._cancelled = true;
+    // move to cancelled phase
     const newTransitions = this.applyPhaseTransitions();
-
     if (newTransitions.length) {
       this.setPhase(newTransitions[newTransitions.length - 1].phase);
     }
   }
-
   onVerifierFinished() {
-    this.channel.send("m.key.verification.done", {});
-    this.verifierHasFinished = true; // move to .done phase
-
+    this.channel.send(_event.EventType.KeyVerificationDone, {});
+    this.verifierHasFinished = true;
+    // move to .done phase
     const newTransitions = this.applyPhaseTransitions();
-
     if (newTransitions.length) {
       this.setPhase(newTransitions[newTransitions.length - 1].phase);
     }
   }
-
   getEventFromOtherParty(type) {
     return this.eventsByThem.get(type);
   }
-
 }
-
 exports.VerificationRequest = VerificationRequest;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/SASDecimal.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/SASDecimal.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/SASDecimal.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/SASDecimal.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,39 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.generateDecimalSas = generateDecimalSas;
+/*
+Copyright 2018 - 2022 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+/**
+ * Implementation of decimal encoding of SAS as per:
+ * https://spec.matrix.org/v1.4/client-server-api/#sas-method-decimal
+ * @param sasBytes - the five bytes generated by HKDF
+ * @returns the derived three numbers between 1000 and 9191 inclusive
+ */
+function generateDecimalSas(sasBytes) {
+  /*
+   *      +--------+--------+--------+--------+--------+
+   *      | Byte 0 | Byte 1 | Byte 2 | Byte 3 | Byte 4 |
+   *      +--------+--------+--------+--------+--------+
+   * bits: 87654321 87654321 87654321 87654321 87654321
+   *       \____________/\_____________/\____________/
+   *         1st number    2nd number     3rd number
+   */
+  return [(sasBytes[0] << 5 | sasBytes[1] >> 3) + 1000, ((sasBytes[1] & 0x7) << 10 | sasBytes[2] << 2 | sasBytes[3] >> 6) + 1000, ((sasBytes[3] & 0x3f) << 7 | sasBytes[4] >> 1) + 1000];
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/SAS.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/SAS.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/SAS.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/crypto/verification/SAS.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,143 +4,183 @@
   value: true
 });
 exports.SasEvent = exports.SAS = void 0;
-
 var _anotherJson = _interopRequireDefault(require("another-json"));
-
 var _Base = require("./Base");
-
 var _Error = require("./Error");
-
 var _logger = require("../../logger");
-
+var _SASDecimal = require("./SASDecimal");
+var _event = require("../../@types/event");
 function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
-const START_TYPE = "m.key.verification.start";
-const EVENTS = ["m.key.verification.accept", "m.key.verification.key", "m.key.verification.mac"];
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+const START_TYPE = _event.EventType.KeyVerificationStart;
+const EVENTS = [_event.EventType.KeyVerificationAccept, _event.EventType.KeyVerificationKey, _event.EventType.KeyVerificationMac];
 let olmutil;
 const newMismatchedSASError = (0, _Error.errorFactory)("m.mismatched_sas", "Mismatched short authentication string");
 const newMismatchedCommitmentError = (0, _Error.errorFactory)("m.mismatched_commitment", "Mismatched commitment");
-
-function generateDecimalSas(sasBytes) {
-  /**
-   *      +--------+--------+--------+--------+--------+
-   *      | Byte 0 | Byte 1 | Byte 2 | Byte 3 | Byte 4 |
-   *      +--------+--------+--------+--------+--------+
-   * bits: 87654321 87654321 87654321 87654321 87654321
-   *       \____________/\_____________/\____________/
-   *         1st number    2nd number     3rd number
-   */
-  return [(sasBytes[0] << 5 | sasBytes[1] >> 3) + 1000, ((sasBytes[1] & 0x7) << 10 | sasBytes[2] << 2 | sasBytes[3] >> 6) + 1000, ((sasBytes[3] & 0x3f) << 7 | sasBytes[4] >> 1) + 1000];
-}
-
-const emojiMapping = [["🐶", "dog"], //  0
-["🐱", "cat"], //  1
-["🦁", "lion"], //  2
-["🐎", "horse"], //  3
-["🦄", "unicorn"], //  4
-["🐷", "pig"], //  5
-["🐘", "elephant"], //  6
-["🐰", "rabbit"], //  7
-["🐼", "panda"], //  8
-["🐓", "rooster"], //  9
-["🐧", "penguin"], // 10
-["🐢", "turtle"], // 11
-["🐟", "fish"], // 12
-["🐙", "octopus"], // 13
-["🦋", "butterfly"], // 14
-["🌷", "flower"], // 15
-["🌳", "tree"], // 16
-["🌵", "cactus"], // 17
-["🍄", "mushroom"], // 18
-["🌏", "globe"], // 19
-["🌙", "moon"], // 20
-["☁️", "cloud"], // 21
-["🔥", "fire"], // 22
-["🍌", "banana"], // 23
-["🍎", "apple"], // 24
-["🍓", "strawberry"], // 25
-["🌽", "corn"], // 26
-["🍕", "pizza"], // 27
-["🎂", "cake"], // 28
-["❤️", "heart"], // 29
-["🙂", "smiley"], // 30
-["🤖", "robot"], // 31
-["🎩", "hat"], // 32
-["👓", "glasses"], // 33
-["🔧", "spanner"], // 34
-["🎅", "santa"], // 35
-["👍", "thumbs up"], // 36
-["☂️", "umbrella"], // 37
-["⌛", "hourglass"], // 38
-["⏰", "clock"], // 39
-["🎁", "gift"], // 40
-["💡", "light bulb"], // 41
-["📕", "book"], // 42
-["✏️", "pencil"], // 43
-["📎", "paperclip"], // 44
-["✂️", "scissors"], // 45
-["🔒", "lock"], // 46
-["🔑", "key"], // 47
-["🔨", "hammer"], // 48
-["☎️", "telephone"], // 49
-["🏁", "flag"], // 50
-["🚂", "train"], // 51
-["🚲", "bicycle"], // 52
-["✈️", "aeroplane"], // 53
-["🚀", "rocket"], // 54
-["🏆", "trophy"], // 55
-["⚽", "ball"], // 56
-["🎸", "guitar"], // 57
-["🎺", "trumpet"], // 58
-["🔔", "bell"], // 59
-["⚓️", "anchor"], // 60
-["🎧", "headphones"], // 61
-["📁", "folder"], // 62
+const emojiMapping = [["🐶", "dog"],
+//  0
+["🐱", "cat"],
+//  1
+["🦁", "lion"],
+//  2
+["🐎", "horse"],
+//  3
+["🦄", "unicorn"],
+//  4
+["🐷", "pig"],
+//  5
+["🐘", "elephant"],
+//  6
+["🐰", "rabbit"],
+//  7
+["🐼", "panda"],
+//  8
+["🐓", "rooster"],
+//  9
+["🐧", "penguin"],
+// 10
+["🐢", "turtle"],
+// 11
+["🐟", "fish"],
+// 12
+["🐙", "octopus"],
+// 13
+["🦋", "butterfly"],
+// 14
+["🌷", "flower"],
+// 15
+["🌳", "tree"],
+// 16
+["🌵", "cactus"],
+// 17
+["🍄", "mushroom"],
+// 18
+["🌏", "globe"],
+// 19
+["🌙", "moon"],
+// 20
+["☁️", "cloud"],
+// 21
+["🔥", "fire"],
+// 22
+["🍌", "banana"],
+// 23
+["🍎", "apple"],
+// 24
+["🍓", "strawberry"],
+// 25
+["🌽", "corn"],
+// 26
+["🍕", "pizza"],
+// 27
+["🎂", "cake"],
+// 28
+["❤️", "heart"],
+// 29
+["🙂", "smiley"],
+// 30
+["🤖", "robot"],
+// 31
+["🎩", "hat"],
+// 32
+["👓", "glasses"],
+// 33
+["🔧", "spanner"],
+// 34
+["🎅", "santa"],
+// 35
+["👍", "thumbs up"],
+// 36
+["☂️", "umbrella"],
+// 37
+["⌛", "hourglass"],
+// 38
+["⏰", "clock"],
+// 39
+["🎁", "gift"],
+// 40
+["💡", "light bulb"],
+// 41
+["📕", "book"],
+// 42
+["✏️", "pencil"],
+// 43
+["📎", "paperclip"],
+// 44
+["✂️", "scissors"],
+// 45
+["🔒", "lock"],
+// 46
+["🔑", "key"],
+// 47
+["🔨", "hammer"],
+// 48
+["☎️", "telephone"],
+// 49
+["🏁", "flag"],
+// 50
+["🚂", "train"],
+// 51
+["🚲", "bicycle"],
+// 52
+["✈️", "aeroplane"],
+// 53
+["🚀", "rocket"],
+// 54
+["🏆", "trophy"],
+// 55
+["⚽", "ball"],
+// 56
+["🎸", "guitar"],
+// 57
+["🎺", "trumpet"],
+// 58
+["🔔", "bell"],
+// 59
+["⚓️", "anchor"],
+// 60
+["🎧", "headphones"],
+// 61
+["📁", "folder"],
+// 62
 ["📌", "pin"] // 63
 ];
 
 function generateEmojiSas(sasBytes) {
-  const emojis = [// just like base64 encoding
+  const emojis = [
+  // just like base64 encoding
   sasBytes[0] >> 2, (sasBytes[0] & 0x3) << 4 | sasBytes[1] >> 4, (sasBytes[1] & 0xf) << 2 | sasBytes[2] >> 6, sasBytes[2] & 0x3f, sasBytes[3] >> 2, (sasBytes[3] & 0x3) << 4 | sasBytes[4] >> 4, (sasBytes[4] & 0xf) << 2 | sasBytes[5] >> 6];
   return emojis.map(num => emojiMapping[num]);
 }
-
 const sasGenerators = {
-  decimal: generateDecimalSas,
+  decimal: _SASDecimal.generateDecimalSas,
   emoji: generateEmojiSas
 };
-
 function generateSas(sasBytes, methods) {
   const sas = {};
-
   for (const method of methods) {
     if (method in sasGenerators) {
-      sas[method] = sasGenerators[method](sasBytes);
+      // @ts-ignore - ts doesn't like us mixing types like this
+      sas[method] = sasGenerators[method](Array.from(sasBytes));
     }
   }
-
   return sas;
 }
-
 const macMethods = {
   "hkdf-hmac-sha256": "calculate_mac",
   "org.matrix.msc3783.hkdf-hmac-sha256": "calculate_mac_fixed_base64",
+  "hkdf-hmac-sha256.v2": "calculate_mac_fixed_base64",
   "hmac-sha256": "calculate_mac_long_kdf"
 };
-
 function calculateMAC(olmSAS, method) {
-  return function (...args) {
-    const macFunction = olmSAS[macMethods[method]];
-    const mac = macFunction.apply(olmSAS, args);
-
-    _logger.logger.log("SAS calculateMAC:", method, args, mac);
-
+  return function (input, info) {
+    const mac = olmSAS[macMethods[method]](input, info);
+    _logger.logger.log("SAS calculateMAC:", method, [input, info], mac);
     return mac;
   };
 }
-
 const calculateKeyAgreement = {
   // eslint-disable-next-line @typescript-eslint/naming-convention
   "curve25519-hkdf-sha256": function (sas, olmSAS, bytes) {
@@ -160,50 +200,36 @@
  * and MAC lists should be sorted in order of preference (most preferred
  * first).
  */
-
 const KEY_AGREEMENT_LIST = ["curve25519-hkdf-sha256", "curve25519"];
 const HASHES_LIST = ["sha256"];
-const MAC_LIST = ["org.matrix.msc3783.hkdf-hmac-sha256", "hkdf-hmac-sha256", "hmac-sha256"];
+const MAC_LIST = ["hkdf-hmac-sha256.v2", "org.matrix.msc3783.hkdf-hmac-sha256", "hkdf-hmac-sha256", "hmac-sha256"];
 const SAS_LIST = Object.keys(sasGenerators);
 const KEY_AGREEMENT_SET = new Set(KEY_AGREEMENT_LIST);
 const HASHES_SET = new Set(HASHES_LIST);
 const MAC_SET = new Set(MAC_LIST);
 const SAS_SET = new Set(SAS_LIST);
-
 function intersection(anArray, aSet) {
-  return anArray instanceof Array ? anArray.filter(x => aSet.has(x)) : [];
+  return Array.isArray(anArray) ? anArray.filter(x => aSet.has(x)) : [];
 }
-
 let SasEvent;
 exports.SasEvent = SasEvent;
-
 (function (SasEvent) {
   SasEvent["ShowSas"] = "show_sas";
 })(SasEvent || (exports.SasEvent = SasEvent = {}));
-
-/**
- * @alias module:crypto/verification/SAS
- * @extends {module:crypto/verification/Base}
- */
 class SAS extends _Base.VerificationBase {
   constructor(...args) {
     super(...args);
-
     _defineProperty(this, "waitingForAccept", void 0);
-
     _defineProperty(this, "ourSASPubKey", void 0);
-
     _defineProperty(this, "theirSASPubKey", void 0);
-
     _defineProperty(this, "sasEvent", void 0);
-
     _defineProperty(this, "doVerification", async () => {
       await global.Olm.init();
-      olmutil = olmutil || new global.Olm.Utility(); // make sure user's keys are downloaded
+      olmutil = olmutil || new global.Olm.Utility();
 
+      // make sure user's keys are downloaded
       await this.baseApis.downloadKeys([this.userId]);
       let retry = false;
-
       do {
         try {
           if (this.initiatedByMe) {
@@ -223,25 +249,20 @@
       } while (retry);
     });
   }
-
   // eslint-disable-next-line @typescript-eslint/naming-convention
   static get NAME() {
     return "m.sas.v1";
   }
-
   get events() {
     return EVENTS;
   }
-
   canSwitchStartEvent(event) {
     if (event.getType() !== START_TYPE) {
       return false;
     }
-
     const content = event.getContent();
-    return content && content.method === SAS.NAME && this.waitingForAccept;
+    return content?.method === SAS.NAME && !!this.waitingForAccept;
   }
-
   async sendStart() {
     const startContent = this.channel.completeContent(START_TYPE, {
       method: SAS.NAME,
@@ -255,122 +276,109 @@
     await this.channel.sendCompleted(START_TYPE, startContent);
     return startContent;
   }
-
+  async verifyAndCheckMAC(keyAgreement, sasMethods, olmSAS, macMethod) {
+    const sasBytes = calculateKeyAgreement[keyAgreement](this, olmSAS, 6);
+    const verifySAS = new Promise((resolve, reject) => {
+      this.sasEvent = {
+        sas: generateSas(sasBytes, sasMethods),
+        confirm: async () => {
+          try {
+            await this.sendMAC(olmSAS, macMethod);
+            resolve();
+          } catch (err) {
+            reject(err);
+          }
+        },
+        cancel: () => reject((0, _Error.newUserCancelledError)()),
+        mismatch: () => reject(newMismatchedSASError())
+      };
+      this.emit(SasEvent.ShowSas, this.sasEvent);
+    });
+    const [e] = await Promise.all([this.waitForEvent(_event.EventType.KeyVerificationMac).then(e => {
+      // we don't expect any more messages from the other
+      // party, and they may send a m.key.verification.done
+      // when they're done on their end
+      this.expectedEvent = _event.EventType.KeyVerificationDone;
+      return e;
+    }), verifySAS]);
+    const content = e.getContent();
+    await this.checkMAC(olmSAS, content, macMethod);
+  }
   async doSendVerification() {
     this.waitingForAccept = true;
     let startContent;
-
     if (this.startEvent) {
       startContent = this.channel.completedContentFromEvent(this.startEvent);
     } else {
       startContent = await this.sendStart();
-    } // we might have switched to a different start event,
+    }
+
+    // we might have switched to a different start event,
     // but was we didn't call _waitForEvent there was no
     // call that could throw yet. So check manually that
     // we're still on the initiator side
-
-
     if (!this.initiatedByMe) {
       throw new _Base.SwitchStartEventError(this.startEvent);
     }
-
     let e;
-
     try {
-      e = await this.waitForEvent("m.key.verification.accept");
+      e = await this.waitForEvent(_event.EventType.KeyVerificationAccept);
     } finally {
       this.waitingForAccept = false;
     }
-
     let content = e.getContent();
     const sasMethods = intersection(content.short_authentication_string, SAS_SET);
-
     if (!(KEY_AGREEMENT_SET.has(content.key_agreement_protocol) && HASHES_SET.has(content.hash) && MAC_SET.has(content.message_authentication_code) && sasMethods.length)) {
       throw (0, _Error.newUnknownMethodError)();
     }
-
     if (typeof content.commitment !== "string") {
       throw (0, _Error.newInvalidMessageError)();
     }
-
     const keyAgreement = content.key_agreement_protocol;
     const macMethod = content.message_authentication_code;
     const hashCommitment = content.commitment;
     const olmSAS = new global.Olm.SAS();
-
     try {
       this.ourSASPubKey = olmSAS.get_pubkey();
-      await this.send("m.key.verification.key", {
+      await this.send(_event.EventType.KeyVerificationKey, {
         key: this.ourSASPubKey
       });
-      e = await this.waitForEvent("m.key.verification.key"); // FIXME: make sure event is properly formed
-
+      e = await this.waitForEvent(_event.EventType.KeyVerificationKey);
+      // FIXME: make sure event is properly formed
       content = e.getContent();
-
-      const commitmentStr = content.key + _anotherJson.default.stringify(startContent); // TODO: use selected hash function (when we support multiple)
-
-
+      const commitmentStr = content.key + _anotherJson.default.stringify(startContent);
+      // TODO: use selected hash function (when we support multiple)
       if (olmutil.sha256(commitmentStr) !== hashCommitment) {
         throw newMismatchedCommitmentError();
       }
-
       this.theirSASPubKey = content.key;
       olmSAS.set_their_key(content.key);
-      const sasBytes = calculateKeyAgreement[keyAgreement](this, olmSAS, 6);
-      const verifySAS = new Promise((resolve, reject) => {
-        this.sasEvent = {
-          sas: generateSas(sasBytes, sasMethods),
-          confirm: async () => {
-            try {
-              await this.sendMAC(olmSAS, macMethod);
-              resolve();
-            } catch (err) {
-              reject(err);
-            }
-          },
-          cancel: () => reject((0, _Error.newUserCancelledError)()),
-          mismatch: () => reject(newMismatchedSASError())
-        };
-        this.emit(SasEvent.ShowSas, this.sasEvent);
-      });
-      [e] = await Promise.all([this.waitForEvent("m.key.verification.mac").then(e => {
-        // we don't expect any more messages from the other
-        // party, and they may send a m.key.verification.done
-        // when they're done on their end
-        this.expectedEvent = "m.key.verification.done";
-        return e;
-      }), verifySAS]);
-      content = e.getContent();
-      await this.checkMAC(olmSAS, content, macMethod);
+      await this.verifyAndCheckMAC(keyAgreement, sasMethods, olmSAS, macMethod);
     } finally {
       olmSAS.free();
     }
   }
-
   async doRespondVerification() {
     // as m.related_to is not included in the encrypted content in e2e rooms,
     // we need to make sure it is added
-    let content = this.channel.completedContentFromEvent(this.startEvent); // Note: we intersect using our pre-made lists, rather than the sets,
+    let content = this.channel.completedContentFromEvent(this.startEvent);
+
+    // Note: we intersect using our pre-made lists, rather than the sets,
     // so that the result will be in our order of preference.  Then
     // fetching the first element from the array will give our preferred
     // method out of the ones offered by the other party.
-
     const keyAgreement = intersection(KEY_AGREEMENT_LIST, new Set(content.key_agreement_protocols))[0];
     const hashMethod = intersection(HASHES_LIST, new Set(content.hashes))[0];
-    const macMethod = intersection(MAC_LIST, new Set(content.message_authentication_codes))[0]; // FIXME: allow app to specify what SAS methods can be used
-
+    const macMethod = intersection(MAC_LIST, new Set(content.message_authentication_codes))[0];
+    // FIXME: allow app to specify what SAS methods can be used
     const sasMethods = intersection(content.short_authentication_string, SAS_SET);
-
     if (!(keyAgreement !== undefined && hashMethod !== undefined && macMethod !== undefined && sasMethods.length)) {
       throw (0, _Error.newUnknownMethodError)();
     }
-
     const olmSAS = new global.Olm.SAS();
-
     try {
       const commitmentStr = olmSAS.get_pubkey() + _anotherJson.default.stringify(content);
-
-      await this.send("m.key.verification.accept", {
+      await this.send(_event.EventType.KeyVerificationAccept, {
         key_agreement_protocol: keyAgreement,
         hash: hashMethod,
         message_authentication_code: macMethod,
@@ -378,46 +386,20 @@
         // TODO: use selected hash function (when we support multiple)
         commitment: olmutil.sha256(commitmentStr)
       });
-      let e = await this.waitForEvent("m.key.verification.key"); // FIXME: make sure event is properly formed
-
+      const e = await this.waitForEvent(_event.EventType.KeyVerificationKey);
+      // FIXME: make sure event is properly formed
       content = e.getContent();
       this.theirSASPubKey = content.key;
       olmSAS.set_their_key(content.key);
       this.ourSASPubKey = olmSAS.get_pubkey();
-      await this.send("m.key.verification.key", {
+      await this.send(_event.EventType.KeyVerificationKey, {
         key: this.ourSASPubKey
       });
-      const sasBytes = calculateKeyAgreement[keyAgreement](this, olmSAS, 6);
-      const verifySAS = new Promise((resolve, reject) => {
-        this.sasEvent = {
-          sas: generateSas(sasBytes, sasMethods),
-          confirm: async () => {
-            try {
-              await this.sendMAC(olmSAS, macMethod);
-              resolve();
-            } catch (err) {
-              reject(err);
-            }
-          },
-          cancel: () => reject((0, _Error.newUserCancelledError)()),
-          mismatch: () => reject(newMismatchedSASError())
-        };
-        this.emit(SasEvent.ShowSas, this.sasEvent);
-      });
-      [e] = await Promise.all([this.waitForEvent("m.key.verification.mac").then(e => {
-        // we don't expect any more messages from the other
-        // party, and they may send a m.key.verification.done
-        // when they're done on their end
-        this.expectedEvent = "m.key.verification.done";
-        return e;
-      }), verifySAS]);
-      content = e.getContent();
-      await this.checkMAC(olmSAS, content, macMethod);
+      await this.verifyAndCheckMAC(keyAgreement, sasMethods, olmSAS, macMethod);
     } finally {
       olmSAS.free();
     }
   }
-
   sendMAC(olmSAS, method) {
     const mac = {};
     const keyList = [];
@@ -426,34 +408,27 @@
     mac[deviceKeyId] = calculateMAC(olmSAS, method)(this.baseApis.getDeviceEd25519Key(), baseInfo + deviceKeyId);
     keyList.push(deviceKeyId);
     const crossSigningId = this.baseApis.getCrossSigningId();
-
     if (crossSigningId) {
       const crossSigningKeyId = `ed25519:${crossSigningId}`;
       mac[crossSigningKeyId] = calculateMAC(olmSAS, method)(crossSigningId, baseInfo + crossSigningKeyId);
       keyList.push(crossSigningKeyId);
     }
-
     const keys = calculateMAC(olmSAS, method)(keyList.sort().join(","), baseInfo + "KEY_IDS");
-    return this.send("m.key.verification.mac", {
+    return this.send(_event.EventType.KeyVerificationMac, {
       mac,
       keys
     });
   }
-
   async checkMAC(olmSAS, content, method) {
     const baseInfo = "MATRIX_KEY_VERIFICATION_MAC" + this.userId + this.deviceId + this.baseApis.getUserId() + this.baseApis.deviceId + this.channel.transactionId;
-
     if (content.keys !== calculateMAC(olmSAS, method)(Object.keys(content.mac).sort().join(","), baseInfo + "KEY_IDS")) {
       throw (0, _Error.newKeyMismatchError)();
     }
-
     await this.verifyKeys(this.userId, content.mac, (keyId, device, keyInfo) => {
       if (keyInfo !== calculateMAC(olmSAS, method)(device.keys[keyId], baseInfo + keyId)) {
         throw (0, _Error.newKeyMismatchError)();
       }
     });
   }
-
 }
-
 exports.SAS = SAS;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/embedded.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/embedded.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/embedded.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/embedded.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,247 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.RoomWidgetClient = void 0;
+var _matrixWidgetApi = require("matrix-widget-api");
+var _event = require("./models/event");
+var _event2 = require("./@types/event");
+var _logger = require("./logger");
+var _client = require("./client");
+var _sync = require("./sync");
+var _slidingSyncSdk = require("./sliding-sync-sdk");
+var _user = require("./models/user");
+var _utils = require("./utils");
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+/**
+ * A MatrixClient that routes its requests through the widget API instead of the
+ * real CS API.
+ * @experimental This class is considered unstable!
+ */
+class RoomWidgetClient extends _client.MatrixClient {
+  constructor(widgetApi, capabilities, roomId, opts) {
+    super(opts);
+
+    // Request capabilities for the functionality this client needs to support
+    this.widgetApi = widgetApi;
+    this.capabilities = capabilities;
+    this.roomId = roomId;
+    _defineProperty(this, "room", void 0);
+    _defineProperty(this, "widgetApiReady", new Promise(resolve => this.widgetApi.once("ready", resolve)));
+    _defineProperty(this, "lifecycle", void 0);
+    _defineProperty(this, "syncState", null);
+    _defineProperty(this, "onEvent", async ev => {
+      ev.preventDefault();
+
+      // Verify the room ID matches, since it's possible for the client to
+      // send us events from other rooms if this widget is always on screen
+      if (ev.detail.data.room_id === this.roomId) {
+        const event = new _event.MatrixEvent(ev.detail.data);
+        await this.syncApi.injectRoomEvents(this.room, [], [event]);
+        this.emit(_client.ClientEvent.Event, event);
+        this.setSyncState(_sync.SyncState.Syncing);
+        _logger.logger.info(`Received event ${event.getId()} ${event.getType()} ${event.getStateKey()}`);
+      } else {
+        const {
+          event_id: eventId,
+          room_id: roomId
+        } = ev.detail.data;
+        _logger.logger.info(`Received event ${eventId} for a different room ${roomId}; discarding`);
+      }
+      await this.ack(ev);
+    });
+    _defineProperty(this, "onToDevice", async ev => {
+      ev.preventDefault();
+      const event = new _event.MatrixEvent({
+        type: ev.detail.data.type,
+        sender: ev.detail.data.sender,
+        content: ev.detail.data.content
+      });
+      // Mark the event as encrypted if it was, using fake contents and keys since those are unknown to us
+      if (ev.detail.data.encrypted) event.makeEncrypted(_event2.EventType.RoomMessageEncrypted, {}, "", "");
+      this.emit(_client.ClientEvent.ToDeviceEvent, event);
+      this.setSyncState(_sync.SyncState.Syncing);
+      await this.ack(ev);
+    });
+    if (capabilities.sendEvent?.length || capabilities.receiveEvent?.length || capabilities.sendMessage === true || Array.isArray(capabilities.sendMessage) && capabilities.sendMessage.length || capabilities.receiveMessage === true || Array.isArray(capabilities.receiveMessage) && capabilities.receiveMessage.length || capabilities.sendState?.length || capabilities.receiveState?.length) {
+      widgetApi.requestCapabilityForRoomTimeline(roomId);
+    }
+    capabilities.sendEvent?.forEach(eventType => widgetApi.requestCapabilityToSendEvent(eventType));
+    capabilities.receiveEvent?.forEach(eventType => widgetApi.requestCapabilityToReceiveEvent(eventType));
+    if (capabilities.sendMessage === true) {
+      widgetApi.requestCapabilityToSendMessage();
+    } else if (Array.isArray(capabilities.sendMessage)) {
+      capabilities.sendMessage.forEach(msgType => widgetApi.requestCapabilityToSendMessage(msgType));
+    }
+    if (capabilities.receiveMessage === true) {
+      widgetApi.requestCapabilityToReceiveMessage();
+    } else if (Array.isArray(capabilities.receiveMessage)) {
+      capabilities.receiveMessage.forEach(msgType => widgetApi.requestCapabilityToReceiveMessage(msgType));
+    }
+    capabilities.sendState?.forEach(({
+      eventType,
+      stateKey
+    }) => widgetApi.requestCapabilityToSendState(eventType, stateKey));
+    capabilities.receiveState?.forEach(({
+      eventType,
+      stateKey
+    }) => widgetApi.requestCapabilityToReceiveState(eventType, stateKey));
+    capabilities.sendToDevice?.forEach(eventType => widgetApi.requestCapabilityToSendToDevice(eventType));
+    capabilities.receiveToDevice?.forEach(eventType => widgetApi.requestCapabilityToReceiveToDevice(eventType));
+    if (capabilities.turnServers) {
+      widgetApi.requestCapability(_matrixWidgetApi.MatrixCapabilities.MSC3846TurnServers);
+    }
+    widgetApi.on(`action:${_matrixWidgetApi.WidgetApiToWidgetAction.SendEvent}`, this.onEvent);
+    widgetApi.on(`action:${_matrixWidgetApi.WidgetApiToWidgetAction.SendToDevice}`, this.onToDevice);
+
+    // Open communication with the host
+    widgetApi.start();
+  }
+  async startClient(opts = {}) {
+    this.lifecycle = new AbortController();
+
+    // Create our own user object artificially (instead of waiting for sync)
+    // so it's always available, even if the user is not in any rooms etc.
+    const userId = this.getUserId();
+    if (userId) {
+      this.store.storeUser(new _user.User(userId));
+    }
+
+    // Even though we have no access token and cannot sync, the sync class
+    // still has some valuable helper methods that we make use of, so we
+    // instantiate it anyways
+    if (opts.slidingSync) {
+      this.syncApi = new _slidingSyncSdk.SlidingSyncSdk(opts.slidingSync, this, opts, this.buildSyncApiOptions());
+    } else {
+      this.syncApi = new _sync.SyncApi(this, opts, this.buildSyncApiOptions());
+    }
+    this.room = this.syncApi.createRoom(this.roomId);
+    this.store.storeRoom(this.room);
+    await this.widgetApiReady;
+
+    // Backfill the requested events
+    // We only get the most recent event for every type + state key combo,
+    // so it doesn't really matter what order we inject them in
+    await Promise.all(this.capabilities.receiveState?.map(async ({
+      eventType,
+      stateKey
+    }) => {
+      const rawEvents = await this.widgetApi.readStateEvents(eventType, undefined, stateKey, [this.roomId]);
+      const events = rawEvents.map(rawEvent => new _event.MatrixEvent(rawEvent));
+      await this.syncApi.injectRoomEvents(this.room, [], events);
+      events.forEach(event => {
+        this.emit(_client.ClientEvent.Event, event);
+        _logger.logger.info(`Backfilled event ${event.getId()} ${event.getType()} ${event.getStateKey()}`);
+      });
+    }) ?? []);
+    this.setSyncState(_sync.SyncState.Syncing);
+    _logger.logger.info("Finished backfilling events");
+
+    // Watch for TURN servers, if requested
+    if (this.capabilities.turnServers) this.watchTurnServers();
+  }
+  stopClient() {
+    this.widgetApi.off(`action:${_matrixWidgetApi.WidgetApiToWidgetAction.SendEvent}`, this.onEvent);
+    this.widgetApi.off(`action:${_matrixWidgetApi.WidgetApiToWidgetAction.SendToDevice}`, this.onToDevice);
+    super.stopClient();
+    this.lifecycle.abort(); // Signal to other async tasks that the client has stopped
+  }
+
+  async joinRoom(roomIdOrAlias) {
+    if (roomIdOrAlias === this.roomId) return this.room;
+    throw new Error(`Unknown room: ${roomIdOrAlias}`);
+  }
+  async encryptAndSendEvent(room, event) {
+    let response;
+    try {
+      response = await this.widgetApi.sendRoomEvent(event.getType(), event.getContent(), room.roomId);
+    } catch (e) {
+      this.updatePendingEventStatus(room, event, _event.EventStatus.NOT_SENT);
+      throw e;
+    }
+    room.updatePendingEvent(event, _event.EventStatus.SENT, response.event_id);
+    return {
+      event_id: response.event_id
+    };
+  }
+  async sendStateEvent(roomId, eventType, content, stateKey = "") {
+    return await this.widgetApi.sendStateEvent(eventType, stateKey, content, roomId);
+  }
+  async sendToDevice(eventType, contentMap) {
+    await this.widgetApi.sendToDevice(eventType, false, (0, _utils.recursiveMapToObject)(contentMap));
+    return {};
+  }
+  async queueToDevice({
+    eventType,
+    batch
+  }) {
+    // map: user Id → device Id → payload
+    const contentMap = new _utils.MapWithDefault(() => new Map());
+    for (const {
+      userId,
+      deviceId,
+      payload
+    } of batch) {
+      contentMap.getOrCreate(userId).set(deviceId, payload);
+    }
+    await this.widgetApi.sendToDevice(eventType, false, (0, _utils.recursiveMapToObject)(contentMap));
+  }
+  async encryptAndSendToDevices(userDeviceInfoArr, payload) {
+    // map: user Id → device Id → payload
+    const contentMap = new _utils.MapWithDefault(() => new Map());
+    for (const {
+      userId,
+      deviceInfo: {
+        deviceId
+      }
+    } of userDeviceInfoArr) {
+      contentMap.getOrCreate(userId).set(deviceId, payload);
+    }
+    await this.widgetApi.sendToDevice(payload.type, true, (0, _utils.recursiveMapToObject)(contentMap));
+  }
+
+  // Overridden since we get TURN servers automatically over the widget API,
+  // and this method would otherwise complain about missing an access token
+  async checkTurnServers() {
+    return this.turnServers.length > 0;
+  }
+
+  // Overridden since we 'sync' manually without the sync API
+  getSyncState() {
+    return this.syncState;
+  }
+  setSyncState(state) {
+    const oldState = this.syncState;
+    this.syncState = state;
+    this.emit(_client.ClientEvent.Sync, state, oldState);
+  }
+  async ack(ev) {
+    await this.widgetApi.transport.reply(ev.detail, {});
+  }
+  async watchTurnServers() {
+    const servers = this.widgetApi.getTurnServers();
+    const onClientStopped = () => {
+      servers.return(undefined);
+    };
+    this.lifecycle.signal.addEventListener("abort", onClientStopped);
+    try {
+      for await (const server of servers) {
+        this.turnServers = [{
+          urls: server.uris,
+          username: server.username,
+          credential: server.password
+        }];
+        this.emit(_client.ClientEvent.TurnServers, this.turnServers);
+        _logger.logger.log(`Received TURN server: ${server.uris}`);
+      }
+    } catch (e) {
+      _logger.logger.warn("Error watching TURN servers", e);
+    } finally {
+      this.lifecycle.signal.removeEventListener("abort", onClientStopped);
+    }
+  }
+}
+exports.RoomWidgetClient = RoomWidgetClient;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/errors.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/errors.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/errors.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/errors.js	2023-04-11 06:11:52.000000000 +0000
@@ -3,58 +3,60 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.InvalidCryptoStoreError = InvalidCryptoStoreError;
-exports.InvalidStoreError = InvalidStoreError;
-exports.KeySignatureUploadError = void 0;
-
-// can't just do InvalidStoreError extends Error
-// because of http://babeljs.io/docs/usage/caveats/#classes
-function InvalidStoreError(reason, value) {
-  const message = `Store is invalid because ${reason}, ` + `please stop the client, delete all data and start the client again`;
-  const instance = Reflect.construct(Error, [message]);
-  Reflect.setPrototypeOf(instance, Reflect.getPrototypeOf(this));
-  instance.reason = reason;
-  instance.value = value;
-  return instance;
-}
-
-InvalidStoreError.TOGGLED_LAZY_LOADING = "TOGGLED_LAZY_LOADING";
-InvalidStoreError.prototype = Object.create(Error.prototype, {
-  constructor: {
-    value: Error,
-    enumerable: false,
-    writable: true,
-    configurable: true
+exports.KeySignatureUploadError = exports.InvalidStoreState = exports.InvalidStoreError = exports.InvalidCryptoStoreState = exports.InvalidCryptoStoreError = void 0;
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+/*
+Copyright 2022 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+let InvalidStoreState;
+exports.InvalidStoreState = InvalidStoreState;
+(function (InvalidStoreState) {
+  InvalidStoreState[InvalidStoreState["ToggledLazyLoading"] = 0] = "ToggledLazyLoading";
+})(InvalidStoreState || (exports.InvalidStoreState = InvalidStoreState = {}));
+class InvalidStoreError extends Error {
+  constructor(reason, value) {
+    const message = `Store is invalid because ${reason}, ` + `please stop the client, delete all data and start the client again`;
+    super(message);
+    this.reason = reason;
+    this.value = value;
+    this.name = "InvalidStoreError";
   }
-});
-Reflect.setPrototypeOf(InvalidStoreError, Error);
-
-function InvalidCryptoStoreError(reason) {
-  const message = `Crypto store is invalid because ${reason}, ` + `please stop the client, delete all data and start the client again`;
-  const instance = Reflect.construct(Error, [message]);
-  Reflect.setPrototypeOf(instance, Reflect.getPrototypeOf(this));
-  instance.reason = reason;
-  instance.name = 'InvalidCryptoStoreError';
-  return instance;
 }
-
-InvalidCryptoStoreError.TOO_NEW = "TOO_NEW";
-InvalidCryptoStoreError.prototype = Object.create(Error.prototype, {
-  constructor: {
-    value: Error,
-    enumerable: false,
-    writable: true,
-    configurable: true
+exports.InvalidStoreError = InvalidStoreError;
+_defineProperty(InvalidStoreError, "TOGGLED_LAZY_LOADING", InvalidStoreState.ToggledLazyLoading);
+let InvalidCryptoStoreState;
+exports.InvalidCryptoStoreState = InvalidCryptoStoreState;
+(function (InvalidCryptoStoreState) {
+  InvalidCryptoStoreState["TooNew"] = "TOO_NEW";
+})(InvalidCryptoStoreState || (exports.InvalidCryptoStoreState = InvalidCryptoStoreState = {}));
+class InvalidCryptoStoreError extends Error {
+  constructor(reason) {
+    const message = `Crypto store is invalid because ${reason}, ` + `please stop the client, delete all data and start the client again`;
+    super(message);
+    this.reason = reason;
+    this.name = "InvalidCryptoStoreError";
   }
-});
-Reflect.setPrototypeOf(InvalidCryptoStoreError, Error);
-
+}
+exports.InvalidCryptoStoreError = InvalidCryptoStoreError;
+_defineProperty(InvalidCryptoStoreError, "TOO_NEW", InvalidCryptoStoreState.TooNew);
 class KeySignatureUploadError extends Error {
   constructor(message, value) {
     super(message);
     this.value = value;
   }
-
 }
-
 exports.KeySignatureUploadError = KeySignatureUploadError;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/event-mapper.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/event-mapper.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/event-mapper.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/event-mapper.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,64 +4,69 @@
   value: true
 });
 exports.eventMapperFor = eventMapperFor;
-
 var _event = require("./models/event");
-
+var _event2 = require("./@types/event");
 function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
-
 function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 function eventMapperFor(client, options) {
   let preventReEmit = Boolean(options.preventReEmit);
   const decrypt = options.decrypt !== false;
-
   function mapper(plainOldJsObject) {
     if (options.toDevice) {
       delete plainOldJsObject.room_id;
     }
-
     const room = client.getRoom(plainOldJsObject.room_id);
-    let event; // If the event is already known to the room, let's re-use the model rather than duplicating.
+    let event;
+    // If the event is already known to the room, let's re-use the model rather than duplicating.
     // We avoid doing this to state events as they may be forward or backwards looking which tweaks behaviour.
-
     if (room && plainOldJsObject.state_key === undefined) {
       event = room.findEventById(plainOldJsObject.event_id);
     }
-
     if (!event || event.status) {
       event = new _event.MatrixEvent(plainOldJsObject);
     } else {
       // merge the latest unsigned data from the server
-      event.setUnsigned(_objectSpread(_objectSpread({}, event.getUnsigned()), plainOldJsObject.unsigned)); // prevent doubling up re-emitters
-
+      event.setUnsigned(_objectSpread(_objectSpread({}, event.getUnsigned()), plainOldJsObject.unsigned));
+      // prevent doubling up re-emitters
       preventReEmit = true;
     }
 
+    // if there is a complete edit bundled alongside the event, perform the replacement.
+    // (prior to MSC3925, events were automatically replaced on the server-side. MSC3925 proposes that that doesn't
+    // happen automatically but the server does provide us with the whole content of the edit event.)
+    const bundledEdit = event.getServerAggregatedRelation(_event2.RelationType.Replace);
+    if (bundledEdit?.content) {
+      const replacement = mapper(bundledEdit);
+      // XXX: it's worth noting that the spec says we should only respect encrypted edits if, once decrypted, the
+      //   replacement has a `m.new_content` property. The problem is that we haven't yet decrypted the replacement
+      //   (it should be happening in the background), so we can't enforce this. Possibly we should for decryption
+      //   to complete, but that sounds a bit racy. For now, we just assume it's ok.
+      event.makeReplaced(replacement);
+    }
     const thread = room?.findThreadForEvent(event);
-
     if (thread) {
       event.setThread(thread);
     }
 
+    // TODO: once we get rid of the old libolm-backed crypto, we can restrict this to room events (rather than
+    //   to-device events), because the rust implementation decrypts to-device messages at a higher level.
+    //   Generally we probably want to use a different eventMapper implementation for to-device events because
     if (event.isEncrypted()) {
       if (!preventReEmit) {
         client.reEmitter.reEmit(event, [_event.MatrixEventEvent.Decrypted]);
       }
-
       if (decrypt) {
         client.decryptEventIfNeeded(event);
       }
     }
-
     if (!preventReEmit) {
       client.reEmitter.reEmit(event, [_event.MatrixEventEvent.Replaced, _event.MatrixEventEvent.VisibilityChange]);
       room?.reEmitter.reEmit(event, [_event.MatrixEventEvent.BeforeRedaction]);
     }
-
     return event;
   }
-
   return mapper;
 }
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/ExtensibleEvent.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/ExtensibleEvent.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/ExtensibleEvent.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/ExtensibleEvent.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,44 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.ExtensibleEvent = void 0;
+/*
+Copyright 2021 - 2023 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+/**
+ * Represents an Extensible Event in Matrix.
+ */
+class ExtensibleEvent {
+  constructor(wireFormat) {
+    this.wireFormat = wireFormat;
+  }
+
+  /**
+   * Shortcut to wireFormat.content
+   */
+  get wireContent() {
+    return this.wireFormat.content;
+  }
+
+  /**
+   * Serializes the event into a format which can be used to send the
+   * event to the room.
+   * @returns The serialized event.
+   */
+}
+exports.ExtensibleEvent = ExtensibleEvent;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/InvalidEventError.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/InvalidEventError.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/InvalidEventError.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/InvalidEventError.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,31 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.InvalidEventError = void 0;
+/*
+Copyright 2022 - 2023 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+/**
+ * Thrown when an event is unforgivably unparsable.
+ */
+class InvalidEventError extends Error {
+  constructor(message) {
+    super(message);
+  }
+}
+exports.InvalidEventError = InvalidEventError;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/MessageEvent.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/MessageEvent.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/MessageEvent.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/MessageEvent.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,127 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.MessageEvent = void 0;
+var _ExtensibleEvent = require("./ExtensibleEvent");
+var _extensible_events = require("../@types/extensible_events");
+var _utilities = require("./utilities");
+var _InvalidEventError = require("./InvalidEventError");
+function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
+function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+/**
+ * Represents a message event. Message events are the simplest form of event with
+ * just text (optionally of different mimetypes, like HTML).
+ *
+ * Message events can additionally be an Emote or Notice, though typically those
+ * are represented as EmoteEvent and NoticeEvent respectively.
+ */
+class MessageEvent extends _ExtensibleEvent.ExtensibleEvent {
+  /**
+   * The default text for the event.
+   */
+
+  /**
+   * The default HTML for the event, if provided.
+   */
+
+  /**
+   * All the different renderings of the message. Note that this is the same
+   * format as an m.message body but may contain elements not found directly
+   * in the event content: this is because this is interpreted based off the
+   * other information available in the event.
+   */
+
+  /**
+   * Creates a new MessageEvent from a pure format. Note that the event is
+   * *not* parsed here: it will be treated as a literal m.message primary
+   * typed event.
+   * @param wireFormat - The event.
+   */
+  constructor(wireFormat) {
+    super(wireFormat);
+    _defineProperty(this, "text", void 0);
+    _defineProperty(this, "html", void 0);
+    _defineProperty(this, "renderings", void 0);
+    const mmessage = _extensible_events.M_MESSAGE.findIn(this.wireContent);
+    const mtext = _extensible_events.M_TEXT.findIn(this.wireContent);
+    const mhtml = _extensible_events.M_HTML.findIn(this.wireContent);
+    if ((0, _utilities.isProvided)(mmessage)) {
+      if (!Array.isArray(mmessage)) {
+        throw new _InvalidEventError.InvalidEventError("m.message contents must be an array");
+      }
+      const text = mmessage.find(r => !(0, _utilities.isProvided)(r.mimetype) || r.mimetype === "text/plain");
+      const html = mmessage.find(r => r.mimetype === "text/html");
+      if (!text) throw new _InvalidEventError.InvalidEventError("m.message is missing a plain text representation");
+      this.text = text.body;
+      this.html = html?.body;
+      this.renderings = mmessage;
+    } else if ((0, _utilities.isOptionalAString)(mtext)) {
+      this.text = mtext;
+      this.html = mhtml;
+      this.renderings = [{
+        body: mtext,
+        mimetype: "text/plain"
+      }];
+      if (this.html) {
+        this.renderings.push({
+          body: this.html,
+          mimetype: "text/html"
+        });
+      }
+    } else {
+      throw new _InvalidEventError.InvalidEventError("Missing textual representation for event");
+    }
+  }
+  isEquivalentTo(primaryEventType) {
+    return (0, _extensible_events.isEventTypeSame)(primaryEventType, _extensible_events.M_MESSAGE);
+  }
+  serializeMMessageOnly() {
+    let messageRendering = {
+      [_extensible_events.M_MESSAGE.name]: this.renderings
+    };
+
+    // Use the shorthand if it's just a simple text event
+    if (this.renderings.length === 1) {
+      const mime = this.renderings[0].mimetype;
+      if (mime === undefined || mime === "text/plain") {
+        messageRendering = {
+          [_extensible_events.M_TEXT.name]: this.renderings[0].body
+        };
+      }
+    }
+    return messageRendering;
+  }
+  serialize() {
+    return {
+      type: "m.room.message",
+      content: _objectSpread(_objectSpread({}, this.serializeMMessageOnly()), {}, {
+        body: this.text,
+        msgtype: "m.text",
+        format: this.html ? "org.matrix.custom.html" : undefined,
+        formatted_body: this.html ?? undefined
+      })
+    };
+  }
+
+  /**
+   * Creates a new MessageEvent from text and HTML.
+   * @param text - The text.
+   * @param html - Optional HTML.
+   * @returns The representative message event.
+   */
+  static from(text, html) {
+    return new MessageEvent({
+      type: _extensible_events.M_MESSAGE.name,
+      content: {
+        [_extensible_events.M_TEXT.name]: text,
+        [_extensible_events.M_HTML.name]: html
+      }
+    });
+  }
+}
+exports.MessageEvent = MessageEvent;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/PollEndEvent.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/PollEndEvent.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/PollEndEvent.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/PollEndEvent.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,81 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.PollEndEvent = void 0;
+var _extensible_events = require("../@types/extensible_events");
+var _polls = require("../@types/polls");
+var _ExtensibleEvent = require("./ExtensibleEvent");
+var _InvalidEventError = require("./InvalidEventError");
+var _MessageEvent = require("./MessageEvent");
+function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
+function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+/**
+ * Represents a poll end/closure event.
+ */
+class PollEndEvent extends _ExtensibleEvent.ExtensibleEvent {
+  /**
+   * The poll start event ID referenced by the response.
+   */
+
+  /**
+   * The closing message for the event.
+   */
+
+  /**
+   * Creates a new PollEndEvent from a pure format. Note that the event is *not*
+   * parsed here: it will be treated as a literal m.poll.response primary typed event.
+   * @param wireFormat - The event.
+   */
+  constructor(wireFormat) {
+    super(wireFormat);
+    _defineProperty(this, "pollEventId", void 0);
+    _defineProperty(this, "closingMessage", void 0);
+    const rel = this.wireContent["m.relates_to"];
+    if (!_extensible_events.REFERENCE_RELATION.matches(rel?.rel_type) || typeof rel?.event_id !== "string") {
+      throw new _InvalidEventError.InvalidEventError("Relationship must be a reference to an event");
+    }
+    this.pollEventId = rel.event_id;
+    this.closingMessage = new _MessageEvent.MessageEvent(this.wireFormat);
+  }
+  isEquivalentTo(primaryEventType) {
+    return (0, _extensible_events.isEventTypeSame)(primaryEventType, _polls.M_POLL_END);
+  }
+  serialize() {
+    return {
+      type: _polls.M_POLL_END.name,
+      content: _objectSpread({
+        "m.relates_to": {
+          rel_type: _extensible_events.REFERENCE_RELATION.name,
+          event_id: this.pollEventId
+        },
+        [_polls.M_POLL_END.name]: {}
+      }, this.closingMessage.serialize().content)
+    };
+  }
+
+  /**
+   * Creates a new PollEndEvent from a poll event ID.
+   * @param pollEventId - The poll start event ID.
+   * @param message - A closing message, typically revealing the top answer.
+   * @returns The representative poll closure event.
+   */
+  static from(pollEventId, message) {
+    return new PollEndEvent({
+      type: _polls.M_POLL_END.name,
+      content: {
+        "m.relates_to": {
+          rel_type: _extensible_events.REFERENCE_RELATION.name,
+          event_id: pollEventId
+        },
+        [_polls.M_POLL_END.name]: {},
+        [_extensible_events.M_TEXT.name]: message
+      }
+    });
+  }
+}
+exports.PollEndEvent = PollEndEvent;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/PollResponseEvent.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/PollResponseEvent.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/PollResponseEvent.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/PollResponseEvent.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,126 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.PollResponseEvent = void 0;
+var _ExtensibleEvent = require("./ExtensibleEvent");
+var _polls = require("../@types/polls");
+var _extensible_events = require("../@types/extensible_events");
+var _InvalidEventError = require("./InvalidEventError");
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+/**
+ * Represents a poll response event.
+ */
+class PollResponseEvent extends _ExtensibleEvent.ExtensibleEvent {
+  /**
+   * The provided answers for the poll. Note that this may be falsy/unpredictable if
+   * the `spoiled` property is true.
+   */
+  get answerIds() {
+    return this.internalAnswerIds;
+  }
+
+  /**
+   * The poll start event ID referenced by the response.
+   */
+
+  /**
+   * Whether the vote is spoiled.
+   */
+  get spoiled() {
+    return this.internalSpoiled;
+  }
+
+  /**
+   * Creates a new PollResponseEvent from a pure format. Note that the event is *not*
+   * parsed here: it will be treated as a literal m.poll.response primary typed event.
+   *
+   * To validate the response against a poll, call `validateAgainst` after creation.
+   * @param wireFormat - The event.
+   */
+  constructor(wireFormat) {
+    super(wireFormat);
+    _defineProperty(this, "internalAnswerIds", []);
+    _defineProperty(this, "internalSpoiled", false);
+    _defineProperty(this, "pollEventId", void 0);
+    const rel = this.wireContent["m.relates_to"];
+    if (!_extensible_events.REFERENCE_RELATION.matches(rel?.rel_type) || typeof rel?.event_id !== "string") {
+      throw new _InvalidEventError.InvalidEventError("Relationship must be a reference to an event");
+    }
+    this.pollEventId = rel.event_id;
+    this.validateAgainst(null);
+  }
+
+  /**
+   * Validates the poll response using the poll start event as a frame of reference. This
+   * is used to determine if the vote is spoiled, whether the answers are valid, etc.
+   * @param poll - The poll start event.
+   */
+  validateAgainst(poll) {
+    const response = _polls.M_POLL_RESPONSE.findIn(this.wireContent);
+    if (!Array.isArray(response?.answers)) {
+      this.internalSpoiled = true;
+      this.internalAnswerIds = [];
+      return;
+    }
+    let answers = response?.answers ?? [];
+    if (answers.some(a => typeof a !== "string") || answers.length === 0) {
+      this.internalSpoiled = true;
+      this.internalAnswerIds = [];
+      return;
+    }
+    if (poll) {
+      if (answers.some(a => !poll.answers.some(pa => pa.id === a))) {
+        this.internalSpoiled = true;
+        this.internalAnswerIds = [];
+        return;
+      }
+      answers = answers.slice(0, poll.maxSelections);
+    }
+    this.internalAnswerIds = answers;
+    this.internalSpoiled = false;
+  }
+  isEquivalentTo(primaryEventType) {
+    return (0, _extensible_events.isEventTypeSame)(primaryEventType, _polls.M_POLL_RESPONSE);
+  }
+  serialize() {
+    return {
+      type: _polls.M_POLL_RESPONSE.name,
+      content: {
+        "m.relates_to": {
+          rel_type: _extensible_events.REFERENCE_RELATION.name,
+          event_id: this.pollEventId
+        },
+        [_polls.M_POLL_RESPONSE.name]: {
+          answers: this.spoiled ? undefined : this.answerIds
+        }
+      }
+    };
+  }
+
+  /**
+   * Creates a new PollResponseEvent from a set of answers. To spoil the vote, pass an empty
+   * answers array.
+   * @param answers - The user's answers. Should be valid from a poll's answer IDs.
+   * @param pollEventId - The poll start event ID.
+   * @returns The representative poll response event.
+   */
+  static from(answers, pollEventId) {
+    return new PollResponseEvent({
+      type: _polls.M_POLL_RESPONSE.name,
+      content: {
+        "m.relates_to": {
+          rel_type: _extensible_events.REFERENCE_RELATION.name,
+          event_id: pollEventId
+        },
+        [_polls.M_POLL_RESPONSE.name]: {
+          answers: answers
+        }
+      }
+    });
+  }
+}
+exports.PollResponseEvent = PollResponseEvent;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/PollStartEvent.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/PollStartEvent.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/PollStartEvent.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/PollStartEvent.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,183 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.PollStartEvent = exports.PollAnswerSubevent = void 0;
+var _matrixEventsSdk = require("matrix-events-sdk");
+var _MessageEvent = require("./MessageEvent");
+var _extensible_events = require("../@types/extensible_events");
+var _polls = require("../@types/polls");
+var _InvalidEventError = require("./InvalidEventError");
+var _ExtensibleEvent = require("./ExtensibleEvent");
+function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
+function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+/**
+ * Represents a poll answer. Note that this is represented as a subtype and is
+ * not registered as a parsable event - it is implied for usage exclusively
+ * within the PollStartEvent parsing.
+ */
+class PollAnswerSubevent extends _MessageEvent.MessageEvent {
+  /**
+   * The answer ID.
+   */
+
+  constructor(wireFormat) {
+    super(wireFormat);
+    _defineProperty(this, "id", void 0);
+    const id = wireFormat.content.id;
+    if (!id || typeof id !== "string") {
+      throw new _InvalidEventError.InvalidEventError("Answer ID must be a non-empty string");
+    }
+    this.id = id;
+  }
+  serialize() {
+    return {
+      type: "org.matrix.sdk.poll.answer",
+      content: _objectSpread({
+        id: this.id
+      }, this.serializeMMessageOnly())
+    };
+  }
+
+  /**
+   * Creates a new PollAnswerSubevent from ID and text.
+   * @param id - The answer ID (unique within the poll).
+   * @param text - The text.
+   * @returns The representative answer.
+   */
+  static from(id, text) {
+    return new PollAnswerSubevent({
+      type: "org.matrix.sdk.poll.answer",
+      content: {
+        id: id,
+        [_extensible_events.M_TEXT.name]: text
+      }
+    });
+  }
+}
+
+/**
+ * Represents a poll start event.
+ */
+exports.PollAnswerSubevent = PollAnswerSubevent;
+class PollStartEvent extends _ExtensibleEvent.ExtensibleEvent {
+  /**
+   * The question being asked, as a MessageEvent node.
+   */
+
+  /**
+   * The interpreted kind of poll. Note that this will infer a value that is known to the
+   * SDK rather than verbatim - this means unknown types will be represented as undisclosed
+   * polls.
+   *
+   * To get the raw kind, use rawKind.
+   */
+
+  /**
+   * The true kind as provided by the event sender. Might not be valid.
+   */
+
+  /**
+   * The maximum number of selections a user is allowed to make.
+   */
+
+  /**
+   * The possible answers for the poll.
+   */
+
+  /**
+   * Creates a new PollStartEvent from a pure format. Note that the event is *not*
+   * parsed here: it will be treated as a literal m.poll.start primary typed event.
+   * @param wireFormat - The event.
+   */
+  constructor(wireFormat) {
+    super(wireFormat);
+    _defineProperty(this, "question", void 0);
+    _defineProperty(this, "kind", void 0);
+    _defineProperty(this, "rawKind", void 0);
+    _defineProperty(this, "maxSelections", void 0);
+    _defineProperty(this, "answers", void 0);
+    const poll = _polls.M_POLL_START.findIn(this.wireContent);
+    if (!poll?.question) {
+      throw new _InvalidEventError.InvalidEventError("A question is required");
+    }
+    this.question = new _MessageEvent.MessageEvent({
+      type: "org.matrix.sdk.poll.question",
+      content: poll.question
+    });
+    this.rawKind = poll.kind;
+    if (_polls.M_POLL_KIND_DISCLOSED.matches(this.rawKind)) {
+      this.kind = _polls.M_POLL_KIND_DISCLOSED;
+    } else {
+      this.kind = _polls.M_POLL_KIND_UNDISCLOSED; // default & assumed value
+    }
+
+    this.maxSelections = Number.isFinite(poll.max_selections) && poll.max_selections > 0 ? poll.max_selections : 1;
+    if (!Array.isArray(poll.answers)) {
+      throw new _InvalidEventError.InvalidEventError("Poll answers must be an array");
+    }
+    const answers = poll.answers.slice(0, 20).map(a => new PollAnswerSubevent({
+      type: "org.matrix.sdk.poll.answer",
+      content: a
+    }));
+    if (answers.length <= 0) {
+      throw new _InvalidEventError.InvalidEventError("No answers available");
+    }
+    this.answers = answers;
+  }
+  isEquivalentTo(primaryEventType) {
+    return (0, _extensible_events.isEventTypeSame)(primaryEventType, _polls.M_POLL_START);
+  }
+  serialize() {
+    return {
+      type: _polls.M_POLL_START.name,
+      content: {
+        [_polls.M_POLL_START.name]: {
+          question: this.question.serialize().content,
+          kind: this.rawKind,
+          max_selections: this.maxSelections,
+          answers: this.answers.map(a => a.serialize().content)
+        },
+        [_extensible_events.M_TEXT.name]: `${this.question.text}\n${this.answers.map((a, i) => `${i + 1}. ${a.text}`).join("\n")}`
+      }
+    };
+  }
+
+  /**
+   * Creates a new PollStartEvent from question, answers, and metadata.
+   * @param question - The question to ask.
+   * @param answers - The answers. Should be unique within each other.
+   * @param kind - The kind of poll.
+   * @param maxSelections - The maximum number of selections. Must be 1 or higher.
+   * @returns The representative poll start event.
+   */
+  static from(question, answers, kind, maxSelections = 1) {
+    return new PollStartEvent({
+      type: _polls.M_POLL_START.name,
+      content: {
+        [_extensible_events.M_TEXT.name]: question,
+        // unused by parsing
+        [_polls.M_POLL_START.name]: {
+          question: {
+            [_extensible_events.M_TEXT.name]: question
+          },
+          kind: kind instanceof _matrixEventsSdk.NamespacedValue ? kind.name : kind,
+          max_selections: maxSelections,
+          answers: answers.map(a => ({
+            id: makeId(),
+            [_extensible_events.M_TEXT.name]: a
+          }))
+        }
+      }
+    });
+  }
+}
+exports.PollStartEvent = PollStartEvent;
+const LETTERS = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789";
+function makeId() {
+  return [...Array(16)].map(() => LETTERS.charAt(Math.floor(Math.random() * LETTERS.length))).join("");
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/utilities.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/utilities.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/utilities.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/extensible_events_v1/utilities.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,40 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.isOptionalAString = isOptionalAString;
+exports.isProvided = isProvided;
+/*
+Copyright 2021 - 2023 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+/**
+ * Determines if the given optional was provided a value.
+ * @param s - The optional to test.
+ * @returns True if the value is defined.
+ */
+function isProvided(s) {
+  return s !== null && s !== undefined;
+}
+
+/**
+ * Determines if the given optional string is a defined string.
+ * @param s - The input string.
+ * @returns True if the input is a defined string.
+ */
+function isOptionalAString(s) {
+  return isProvided(s) && typeof s === "string";
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/feature.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/feature.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/feature.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/feature.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,74 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.ServerSupport = exports.Feature = void 0;
+exports.buildFeatureSupportMap = buildFeatureSupportMap;
+/*
+Copyright 2022 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+let ServerSupport;
+exports.ServerSupport = ServerSupport;
+(function (ServerSupport) {
+  ServerSupport[ServerSupport["Stable"] = 0] = "Stable";
+  ServerSupport[ServerSupport["Unstable"] = 1] = "Unstable";
+  ServerSupport[ServerSupport["Unsupported"] = 2] = "Unsupported";
+})(ServerSupport || (exports.ServerSupport = ServerSupport = {}));
+let Feature;
+exports.Feature = Feature;
+(function (Feature) {
+  Feature["Thread"] = "Thread";
+  Feature["ThreadUnreadNotifications"] = "ThreadUnreadNotifications";
+  Feature["LoginTokenRequest"] = "LoginTokenRequest";
+  Feature["RelationBasedRedactions"] = "RelationBasedRedactions";
+  Feature["AccountDataDeletion"] = "AccountDataDeletion";
+})(Feature || (exports.Feature = Feature = {}));
+const featureSupportResolver = {
+  [Feature.Thread]: {
+    unstablePrefixes: ["org.matrix.msc3440"],
+    matrixVersion: "v1.3"
+  },
+  [Feature.ThreadUnreadNotifications]: {
+    unstablePrefixes: ["org.matrix.msc3771", "org.matrix.msc3773"],
+    matrixVersion: "v1.4"
+  },
+  [Feature.LoginTokenRequest]: {
+    unstablePrefixes: ["org.matrix.msc3882"]
+  },
+  [Feature.RelationBasedRedactions]: {
+    unstablePrefixes: ["org.matrix.msc3912"]
+  },
+  [Feature.AccountDataDeletion]: {
+    unstablePrefixes: ["org.matrix.msc3391"]
+  }
+};
+async function buildFeatureSupportMap(versions) {
+  const supportMap = new Map();
+  for (const [feature, supportCondition] of Object.entries(featureSupportResolver)) {
+    const supportMatrixVersion = versions.versions?.includes(supportCondition.matrixVersion || "") ?? false;
+    const supportUnstablePrefixes = supportCondition.unstablePrefixes?.every(unstablePrefix => {
+      return versions.unstable_features?.[unstablePrefix] === true;
+    }) ?? false;
+    if (supportMatrixVersion) {
+      supportMap.set(feature, ServerSupport.Stable);
+    } else if (supportUnstablePrefixes) {
+      supportMap.set(feature, ServerSupport.Unstable);
+    } else {
+      supportMap.set(feature, ServerSupport.Unsupported);
+    }
+  }
+  return supportMap;
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/filter-component.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/filter-component.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/filter-component.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/filter-component.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,9 +4,7 @@
   value: true
 });
 exports.FilterComponent = void 0;
-
 var _thread = require("./models/thread");
-
 /*
 Copyright 2016 - 2021 The Matrix.org Foundation C.I.C.
 
@@ -24,15 +22,11 @@
 */
 
 /**
- * @module filter-component
- */
-
-/**
  * Checks if a value matches a given field value, which may be a * terminated
  * wildcard pattern.
- * @param {String} actualValue  The value to be compared
- * @param {String} filterValue  The filter pattern to be compared
- * @return {boolean} true if the actualValue matches the filterValue
+ * @param actualValue -  The value to be compared
+ * @param filterValue -  The filter pattern to be compared
+ * @returns true if the actualValue matches the filterValue
  */
 function matchesWildcard(actualValue, filterValue) {
   if (filterValue.endsWith("*")) {
@@ -42,8 +36,8 @@
     return actualValue === filterValue;
   }
 }
-/* eslint-disable camelcase */
 
+/* eslint-disable camelcase */
 
 /* eslint-enable camelcase */
 
@@ -54,149 +48,124 @@
  *
  * N.B. that synapse refers to these as 'Filters', and what js-sdk refers to as
  * 'Filters' are referred to as 'FilterCollections'.
- *
- * @constructor
- * @param {Object} filterJson the definition of this filter JSON, e.g. { 'contains_url': true }
  */
 class FilterComponent {
   constructor(filterJson, userId) {
     this.filterJson = filterJson;
     this.userId = userId;
   }
+
   /**
    * Checks with the filter component matches the given event
-   * @param {MatrixEvent} event event to be checked against the filter
-   * @return {boolean} true if the event matches the filter
+   * @param event - event to be checked against the filter
+   * @returns true if the event matches the filter
    */
-
-
   check(event) {
     const bundledRelationships = event.getUnsigned()?.["m.relations"] || {};
-    const relations = Object.keys(bundledRelationships); // Relation senders allows in theory a look-up of any senders
+    const relations = Object.keys(bundledRelationships);
+    // Relation senders allows in theory a look-up of any senders
     // however clients can only know about the current user participation status
     // as sending a whole list of participants could be proven problematic in terms
     // of performance
     // This should be improved when bundled relationships solve that problem
-
     const relationSenders = [];
-
     if (this.userId && bundledRelationships?.[_thread.THREAD_RELATION_TYPE.name]?.current_user_participated) {
       relationSenders.push(this.userId);
     }
-
     return this.checkFields(event.getRoomId(), event.getSender(), event.getType(), event.getContent() ? event.getContent().url !== undefined : false, relations, relationSenders);
   }
+
   /**
    * Converts the filter component into the form expected over the wire
    */
-
-
   toJSON() {
     return {
-      "types": this.filterJson.types || null,
-      "not_types": this.filterJson.not_types || [],
-      "rooms": this.filterJson.rooms || null,
-      "not_rooms": this.filterJson.not_rooms || [],
-      "senders": this.filterJson.senders || null,
-      "not_senders": this.filterJson.not_senders || [],
-      "contains_url": this.filterJson.contains_url || null,
+      types: this.filterJson.types || null,
+      not_types: this.filterJson.not_types || [],
+      rooms: this.filterJson.rooms || null,
+      not_rooms: this.filterJson.not_rooms || [],
+      senders: this.filterJson.senders || null,
+      not_senders: this.filterJson.not_senders || [],
+      contains_url: this.filterJson.contains_url || null,
       [_thread.FILTER_RELATED_BY_SENDERS.name]: this.filterJson[_thread.FILTER_RELATED_BY_SENDERS.name] || [],
       [_thread.FILTER_RELATED_BY_REL_TYPES.name]: this.filterJson[_thread.FILTER_RELATED_BY_REL_TYPES.name] || []
     };
   }
+
   /**
    * Checks whether the filter component matches the given event fields.
-   * @param {String} roomId        the roomId for the event being checked
-   * @param {String} sender        the sender of the event being checked
-   * @param {String} eventType     the type of the event being checked
-   * @param {boolean} containsUrl  whether the event contains a content.url field
-   * @param {boolean} relationTypes  whether has aggregated relation of the given type
-   * @param {boolean} relationSenders whether one of the relation is sent by the user listed
-   * @return {boolean} true if the event fields match the filter
+   * @param roomId -        the roomId for the event being checked
+   * @param sender -        the sender of the event being checked
+   * @param eventType -     the type of the event being checked
+   * @param containsUrl -  whether the event contains a content.url field
+   * @param relationTypes -  whether has aggregated relation of the given type
+   * @param relationSenders - whether one of the relation is sent by the user listed
+   * @returns true if the event fields match the filter
    */
-
-
   checkFields(roomId, sender, eventType, containsUrl, relationTypes, relationSenders) {
     const literalKeys = {
-      "rooms": function (v) {
+      rooms: function (v) {
         return roomId === v;
       },
-      "senders": function (v) {
+      senders: function (v) {
         return sender === v;
       },
-      "types": function (v) {
+      types: function (v) {
         return matchesWildcard(eventType, v);
       }
     };
-
-    for (let n = 0; n < Object.keys(literalKeys).length; n++) {
-      const name = Object.keys(literalKeys)[n];
+    for (const name in literalKeys) {
       const matchFunc = literalKeys[name];
       const notName = "not_" + name;
       const disallowedValues = this.filterJson[notName];
-
       if (disallowedValues?.some(matchFunc)) {
         return false;
       }
-
       const allowedValues = this.filterJson[name];
-
       if (allowedValues && !allowedValues.some(matchFunc)) {
         return false;
       }
     }
-
     const containsUrlFilter = this.filterJson.contains_url;
-
     if (containsUrlFilter !== undefined && containsUrlFilter !== containsUrl) {
       return false;
     }
-
     const relationTypesFilter = this.filterJson[_thread.FILTER_RELATED_BY_REL_TYPES.name];
-
     if (relationTypesFilter !== undefined) {
       if (!this.arrayMatchesFilter(relationTypesFilter, relationTypes)) {
         return false;
       }
     }
-
     const relationSendersFilter = this.filterJson[_thread.FILTER_RELATED_BY_SENDERS.name];
-
     if (relationSendersFilter !== undefined) {
       if (!this.arrayMatchesFilter(relationSendersFilter, relationSenders)) {
         return false;
       }
     }
-
     return true;
   }
-
   arrayMatchesFilter(filter, values) {
     return values.length > 0 && filter.every(value => {
       return values.includes(value);
     });
   }
+
   /**
    * Filters a list of events down to those which match this filter component
-   * @param {MatrixEvent[]} events  Events to be checked against the filter component
-   * @return {MatrixEvent[]} events which matched the filter component
+   * @param events -  Events to be checked against the filter component
+   * @returns events which matched the filter component
    */
-
-
   filter(events) {
     return events.filter(this.check, this);
   }
+
   /**
    * Returns the limit field for a given filter component, providing a default of
    * 10 if none is otherwise specified. Cargo-culted from Synapse.
-   * @return {Number} the limit for this filter component.
+   * @returns the limit for this filter component.
    */
-
-
   limit() {
     return this.filterJson.limit !== undefined ? this.filterJson.limit : 10;
   }
-
 }
-
 exports.FilterComponent = FilterComponent;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/filter.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/filter.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/filter.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/filter.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,94 +4,78 @@
   value: true
 });
 exports.Filter = void 0;
-
+var _sync = require("./@types/sync");
 var _filterComponent = require("./filter-component");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
+function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /**
- * @param {Object} obj
- * @param {string} keyNesting
- * @param {*} val
  */
 function setProp(obj, keyNesting, val) {
   const nestedKeys = keyNesting.split(".");
   let currentObj = obj;
-
   for (let i = 0; i < nestedKeys.length - 1; i++) {
     if (!currentObj[nestedKeys[i]]) {
       currentObj[nestedKeys[i]] = {};
     }
-
     currentObj = currentObj[nestedKeys[i]];
   }
-
   currentObj[nestedKeys[nestedKeys.length - 1]] = val;
 }
-/* eslint-disable camelcase */
 
+/* eslint-disable camelcase */
 
 /* eslint-enable camelcase */
 
-/**
- * Construct a new Filter.
- * @constructor
- * @param {string} userId The user ID for this filter.
- * @param {string=} filterId The filter ID if known.
- * @prop {string} userId The user ID of the filter
- * @prop {?string} filterId The filter ID
- */
 class Filter {
   /**
    * Create a filter from existing data.
-   * @static
-   * @param {string} userId
-   * @param {string} filterId
-   * @param {Object} jsonObj
-   * @return {Filter}
    */
   static fromJson(userId, filterId, jsonObj) {
     const filter = new Filter(userId, filterId);
     filter.setDefinition(jsonObj);
     return filter;
   }
-
+  /**
+   * Construct a new Filter.
+   * @param userId - The user ID for this filter.
+   * @param filterId - The filter ID if known.
+   */
   constructor(userId, filterId) {
     this.userId = userId;
     this.filterId = filterId;
-
     _defineProperty(this, "definition", {});
-
     _defineProperty(this, "roomFilter", void 0);
-
     _defineProperty(this, "roomTimelineFilter", void 0);
   }
+
   /**
    * Get the ID of this filter on your homeserver (if known)
-   * @return {?string} The filter ID
+   * @returns The filter ID
    */
-
-
   getFilterId() {
     return this.filterId;
   }
+
   /**
    * Get the JSON body of the filter.
-   * @return {Object} The filter definition
+   * @returns The filter definition
    */
-
-
   getDefinition() {
     return this.definition;
   }
+
   /**
    * Set the JSON body of the filter
-   * @param {Object} definition The filter definition
+   * @param definition - The filter definition
    */
+  setDefinition(definition) {
+    this.definition = definition;
 
+    // This is all ported from synapse's FilterCollection()
 
-  setDefinition(definition) {
-    this.definition = definition; // This is all ported from synapse's FilterCollection()
     // definitions look something like:
     // {
     //   "room": {
@@ -123,22 +107,22 @@
     //   "event_fields": ["type", "content", "sender"]
     // }
 
-    const roomFilterJson = definition.room; // consider the top level rooms/not_rooms filter
+    const roomFilterJson = definition.room;
 
+    // consider the top level rooms/not_rooms filter
     const roomFilterFields = {};
-
     if (roomFilterJson) {
       if (roomFilterJson.rooms) {
         roomFilterFields.rooms = roomFilterJson.rooms;
       }
-
       if (roomFilterJson.rooms) {
         roomFilterFields.not_rooms = roomFilterJson.not_rooms;
       }
     }
-
     this.roomFilter = new _filterComponent.FilterComponent(roomFilterFields, this.userId);
-    this.roomTimelineFilter = new _filterComponent.FilterComponent(roomFilterJson?.timeline || {}, this.userId); // don't bother porting this from synapse yet:
+    this.roomTimelineFilter = new _filterComponent.FilterComponent(roomFilterJson?.timeline || {}, this.userId);
+
+    // don't bother porting this from synapse yet:
     // this._room_state_filter =
     //     new FilterComponent(roomFilterJson.state || {});
     // this._room_ephemeral_filter =
@@ -150,54 +134,65 @@
     // this._account_data_filter =
     //     new FilterComponent(definition.account_data || {});
   }
+
   /**
    * Get the room.timeline filter component of the filter
-   * @return {FilterComponent} room timeline filter component
+   * @returns room timeline filter component
    */
-
-
   getRoomTimelineFilterComponent() {
     return this.roomTimelineFilter;
   }
+
   /**
    * Filter the list of events based on whether they are allowed in a timeline
    * based on this filter
-   * @param {MatrixEvent[]} events  the list of events being filtered
-   * @return {MatrixEvent[]} the list of events which match the filter
+   * @param events -  the list of events being filtered
+   * @returns the list of events which match the filter
    */
-
-
   filterRoomTimeline(events) {
-    return this.roomTimelineFilter.filter(this.roomFilter.filter(events));
+    if (this.roomFilter) {
+      events = this.roomFilter.filter(events);
+    }
+    if (this.roomTimelineFilter) {
+      events = this.roomTimelineFilter.filter(events);
+    }
+    return events;
   }
+
   /**
    * Set the max number of events to return for each room's timeline.
-   * @param {Number} limit The max number of events to return for each room.
+   * @param limit - The max number of events to return for each room.
    */
-
-
   setTimelineLimit(limit) {
     setProp(this.definition, "room.timeline.limit", limit);
   }
 
+  /**
+   * Enable threads unread notification
+   */
+  setUnreadThreadNotifications(enabled) {
+    this.definition = _objectSpread(_objectSpread({}, this.definition), {}, {
+      room: _objectSpread(_objectSpread({}, this.definition?.room), {}, {
+        timeline: _objectSpread(_objectSpread({}, this.definition?.room?.timeline), {}, {
+          [_sync.UNREAD_THREAD_NOTIFICATIONS.name]: enabled
+        })
+      })
+    });
+  }
   setLazyLoadMembers(enabled) {
-    setProp(this.definition, "room.state.lazy_load_members", !!enabled);
+    setProp(this.definition, "room.state.lazy_load_members", enabled);
   }
+
   /**
    * Control whether left rooms should be included in responses.
-   * @param {boolean} includeLeave True to make rooms the user has left appear
+   * @param includeLeave - True to make rooms the user has left appear
    * in responses.
    */
-
-
   setIncludeLeaveRooms(includeLeave) {
     setProp(this.definition, "room.include_leave", includeLeave);
   }
-
 }
-
 exports.Filter = Filter;
-
 _defineProperty(Filter, "LAZY_LOADING_MESSAGES_FILTER", {
   lazy_load_members: true
 });
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/errors.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/errors.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/errors.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/errors.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,85 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.MatrixError = exports.HTTPError = exports.ConnectionError = void 0;
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+/*
+Copyright 2022 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+/**
+ * Construct a generic HTTP error. This is a JavaScript Error with additional information
+ * specific to HTTP responses.
+ * @param msg - The error message to include.
+ * @param httpStatus - The HTTP response status code.
+ */
+class HTTPError extends Error {
+  constructor(msg, httpStatus) {
+    super(msg);
+    this.httpStatus = httpStatus;
+  }
+}
+exports.HTTPError = HTTPError;
+class MatrixError extends HTTPError {
+  // The Matrix 'errcode' value, e.g. "M_FORBIDDEN".
+
+  // The raw Matrix error JSON used to construct this object.
+
+  /**
+   * Construct a Matrix error. This is a JavaScript Error with additional
+   * information specific to the standard Matrix error response.
+   * @param errorJson - The Matrix error JSON returned from the homeserver.
+   * @param httpStatus - The numeric HTTP status code given
+   */
+  constructor(errorJson = {}, httpStatus, url, event) {
+    let message = errorJson.error || "Unknown message";
+    if (httpStatus) {
+      message = `[${httpStatus}] ${message}`;
+    }
+    if (url) {
+      message = `${message} (${url})`;
+    }
+    super(`MatrixError: ${message}`, httpStatus);
+    this.httpStatus = httpStatus;
+    this.url = url;
+    this.event = event;
+    _defineProperty(this, "errcode", void 0);
+    _defineProperty(this, "data", void 0);
+    this.errcode = errorJson.errcode;
+    this.name = errorJson.errcode || "Unknown error code";
+    this.data = errorJson;
+  }
+}
+
+/**
+ * Construct a ConnectionError. This is a JavaScript Error indicating
+ * that a request failed because of some error with the connection, either
+ * CORS was not correctly configured on the server, the server didn't response,
+ * the request timed out, or the internet connection on the client side went down.
+ */
+exports.MatrixError = MatrixError;
+class ConnectionError extends Error {
+  constructor(message, cause) {
+    super(message + (cause ? `: ${cause.message}` : ""));
+  }
+  get name() {
+    return "ConnectionError";
+  }
+}
+exports.ConnectionError = ConnectionError;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/fetch.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/fetch.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/fetch.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/fetch.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,249 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.FetchHttpApi = void 0;
+var utils = _interopRequireWildcard(require("../utils"));
+var _method = require("./method");
+var _errors = require("./errors");
+var _interface = require("./interface");
+var _utils2 = require("./utils");
+function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
+function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+class FetchHttpApi {
+  constructor(eventEmitter, opts) {
+    this.eventEmitter = eventEmitter;
+    this.opts = opts;
+    _defineProperty(this, "abortController", new AbortController());
+    utils.checkObjectHasKeys(opts, ["baseUrl", "prefix"]);
+    opts.onlyData = !!opts.onlyData;
+    opts.useAuthorizationHeader = opts.useAuthorizationHeader ?? true;
+  }
+  abort() {
+    this.abortController.abort();
+    this.abortController = new AbortController();
+  }
+  fetch(resource, options) {
+    if (this.opts.fetchFn) {
+      return this.opts.fetchFn(resource, options);
+    }
+    return global.fetch(resource, options);
+  }
+
+  /**
+   * Sets the base URL for the identity server
+   * @param url - The new base url
+   */
+  setIdBaseUrl(url) {
+    this.opts.idBaseUrl = url;
+  }
+  idServerRequest(method, path, params, prefix, accessToken) {
+    if (!this.opts.idBaseUrl) {
+      throw new Error("No identity server base URL set");
+    }
+    let queryParams = undefined;
+    let body = undefined;
+    if (method === _method.Method.Get) {
+      queryParams = params;
+    } else {
+      body = params;
+    }
+    const fullUri = this.getUrl(path, queryParams, prefix, this.opts.idBaseUrl);
+    const opts = {
+      json: true,
+      headers: {}
+    };
+    if (accessToken) {
+      opts.headers.Authorization = `Bearer ${accessToken}`;
+    }
+    return this.requestOtherUrl(method, fullUri, body, opts);
+  }
+
+  /**
+   * Perform an authorised request to the homeserver.
+   * @param method - The HTTP method e.g. "GET".
+   * @param path - The HTTP path <b>after</b> the supplied prefix e.g.
+   * "/createRoom".
+   *
+   * @param queryParams - A dict of query params (these will NOT be
+   * urlencoded). If unspecified, there will be no query params.
+   *
+   * @param body - The HTTP JSON body.
+   *
+   * @param opts - additional options. If a number is specified,
+   * this is treated as `opts.localTimeoutMs`.
+   *
+   * @returns Promise which resolves to
+   * ```
+   * {
+   *     data: {Object},
+   *     headers: {Object},
+   *     code: {Number},
+   * }
+   * ```
+   * If `onlyData` is set, this will resolve to the `data` object only.
+   * @returns Rejects with an error if a problem occurred.
+   * This includes network problems and Matrix-specific error JSON.
+   */
+  authedRequest(method, path, queryParams, body, opts = {}) {
+    if (!queryParams) queryParams = {};
+    if (this.opts.accessToken) {
+      if (this.opts.useAuthorizationHeader) {
+        if (!opts.headers) {
+          opts.headers = {};
+        }
+        if (!opts.headers.Authorization) {
+          opts.headers.Authorization = "Bearer " + this.opts.accessToken;
+        }
+        if (queryParams.access_token) {
+          delete queryParams.access_token;
+        }
+      } else if (!queryParams.access_token) {
+        queryParams.access_token = this.opts.accessToken;
+      }
+    }
+    const requestPromise = this.request(method, path, queryParams, body, opts);
+    requestPromise.catch(err => {
+      if (err.errcode == "M_UNKNOWN_TOKEN" && !opts?.inhibitLogoutEmit) {
+        this.eventEmitter.emit(_interface.HttpApiEvent.SessionLoggedOut, err);
+      } else if (err.errcode == "M_CONSENT_NOT_GIVEN") {
+        this.eventEmitter.emit(_interface.HttpApiEvent.NoConsent, err.message, err.data.consent_uri);
+      }
+    });
+
+    // return the original promise, otherwise tests break due to it having to
+    // go around the event loop one more time to process the result of the request
+    return requestPromise;
+  }
+
+  /**
+   * Perform a request to the homeserver without any credentials.
+   * @param method - The HTTP method e.g. "GET".
+   * @param path - The HTTP path <b>after</b> the supplied prefix e.g.
+   * "/createRoom".
+   *
+   * @param queryParams - A dict of query params (these will NOT be
+   * urlencoded). If unspecified, there will be no query params.
+   *
+   * @param body - The HTTP JSON body.
+   *
+   * @param opts - additional options
+   *
+   * @returns Promise which resolves to
+   * ```
+   * {
+   *  data: {Object},
+   *  headers: {Object},
+   *  code: {Number},
+   * }
+   * ```
+   * If `onlyData</code> is set, this will resolve to the <code>data`
+   * object only.
+   * @returns Rejects with an error if a problem
+   * occurred. This includes network problems and Matrix-specific error JSON.
+   */
+  request(method, path, queryParams, body, opts) {
+    const fullUri = this.getUrl(path, queryParams, opts?.prefix, opts?.baseUrl);
+    return this.requestOtherUrl(method, fullUri, body, opts);
+  }
+
+  /**
+   * Perform a request to an arbitrary URL.
+   * @param method - The HTTP method e.g. "GET".
+   * @param url - The HTTP URL object.
+   *
+   * @param body - The HTTP JSON body.
+   *
+   * @param opts - additional options
+   *
+   * @returns Promise which resolves to data unless `onlyData` is specified as false,
+   * where the resolved value will be a fetch Response object.
+   * @returns Rejects with an error if a problem
+   * occurred. This includes network problems and Matrix-specific error JSON.
+   */
+  async requestOtherUrl(method, url, body, opts = {}) {
+    const headers = Object.assign({}, opts.headers || {});
+    const json = opts.json ?? true;
+    // We can't use getPrototypeOf here as objects made in other contexts e.g. over postMessage won't have same ref
+    const jsonBody = json && body?.constructor?.name === Object.name;
+    if (json) {
+      if (jsonBody && !headers["Content-Type"]) {
+        headers["Content-Type"] = "application/json";
+      }
+      if (!headers["Accept"]) {
+        headers["Accept"] = "application/json";
+      }
+    }
+    const timeout = opts.localTimeoutMs ?? this.opts.localTimeoutMs;
+    const keepAlive = opts.keepAlive ?? false;
+    const signals = [this.abortController.signal];
+    if (timeout !== undefined) {
+      signals.push((0, _utils2.timeoutSignal)(timeout));
+    }
+    if (opts.abortSignal) {
+      signals.push(opts.abortSignal);
+    }
+    let data;
+    if (jsonBody) {
+      data = JSON.stringify(body);
+    } else {
+      data = body;
+    }
+    const {
+      signal,
+      cleanup
+    } = (0, _utils2.anySignal)(signals);
+    let res;
+    try {
+      res = await this.fetch(url, {
+        signal,
+        method,
+        body: data,
+        headers,
+        mode: "cors",
+        redirect: "follow",
+        referrer: "",
+        referrerPolicy: "no-referrer",
+        cache: "no-cache",
+        credentials: "omit",
+        // we send credentials via headers
+        keepalive: keepAlive
+      });
+    } catch (e) {
+      if (e.name === "AbortError") {
+        throw e;
+      }
+      throw new _errors.ConnectionError("fetch failed", e);
+    } finally {
+      cleanup();
+    }
+    if (!res.ok) {
+      throw (0, _utils2.parseErrorResponse)(res, await res.text());
+    }
+    if (this.opts.onlyData) {
+      return json ? res.json() : res.text();
+    }
+    return res;
+  }
+
+  /**
+   * Form and return a homeserver request URL based on the given path params and prefix.
+   * @param path - The HTTP path <b>after</b> the supplied prefix e.g. "/createRoom".
+   * @param queryParams - A dict of query params (these will NOT be urlencoded).
+   * @param prefix - The full prefix to use e.g. "/_matrix/client/v2_alpha", defaulting to this.opts.prefix.
+   * @param baseUrl - The baseUrl to use e.g. "https://matrix.org/", defaulting to this.opts.baseUrl.
+   * @returns URL
+   */
+  getUrl(path, queryParams, prefix, baseUrl) {
+    const url = new URL((baseUrl ?? this.opts.baseUrl) + (prefix ?? this.opts.prefix) + path);
+    if (queryParams) {
+      utils.encodeParams(queryParams, url.searchParams);
+    }
+    return url;
+  }
+}
+exports.FetchHttpApi = FetchHttpApi;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/index.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/index.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/index.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/index.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,226 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+var _exportNames = {
+  MatrixHttpApi: true
+};
+exports.MatrixHttpApi = void 0;
+var _fetch = require("./fetch");
+var _prefix = require("./prefix");
+Object.keys(_prefix).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
+  if (key in exports && exports[key] === _prefix[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _prefix[key];
+    }
+  });
+});
+var utils = _interopRequireWildcard(require("../utils"));
+var callbacks = _interopRequireWildcard(require("../realtime-callbacks"));
+var _method = require("./method");
+Object.keys(_method).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
+  if (key in exports && exports[key] === _method[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _method[key];
+    }
+  });
+});
+var _errors = require("./errors");
+Object.keys(_errors).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
+  if (key in exports && exports[key] === _errors[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _errors[key];
+    }
+  });
+});
+var _utils2 = require("./utils");
+Object.keys(_utils2).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
+  if (key in exports && exports[key] === _utils2[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _utils2[key];
+    }
+  });
+});
+var _interface = require("./interface");
+Object.keys(_interface).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
+  if (key in exports && exports[key] === _interface[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _interface[key];
+    }
+  });
+});
+function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
+function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+class MatrixHttpApi extends _fetch.FetchHttpApi {
+  constructor(...args) {
+    super(...args);
+    _defineProperty(this, "uploads", []);
+  }
+  /**
+   * Upload content to the homeserver
+   *
+   * @param file - The object to upload. On a browser, something that
+   *   can be sent to XMLHttpRequest.send (typically a File).  Under node.js,
+   *   a Buffer, String or ReadStream.
+   *
+   * @param opts - options object
+   *
+   * @returns Promise which resolves to response object, as
+   *    determined by this.opts.onlyData, opts.rawResponse, and
+   *    opts.onlyContentUri.  Rejects with an error (usually a MatrixError).
+   */
+  uploadContent(file, opts = {}) {
+    const includeFilename = opts.includeFilename ?? true;
+    const abortController = opts.abortController ?? new AbortController();
+
+    // If the file doesn't have a mime type, use a default since the HS errors if we don't supply one.
+    const contentType = opts.type ?? file.type ?? "application/octet-stream";
+    const fileName = opts.name ?? file.name;
+    const upload = {
+      loaded: 0,
+      total: 0,
+      abortController
+    };
+    const defer = utils.defer();
+    if (global.XMLHttpRequest) {
+      const xhr = new global.XMLHttpRequest();
+      const timeoutFn = function () {
+        xhr.abort();
+        defer.reject(new Error("Timeout"));
+      };
+
+      // set an initial timeout of 30s; we'll advance it each time we get a progress notification
+      let timeoutTimer = callbacks.setTimeout(timeoutFn, 30000);
+      xhr.onreadystatechange = function () {
+        switch (xhr.readyState) {
+          case global.XMLHttpRequest.DONE:
+            callbacks.clearTimeout(timeoutTimer);
+            try {
+              if (xhr.status === 0) {
+                throw new DOMException(xhr.statusText, "AbortError"); // mimic fetch API
+              }
+
+              if (!xhr.responseText) {
+                throw new Error("No response body.");
+              }
+              if (xhr.status >= 400) {
+                defer.reject((0, _utils2.parseErrorResponse)(xhr, xhr.responseText));
+              } else {
+                defer.resolve(JSON.parse(xhr.responseText));
+              }
+            } catch (err) {
+              if (err.name === "AbortError") {
+                defer.reject(err);
+                return;
+              }
+              defer.reject(new _errors.ConnectionError("request failed", err));
+            }
+            break;
+        }
+      };
+      xhr.upload.onprogress = ev => {
+        callbacks.clearTimeout(timeoutTimer);
+        upload.loaded = ev.loaded;
+        upload.total = ev.total;
+        timeoutTimer = callbacks.setTimeout(timeoutFn, 30000);
+        opts.progressHandler?.({
+          loaded: ev.loaded,
+          total: ev.total
+        });
+      };
+      const url = this.getUrl("/upload", undefined, _prefix.MediaPrefix.R0);
+      if (includeFilename && fileName) {
+        url.searchParams.set("filename", encodeURIComponent(fileName));
+      }
+      if (!this.opts.useAuthorizationHeader && this.opts.accessToken) {
+        url.searchParams.set("access_token", encodeURIComponent(this.opts.accessToken));
+      }
+      xhr.open(_method.Method.Post, url.href);
+      if (this.opts.useAuthorizationHeader && this.opts.accessToken) {
+        xhr.setRequestHeader("Authorization", "Bearer " + this.opts.accessToken);
+      }
+      xhr.setRequestHeader("Content-Type", contentType);
+      xhr.send(file);
+      abortController.signal.addEventListener("abort", () => {
+        xhr.abort();
+      });
+    } else {
+      const queryParams = {};
+      if (includeFilename && fileName) {
+        queryParams.filename = fileName;
+      }
+      const headers = {
+        "Content-Type": contentType
+      };
+      this.authedRequest(_method.Method.Post, "/upload", queryParams, file, {
+        prefix: _prefix.MediaPrefix.R0,
+        headers,
+        abortSignal: abortController.signal
+      }).then(response => {
+        return this.opts.onlyData ? response : response.json();
+      }).then(defer.resolve, defer.reject);
+    }
+
+    // remove the upload from the list on completion
+    upload.promise = defer.promise.finally(() => {
+      utils.removeElement(this.uploads, elem => elem === upload);
+    });
+    abortController.signal.addEventListener("abort", () => {
+      utils.removeElement(this.uploads, elem => elem === upload);
+      defer.reject(new DOMException("Aborted", "AbortError"));
+    });
+    this.uploads.push(upload);
+    return upload.promise;
+  }
+  cancelUpload(promise) {
+    const upload = this.uploads.find(u => u.promise === promise);
+    if (upload) {
+      upload.abortController.abort();
+      return true;
+    }
+    return false;
+  }
+  getCurrentUploads() {
+    return this.uploads;
+  }
+
+  /**
+   * Get the content repository url with query parameters.
+   * @returns An object with a 'base', 'path' and 'params' for base URL,
+   *          path and query parameters respectively.
+   */
+  getContentUri() {
+    return {
+      base: this.opts.baseUrl,
+      path: _prefix.MediaPrefix.R0 + "/upload",
+      params: {
+        access_token: this.opts.accessToken
+      }
+    };
+  }
+}
+exports.MatrixHttpApi = MatrixHttpApi;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/interface.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/interface.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/interface.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/interface.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,27 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.HttpApiEvent = void 0;
+/*
+Copyright 2022 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+let HttpApiEvent;
+exports.HttpApiEvent = HttpApiEvent;
+(function (HttpApiEvent) {
+  HttpApiEvent["SessionLoggedOut"] = "Session.logged_out";
+  HttpApiEvent["NoConsent"] = "no_consent";
+})(HttpApiEvent || (exports.HttpApiEvent = HttpApiEvent = {}));
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/method.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/method.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/method.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/method.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,29 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.Method = void 0;
+/*
+Copyright 2022 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+let Method;
+exports.Method = Method;
+(function (Method) {
+  Method["Get"] = "GET";
+  Method["Put"] = "PUT";
+  Method["Post"] = "POST";
+  Method["Delete"] = "DELETE";
+})(Method || (exports.Method = Method = {}));
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/prefix.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/prefix.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/prefix.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/prefix.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,39 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.MediaPrefix = exports.IdentityPrefix = exports.ClientPrefix = void 0;
+/*
+Copyright 2022 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+let ClientPrefix;
+exports.ClientPrefix = ClientPrefix;
+(function (ClientPrefix) {
+  ClientPrefix["R0"] = "/_matrix/client/r0";
+  ClientPrefix["V1"] = "/_matrix/client/v1";
+  ClientPrefix["V3"] = "/_matrix/client/v3";
+  ClientPrefix["Unstable"] = "/_matrix/client/unstable";
+})(ClientPrefix || (exports.ClientPrefix = ClientPrefix = {}));
+let IdentityPrefix;
+exports.IdentityPrefix = IdentityPrefix;
+(function (IdentityPrefix) {
+  IdentityPrefix["V2"] = "/_matrix/identity/v2";
+})(IdentityPrefix || (exports.IdentityPrefix = IdentityPrefix = {}));
+let MediaPrefix;
+exports.MediaPrefix = MediaPrefix;
+(function (MediaPrefix) {
+  MediaPrefix["R0"] = "/_matrix/media/r0";
+})(MediaPrefix || (exports.MediaPrefix = MediaPrefix = {}));
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/utils.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/utils.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/utils.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/http-api/utils.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,143 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.anySignal = anySignal;
+exports.parseErrorResponse = parseErrorResponse;
+exports.retryNetworkOperation = retryNetworkOperation;
+exports.timeoutSignal = timeoutSignal;
+var _contentType = require("content-type");
+var _logger = require("../logger");
+var _utils = require("../utils");
+var _errors = require("./errors");
+/*
+Copyright 2022 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+// Ponyfill for https://developer.mozilla.org/en-US/docs/Web/API/AbortSignal/timeout
+function timeoutSignal(ms) {
+  const controller = new AbortController();
+  setTimeout(() => {
+    controller.abort();
+  }, ms);
+  return controller.signal;
+}
+function anySignal(signals) {
+  const controller = new AbortController();
+  function cleanup() {
+    for (const signal of signals) {
+      signal.removeEventListener("abort", onAbort);
+    }
+  }
+  function onAbort() {
+    controller.abort();
+    cleanup();
+  }
+  for (const signal of signals) {
+    if (signal.aborted) {
+      onAbort();
+      break;
+    }
+    signal.addEventListener("abort", onAbort);
+  }
+  return {
+    signal: controller.signal,
+    cleanup
+  };
+}
+
+/**
+ * Attempt to turn an HTTP error response into a Javascript Error.
+ *
+ * If it is a JSON response, we will parse it into a MatrixError. Otherwise
+ * we return a generic Error.
+ *
+ * @param response - response object
+ * @param body - raw body of the response
+ * @returns
+ */
+function parseErrorResponse(response, body) {
+  let contentType;
+  try {
+    contentType = getResponseContentType(response);
+  } catch (e) {
+    return e;
+  }
+  if (contentType?.type === "application/json" && body) {
+    return new _errors.MatrixError(JSON.parse(body), response.status, isXhr(response) ? response.responseURL : response.url);
+  }
+  if (contentType?.type === "text/plain") {
+    return new _errors.HTTPError(`Server returned ${response.status} error: ${body}`, response.status);
+  }
+  return new _errors.HTTPError(`Server returned ${response.status} error`, response.status);
+}
+function isXhr(response) {
+  return "getResponseHeader" in response;
+}
+
+/**
+ * extract the Content-Type header from the response object, and
+ * parse it to a `{type, parameters}` object.
+ *
+ * returns null if no content-type header could be found.
+ *
+ * @param response - response object
+ * @returns parsed content-type header, or null if not found
+ */
+function getResponseContentType(response) {
+  let contentType;
+  if (isXhr(response)) {
+    contentType = response.getResponseHeader("Content-Type");
+  } else {
+    contentType = response.headers.get("Content-Type");
+  }
+  if (!contentType) return null;
+  try {
+    return (0, _contentType.parse)(contentType);
+  } catch (e) {
+    throw new Error(`Error parsing Content-Type '${contentType}': ${e}`);
+  }
+}
+
+/**
+ * Retries a network operation run in a callback.
+ * @param maxAttempts - maximum attempts to try
+ * @param callback - callback that returns a promise of the network operation. If rejected with ConnectionError, it will be retried by calling the callback again.
+ * @returns the result of the network operation
+ * @throws {@link ConnectionError} If after maxAttempts the callback still throws ConnectionError
+ */
+async function retryNetworkOperation(maxAttempts, callback) {
+  let attempts = 0;
+  let lastConnectionError = null;
+  while (attempts < maxAttempts) {
+    try {
+      if (attempts > 0) {
+        const timeout = 1000 * Math.pow(2, attempts);
+        _logger.logger.log(`network operation failed ${attempts} times, retrying in ${timeout}ms...`);
+        await (0, _utils.sleep)(timeout);
+      }
+      return await callback();
+    } catch (err) {
+      if (err instanceof _errors.ConnectionError) {
+        attempts += 1;
+        lastConnectionError = err;
+      } else {
+        throw err;
+      }
+    }
+  }
+  throw lastConnectionError;
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/http-api.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/http-api.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/http-api.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/http-api.js	1970-01-01 00:00:00.000000000 +0000
@@ -1,1027 +0,0 @@
-"use strict";
-
-Object.defineProperty(exports, "__esModule", {
-  value: true
-});
-exports.PREFIX_V3 = exports.PREFIX_V1 = exports.PREFIX_UNSTABLE = exports.PREFIX_R0 = exports.PREFIX_MEDIA_R0 = exports.PREFIX_IDENTITY_V2 = exports.PREFIX_IDENTITY_V1 = exports.Method = exports.MatrixHttpApi = exports.MatrixError = exports.HttpApiEvent = exports.ConnectionError = exports.AbortError = void 0;
-exports.retryNetworkOperation = retryNetworkOperation;
-
-var _contentType = require("content-type");
-
-var callbacks = _interopRequireWildcard(require("./realtime-callbacks"));
-
-var utils = _interopRequireWildcard(require("./utils"));
-
-var _logger = require("./logger");
-
-function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
-function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
-function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
-
-function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
-/*
-TODO:
-- CS: complete register function (doing stages)
-- Identity server: linkEmail, authEmail, bindEmail, lookup3pid
-*/
-
-/**
- * A constant representing the URI path for release 0 of the Client-Server HTTP API.
- */
-const PREFIX_R0 = "/_matrix/client/r0";
-/**
- * A constant representing the URI path for the legacy release v1 of the Client-Server HTTP API.
- */
-
-exports.PREFIX_R0 = PREFIX_R0;
-const PREFIX_V1 = "/_matrix/client/v1";
-/**
- * A constant representing the URI path for Client-Server API endpoints versioned at v3.
- */
-
-exports.PREFIX_V1 = PREFIX_V1;
-const PREFIX_V3 = "/_matrix/client/v3";
-/**
- * A constant representing the URI path for as-yet unspecified Client-Server HTTP APIs.
- */
-
-exports.PREFIX_V3 = PREFIX_V3;
-const PREFIX_UNSTABLE = "/_matrix/client/unstable";
-/**
- * URI path for v1 of the the identity API
- * @deprecated Use v2.
- */
-
-exports.PREFIX_UNSTABLE = PREFIX_UNSTABLE;
-const PREFIX_IDENTITY_V1 = "/_matrix/identity/api/v1";
-/**
- * URI path for the v2 identity API
- */
-
-exports.PREFIX_IDENTITY_V1 = PREFIX_IDENTITY_V1;
-const PREFIX_IDENTITY_V2 = "/_matrix/identity/v2";
-/**
- * URI path for the media repo API
- */
-
-exports.PREFIX_IDENTITY_V2 = PREFIX_IDENTITY_V2;
-const PREFIX_MEDIA_R0 = "/_matrix/media/r0";
-exports.PREFIX_MEDIA_R0 = PREFIX_MEDIA_R0;
-let Method;
-exports.Method = Method;
-
-(function (Method) {
-  Method["Get"] = "GET";
-  Method["Put"] = "PUT";
-  Method["Post"] = "POST";
-  Method["Delete"] = "DELETE";
-})(Method || (exports.Method = Method = {}));
-
-let HttpApiEvent;
-exports.HttpApiEvent = HttpApiEvent;
-
-(function (HttpApiEvent) {
-  HttpApiEvent["SessionLoggedOut"] = "Session.logged_out";
-  HttpApiEvent["NoConsent"] = "no_consent";
-})(HttpApiEvent || (exports.HttpApiEvent = HttpApiEvent = {}));
-
-/**
- * Construct a MatrixHttpApi.
- * @constructor
- * @param {EventEmitter} eventEmitter The event emitter to use for emitting events
- * @param {Object} opts The options to use for this HTTP API.
- * @param {string} opts.baseUrl Required. The base client-server URL e.g.
- * 'http://localhost:8008'.
- * @param {Function} opts.request Required. The function to call for HTTP
- * requests. This function must look like function(opts, callback){ ... }.
- * @param {string} opts.prefix Required. The matrix client prefix to use, e.g.
- * '/_matrix/client/r0'. See PREFIX_R0 and PREFIX_UNSTABLE for constants.
- *
- * @param {boolean} opts.onlyData True to return only the 'data' component of the
- * response (e.g. the parsed HTTP body). If false, requests will return an
- * object with the properties <tt>code</tt>, <tt>headers</tt> and <tt>data</tt>.
- *
- * @param {string=} opts.accessToken The access_token to send with requests. Can be
- * null to not send an access token.
- * @param {Object=} opts.extraParams Optional. Extra query parameters to send on
- * requests.
- * @param {Number=} opts.localTimeoutMs The default maximum amount of time to wait
- * before timing out the request. If not specified, there is no timeout.
- * @param {boolean} [opts.useAuthorizationHeader = false] Set to true to use
- * Authorization header instead of query param to send the access token to the server.
- */
-class MatrixHttpApi {
-  constructor(eventEmitter, opts) {
-    this.eventEmitter = eventEmitter;
-    this.opts = opts;
-
-    _defineProperty(this, "uploads", []);
-
-    utils.checkObjectHasKeys(opts, ["baseUrl", "request", "prefix"]);
-    opts.onlyData = !!opts.onlyData;
-    opts.useAuthorizationHeader = !!opts.useAuthorizationHeader;
-  }
-  /**
-   * Sets the base URL for the identity server
-   * @param {string} url The new base url
-   */
-
-
-  setIdBaseUrl(url) {
-    this.opts.idBaseUrl = url;
-  }
-  /**
-   * Get the content repository url with query parameters.
-   * @return {Object} An object with a 'base', 'path' and 'params' for base URL,
-   *          path and query parameters respectively.
-   */
-
-
-  getContentUri() {
-    return {
-      base: this.opts.baseUrl,
-      path: "/_matrix/media/r0/upload",
-      params: {
-        access_token: this.opts.accessToken
-      }
-    };
-  }
-  /**
-   * Upload content to the homeserver
-   *
-   * @param {object} file The object to upload. On a browser, something that
-   *   can be sent to XMLHttpRequest.send (typically a File).  Under node.js,
-   *   a Buffer, String or ReadStream.
-   *
-   * @param {object} opts  options object
-   *
-   * @param {string=} opts.name   Name to give the file on the server. Defaults
-   *   to <tt>file.name</tt>.
-   *
-   * @param {boolean=} opts.includeFilename if false will not send the filename,
-   *   e.g for encrypted file uploads where filename leaks are undesirable.
-   *   Defaults to true.
-   *
-   * @param {string=} opts.type   Content-type for the upload. Defaults to
-   *   <tt>file.type</tt>, or <tt>applicaton/octet-stream</tt>.
-   *
-   * @param {boolean=} opts.rawResponse Return the raw body, rather than
-   *   parsing the JSON. Defaults to false (except on node.js, where it
-   *   defaults to true for backwards compatibility).
-   *
-   * @param {boolean=} opts.onlyContentUri Just return the content URI,
-   *   rather than the whole body. Defaults to false (except on browsers,
-   *   where it defaults to true for backwards compatibility). Ignored if
-   *   opts.rawResponse is true.
-   *
-   * @param {Function=} opts.callback Deprecated. Optional. The callback to
-   *    invoke on success/failure. See the promise return values for more
-   *    information.
-   *
-   * @param {Function=} opts.progressHandler Optional. Called when a chunk of
-   *    data has been uploaded, with an object containing the fields `loaded`
-   *    (number of bytes transferred) and `total` (total size, if known).
-   *
-   * @return {Promise} Resolves to response object, as
-   *    determined by this.opts.onlyData, opts.rawResponse, and
-   *    opts.onlyContentUri.  Rejects with an error (usually a MatrixError).
-   */
-
-
-  uploadContent(file, opts) {
-    if (utils.isFunction(opts)) {
-      // opts used to be callback, backwards compatibility
-      opts = {
-        callback: opts
-      };
-    } else if (!opts) {
-      opts = {};
-    } // default opts.includeFilename to true (ignoring falsey values)
-
-
-    const includeFilename = opts.includeFilename !== false; // if the file doesn't have a mime type, use a default since
-    // the HS errors if we don't supply one.
-
-    const contentType = opts.type || file.type || 'application/octet-stream';
-    const fileName = opts.name || file.name; // We used to recommend setting file.stream to the thing to upload on
-    // Node.js. As of 2019-06-11, this is still in widespread use in various
-    // clients, so we should preserve this for simple objects used in
-    // Node.js. File API objects (via either the File or Blob interfaces) in
-    // the browser now define a `stream` method, which leads to trouble
-    // here, so we also check the type of `stream`.
-
-    let body = file;
-    const bodyStream = body.stream; // this type is wrong but for legacy reasons is good enough
-
-    if (bodyStream && typeof bodyStream !== "function") {
-      _logger.logger.warn("Using `file.stream` as the content to upload. Future " + "versions of the js-sdk will change this to expect `file` to " + "be the content directly.");
-
-      body = bodyStream;
-    } // backwards-compatibility hacks where we used to do different things
-    // between browser and node.
-
-
-    let rawResponse = opts.rawResponse;
-
-    if (rawResponse === undefined) {
-      if (global.XMLHttpRequest) {
-        rawResponse = false;
-      } else {
-        _logger.logger.warn("Returning the raw JSON from uploadContent(). Future " + "versions of the js-sdk will change this default, to " + "return the parsed object. Set opts.rawResponse=false " + "to change this behaviour now.");
-
-        rawResponse = true;
-      }
-    }
-
-    let onlyContentUri = opts.onlyContentUri;
-
-    if (!rawResponse && onlyContentUri === undefined) {
-      if (global.XMLHttpRequest) {
-        _logger.logger.warn("Returning only the content-uri from uploadContent(). " + "Future versions of the js-sdk will change this " + "default, to return the whole response object. Set " + "opts.onlyContentUri=false to change this behaviour now.");
-
-        onlyContentUri = true;
-      } else {
-        onlyContentUri = false;
-      }
-    } // browser-request doesn't support File objects because it deep-copies
-    // the options using JSON.parse(JSON.stringify(options)). Instead of
-    // loading the whole file into memory as a string and letting
-    // browser-request base64 encode and then decode it again, we just
-    // use XMLHttpRequest directly.
-    // (browser-request doesn't support progress either, which is also kind
-    // of important here)
-
-
-    const upload = {
-      loaded: 0,
-      total: 0
-    };
-    let promise; // XMLHttpRequest doesn't parse JSON for us. request normally does, but
-    // we're setting opts.json=false so that it doesn't JSON-encode the
-    // request, which also means it doesn't JSON-decode the response. Either
-    // way, we have to JSON-parse the response ourselves.
-
-    let bodyParser = null;
-
-    if (!rawResponse) {
-      bodyParser = function (rawBody) {
-        let body = JSON.parse(rawBody);
-
-        if (onlyContentUri) {
-          body = body.content_uri;
-
-          if (body === undefined) {
-            throw Error('Bad response');
-          }
-        }
-
-        return body;
-      };
-    }
-
-    if (global.XMLHttpRequest) {
-      const defer = utils.defer();
-      const xhr = new global.XMLHttpRequest();
-      const cb = requestCallback(defer, opts.callback, this.opts.onlyData);
-
-      const timeoutFn = function () {
-        xhr.abort();
-        cb(new Error('Timeout'));
-      }; // set an initial timeout of 30s; we'll advance it each time we get a progress notification
-
-
-      let timeoutTimer = callbacks.setTimeout(timeoutFn, 30000);
-
-      xhr.onreadystatechange = function () {
-        let resp;
-
-        switch (xhr.readyState) {
-          case global.XMLHttpRequest.DONE:
-            callbacks.clearTimeout(timeoutTimer);
-
-            try {
-              if (xhr.status === 0) {
-                throw new AbortError();
-              }
-
-              if (!xhr.responseText) {
-                throw new Error('No response body.');
-              }
-
-              resp = xhr.responseText;
-
-              if (bodyParser) {
-                resp = bodyParser(resp);
-              }
-            } catch (err) {
-              err.httpStatus = xhr.status;
-              cb(err);
-              return;
-            }
-
-            cb(undefined, xhr, resp);
-            break;
-        }
-      };
-
-      xhr.upload.addEventListener("progress", function (ev) {
-        callbacks.clearTimeout(timeoutTimer);
-        upload.loaded = ev.loaded;
-        upload.total = ev.total;
-        timeoutTimer = callbacks.setTimeout(timeoutFn, 30000);
-
-        if (opts.progressHandler) {
-          opts.progressHandler({
-            loaded: ev.loaded,
-            total: ev.total
-          });
-        }
-      });
-      let url = this.opts.baseUrl + "/_matrix/media/r0/upload";
-      const queryArgs = [];
-
-      if (includeFilename && fileName) {
-        queryArgs.push("filename=" + encodeURIComponent(fileName));
-      }
-
-      if (!this.opts.useAuthorizationHeader) {
-        queryArgs.push("access_token=" + encodeURIComponent(this.opts.accessToken));
-      }
-
-      if (queryArgs.length > 0) {
-        url += "?" + queryArgs.join("&");
-      }
-
-      xhr.open("POST", url);
-
-      if (this.opts.useAuthorizationHeader) {
-        xhr.setRequestHeader("Authorization", "Bearer " + this.opts.accessToken);
-      }
-
-      xhr.setRequestHeader("Content-Type", contentType);
-      xhr.send(body);
-      promise = defer.promise; // dirty hack (as per doRequest) to allow the upload to be cancelled.
-
-      promise.abort = xhr.abort.bind(xhr);
-    } else {
-      const queryParams = {};
-
-      if (includeFilename && fileName) {
-        queryParams.filename = fileName;
-      }
-
-      const headers = {
-        "Content-Type": contentType
-      }; // authedRequest uses `request` which is no longer maintained.
-      // `request` has a bug where if the body is zero bytes then you get an error: `Argument error, options.body`.
-      // See https://github.com/request/request/issues/920
-      // if body looks like a byte array and empty then set the Content-Length explicitly as a workaround:
-
-      if (body.length === 0) {
-        headers["Content-Length"] = "0";
-      }
-
-      promise = this.authedRequest(opts.callback, Method.Post, "/upload", queryParams, body, {
-        prefix: "/_matrix/media/r0",
-        headers,
-        json: false,
-        bodyParser
-      });
-    } // remove the upload from the list on completion
-
-
-    upload.promise = promise.finally(() => {
-      for (let i = 0; i < this.uploads.length; ++i) {
-        if (this.uploads[i] === upload) {
-          this.uploads.splice(i, 1);
-          return;
-        }
-      }
-    }); // copy our dirty abort() method to the new promise
-
-    upload.promise.abort = promise.abort;
-    this.uploads.push(upload);
-    return upload.promise;
-  }
-
-  cancelUpload(promise) {
-    if (promise.abort) {
-      promise.abort();
-      return true;
-    }
-
-    return false;
-  }
-
-  getCurrentUploads() {
-    return this.uploads;
-  }
-
-  idServerRequest(callback, method, path, params, prefix, accessToken) {
-    if (!this.opts.idBaseUrl) {
-      throw new Error("No identity server base URL set");
-    }
-
-    const fullUri = this.opts.idBaseUrl + prefix + path;
-
-    if (callback !== undefined && !utils.isFunction(callback)) {
-      throw Error("Expected callback to be a function but got " + typeof callback);
-    }
-
-    const opts = {
-      uri: fullUri,
-      method,
-      withCredentials: false,
-      json: true,
-      // we want a JSON response if we can
-      _matrix_opts: this.opts,
-      headers: {}
-    };
-
-    if (method === Method.Get) {
-      opts.qs = params;
-    } else if (typeof params === "object") {
-      opts.json = params;
-    }
-
-    if (accessToken) {
-      opts.headers['Authorization'] = `Bearer ${accessToken}`;
-    }
-
-    const defer = utils.defer();
-    this.opts.request(opts, requestCallback(defer, callback, this.opts.onlyData));
-    return defer.promise;
-  }
-  /**
-   * Perform an authorised request to the homeserver.
-   * @param {Function} callback Optional. The callback to invoke on
-   * success/failure. See the promise return values for more information.
-   * @param {string} method The HTTP method e.g. "GET".
-   * @param {string} path The HTTP path <b>after</b> the supplied prefix e.g.
-   * "/createRoom".
-   *
-   * @param {Object=} queryParams A dict of query params (these will NOT be
-   * urlencoded). If unspecified, there will be no query params.
-   *
-   * @param {Object} [data] The HTTP JSON body.
-   *
-   * @param {Object|Number=} opts additional options. If a number is specified,
-   * this is treated as `opts.localTimeoutMs`.
-   *
-   * @param {Number=} opts.localTimeoutMs The maximum amount of time to wait before
-   * timing out the request. If not specified, there is no timeout.
-   *
-   * @param {string=} opts.prefix The full prefix to use e.g.
-   * "/_matrix/client/v2_alpha". If not specified, uses this.opts.prefix.
-   *
-   * @param {string=} opts.baseUrl The alternative base url to use.
-   * If not specified, uses this.opts.baseUrl
-   *
-   * @param {Object=} opts.headers map of additional request headers
-   *
-   * @return {Promise} Resolves to <code>{data: {Object},
-   * headers: {Object}, code: {Number}}</code>.
-   * If <code>onlyData</code> is set, this will resolve to the <code>data</code>
-   * object only.
-   * @return {module:http-api.MatrixError} Rejects with an error if a problem
-   * occurred. This includes network problems and Matrix-specific error JSON.
-   */
-
-
-  authedRequest(callback, method, path, queryParams, data, opts // number is legacy
-  ) {
-    if (!queryParams) queryParams = {};
-    let requestOpts = opts || {};
-
-    if (this.opts.useAuthorizationHeader) {
-      if (isFinite(opts)) {
-        // opts used to be localTimeoutMs
-        requestOpts = {
-          localTimeoutMs: opts
-        };
-      }
-
-      if (!requestOpts.headers) {
-        requestOpts.headers = {};
-      }
-
-      if (!requestOpts.headers.Authorization) {
-        requestOpts.headers.Authorization = "Bearer " + this.opts.accessToken;
-      }
-
-      if (queryParams.access_token) {
-        delete queryParams.access_token;
-      }
-    } else if (!queryParams.access_token) {
-      queryParams.access_token = this.opts.accessToken;
-    }
-
-    const requestPromise = this.request(callback, method, path, queryParams, data, requestOpts);
-    requestPromise.catch(err => {
-      if (err.errcode == 'M_UNKNOWN_TOKEN' && !requestOpts?.inhibitLogoutEmit) {
-        this.eventEmitter.emit(HttpApiEvent.SessionLoggedOut, err);
-      } else if (err.errcode == 'M_CONSENT_NOT_GIVEN') {
-        this.eventEmitter.emit(HttpApiEvent.NoConsent, err.message, err.data.consent_uri);
-      }
-    }); // return the original promise, otherwise tests break due to it having to
-    // go around the event loop one more time to process the result of the request
-
-    return requestPromise;
-  }
-  /**
-   * Perform a request to the homeserver without any credentials.
-   * @param {Function} callback Optional. The callback to invoke on
-   * success/failure. See the promise return values for more information.
-   * @param {string} method The HTTP method e.g. "GET".
-   * @param {string} path The HTTP path <b>after</b> the supplied prefix e.g.
-   * "/createRoom".
-   *
-   * @param {Object=} queryParams A dict of query params (these will NOT be
-   * urlencoded). If unspecified, there will be no query params.
-   *
-   * @param {Object} [data] The HTTP JSON body.
-   *
-   * @param {Object=} opts additional options
-   *
-   * @param {Number=} opts.localTimeoutMs The maximum amount of time to wait before
-   * timing out the request. If not specified, there is no timeout.
-   *
-   * @param {string=} opts.prefix The full prefix to use e.g.
-   * "/_matrix/client/v2_alpha". If not specified, uses this.opts.prefix.
-   *
-   * @param {Object=} opts.headers map of additional request headers
-   *
-   * @return {Promise} Resolves to <code>{data: {Object},
-   * headers: {Object}, code: {Number}}</code>.
-   * If <code>onlyData</code> is set, this will resolve to the <code>data</code>
-   * object only.
-   * @return {module:http-api.MatrixError} Rejects with an error if a problem
-   * occurred. This includes network problems and Matrix-specific error JSON.
-   */
-
-
-  request(callback, method, path, queryParams, data, opts) {
-    const prefix = opts?.prefix ?? this.opts.prefix;
-    const baseUrl = opts?.baseUrl ?? this.opts.baseUrl;
-    const fullUri = baseUrl + prefix + path;
-    return this.requestOtherUrl(callback, method, fullUri, queryParams, data, opts);
-  }
-  /**
-   * Perform a request to an arbitrary URL.
-   * @param {Function} callback Optional. The callback to invoke on
-   * success/failure. See the promise return values for more information.
-   * @param {string} method The HTTP method e.g. "GET".
-   * @param {string} uri The HTTP URI
-   *
-   * @param {Object=} queryParams A dict of query params (these will NOT be
-   * urlencoded). If unspecified, there will be no query params.
-   *
-   * @param {Object} [data] The HTTP JSON body.
-   *
-   * @param {Object=} opts additional options
-   *
-   * @param {Number=} opts.localTimeoutMs The maximum amount of time to wait before
-   * timing out the request. If not specified, there is no timeout.
-   *
-   * @param {string=} opts.prefix The full prefix to use e.g.
-   * "/_matrix/client/v2_alpha". If not specified, uses this.opts.prefix.
-   *
-   * @param {Object=} opts.headers map of additional request headers
-   *
-   * @return {Promise} Resolves to <code>{data: {Object},
-   * headers: {Object}, code: {Number}}</code>.
-   * If <code>onlyData</code> is set, this will resolve to the <code>data</code>
-   * object only.
-   * @return {module:http-api.MatrixError} Rejects with an error if a problem
-   * occurred. This includes network problems and Matrix-specific error JSON.
-   */
-
-
-  requestOtherUrl(callback, method, uri, queryParams, data, opts // number is legacy
-  ) {
-    let requestOpts = opts || {};
-
-    if (isFinite(opts)) {
-      // opts used to be localTimeoutMs
-      requestOpts = {
-        localTimeoutMs: opts
-      };
-    }
-
-    return this.doRequest(callback, method, uri, queryParams, data, requestOpts);
-  }
-  /**
-   * Form and return a homeserver request URL based on the given path
-   * params and prefix.
-   * @param {string} path The HTTP path <b>after</b> the supplied prefix e.g.
-   * "/createRoom".
-   * @param {Object} queryParams A dict of query params (these will NOT be
-   * urlencoded).
-   * @param {string} prefix The full prefix to use e.g.
-   * "/_matrix/client/v2_alpha".
-   * @return {string} URL
-   */
-
-
-  getUrl(path, queryParams, prefix) {
-    let queryString = "";
-
-    if (queryParams) {
-      queryString = "?" + utils.encodeParams(queryParams);
-    }
-
-    return this.opts.baseUrl + prefix + path + queryString;
-  }
-  /**
-   * @private
-   *
-   * @param {function} callback
-   * @param {string} method
-   * @param {string} uri
-   * @param {object} queryParams
-   * @param {object|string} data
-   * @param {object=} opts
-   *
-   * @param {boolean} [opts.json =true] Json-encode data before sending, and
-   *   decode response on receipt. (We will still json-decode error
-   *   responses, even if this is false.)
-   *
-   * @param {object=} opts.headers  extra request headers
-   *
-   * @param {number=} opts.localTimeoutMs client-side timeout for the
-   *    request. Default timeout if falsy.
-   *
-   * @param {function=} opts.bodyParser function to parse the body of the
-   *    response before passing it to the promise and callback.
-   *
-   * @return {Promise} a promise which resolves to either the
-   * response object (if this.opts.onlyData is truthy), or the parsed
-   * body. Rejects
-   *
-   * Generic T is the callback/promise resolve type
-   * Generic O should be inferred
-   */
-
-
-  doRequest(callback, method, uri, queryParams, data, opts) {
-    if (callback !== undefined && !utils.isFunction(callback)) {
-      throw Error("Expected callback to be a function but got " + typeof callback);
-    }
-
-    if (this.opts.extraParams) {
-      queryParams = _objectSpread(_objectSpread({}, queryParams || {}), this.opts.extraParams);
-    }
-
-    const headers = Object.assign({}, opts.headers || {});
-    if (!opts) opts = {};
-    const json = opts.json ?? true;
-    let bodyParser = opts.bodyParser; // we handle the json encoding/decoding here, because request and
-    // browser-request make a mess of it. Specifically, they attempt to
-    // json-decode plain-text error responses, which in turn means that the
-    // actual error gets swallowed by a SyntaxError.
-
-    if (json) {
-      if (data) {
-        data = JSON.stringify(data);
-        headers['content-type'] = 'application/json';
-      }
-
-      if (!headers['accept']) {
-        headers['accept'] = 'application/json';
-      }
-
-      if (bodyParser === undefined) {
-        bodyParser = function (rawBody) {
-          return JSON.parse(rawBody);
-        };
-      }
-    }
-
-    const defer = utils.defer();
-    let timeoutId;
-    let timedOut = false;
-    let req;
-    const localTimeoutMs = opts.localTimeoutMs || this.opts.localTimeoutMs;
-
-    const resetTimeout = () => {
-      if (localTimeoutMs) {
-        if (timeoutId) {
-          callbacks.clearTimeout(timeoutId);
-        }
-
-        timeoutId = callbacks.setTimeout(function () {
-          timedOut = true;
-          req?.abort?.();
-          defer.reject(new MatrixError({
-            error: "Locally timed out waiting for a response",
-            errcode: "ORG.MATRIX.JSSDK_TIMEOUT",
-            timeout: localTimeoutMs
-          }));
-        }, localTimeoutMs);
-      }
-    };
-
-    resetTimeout();
-    const reqPromise = defer.promise;
-
-    try {
-      req = this.opts.request({
-        uri: uri,
-        method: method,
-        withCredentials: false,
-        qs: queryParams,
-        qsStringifyOptions: opts.qsStringifyOptions,
-        useQuerystring: true,
-        body: data,
-        json: false,
-        timeout: localTimeoutMs,
-        headers: headers || {},
-        _matrix_opts: this.opts
-      }, (err, response, body) => {
-        if (localTimeoutMs) {
-          callbacks.clearTimeout(timeoutId);
-
-          if (timedOut) {
-            return; // already rejected promise
-          }
-        }
-
-        const handlerFn = requestCallback(defer, callback, this.opts.onlyData, bodyParser);
-        handlerFn(err, response, body);
-      });
-
-      if (req) {
-        // This will only work in a browser, where opts.request is the
-        // `browser-request` import. Currently, `request` does not support progress
-        // updates - see https://github.com/request/request/pull/2346.
-        // `browser-request` returns an XHRHttpRequest which exposes `onprogress`
-        if ('onprogress' in req) {
-          req.onprogress = e => {
-            // Prevent the timeout from rejecting the deferred promise if progress is
-            // seen with the request
-            resetTimeout();
-          };
-        } // FIXME: This is EVIL, but I can't think of a better way to expose
-        // abort() operations on underlying HTTP requests :(
-
-
-        if (req.abort) {
-          reqPromise.abort = req.abort.bind(req);
-        }
-      }
-    } catch (ex) {
-      defer.reject(ex);
-
-      if (callback) {
-        callback(ex);
-      }
-    }
-
-    return reqPromise;
-  }
-
-}
-
-exports.MatrixHttpApi = MatrixHttpApi;
-
-function getStatusCode(response) {
-  return response.status || response.statusCode;
-}
-/*
- * Returns a callback that can be invoked by an HTTP request on completion,
- * that will either resolve or reject the given defer as well as invoke the
- * given userDefinedCallback (if any).
- *
- * HTTP errors are transformed into javascript errors and the deferred is rejected.
- *
- * If bodyParser is given, it is used to transform the body of the successful
- * responses before passing to the defer/callback.
- *
- * If onlyData is true, the defer/callback is invoked with the body of the
- * response, otherwise the result object (with `code` and `data` fields)
- *
- */
-
-
-function requestCallback(defer, userDefinedCallback, onlyData = false, bodyParser) {
-  return function (err, response, body) {
-    if (err) {
-      // the unit tests use matrix-mock-request, which throw the string "aborted" when aborting a request.
-      // See https://github.com/matrix-org/matrix-mock-request/blob/3276d0263a561b5b8326b47bae720578a2c7473a/src/index.js#L48
-      const aborted = err.name === "AbortError" || err === "aborted";
-
-      if (!aborted && !(err instanceof MatrixError)) {
-        // browser-request just throws normal Error objects,
-        // not `TypeError`s like fetch does. So just assume any
-        // error is due to the connection.
-        err = new ConnectionError("request failed", err);
-      }
-    }
-
-    let data = body;
-
-    if (!err) {
-      try {
-        if (getStatusCode(response) >= 400) {
-          err = parseErrorResponse(response, body);
-        } else if (bodyParser) {
-          data = bodyParser(body);
-        }
-      } catch (e) {
-        err = new Error(`Error parsing server response: ${e}`);
-      }
-    }
-
-    if (err) {
-      defer.reject(err);
-      userDefinedCallback?.(err);
-    } else if (onlyData) {
-      defer.resolve(data);
-      userDefinedCallback?.(null, data);
-    } else {
-      const res = {
-        code: getStatusCode(response),
-        // XXX: why do we bother with this? it doesn't work for
-        // XMLHttpRequest, so clearly we don't use it.
-        headers: response.headers,
-        data: data
-      }; // XXX: the variations in caller-expected types here are horrible,
-      // typescript doesn't do conditional types based on runtime values
-
-      defer.resolve(res);
-      userDefinedCallback?.(null, res);
-    }
-  };
-}
-/**
- * Attempt to turn an HTTP error response into a Javascript Error.
- *
- * If it is a JSON response, we will parse it into a MatrixError. Otherwise
- * we return a generic Error.
- *
- * @param {XMLHttpRequest|http.IncomingMessage} response response object
- * @param {String} body raw body of the response
- * @returns {Error}
- */
-
-
-function parseErrorResponse(response, body) {
-  const httpStatus = getStatusCode(response);
-  const contentType = getResponseContentType(response);
-  let err;
-
-  if (contentType) {
-    if (contentType.type === 'application/json') {
-      const jsonBody = typeof body === 'object' ? body : JSON.parse(body);
-      err = new MatrixError(jsonBody);
-    } else if (contentType.type === 'text/plain') {
-      err = new Error(`Server returned ${httpStatus} error: ${body}`);
-    }
-  }
-
-  if (!err) {
-    err = new Error(`Server returned ${httpStatus} error`);
-  }
-
-  err.httpStatus = httpStatus;
-  return err;
-}
-/**
- * extract the Content-Type header from the response object, and
- * parse it to a `{type, parameters}` object.
- *
- * returns null if no content-type header could be found.
- *
- * @param {XMLHttpRequest|http.IncomingMessage} response response object
- * @returns {{type: String, parameters: Object}?} parsed content-type header, or null if not found
- */
-
-
-function getResponseContentType(response) {
-  let contentType;
-
-  if (response.getResponseHeader) {
-    // XMLHttpRequest provides getResponseHeader
-    contentType = response.getResponseHeader("Content-Type");
-  } else if (response.headers) {
-    // request provides http.IncomingMessage which has a message.headers map
-    contentType = response.headers['content-type'] || null;
-  }
-
-  if (!contentType) {
-    return null;
-  }
-
-  try {
-    return (0, _contentType.parse)(contentType);
-  } catch (e) {
-    throw new Error(`Error parsing Content-Type '${contentType}': ${e}`);
-  }
-}
-
-/**
- * Construct a Matrix error. This is a JavaScript Error with additional
- * information specific to the standard Matrix error response.
- * @constructor
- * @param {Object} errorJson The Matrix error JSON returned from the homeserver.
- * @prop {string} errcode The Matrix 'errcode' value, e.g. "M_FORBIDDEN".
- * @prop {string} name Same as MatrixError.errcode but with a default unknown string.
- * @prop {string} message The Matrix 'error' value, e.g. "Missing token."
- * @prop {Object} data The raw Matrix error JSON used to construct this object.
- * @prop {number} httpStatus The numeric HTTP status code given
- */
-class MatrixError extends Error {
-  // set by http-api
-  constructor(errorJson = {}) {
-    super(`MatrixError: ${errorJson.errcode}`);
-
-    _defineProperty(this, "errcode", void 0);
-
-    _defineProperty(this, "data", void 0);
-
-    _defineProperty(this, "httpStatus", void 0);
-
-    this.errcode = errorJson.errcode;
-    this.name = errorJson.errcode || "Unknown error code";
-    this.message = errorJson.error || "Unknown message";
-    this.data = errorJson;
-  }
-
-}
-/**
- * Construct a ConnectionError. This is a JavaScript Error indicating
- * that a request failed because of some error with the connection, either
- * CORS was not correctly configured on the server, the server didn't response,
- * the request timed out, or the internet connection on the client side went down.
- * @constructor
- */
-
-
-exports.MatrixError = MatrixError;
-
-class ConnectionError extends Error {
-  constructor(message, cause = undefined) {
-    super(message + (cause ? `: ${cause.message}` : ""));
-  }
-
-  get name() {
-    return "ConnectionError";
-  }
-
-}
-
-exports.ConnectionError = ConnectionError;
-
-class AbortError extends Error {
-  constructor() {
-    super("Operation aborted");
-  }
-
-  get name() {
-    return "AbortError";
-  }
-
-}
-/**
- * Retries a network operation run in a callback.
- * @param  {number}   maxAttempts maximum attempts to try
- * @param  {Function} callback    callback that returns a promise of the network operation. If rejected with ConnectionError, it will be retried by calling the callback again.
- * @return {any} the result of the network operation
- * @throws {ConnectionError} If after maxAttempts the callback still throws ConnectionError
- */
-
-
-exports.AbortError = AbortError;
-
-async function retryNetworkOperation(maxAttempts, callback) {
-  let attempts = 0;
-  let lastConnectionError = null;
-
-  while (attempts < maxAttempts) {
-    try {
-      if (attempts > 0) {
-        const timeout = 1000 * Math.pow(2, attempts);
-
-        _logger.logger.log(`network operation failed ${attempts} times,` + ` retrying in ${timeout}ms...`);
-
-        await (0, utils.sleep)(timeout);
-      }
-
-      return callback();
-    } catch (err) {
-      if (err instanceof ConnectionError) {
-        attempts += 1;
-        lastConnectionError = err;
-      } else {
-        throw err;
-      }
-    }
-  }
-
-  throw lastConnectionError;
-}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/indexeddb-helpers.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/indexeddb-helpers.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/indexeddb-helpers.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/indexeddb-helpers.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,7 +4,6 @@
   value: true
 });
 exports.exists = exists;
-
 /*
 Copyright 2019 New Vector Ltd
 
@@ -25,27 +24,23 @@
  * Check if an IndexedDB database exists. The only way to do so is to try opening it, so
  * we do that and then delete it did not exist before.
  *
- * @param {Object} indexedDB The `indexedDB` interface
- * @param {string} dbName The database name to test for
- * @returns {boolean} Whether the database exists
+ * @param indexedDB - The `indexedDB` interface
+ * @param dbName - The database name to test for
+ * @returns Whether the database exists
  */
 function exists(indexedDB, dbName) {
   return new Promise((resolve, reject) => {
     let exists = true;
     const req = indexedDB.open(dbName);
-
     req.onupgradeneeded = () => {
       // Since we did not provide an explicit version when opening, this event
       // should only fire if the DB did not exist before at any version.
       exists = false;
     };
-
     req.onblocked = () => reject(req.error);
-
     req.onsuccess = () => {
       const db = req.result;
       db.close();
-
       if (!exists) {
         // The DB did not exist before, but has been created as part of this
         // existence check. Delete it now to restore previous state. Delete can
@@ -54,10 +49,8 @@
         // properly set up the DB.
         indexedDB.deleteDatabase(dbName);
       }
-
       resolve(exists);
     };
-
-    req.onerror = ev => reject(req.error);
+    req.onerror = () => reject(req.error);
   });
 }
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/indexeddb-worker.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/indexeddb-worker.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/indexeddb-worker.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/indexeddb-worker.js	2023-04-11 06:11:52.000000000 +0000
@@ -9,5 +9,4 @@
     return _indexeddbStoreWorker.IndexedDBStoreWorker;
   }
 });
-
 var _indexeddbStoreWorker = require("./store/indexeddb-store-worker");
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/index.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/index.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/index.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/index.js	2023-04-11 06:11:52.000000000 +0000
@@ -5,11 +5,7 @@
 });
 var _exportNames = {};
 exports.default = void 0;
-
-var request = _interopRequireWildcard(require("request"));
-
 var matrixcs = _interopRequireWildcard(require("./matrix"));
-
 Object.keys(matrixcs).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -21,15 +17,8 @@
     }
   });
 });
-
-var utils = _interopRequireWildcard(require("./utils"));
-
-var _logger = require("./logger");
-
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
 /*
 Copyright 2019 The Matrix.org Foundation C.I.C.
 
@@ -45,20 +34,10 @@
 See the License for the specific language governing permissions and
 limitations under the License.
 */
-if (matrixcs.getRequest()) {
-  throw new Error("Multiple matrix-js-sdk entrypoints detected!");
-}
-
-matrixcs.request(request);
 
-try {
-  // eslint-disable-next-line @typescript-eslint/no-var-requires
-  const crypto = require('crypto');
-
-  utils.setCrypto(crypto);
-} catch (err) {
-  _logger.logger.log('nodejs was compiled without crypto support');
+if (global.__js_sdk_entrypoint) {
+  throw new Error("Multiple matrix-js-sdk entrypoints detected!");
 }
-
+global.__js_sdk_entrypoint = true;
 var _default = matrixcs;
 exports.default = _default;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/interactive-auth.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/interactive-auth.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/interactive-auth.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/interactive-auth.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,18 +4,15 @@
   value: true
 });
 exports.InteractiveAuth = exports.AuthType = void 0;
-
 var _logger = require("./logger");
-
 var _utils = require("./utils");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 const EMAIL_STAGE_TYPE = "m.login.email.identity";
 const MSISDN_STAGE_TYPE = "m.login.msisdn";
 let AuthType;
 exports.AuthType = AuthType;
-
 (function (AuthType) {
   AuthType["Password"] = "m.login.password";
   AuthType["Recaptcha"] = "m.login.recaptcha";
@@ -28,19 +25,15 @@
   AuthType["RegistrationToken"] = "m.login.registration_token";
   AuthType["UnstableRegistrationToken"] = "org.matrix.msc3231.login.registration_token";
 })(AuthType || (exports.AuthType = AuthType = {}));
-
 class NoAuthFlowFoundError extends Error {
   // eslint-disable-next-line @typescript-eslint/naming-convention, camelcase
   constructor(m, required_stages, flows) {
     super(m);
     this.required_stages = required_stages;
     this.flows = flows;
-
     _defineProperty(this, "name", "NoAuthFlowFoundError");
   }
-
 }
-
 /**
  * Abstracts the logic used to drive the interactive auth process.
  *
@@ -53,119 +46,39 @@
  * callbacks, and information gathered from the user can be submitted with
  * submitAuthDict.
  *
- * @constructor
- * @alias module:interactive-auth
- *
- * @param {object} opts  options object
- *
- * @param {object} opts.matrixClient A matrix client to use for the auth process
- *
- * @param {object?} opts.authData error response from the last request. If
- *    null, a request will be made with no auth before starting.
- *
- * @param {function(object?): Promise} opts.doRequest
- *     called with the new auth dict to submit the request. Also passes a
- *     second deprecated arg which is a flag set to true if this request
- *     is a background request. The busyChanged callback should be used
- *     instead of the background flag. Should return a promise which resolves
- *     to the successful response or rejects with a MatrixError.
- *
- * @param {function(boolean): Promise} opts.busyChanged
- *     called whenever the interactive auth logic becomes busy submitting
- *     information provided by the user or finishes. After this has been
- *     called with true the UI should indicate that a request is in progress
- *     until it is called again with false.
- *
- * @param {function(string, object?)} opts.stateUpdated
- *     called when the status of the UI auth changes, ie. when the state of
- *     an auth stage changes of when the auth flow moves to a new stage.
- *     The arguments are: the login type (eg m.login.password); and an object
- *     which is either an error or an informational object specific to the
- *     login type. If the 'errcode' key is defined, the object is an error,
- *     and has keys:
- *         errcode: string, the textual error code, eg. M_UNKNOWN
- *         error: string, human readable string describing the error
- *
- *     The login type specific objects are as follows:
- *         m.login.email.identity:
- *          * emailSid: string, the sid of the active email auth session
- *
- * @param {object?} opts.inputs Inputs provided by the user and used by different
- *     stages of the auto process. The inputs provided will affect what flow is chosen.
- *
- * @param {string?} opts.inputs.emailAddress An email address. If supplied, a flow
- *     using email verification will be chosen.
- *
- * @param {string?} opts.inputs.phoneCountry An ISO two letter country code. Gives
- *     the country that opts.phoneNumber should be resolved relative to.
- *
- * @param {string?} opts.inputs.phoneNumber A phone number. If supplied, a flow
- *     using phone number validation will be chosen.
- *
- * @param {string?} opts.sessionId If resuming an existing interactive auth session,
- *     the sessionId of that session.
- *
- * @param {string?} opts.clientSecret If resuming an existing interactive auth session,
- *     the client secret for that session
- *
- * @param {string?} opts.emailSid If returning from having completed m.login.email.identity
- *     auth, the sid for the email verification session.
- *
- * @param {function?} opts.requestEmailToken A function that takes the email address (string),
- *     clientSecret (string), attempt number (int) and sessionId (string) and calls the
- *     relevant requestToken function and returns the promise returned by that function.
- *     If the resulting promise rejects, the rejection will propagate through to the
- *     attemptAuth promise.
- *
+ * @param opts - options object
  */
 class InteractiveAuth {
   // if we are currently trying to submit an auth dict (which includes polling)
   // the promise the will resolve/reject when it completes
+
   constructor(opts) {
     _defineProperty(this, "matrixClient", void 0);
-
     _defineProperty(this, "inputs", void 0);
-
     _defineProperty(this, "clientSecret", void 0);
-
     _defineProperty(this, "requestCallback", void 0);
-
     _defineProperty(this, "busyChangedCallback", void 0);
-
     _defineProperty(this, "stateUpdatedCallback", void 0);
-
     _defineProperty(this, "requestEmailTokenCallback", void 0);
-
     _defineProperty(this, "data", void 0);
-
     _defineProperty(this, "emailSid", void 0);
-
     _defineProperty(this, "requestingEmailToken", false);
-
     _defineProperty(this, "attemptAuthDeferred", null);
-
     _defineProperty(this, "chosenFlow", null);
-
     _defineProperty(this, "currentStage", null);
-
     _defineProperty(this, "emailAttempt", 1);
-
     _defineProperty(this, "submitPromise", null);
-
     _defineProperty(this, "requestEmailToken", async () => {
       if (!this.requestingEmailToken) {
-        _logger.logger.trace("Requesting email token. Attempt: " + this.emailAttempt); // If we've picked a flow with email auth, we send the email
+        _logger.logger.trace("Requesting email token. Attempt: " + this.emailAttempt);
+        // If we've picked a flow with email auth, we send the email
         // now because we want the request to fail as soon as possible
         // if the email address is not valid (ie. already taken or not
         // registered, depending on what the operation is).
-
-
         this.requestingEmailToken = true;
-
         try {
           const requestTokenResult = await this.requestEmailTokenCallback(this.inputs.emailAddress, this.clientSecret, this.emailAttempt++, this.data.session);
           this.emailSid = requestTokenResult.sid;
-
           _logger.logger.trace("Email token request succeeded");
         } finally {
           this.requestingEmailToken = false;
@@ -174,38 +87,37 @@
         _logger.logger.warn("Could not request email token: Already requesting");
       }
     });
-
     this.matrixClient = opts.matrixClient;
     this.data = opts.authData || {};
     this.requestCallback = opts.doRequest;
-    this.busyChangedCallback = opts.busyChanged; // startAuthStage included for backwards compat
-
+    this.busyChangedCallback = opts.busyChanged;
+    // startAuthStage included for backwards compat
     this.stateUpdatedCallback = opts.stateUpdated || opts.startAuthStage;
     this.requestEmailTokenCallback = opts.requestEmailToken;
     this.inputs = opts.inputs || {};
     if (opts.sessionId) this.data.session = opts.sessionId;
     this.clientSecret = opts.clientSecret || this.matrixClient.generateClientSecret();
-    this.emailSid = opts.emailSid ?? null;
+    this.emailSid = opts.emailSid;
   }
+
   /**
    * begin the authentication process.
    *
-   * @return {Promise} which resolves to the response on success,
+   * @returns which resolves to the response on success,
    * or rejects with the error on failure. Rejects with NoAuthFlowFoundError if
    *     no suitable authentication flow can be found
    */
-
-
   attemptAuth() {
     // This promise will be quite long-lived and will resolve when the
     // request is authenticated and completes successfully.
-    this.attemptAuthDeferred = (0, _utils.defer)(); // pluck the promise out now, as doRequest may clear before we return
-
-    const promise = this.attemptAuthDeferred.promise; // if we have no flows, try a request to acquire the flows
+    this.attemptAuthDeferred = (0, _utils.defer)();
+    // pluck the promise out now, as doRequest may clear before we return
+    const promise = this.attemptAuthDeferred.promise;
 
+    // if we have no flows, try a request to acquire the flows
     if (!this.data?.flows) {
-      this.busyChangedCallback?.(true); // use the existing sessionId, if one is present.
-
+      this.busyChangedCallback?.(true);
+      // use the existing sessionId, if one is present.
       const auth = this.data.session ? {
         session: this.data.session
       } : null;
@@ -215,25 +127,22 @@
     } else {
       this.startNextAuthStage();
     }
-
     return promise;
   }
+
   /**
    * Poll to check if the auth session or current stage has been
    * completed out-of-band. If so, the attemptAuth promise will
    * be resolved.
    */
-
-
   async poll() {
-    if (!this.data.session) return; // likewise don't poll if there is no auth session in progress
-
-    if (!this.attemptAuthDeferred) return; // if we currently have a request in flight, there's no point making
+    if (!this.data.session) return;
+    // likewise don't poll if there is no auth session in progress
+    if (!this.attemptAuthDeferred) return;
+    // if we currently have a request in flight, there's no point making
     // another just to check what the status is
-
     if (this.submitPromise) return;
     let authDict = {};
-
     if (this.currentStage == EMAIL_STAGE_TYPE) {
       // The email can be validated out-of-band, but we need to provide the
       // creds so the HS can go & check it.
@@ -242,12 +151,10 @@
           sid: this.emailSid,
           client_secret: this.clientSecret
         };
-
         if (await this.matrixClient.doesServerRequireIdServerParam()) {
           const idServerParsedUrl = new URL(this.matrixClient.getIdentityServerUrl());
           creds.id_server = idServerParsedUrl.host;
         }
-
         authDict = {
           type: EMAIL_STAGE_TYPE,
           // TODO: Remove `threepid_creds` once servers support proper UIA
@@ -258,82 +165,74 @@
         };
       }
     }
-
     this.submitAuthDict(authDict, true);
   }
+
   /**
    * get the auth session ID
    *
-   * @return {string} session id
+   * @returns session id
    */
-
-
   getSessionId() {
     return this.data?.session;
   }
+
   /**
    * get the client secret used for validation sessions
    * with the identity server.
    *
-   * @return {string} client secret
+   * @returns client secret
    */
-
-
   getClientSecret() {
     return this.clientSecret;
   }
+
   /**
    * get the server params for a given stage
    *
-   * @param {string} loginType login type for the stage
-   * @return {object?} any parameters from the server for this stage
+   * @param loginType - login type for the stage
+   * @returns any parameters from the server for this stage
    */
-
-
   getStageParams(loginType) {
     return this.data.params?.[loginType];
   }
-
   getChosenFlow() {
     return this.chosenFlow;
   }
+
   /**
    * submit a new auth dict and fire off the request. This will either
    * make attemptAuth resolve/reject, or cause the startAuthStage callback
    * to be called for a new stage.
    *
-   * @param {object} authData new auth dict to send to the server. Should
+   * @param authData - new auth dict to send to the server. Should
    *    include a `type` property denoting the login type, as well as any
    *    other params for that stage.
-   * @param {boolean} background If true, this request failing will not result
+   * @param background - If true, this request failing will not result
    *    in the attemptAuth promise being rejected. This can be set to true
    *    for requests that just poll to see if auth has been completed elsewhere.
    */
-
-
   async submitAuthDict(authData, background = false) {
     if (!this.attemptAuthDeferred) {
       throw new Error("submitAuthDict() called before attemptAuth()");
     }
-
     if (!background) {
       this.busyChangedCallback?.(true);
-    } // if we're currently trying a request, wait for it to finish
+    }
+
+    // if we're currently trying a request, wait for it to finish
     // as otherwise we can get multiple 200 responses which can mean
     // things like multiple logins for register requests.
     // (but discard any exceptions as we only care when its done,
     // not whether it worked or not)
-
-
     while (this.submitPromise) {
       try {
         await this.submitPromise;
       } catch (e) {}
-    } // use the sessionid from the last request, if one is present.
-
+    }
 
+    // use the sessionid from the last request, if one is present.
     let auth;
-
     if (this.data.session) {
       auth = {
         session: this.data.session
@@ -342,7 +241,6 @@
     } else {
       auth = authData;
     }
-
     try {
       // NB. the 'background' flag is deprecated by the busyChanged
       // callback and is here for backwards compat
@@ -350,48 +248,45 @@
       await this.submitPromise;
     } finally {
       this.submitPromise = null;
-
       if (!background) {
         this.busyChangedCallback?.(false);
       }
     }
   }
+
   /**
    * Gets the sid for the email validation session
    * Specific to m.login.email.identity
    *
-   * @returns {string} The sid of the email auth session
+   * @returns The sid of the email auth session
    */
-
-
   getEmailSid() {
     return this.emailSid;
   }
+
   /**
    * Sets the sid for the email validation session
    * This must be set in order to successfully poll for completion
    * of the email validation.
    * Specific to m.login.email.identity
    *
-   * @param {string} sid The sid for the email validation session
+   * @param sid - The sid for the email validation session
    */
-
-
   setEmailSid(sid) {
     this.emailSid = sid;
   }
+
   /**
    * Requests a new email token and sets the email sid for the validation session
    */
 
-
   /**
    * Fire off a request, and either resolve the promise, or call
    * startAuthStage.
    *
-   * @private
-   * @param {object?} auth new auth dict, including session id
-   * @param {boolean?} background If true, this request is a background poll, so it
+   * @internal
+   * @param auth - new auth dict, including session id
+   * @param background - If true, this request is a background poll, so it
    *    failing will not result in the attemptAuth promise being rejected.
    *    This can be set to true for requests that just poll to see if auth has
    *    been completed elsewhere.
@@ -405,7 +300,6 @@
       // sometimes UI auth errors don't come with flows
       const errorFlows = error.data?.flows ?? null;
       const haveFlows = this.data.flows || Boolean(errorFlows);
-
       if (error.httpStatus !== 401 || !error.data || !haveFlows) {
         // doesn't look like an interactive-auth failure.
         if (!background) {
@@ -417,24 +311,20 @@
           _logger.logger.log("Background poll request failed doing UI auth: ignoring", error);
         }
       }
-
       if (!error.data) {
         error.data = {};
-      } // if the error didn't come with flows, completed flows or session ID,
+      }
+      // if the error didn't come with flows, completed flows or session ID,
       // copy over the ones we have. Synapse sometimes sends responses without
       // any UI auth data (eg. when polling for email validation, if the email
       // has not yet been validated). This appears to be a Synapse bug, which
       // we workaround here.
-
-
       if (!error.data.flows && !error.data.completed && !error.data.session) {
         error.data.flows = this.data.flows;
         error.data.completed = this.data.completed;
         error.data.session = this.data.session;
       }
-
       this.data = error.data;
-
       try {
         this.startNextAuthStage();
       } catch (e) {
@@ -442,10 +332,10 @@
         this.attemptAuthDeferred = null;
         return;
       }
-
-      if (!this.emailSid && this.chosenFlow.stages.includes(AuthType.Email)) {
+      if (!this.emailSid && this.chosenFlow?.stages.includes(AuthType.Email)) {
         try {
-          await this.requestEmailToken(); // NB. promise is not resolved here - at some point, doRequest
+          await this.requestEmailToken();
+          // NB. promise is not resolved here - at some point, doRequest
           // will be called again and if the user has jumped through all
           // the hoops correctly, auth will be complete and the request
           // will succeed.
@@ -464,30 +354,25 @@
       }
     }
   }
+
   /**
    * Pick the next stage and call the callback
    *
-   * @private
-   * @throws {NoAuthFlowFoundError} If no suitable authentication flow can be found
+   * @internal
+   * @throws {@link NoAuthFlowFoundError} If no suitable authentication flow can be found
    */
-
-
   startNextAuthStage() {
     const nextStage = this.chooseStage();
-
     if (!nextStage) {
       throw new Error("No incomplete flows from the server");
     }
-
     this.currentStage = nextStage;
-
     if (nextStage === AuthType.Dummy) {
       this.submitAuthDict({
-        type: 'm.login.dummy'
+        type: "m.login.dummy"
       });
       return;
     }
-
     if (this.data?.errcode || this.data?.error) {
       this.stateUpdatedCallback(nextStage, {
         errcode: this.data?.errcode || "",
@@ -495,33 +380,28 @@
       });
       return;
     }
-
     this.stateUpdatedCallback(nextStage, nextStage === EMAIL_STAGE_TYPE ? {
       emailSid: this.emailSid
     } : {});
   }
+
   /**
    * Pick the next auth stage
    *
-   * @private
-   * @return {string?} login type
-   * @throws {NoAuthFlowFoundError} If no suitable authentication flow can be found
+   * @internal
+   * @returns login type
+   * @throws {@link NoAuthFlowFoundError} If no suitable authentication flow can be found
    */
-
-
   chooseStage() {
     if (this.chosenFlow === null) {
       this.chosenFlow = this.chooseFlow();
     }
-
     _logger.logger.log("Active flow => %s", JSON.stringify(this.chosenFlow));
-
     const nextStage = this.firstUncompletedStage(this.chosenFlow);
-
     _logger.logger.log("Next stage: %s", nextStage);
-
     return nextStage;
   }
+
   /**
    * Pick one of the flows from the returned list
    * If a flow using all of the inputs is found, it will
@@ -533,22 +413,19 @@
    * this could result in the email not being used which would leave
    * the account with no means to reset a password.
    *
-   * @private
-   * @return {object} flow
-   * @throws {NoAuthFlowFoundError} If no suitable authentication flow can be found
+   * @internal
+   * @returns flow
+   * @throws {@link NoAuthFlowFoundError} If no suitable authentication flow can be found
    */
-
-
   chooseFlow() {
-    const flows = this.data.flows || []; // we've been given an email or we've already done an email part
+    const flows = this.data.flows || [];
 
+    // we've been given an email or we've already done an email part
     const haveEmail = Boolean(this.inputs.emailAddress) || Boolean(this.emailSid);
     const haveMsisdn = Boolean(this.inputs.phoneCountry) && Boolean(this.inputs.phoneNumber);
-
     for (const flow of flows) {
       let flowHasEmail = false;
       let flowHasMsisdn = false;
-
       for (const stage of flow.stages) {
         if (stage === EMAIL_STAGE_TYPE) {
           flowHasEmail = true;
@@ -556,40 +433,27 @@
           flowHasMsisdn = true;
         }
       }
-
       if (flowHasEmail == haveEmail && flowHasMsisdn == haveMsisdn) {
         return flow;
       }
     }
-
     const requiredStages = [];
     if (haveEmail) requiredStages.push(EMAIL_STAGE_TYPE);
-    if (haveMsisdn) requiredStages.push(MSISDN_STAGE_TYPE); // Throw an error with a fairly generic description, but with more
+    if (haveMsisdn) requiredStages.push(MSISDN_STAGE_TYPE);
+    // Throw an error with a fairly generic description, but with more
     // information such that the app can give a better one if so desired.
-
     throw new NoAuthFlowFoundError("No appropriate authentication flow found", requiredStages, flows);
   }
+
   /**
    * Get the first uncompleted stage in the given flow
    *
-   * @private
-   * @param {object} flow
-   * @return {string} login type
+   * @internal
+   * @returns login type
    */
-
-
   firstUncompletedStage(flow) {
     const completed = this.data.completed || [];
-
-    for (let i = 0; i < flow.stages.length; ++i) {
-      const stageType = flow.stages[i];
-
-      if (completed.indexOf(stageType) === -1) {
-        return stageType;
-      }
-    }
+    return flow.stages.find(stageType => !completed.includes(stageType));
   }
-
 }
-
 exports.InteractiveAuth = InteractiveAuth;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/logger.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/logger.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/logger.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/logger.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,11 +4,8 @@
   value: true
 });
 exports.logger = void 0;
-
 var _loglevel = _interopRequireDefault(require("loglevel"));
-
 function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; }
-
 /*
 Copyright 2018 André Jaenisch
 Copyright 2019, 2021 The Matrix.org Foundation C.I.C.
@@ -26,21 +23,19 @@
 limitations under the License.
 */
 
-/**
- * @module logger
- */
 // This is to demonstrate, that you can use any namespace you want.
 // Namespaces allow you to turn on/off the logging for specific parts of the
 // application.
 // An idea would be to control this via an environment variable (on Node.js).
 // See https://www.npmjs.com/package/debug to see how this could be implemented
 // Part of #332 is introducing a logging library in the first place.
-const DEFAULT_NAMESPACE = "matrix"; // because rageshakes in react-sdk hijack the console log, also at module load time,
+const DEFAULT_NAMESPACE = "matrix";
+
+// because rageshakes in react-sdk hijack the console log, also at module load time,
 // initializing the logger here races with the initialization of rageshakes.
 // to avoid the issue, we override the methodFactory of loglevel that binds to the
 // console methods at initialization time by a factory that looks up the console methods
 // when logging so we always get the current value of console methods.
-
 _loglevel.default.methodFactory = function (methodName, logLevel, loggerName) {
   return function (...args) {
     /* eslint-disable @typescript-eslint/no-invalid-this */
@@ -48,49 +43,38 @@
       args.unshift(this.prefix);
     }
     /* eslint-enable @typescript-eslint/no-invalid-this */
-
-
     const supportedByConsole = methodName === "error" || methodName === "warn" || methodName === "trace" || methodName === "info";
     /* eslint-disable no-console */
-
     if (supportedByConsole) {
       return console[methodName](...args);
     } else {
       return console.log(...args);
     }
     /* eslint-enable no-console */
-
   };
 };
+
 /**
- * Drop-in replacement for <code>console</code> using {@link https://www.npmjs.com/package/loglevel|loglevel}.
+ * Drop-in replacement for `console` using {@link https://www.npmjs.com/package/loglevel|loglevel}.
  * Can be tailored down to specific use cases if needed.
  */
-
-
 const logger = _loglevel.default.getLogger(DEFAULT_NAMESPACE);
-
 exports.logger = logger;
 logger.setLevel(_loglevel.default.levels.DEBUG, false);
-
 function extendLogger(logger) {
   logger.withPrefix = function (prefix) {
     const existingPrefix = this.prefix || "";
     return getPrefixedLogger(existingPrefix + prefix);
   };
 }
-
 extendLogger(logger);
-
 function getPrefixedLogger(prefix) {
   const prefixLogger = _loglevel.default.getLogger(`${DEFAULT_NAMESPACE}-${prefix}`);
-
   if (prefixLogger.prefix !== prefix) {
     // Only do this setup work the first time through, as loggers are saved by name.
     extendLogger(prefixLogger);
     prefixLogger.prefix = prefix;
     prefixLogger.setLevel(_loglevel.default.levels.DEBUG, false);
   }
-
   return prefixLogger;
 }
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/matrix.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/matrix.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/matrix.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/matrix.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,15 +4,41 @@
   value: true
 });
 var _exportNames = {
-  request: true,
-  getRequest: true,
-  wrapRequest: true,
   setCryptoStoreFactory: true,
   createClient: true,
+  createRoomWidgetClient: true,
   ContentHelpers: true,
-  createNewMatrixCall: true
+  createNewMatrixCall: true,
+  GroupCallEvent: true,
+  GroupCallIntent: true,
+  GroupCallState: true,
+  GroupCallType: true
 };
 exports.ContentHelpers = void 0;
+Object.defineProperty(exports, "GroupCallEvent", {
+  enumerable: true,
+  get: function () {
+    return _groupCall.GroupCallEvent;
+  }
+});
+Object.defineProperty(exports, "GroupCallIntent", {
+  enumerable: true,
+  get: function () {
+    return _groupCall.GroupCallIntent;
+  }
+});
+Object.defineProperty(exports, "GroupCallState", {
+  enumerable: true,
+  get: function () {
+    return _groupCall.GroupCallState;
+  }
+});
+Object.defineProperty(exports, "GroupCallType", {
+  enumerable: true,
+  get: function () {
+    return _groupCall.GroupCallType;
+  }
+});
 exports.createClient = createClient;
 Object.defineProperty(exports, "createNewMatrixCall", {
   enumerable: true,
@@ -20,13 +46,9 @@
     return _call.createNewMatrixCall;
   }
 });
-exports.getRequest = getRequest;
-exports.request = request;
+exports.createRoomWidgetClient = createRoomWidgetClient;
 exports.setCryptoStoreFactory = setCryptoStoreFactory;
-exports.wrapRequest = wrapRequest;
-
 var _memoryCryptoStore = require("./crypto/store/memory-crypto-store");
-
 Object.keys(_memoryCryptoStore).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -38,9 +60,7 @@
     }
   });
 });
-
 var _memory = require("./store/memory");
-
 Object.keys(_memory).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -52,9 +72,7 @@
     }
   });
 });
-
 var _scheduler = require("./scheduler");
-
 Object.keys(_scheduler).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -66,9 +84,7 @@
     }
   });
 });
-
 var _client = require("./client");
-
 Object.keys(_client).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -80,9 +96,19 @@
     }
   });
 });
-
+var _embedded = require("./embedded");
+Object.keys(_embedded).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
+  if (key in exports && exports[key] === _embedded[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _embedded[key];
+    }
+  });
+});
 var _httpApi = require("./http-api");
-
 Object.keys(_httpApi).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -94,9 +120,7 @@
     }
   });
 });
-
 var _autodiscovery = require("./autodiscovery");
-
 Object.keys(_autodiscovery).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -108,9 +132,7 @@
     }
   });
 });
-
 var _syncAccumulator = require("./sync-accumulator");
-
 Object.keys(_syncAccumulator).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -122,9 +144,7 @@
     }
   });
 });
-
 var _errors = require("./errors");
-
 Object.keys(_errors).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -136,9 +156,7 @@
     }
   });
 });
-
 var _beacon = require("./models/beacon");
-
 Object.keys(_beacon).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -150,9 +168,7 @@
     }
   });
 });
-
 var _event = require("./models/event");
-
 Object.keys(_event).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -164,9 +180,7 @@
     }
   });
 });
-
 var _room = require("./models/room");
-
 Object.keys(_room).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -178,9 +192,7 @@
     }
   });
 });
-
 var _eventTimeline = require("./models/event-timeline");
-
 Object.keys(_eventTimeline).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -192,9 +204,7 @@
     }
   });
 });
-
 var _eventTimelineSet = require("./models/event-timeline-set");
-
 Object.keys(_eventTimelineSet).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -206,9 +216,19 @@
     }
   });
 });
-
+var _poll = require("./models/poll");
+Object.keys(_poll).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
+  if (key in exports && exports[key] === _poll[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _poll[key];
+    }
+  });
+});
 var _roomMember = require("./models/room-member");
-
 Object.keys(_roomMember).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -220,9 +240,7 @@
     }
   });
 });
-
 var _roomState = require("./models/room-state");
-
 Object.keys(_roomState).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -234,9 +252,7 @@
     }
   });
 });
-
 var _user = require("./models/user");
-
 Object.keys(_user).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -248,9 +264,7 @@
     }
   });
 });
-
 var _filter = require("./filter");
-
 Object.keys(_filter).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -262,9 +276,7 @@
     }
   });
 });
-
 var _timelineWindow = require("./timeline-window");
-
 Object.keys(_timelineWindow).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -276,9 +288,7 @@
     }
   });
 });
-
 var _interactiveAuth = require("./interactive-auth");
-
 Object.keys(_interactiveAuth).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -290,9 +300,7 @@
     }
   });
 });
-
 var _serviceTypes = require("./service-types");
-
 Object.keys(_serviceTypes).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -304,9 +312,7 @@
     }
   });
 });
-
 var _indexeddb = require("./store/indexeddb");
-
 Object.keys(_indexeddb).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -318,9 +324,7 @@
     }
   });
 });
-
 var _indexeddbCryptoStore = require("./crypto/store/indexeddb-crypto-store");
-
 Object.keys(_indexeddbCryptoStore).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -332,9 +336,7 @@
     }
   });
 });
-
 var _contentRepo = require("./content-repo");
-
 Object.keys(_contentRepo).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -346,9 +348,7 @@
     }
   });
 });
-
 var _event2 = require("./@types/event");
-
 Object.keys(_event2).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -360,9 +360,7 @@
     }
   });
 });
-
 var _PushRules = require("./@types/PushRules");
-
 Object.keys(_PushRules).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -374,9 +372,7 @@
     }
   });
 });
-
 var _partials = require("./@types/partials");
-
 Object.keys(_partials).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -388,9 +384,7 @@
     }
   });
 });
-
 var _requests = require("./@types/requests");
-
 Object.keys(_requests).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -402,9 +396,7 @@
     }
   });
 });
-
 var _search = require("./@types/search");
-
 Object.keys(_search).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -416,9 +408,7 @@
     }
   });
 });
-
 var _roomSummary = require("./models/room-summary");
-
 Object.keys(_roomSummary).forEach(function (key) {
   if (key === "default" || key === "__esModule") return;
   if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
@@ -430,19 +420,14 @@
     }
   });
 });
-
 var _ContentHelpers = _interopRequireWildcard(require("./content-helpers"));
-
 exports.ContentHelpers = _ContentHelpers;
-
 var _call = require("./webrtc/call");
-
+var _groupCall = require("./webrtc/groupCall");
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
 /*
-Copyright 2015-2021 The Matrix.org Foundation C.I.C.
+Copyright 2015-2022 The Matrix.org Foundation C.I.C.
 
 Licensed under the Apache License, Version 2.0 (the "License");
 you may not use this file except in compliance with the License.
@@ -456,130 +441,41 @@
 See the License for the specific language governing permissions and
 limitations under the License.
 */
-// expose the underlying request object so different environments can use
-// different request libs (e.g. request or browser-request)
-let requestInstance;
-/**
- * The function used to perform HTTP requests. Only use this if you want to
- * use a different HTTP library, e.g. Angular's <code>$http</code>. This should
- * be set prior to calling {@link createClient}.
- * @param {requestFunction} r The request function to use.
- */
-
-function request(r) {
-  requestInstance = r;
-}
-/**
- * Return the currently-set request function.
- * @return {requestFunction} The current request function.
- */
-
-
-function getRequest() {
-  return requestInstance;
-}
-/**
- * Apply wrapping code around the request function. The wrapper function is
- * installed as the new request handler, and when invoked it is passed the
- * previous value, along with the options and callback arguments.
- * @param {requestWrapperFunction} wrapper The wrapping function.
- */
-
 
-function wrapRequest(wrapper) {
-  const origRequest = requestInstance;
-
-  requestInstance = function (options, callback) {
-    return wrapper(origRequest, options, callback);
-  };
-}
+// used to be located here
 
 let cryptoStoreFactory = () => new _memoryCryptoStore.MemoryCryptoStore();
+
 /**
  * Configure a different factory to be used for creating crypto stores
  *
- * @param {Function} fac  a function which will return a new
- *    {@link module:crypto.store.base~CryptoStore}.
+ * @param fac - a function which will return a new {@link CryptoStore}
  */
-
-
 function setCryptoStoreFactory(fac) {
   cryptoStoreFactory = fac;
 }
+function amendClientOpts(opts) {
+  opts.store = opts.store ?? new _memory.MemoryStore({
+    localStorage: global.localStorage
+  });
+  opts.scheduler = opts.scheduler ?? new _scheduler.MatrixScheduler();
+  opts.cryptoStore = opts.cryptoStore ?? cryptoStoreFactory();
+  return opts;
+}
 
 /**
- * Construct a Matrix Client. Similar to {@link module:client.MatrixClient}
+ * Construct a Matrix Client. Similar to {@link MatrixClient}
  * except that the 'request', 'store' and 'scheduler' dependencies are satisfied.
- * @param {(Object|string)} opts The configuration options for this client. If
- * this is a string, it is assumed to be the base URL. These configuration
- * options will be passed directly to {@link module:client.MatrixClient}.
- * @param {Object} opts.store If not set, defaults to
- * {@link module:store/memory.MemoryStore}.
- * @param {Object} opts.scheduler If not set, defaults to
- * {@link module:scheduler~MatrixScheduler}.
- * @param {requestFunction} opts.request If not set, defaults to the function
- * supplied to {@link request} which defaults to the request module from NPM.
+ * @param opts - The configuration options for this client. These configuration
+ * options will be passed directly to {@link MatrixClient}.
  *
- * @param {module:crypto.store.base~CryptoStore=} opts.cryptoStore
- *    crypto store implementation. Calls the factory supplied to
- *    {@link setCryptoStoreFactory} if unspecified; or if no factory has been
- *    specified, uses a default implementation (indexeddb in the browser,
- *    in-memory otherwise).
- *
- * @return {MatrixClient} A new matrix client.
- * @see {@link module:client.MatrixClient} for the full list of options for
- * <code>opts</code>.
+ * @returns A new matrix client.
+ * @see {@link MatrixClient} for the full list of options for
+ * `opts`.
  */
 function createClient(opts) {
-  if (typeof opts === "string") {
-    opts = {
-      "baseUrl": opts
-    };
-  }
-
-  opts.request = opts.request || requestInstance;
-  opts.store = opts.store || new _memory.MemoryStore({
-    localStorage: global.localStorage
-  });
-  opts.scheduler = opts.scheduler || new _scheduler.MatrixScheduler();
-  opts.cryptoStore = opts.cryptoStore || cryptoStoreFactory();
-  return new _client.MatrixClient(opts);
+  return new _client.MatrixClient(amendClientOpts(opts));
 }
-/**
- * The request function interface for performing HTTP requests. This matches the
- * API for the {@link https://github.com/request/request#requestoptions-callback|
- * request NPM module}. The SDK will attempt to call this function in order to
- * perform an HTTP request.
- * @callback requestFunction
- * @param {Object} opts The options for this HTTP request.
- * @param {string} opts.uri The complete URI.
- * @param {string} opts.method The HTTP method.
- * @param {Object} opts.qs The query parameters to append to the URI.
- * @param {Object} opts.body The JSON-serializable object.
- * @param {boolean} opts.json True if this is a JSON request.
- * @param {Object} opts._matrix_opts The underlying options set for
- * {@link MatrixHttpApi}.
- * @param {requestCallback} callback The request callback.
- */
-
-/**
- * A wrapper for the request function interface.
- * @callback requestWrapperFunction
- * @param {requestFunction} origRequest The underlying request function being
- * wrapped
- * @param {Object} opts The options for this HTTP request, given in the same
- * form as {@link requestFunction}.
- * @param {requestCallback} callback The request callback.
- */
-
-/**
-  * The request callback interface for performing HTTP requests. This matches the
-  * API for the {@link https://github.com/request/request#requestoptions-callback|
-  * request NPM module}. The SDK will implement a callback which meets this
-  * interface in order to handle the HTTP response.
-  * @callback requestCallback
-  * @param {Error} err The error if one occurred, else falsey.
-  * @param {Object} response The HTTP response which consists of
-  * <code>{statusCode: {Number}, headers: {Object}}</code>
-  * @param {Object} body The parsed HTTP response body.
-  */
\ No newline at end of file
+function createRoomWidgetClient(widgetApi, capabilities, roomId, opts) {
+  return new _embedded.RoomWidgetClient(widgetApi, capabilities, roomId, amendClientOpts(opts));
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/beacon.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/beacon.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/beacon.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/beacon.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,18 +4,14 @@
   value: true
 });
 exports.isTimestampInDuration = exports.getBeaconInfoIdentifier = exports.BeaconEvent = exports.Beacon = void 0;
-
 var _contentHelpers = require("../content-helpers");
-
 var _utils = require("../utils");
-
 var _typedEventEmitter = require("./typed-event-emitter");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 let BeaconEvent;
 exports.BeaconEvent = BeaconEvent;
-
 (function (BeaconEvent) {
   BeaconEvent["New"] = "Beacon.new";
   BeaconEvent["Update"] = "Beacon.update";
@@ -23,181 +19,147 @@
   BeaconEvent["Destroy"] = "Beacon.Destroy";
   BeaconEvent["LocationUpdate"] = "Beacon.LocationUpdate";
 })(BeaconEvent || (exports.BeaconEvent = BeaconEvent = {}));
+const isTimestampInDuration = (startTimestamp, durationMs, timestamp) => timestamp >= startTimestamp && startTimestamp + durationMs >= timestamp;
 
-const isTimestampInDuration = (startTimestamp, durationMs, timestamp) => timestamp >= startTimestamp && startTimestamp + durationMs >= timestamp; // beacon info events are uniquely identified by
+// beacon info events are uniquely identified by
 // `<roomId>_<state_key>`
-
-
 exports.isTimestampInDuration = isTimestampInDuration;
+const getBeaconInfoIdentifier = event => `${event.getRoomId()}_${event.getStateKey()}`;
 
-const getBeaconInfoIdentifier = event => `${event.getRoomId()}_${event.getStateKey()}`; // https://github.com/matrix-org/matrix-spec-proposals/pull/3672
-
-
+// https://github.com/matrix-org/matrix-spec-proposals/pull/3672
 exports.getBeaconInfoIdentifier = getBeaconInfoIdentifier;
-
 class Beacon extends _typedEventEmitter.TypedEventEmitter {
   constructor(rootEvent) {
     super();
     this.rootEvent = rootEvent;
-
     _defineProperty(this, "roomId", void 0);
-
     _defineProperty(this, "_beaconInfo", void 0);
-
     _defineProperty(this, "_isLive", void 0);
-
     _defineProperty(this, "livenessWatchTimeout", void 0);
-
     _defineProperty(this, "_latestLocationEvent", void 0);
-
     _defineProperty(this, "clearLatestLocation", () => {
       this._latestLocationEvent = undefined;
       this.emit(BeaconEvent.LocationUpdate, this.latestLocationState);
     });
-
     this.setBeaconInfo(this.rootEvent);
     this.roomId = this.rootEvent.getRoomId();
   }
-
   get isLive() {
-    return this._isLive;
+    return !!this._isLive;
   }
-
   get identifier() {
     return getBeaconInfoIdentifier(this.rootEvent);
   }
-
   get beaconInfoId() {
     return this.rootEvent.getId();
   }
-
   get beaconInfoOwner() {
     return this.rootEvent.getStateKey();
   }
-
   get beaconInfoEventType() {
     return this.rootEvent.getType();
   }
-
   get beaconInfo() {
     return this._beaconInfo;
   }
-
   get latestLocationState() {
     return this._latestLocationEvent && (0, _contentHelpers.parseBeaconContent)(this._latestLocationEvent.getContent());
   }
-
   get latestLocationEvent() {
     return this._latestLocationEvent;
   }
-
   update(beaconInfoEvent) {
     if (getBeaconInfoIdentifier(beaconInfoEvent) !== this.identifier) {
-      throw new Error('Invalid updating event');
-    } // don't update beacon with an older event
-
-
-    if (beaconInfoEvent.event.origin_server_ts < this.rootEvent.event.origin_server_ts) {
+      throw new Error("Invalid updating event");
+    }
+    // don't update beacon with an older event
+    if (beaconInfoEvent.getTs() < this.rootEvent.getTs()) {
       return;
     }
-
     this.rootEvent = beaconInfoEvent;
     this.setBeaconInfo(this.rootEvent);
     this.emit(BeaconEvent.Update, beaconInfoEvent, this);
     this.clearLatestLocation();
   }
-
   destroy() {
     if (this.livenessWatchTimeout) {
       clearTimeout(this.livenessWatchTimeout);
     }
-
     this._isLive = false;
     this.emit(BeaconEvent.Destroy, this.identifier);
   }
+
   /**
    * Monitor liveness of a beacon
    * Emits BeaconEvent.LivenessChange when beacon expires
    */
-
-
   monitorLiveness() {
     if (this.livenessWatchTimeout) {
       clearTimeout(this.livenessWatchTimeout);
     }
-
     this.checkLiveness();
-
+    if (!this.beaconInfo) return;
     if (this.isLive) {
-      const expiryInMs = this._beaconInfo?.timestamp + this._beaconInfo?.timeout - Date.now();
-
+      const expiryInMs = this.beaconInfo.timestamp + this.beaconInfo.timeout - Date.now();
       if (expiryInMs > 1) {
         this.livenessWatchTimeout = setTimeout(() => {
           this.monitorLiveness();
         }, expiryInMs);
       }
-    } else if (this._beaconInfo?.timestamp > Date.now()) {
+    } else if (this.beaconInfo.timestamp > Date.now()) {
       // beacon start timestamp is in the future
       // check liveness again then
       this.livenessWatchTimeout = setTimeout(() => {
         this.monitorLiveness();
-      }, this.beaconInfo?.timestamp - Date.now());
+      }, this.beaconInfo.timestamp - Date.now());
     }
   }
+
   /**
    * Process Beacon locations
    * Emits BeaconEvent.LocationUpdate
    */
-
-
   addLocations(beaconLocationEvents) {
     // discard locations for beacons that are not live
     if (!this.isLive) {
       return;
     }
-
     const validLocationEvents = beaconLocationEvents.filter(event => {
       const content = event.getContent();
       const parsed = (0, _contentHelpers.parseBeaconContent)(content);
       if (!parsed.uri || !parsed.timestamp) return false; // we won't be able to process these
-
       const {
         timestamp
       } = parsed;
-      return (// only include positions that were taken inside the beacon's live period
-        isTimestampInDuration(this._beaconInfo.timestamp, this._beaconInfo.timeout, timestamp) && ( // ignore positions older than our current latest location
-        !this.latestLocationState || timestamp > this.latestLocationState.timestamp)
-      );
+      return this._beaconInfo.timestamp &&
+      // only include positions that were taken inside the beacon's live period
+      isTimestampInDuration(this._beaconInfo.timestamp, this._beaconInfo.timeout, timestamp) && (
+      // ignore positions older than our current latest location
+      !this.latestLocationState || timestamp > this.latestLocationState.timestamp);
     });
     const latestLocationEvent = validLocationEvents.sort(_utils.sortEventsByLatestContentTimestamp)?.[0];
-
     if (latestLocationEvent) {
       this._latestLocationEvent = latestLocationEvent;
       this.emit(BeaconEvent.LocationUpdate, this.latestLocationState);
     }
   }
-
   setBeaconInfo(event) {
     this._beaconInfo = (0, _contentHelpers.parseBeaconInfoContent)(event.getContent());
     this.checkLiveness();
   }
-
   checkLiveness() {
-    const prevLiveness = this.isLive; // element web sets a beacon's start timestamp to the senders local current time
+    const prevLiveness = this.isLive;
+
+    // element web sets a beacon's start timestamp to the senders local current time
     // when Alice's system clock deviates slightly from Bob's a beacon Alice intended to be live
     // may have a start timestamp in the future from Bob's POV
     // handle this by adding 6min of leniency to the start timestamp when it is in the future
-
-    const startTimestamp = this._beaconInfo?.timestamp > Date.now() ? this._beaconInfo?.timestamp - 360000
-    /* 6min */
-    : this._beaconInfo?.timestamp;
-    this._isLive = !!this._beaconInfo?.live && isTimestampInDuration(startTimestamp, this._beaconInfo?.timeout, Date.now());
-
+    if (!this.beaconInfo) return;
+    const startTimestamp = this.beaconInfo.timestamp > Date.now() ? this.beaconInfo.timestamp - 360000 /* 6min */ : this.beaconInfo.timestamp;
+    this._isLive = !!this._beaconInfo?.live && !!startTimestamp && isTimestampInDuration(startTimestamp, this._beaconInfo?.timeout, Date.now());
     if (prevLiveness !== this.isLive) {
       this.emit(BeaconEvent.LivenessChange, this.isLive, this);
     }
   }
-
 }
-
 exports.Beacon = Beacon;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/event-context.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/event-context.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/event-context.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/event-context.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,14 +4,10 @@
   value: true
 });
 exports.EventContext = void 0;
-
 var _eventTimeline = require("./event-timeline");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
-/**
- * @module models/event-context
- */
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 class EventContext {
   /**
    * Construct a new EventContext
@@ -23,93 +19,78 @@
    * It also stores pagination tokens for going backwards and forwards in the
    * timeline.
    *
-   * @param {MatrixEvent} ourEvent  the event at the centre of this context
-   *
-   * @constructor
+   * @param ourEvent - the event at the centre of this context
    */
   constructor(ourEvent) {
     this.ourEvent = ourEvent;
-
     _defineProperty(this, "timeline", void 0);
-
     _defineProperty(this, "ourEventIndex", 0);
-
     _defineProperty(this, "paginateTokens", {
       [_eventTimeline.Direction.Backward]: null,
       [_eventTimeline.Direction.Forward]: null
     });
-
     this.timeline = [ourEvent];
   }
+
   /**
    * Get the main event of interest
    *
    * This is a convenience function for getTimeline()[getOurEventIndex()].
    *
-   * @return {MatrixEvent} The event at the centre of this context.
+   * @returns The event at the centre of this context.
    */
-
-
   getEvent() {
     return this.timeline[this.ourEventIndex];
   }
+
   /**
    * Get the list of events in this context
    *
-   * @return {Array} An array of MatrixEvents
+   * @returns An array of MatrixEvents
    */
-
-
   getTimeline() {
     return this.timeline;
   }
+
   /**
    * Get the index in the timeline of our event
-   *
-   * @return {Number}
    */
-
-
   getOurEventIndex() {
     return this.ourEventIndex;
   }
+
   /**
    * Get a pagination token.
    *
-   * @param {boolean} backwards   true to get the pagination token for going
-   *                                  backwards in time
-   * @return {string}
+   * @param backwards -   true to get the pagination token for going
    */
-
-
   getPaginateToken(backwards = false) {
     return this.paginateTokens[backwards ? _eventTimeline.Direction.Backward : _eventTimeline.Direction.Forward];
   }
+
   /**
    * Set a pagination token.
    *
    * Generally this will be used only by the matrix js sdk.
    *
-   * @param {string} token        pagination token
-   * @param {boolean} backwards   true to set the pagination token for going
+   * @param token -        pagination token
+   * @param backwards -   true to set the pagination token for going
    *                                   backwards in time
    */
-
-
   setPaginateToken(token, backwards = false) {
-    this.paginateTokens[backwards ? _eventTimeline.Direction.Backward : _eventTimeline.Direction.Forward] = token;
+    this.paginateTokens[backwards ? _eventTimeline.Direction.Backward : _eventTimeline.Direction.Forward] = token ?? null;
   }
+
   /**
    * Add more events to the timeline
    *
-   * @param {Array} events      new events, in timeline order
-   * @param {boolean} atStart   true to insert new events at the start
+   * @param events -      new events, in timeline order
+   * @param atStart -   true to insert new events at the start
    */
-
-
   addEvents(events, atStart = false) {
     // TODO: should we share logic with Room.addEventsToTimeline?
     // Should Room even use EventContext?
+
     if (atStart) {
       this.timeline = events.concat(this.timeline);
       this.ourEventIndex += events.length;
@@ -117,7 +98,5 @@
       this.timeline = this.timeline.concat(events);
     }
   }
-
 }
-
 exports.EventContext = EventContext;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/event.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/event.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/event.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/event.js	2023-04-11 06:11:52.000000000 +0000
@@ -10,32 +10,25 @@
   }
 });
 exports.MatrixEventEvent = exports.MatrixEvent = void 0;
-
 var _matrixEventsSdk = require("matrix-events-sdk");
-
 var _logger = require("../logger");
-
 var _event = require("../@types/event");
-
 var _utils = require("../utils");
-
 var _thread = require("./thread");
-
 var _ReEmitter = require("../ReEmitter");
-
 var _typedEventEmitter = require("./typed-event-emitter");
-
+var _algorithms = require("../crypto/algorithms");
+var _OlmDevice = require("../crypto/OlmDevice");
 var _eventStatus = require("./event-status");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 // A singleton implementing `IMessageVisibilityVisible`.
 const MESSAGE_VISIBLE = Object.freeze({
   visible: true
 });
 let MatrixEventEvent;
 exports.MatrixEventEvent = MatrixEventEvent;
-
 (function (MatrixEventEvent) {
   MatrixEventEvent["Decrypted"] = "Event.decrypted";
   MatrixEventEvent["BeforeRedaction"] = "Event.beforeRedaction";
@@ -45,11 +38,11 @@
   MatrixEventEvent["Replaced"] = "Event.replaced";
   MatrixEventEvent["RelationsCreated"] = "Event.relationsCreated";
 })(MatrixEventEvent || (exports.MatrixEventEvent = MatrixEventEvent = {}));
-
 class MatrixEvent extends _typedEventEmitter.TypedEventEmitter {
   /* Message hiding, as specified by https://github.com/matrix-org/matrix-doc/pull/3531.
    Note: We're returning this object, so any value stored here MUST be frozen.
   */
+
   // Not all events will be extensible-event compatible, so cache a flag in
   // addition to a falsy cached event value. We check the flag later on in
   // a public getter to decide if the cache is valid.
@@ -84,18 +77,57 @@
    */
 
   /**
-   * @experimental
    * A reference to the thread this event belongs to
    */
 
+  /*
+   * True if this event is an encrypted event which we failed to decrypt, the receiver's device is unverified and
+   * the sender has disabled encrypting to unverified devices.
+   */
+
   /* Set an approximate timestamp for the event relative the local clock.
    * This will inherently be approximate because it doesn't take into account
    * the time between the server putting the 'age' field on the event as it sent
    * it to us and the time we're now constructing this event, but that's better
    * than assuming the local clock is in sync with the origin HS's clock.
    */
-  // XXX: these should be read-only
-  // only state events may be backwards looking
+
+  /**
+   * The room member who sent this event, or null e.g.
+   * this is a presence event. This is only guaranteed to be set for events that
+   * appear in a timeline, ie. do not guarantee that it will be set on state
+   * events.
+   * @privateRemarks
+   * Should be read-only
+   */
+
+  /**
+   * The room member who is the target of this event, e.g.
+   * the invitee, the person being banned, etc.
+   * @privateRemarks
+   * Should be read-only
+   */
+
+  /**
+   * The sending status of the event.
+   * @privateRemarks
+   * Should be read-only
+   */
+
+  /**
+   * most recent error associated with sending the event, if any
+   * @privateRemarks
+   * Should be read-only
+   */
+
+  /**
+   * True if this event is 'forward looking', meaning
+   * that getDirectionalContent() will return event.content and not event.prev_content.
+   * Only state events may be backwards looking
+   * Default: true. <strong>This property is experimental and may change.</strong>
+   * @privateRemarks
+   * Should be read-only
+   */
 
   /* If the event is a `m.key.verification.request` (or to_device `m.key.verification.start`) event,
    * `Crypto` will set this the `VerificationRequest` for the event
@@ -104,87 +136,48 @@
 
   /**
    * Construct a Matrix Event object
-   * @constructor
-   *
-   * @param {Object} event The raw event to be wrapped in this DAO
    *
-   * @prop {Object} event The raw (possibly encrypted) event. <b>Do not access
+   * @param event - The raw (possibly encrypted) event. <b>Do not access
    * this property</b> directly unless you absolutely have to. Prefer the getter
    * methods defined on this class. Using the getter methods shields your app
    * from changes to event JSON between Matrix versions.
-   *
-   * @prop {RoomMember} sender The room member who sent this event, or null e.g.
-   * this is a presence event. This is only guaranteed to be set for events that
-   * appear in a timeline, ie. do not guarantee that it will be set on state
-   * events.
-   * @prop {RoomMember} target The room member who is the target of this event, e.g.
-   * the invitee, the person being banned, etc.
-   * @prop {EventStatus} status The sending status of the event.
-   * @prop {Error} error most recent error associated with sending the event, if any
-   * @prop {boolean} forwardLooking True if this event is 'forward looking', meaning
-   * that getDirectionalContent() will return event.content and not event.prev_content.
-   * Default: true. <strong>This property is experimental and may change.</strong>
    */
   constructor(event = {}) {
-    super(); // intern the values of matrix events to force share strings and reduce the
+    super();
+
+    // intern the values of matrix events to force share strings and reduce the
     // amount of needless string duplication. This can save moderate amounts of
     // memory (~10% on a 350MB heap).
     // 'membership' at the event level (rather than the content level) is a legacy
     // field that Element never otherwise looks at, but it will still take up a lot
     // of space if we don't intern it.
-
     this.event = event;
-
     _defineProperty(this, "pushActions", null);
-
     _defineProperty(this, "_replacingEvent", null);
-
     _defineProperty(this, "_localRedactionEvent", null);
-
     _defineProperty(this, "_isCancelled", false);
-
     _defineProperty(this, "clearEvent", void 0);
-
     _defineProperty(this, "visibility", MESSAGE_VISIBLE);
-
     _defineProperty(this, "_hasCachedExtEv", false);
-
     _defineProperty(this, "_cachedExtEv", undefined);
-
     _defineProperty(this, "senderCurve25519Key", null);
-
     _defineProperty(this, "claimedEd25519Key", null);
-
     _defineProperty(this, "forwardingCurve25519KeyChain", []);
-
     _defineProperty(this, "untrusted", null);
-
-    _defineProperty(this, "_decryptionPromise", null);
-
+    _defineProperty(this, "decryptionPromise", null);
     _defineProperty(this, "retryDecryption", false);
-
-    _defineProperty(this, "txnId", null);
-
-    _defineProperty(this, "thread", null);
-
+    _defineProperty(this, "txnId", void 0);
+    _defineProperty(this, "thread", void 0);
     _defineProperty(this, "threadId", void 0);
-
+    _defineProperty(this, "encryptedDisabledForUnverifiedDevices", false);
     _defineProperty(this, "localTimestamp", void 0);
-
     _defineProperty(this, "sender", null);
-
     _defineProperty(this, "target", null);
-
     _defineProperty(this, "status", null);
-
     _defineProperty(this, "error", null);
-
     _defineProperty(this, "forwardLooking", true);
-
-    _defineProperty(this, "verificationRequest", null);
-
+    _defineProperty(this, "verificationRequest", void 0);
     _defineProperty(this, "reEmitter", void 0);
-
     ["state_key", "type", "sender", "room_id", "membership"].forEach(prop => {
       if (typeof event[prop] !== "string") return;
       event[prop] = (0, _utils.internaliseString)(event[prop]);
@@ -197,10 +190,11 @@
       if (typeof event.content?.["m.relates_to"]?.[prop] !== "string") return;
       event.content["m.relates_to"][prop] = (0, _utils.internaliseString)(event.content["m.relates_to"][prop]);
     });
-    this.txnId = event.txn_id || null;
+    this.txnId = event.txn_id;
     this.localTimestamp = Date.now() - (this.getAge() ?? 0);
     this.reEmitter = new _ReEmitter.TypedReEmitter(this);
   }
+
   /**
    * Unstable getter to try and get an extensible event. Note that this might
    * return a falsy value if the event could not be parsed as an extensible
@@ -208,27 +202,22 @@
    *
    * @deprecated Use stable functions where possible.
    */
-
-
   get unstableExtensibleEvent() {
     if (!this._hasCachedExtEv) {
       this._cachedExtEv = _matrixEventsSdk.ExtensibleEvents.parse(this.getEffectiveEvent());
     }
-
     return this._cachedExtEv;
   }
-
   invalidateExtensibleEvent() {
     // just reset the flag - that'll trick the getter into parsing a new event
     this._hasCachedExtEv = false;
   }
+
   /**
    * Gets the event as though it would appear unencrypted. If the event is already not
    * encrypted, it is simply returned as-is.
-   * @returns {IEvent} The event in wire format.
+   * @returns The event in wire format.
    */
-
-
   getEffectiveEvent() {
     const content = Object.assign({}, this.getContent()); // clone for mutation
 
@@ -244,118 +233,129 @@
         if (["algorithm", "ciphertext", "device_id", "sender_key", "session_id"].includes(key)) {
           continue;
         }
-
         if (content[key] === undefined) content[key] = value;
       }
-    } // clearEvent doesn't have all the fields, so we'll copy what we can from this.event.
-    // We also copy over our "fixed" content key.
-
+    }
 
+    // clearEvent doesn't have all the fields, so we'll copy what we can from this.event.
+    // We also copy over our "fixed" content key.
     return Object.assign({}, this.event, this.clearEvent, {
       content
     });
   }
+
   /**
    * Get the event_id for this event.
-   * @return {string} The event ID, e.g. <code>$143350589368169JsLZx:localhost
+   * @returns The event ID, e.g. <code>$143350589368169JsLZx:localhost
    * </code>
    */
-
-
   getId() {
     return this.event.event_id;
   }
+
   /**
    * Get the user_id for this event.
-   * @return {string} The user ID, e.g. <code>@alice:matrix.org</code>
+   * @returns The user ID, e.g. `@alice:matrix.org`
    */
-
-
   getSender() {
     return this.event.sender || this.event.user_id; // v2 / v1
   }
+
   /**
    * Get the (decrypted, if necessary) type of event.
    *
-   * @return {string} The event type, e.g. <code>m.room.message</code>
+   * @returns The event type, e.g. `m.room.message`
    */
-
-
   getType() {
     if (this.clearEvent) {
       return this.clearEvent.type;
     }
-
     return this.event.type;
   }
+
   /**
    * Get the (possibly encrypted) type of the event that will be sent to the
    * homeserver.
    *
-   * @return {string} The event type.
+   * @returns The event type.
    */
-
-
   getWireType() {
     return this.event.type;
   }
+
   /**
-   * Get the room_id for this event. This will return <code>undefined</code>
-   * for <code>m.presence</code> events.
-   * @return {string?} The room ID, e.g. <code>!cURbafjkfsMDVwdRDQ:matrix.org
+   * Get the room_id for this event. This will return `undefined`
+   * for `m.presence` events.
+   * @returns The room ID, e.g. <code>!cURbafjkfsMDVwdRDQ:matrix.org
    * </code>
    */
-
-
   getRoomId() {
     return this.event.room_id;
   }
+
   /**
    * Get the timestamp of this event.
-   * @return {Number} The event timestamp, e.g. <code>1433502692297</code>
+   * @returns The event timestamp, e.g. `1433502692297`
    */
-
-
   getTs() {
     return this.event.origin_server_ts;
   }
+
   /**
    * Get the timestamp of this event, as a Date object.
-   * @return {Date} The event date, e.g. <code>new Date(1433502692297)</code>
+   * @returns The event date, e.g. `new Date(1433502692297)`
    */
-
-
   getDate() {
     return this.event.origin_server_ts ? new Date(this.event.origin_server_ts) : null;
   }
+
+  /**
+   * Get a string containing details of this event
+   *
+   * This is intended for logging, to help trace errors. Example output:
+   *
+   * @example
+   * ```
+   * id=$HjnOHV646n0SjLDAqFrgIjim7RCpB7cdMXFrekWYAn type=m.room.encrypted
+   * sender=@user:example.com room=!room:example.com ts=2022-10-25T17:30:28.404Z
+   * ```
+   */
+  getDetails() {
+    let details = `id=${this.getId()} type=${this.getWireType()} sender=${this.getSender()}`;
+    const room = this.getRoomId();
+    if (room) {
+      details += ` room=${room}`;
+    }
+    const date = this.getDate();
+    if (date) {
+      details += ` ts=${date.toISOString()}`;
+    }
+    return details;
+  }
+
   /**
    * Get the (decrypted, if necessary) event content JSON, even if the event
    * was replaced by another event.
    *
-   * @return {Object} The event content JSON, or an empty object.
+   * @returns The event content JSON, or an empty object.
    */
-
-
   getOriginalContent() {
     if (this._localRedactionEvent) {
       return {};
     }
-
     if (this.clearEvent) {
       return this.clearEvent.content || {};
     }
-
     return this.event.content || {};
   }
+
   /**
    * Get the (decrypted, if necessary) event content JSON,
    * or the content from the replacing event, if any.
    * See `makeReplaced`.
    *
-   * @return {Object} The event content JSON, or an empty object.
+   * @returns The event content JSON, or an empty object.
    */
-
-
   getContent() {
     if (this._localRedactionEvent) {
       return {};
@@ -365,146 +365,127 @@
       return this.getOriginalContent();
     }
   }
+
   /**
    * Get the (possibly encrypted) event content JSON that will be sent to the
    * homeserver.
    *
-   * @return {Object} The event content JSON, or an empty object.
+   * @returns The event content JSON, or an empty object.
    */
-
-
   getWireContent() {
     return this.event.content || {};
   }
+
   /**
-   * @experimental
    * Get the event ID of the thread head
    */
-
-
   get threadRootId() {
     const relatesTo = this.getWireContent()?.["m.relates_to"];
-
     if (relatesTo?.rel_type === _thread.THREAD_RELATION_TYPE.name) {
       return relatesTo.event_id;
     } else {
       return this.getThread()?.id || this.threadId;
     }
   }
+
   /**
-   * @experimental
+   * A helper to check if an event is a thread's head or not
    */
-
-
   get isThreadRoot() {
-    const threadDetails = this.getServerAggregatedRelation(_thread.THREAD_RELATION_TYPE.name); // Bundled relationships only returned when the sync response is limited
+    const threadDetails = this.getServerAggregatedRelation(_thread.THREAD_RELATION_TYPE.name);
+
+    // Bundled relationships only returned when the sync response is limited
     // hence us having to check both bundled relation and inspect the thread
     // model
-
     return !!threadDetails || this.getThread()?.id === this.getId();
   }
-
   get replyEventId() {
-    // We're prefer ev.getContent() over ev.getWireContent() to make sure
-    // we grab the latest edit with potentially new relations. But we also
-    // can't just rely on ev.getContent() by itself because historically we
-    // still show the reply from the original message even though the edit
-    // event does not include the relation reply.
-    const mRelatesTo = this.getContent()['m.relates_to'] || this.getWireContent()['m.relates_to'];
-    return mRelatesTo?.['m.in_reply_to']?.event_id;
+    return this.getWireContent()["m.relates_to"]?.["m.in_reply_to"]?.event_id;
   }
-
   get relationEventId() {
     return this.getWireContent()?.["m.relates_to"]?.event_id;
   }
+
   /**
    * Get the previous event content JSON. This will only return something for
    * state events which exist in the timeline.
-   * @return {Object} The previous event content JSON, or an empty object.
+   * @returns The previous event content JSON, or an empty object.
    */
-
-
   getPrevContent() {
     // v2 then v1 then default
     return this.getUnsigned().prev_content || this.event.prev_content || {};
   }
+
   /**
    * Get either 'content' or 'prev_content' depending on if this event is
    * 'forward-looking' or not. This can be modified via event.forwardLooking.
    * In practice, this means we get the chronologically earlier content value
    * for this event (this method should surely be called getEarlierContent)
    * <strong>This method is experimental and may change.</strong>
-   * @return {Object} event.content if this event is forward-looking, else
+   * @returns event.content if this event is forward-looking, else
    * event.prev_content.
    */
-
-
   getDirectionalContent() {
     return this.forwardLooking ? this.getContent() : this.getPrevContent();
   }
+
   /**
    * Get the age of this event. This represents the age of the event when the
    * event arrived at the device, and not the age of the event when this
    * function was called.
    * Can only be returned once the server has echo'ed back
-   * @return {Number|undefined} The age of this event in milliseconds.
+   * @returns The age of this event in milliseconds.
    */
-
-
   getAge() {
     return this.getUnsigned().age || this.event.age; // v2 / v1
   }
+
   /**
    * Get the age of the event when this function was called.
    * This is the 'age' field adjusted according to how long this client has
    * had the event.
-   * @return {Number} The age of this event in milliseconds.
+   * @returns The age of this event in milliseconds.
    */
-
-
   getLocalAge() {
     return Date.now() - this.localTimestamp;
   }
+
   /**
    * Get the event state_key if it has one. This will return <code>undefined
    * </code> for message events.
-   * @return {string} The event's <code>state_key</code>.
+   * @returns The event's `state_key`.
    */
-
-
   getStateKey() {
     return this.event.state_key;
   }
+
   /**
    * Check if this event is a state event.
-   * @return {boolean} True if this is a state event.
+   * @returns True if this is a state event.
    */
-
-
   isState() {
     return this.event.state_key !== undefined;
   }
+
   /**
    * Replace the content of this event with encrypted versions.
    * (This is used when sending an event; it should not be used by applications).
    *
    * @internal
    *
-   * @param {string} cryptoType type of the encrypted event - typically
+   * @param cryptoType - type of the encrypted event - typically
    * <tt>"m.room.encrypted"</tt>
    *
-   * @param {object} cryptoContent raw 'content' for the encrypted event.
+   * @param cryptoContent - raw 'content' for the encrypted event.
    *
-   * @param {string} senderCurve25519Key curve25519 key to record for the
+   * @param senderCurve25519Key - curve25519 key to record for the
    *   sender of this event.
-   *   See {@link module:models/event.MatrixEvent#getSenderKey}.
+   *   See {@link MatrixEvent#getSenderKey}.
    *
-   * @param {string} claimedEd25519Key claimed ed25519 key to record for the
+   * @param claimedEd25519Key - claimed ed25519 key to record for the
    *   sender if this event.
-   *   See {@link module:models/event.MatrixEvent#getClaimedEd25519Key}
+   *   See {@link MatrixEvent#getClaimedEd25519Key}
    */
-
-
   makeEncrypted(cryptoType, cryptoContent, senderCurve25519Key, claimedEd25519Key) {
     // keep the plain-text data for 'view source'
     this.clearEvent = {
@@ -516,34 +497,38 @@
     this.senderCurve25519Key = senderCurve25519Key;
     this.claimedEd25519Key = claimedEd25519Key;
   }
+
   /**
    * Check if this event is currently being decrypted.
    *
-   * @return {boolean} True if this event is currently being decrypted, else false.
+   * @returns True if this event is currently being decrypted, else false.
    */
-
-
   isBeingDecrypted() {
-    return this._decryptionPromise != null;
+    return this.decryptionPromise != null;
   }
-
   getDecryptionPromise() {
-    return this._decryptionPromise;
+    return this.decryptionPromise;
   }
+
   /**
    * Check if this event is an encrypted event which we failed to decrypt
    *
    * (This implies that we might retry decryption at some point in the future)
    *
-   * @return {boolean} True if this event is an encrypted event which we
+   * @returns True if this event is an encrypted event which we
    *     couldn't decrypt.
    */
-
-
   isDecryptionFailure() {
     return this.clearEvent?.content?.msgtype === "m.bad.encrypted";
   }
 
+  /*
+   * True if this event is an encrypted event which we failed to decrypt, the receiver's device is unverified and
+   * the sender has disabled encrypting to unverified devices.
+   */
+  get isEncryptedDisabledForUnverifiedDevices() {
+    return this.isDecryptionFailure() && this.encryptedDisabledForUnverifiedDevices;
+  }
   shouldAttemptDecryption() {
     if (this.isRedacted()) return false;
     if (this.isBeingDecrypted()) return false;
@@ -551,6 +536,7 @@
     if (!this.isEncrypted()) return false;
     return true;
   }
+
   /**
    * Start the process of trying to decrypt this event.
    *
@@ -558,61 +544,46 @@
    *
    * @internal
    *
-   * @param {module:crypto} crypto crypto module
-   * @param {object} options
-   * @param {boolean} options.isRetry True if this is a retry (enables more logging)
-   * @param {boolean} options.emit Emits "event.decrypted" if set to true
+   * @param crypto - crypto module
    *
-   * @returns {Promise} promise which resolves (to undefined) when the decryption
+   * @returns promise which resolves (to undefined) when the decryption
    * attempt is completed.
    */
-
-
   async attemptDecryption(crypto, options = {}) {
-    // For backwards compatibility purposes
-    // The function signature used to be attemptDecryption(crypto, isRetry)
-    if (typeof options === "boolean") {
-      options = {
-        isRetry: options
-      };
-    } // start with a couple of sanity checks.
-
-
+    // start with a couple of sanity checks.
     if (!this.isEncrypted()) {
       throw new Error("Attempt to decrypt event which isn't encrypted");
     }
-
-    if (this.clearEvent && !this.isDecryptionFailure() && !(this.isKeySourceUntrusted() && options.keyTrusted)) {
+    const alreadyDecrypted = this.clearEvent && !this.isDecryptionFailure();
+    const forceRedecrypt = options.forceRedecryptIfUntrusted && this.isKeySourceUntrusted();
+    if (alreadyDecrypted && !forceRedecrypt) {
       // we may want to just ignore this? let's start with rejecting it.
       throw new Error("Attempt to decrypt event which has already been decrypted");
-    } // if we already have a decryption attempt in progress, then it may
+    }
+
+    // if we already have a decryption attempt in progress, then it may
     // fail because it was using outdated info. We now have reason to
     // succeed where it failed before, but we don't want to have multiple
     // attempts going at the same time, so just set a flag that says we have
     // new info.
     //
-
-
-    if (this._decryptionPromise) {
+    if (this.decryptionPromise) {
       _logger.logger.log(`Event ${this.getId()} already being decrypted; queueing a retry`);
-
       this.retryDecryption = true;
-      return this._decryptionPromise;
+      return this.decryptionPromise;
     }
-
-    this._decryptionPromise = this.decryptionLoop(crypto, options);
-    return this._decryptionPromise;
+    this.decryptionPromise = this.decryptionLoop(crypto, options);
+    return this.decryptionPromise;
   }
+
   /**
    * Cancel any room key request for this event and resend another.
    *
-   * @param {module:crypto} crypto crypto module
-   * @param {string} userId the user who received this event
+   * @param crypto - crypto module
+   * @param userId - the user who received this event
    *
-   * @returns {Promise} a promise that resolves when the request is queued
+   * @returns a promise that resolves when the request is queued
    */
-
-
   cancelAndResendKeyRequest(crypto, userId) {
     const wireContent = this.getWireContent();
     return crypto.requestRoomKey({
@@ -622,129 +593,103 @@
       sender_key: wireContent.sender_key
     }, this.getKeyRequestRecipients(userId), true);
   }
+
   /**
    * Calculate the recipients for keyshare requests.
    *
-   * @param {string} userId the user who received this event.
+   * @param userId - the user who received this event.
    *
-   * @returns {Array} array of recipients
+   * @returns array of recipients
    */
-
-
   getKeyRequestRecipients(userId) {
-    // send the request to all of our own devices, and the
-    // original sending device if it wasn't us.
-    const wireContent = this.getWireContent();
+    // send the request to all of our own devices
     const recipients = [{
       userId,
-      deviceId: '*'
+      deviceId: "*"
     }];
-    const sender = this.getSender();
-
-    if (sender !== userId) {
-      recipients.push({
-        userId: sender,
-        deviceId: wireContent.device_id
-      });
-    }
-
     return recipients;
   }
-
   async decryptionLoop(crypto, options = {}) {
     // make sure that this method never runs completely synchronously.
-    // (doing so would mean that we would clear _decryptionPromise *before*
+    // (doing so would mean that we would clear decryptionPromise *before*
     // it is set in attemptDecryption - and hence end up with a stuck
-    // `_decryptionPromise`).
-    await Promise.resolve(); // eslint-disable-next-line no-constant-condition
+    // `decryptionPromise`).
+    await Promise.resolve();
 
+    // eslint-disable-next-line no-constant-condition
     while (true) {
       this.retryDecryption = false;
       let res;
-      let err;
-
+      let err = undefined;
       try {
         if (!crypto) {
           res = this.badEncryptedMessage("Encryption not enabled");
         } else {
           res = await crypto.decryptEvent(this);
-
           if (options.isRetry === true) {
-            _logger.logger.info(`Decrypted event on retry (id=${this.getId()})`);
+            _logger.logger.info(`Decrypted event on retry (${this.getDetails()})`);
           }
         }
       } catch (e) {
-        if (e.name !== "DecryptionError") {
-          // not a decryption error: log the whole exception as an error
-          // (and don't bother with a retry)
-          const re = options.isRetry ? 're' : ''; // For find results: this can produce "Error decrypting event (id=$ev)" and
-          // "Error redecrypting event (id=$ev)".
-
-          _logger.logger.error(`Error ${re}decrypting event ` + `(id=${this.getId()}): ${e.stack || e}`);
-
-          this._decryptionPromise = null;
-          this.retryDecryption = false;
-          return;
-        }
+        const detailedError = e instanceof _algorithms.DecryptionError ? e.detailedString : String(e);
+        err = e;
 
-        err = e; // see if we have a retry queued.
+        // see if we have a retry queued.
         //
         // NB: make sure to keep this check in the same tick of the
-        //   event loop as `_decryptionPromise = null` below - otherwise we
+        //   event loop as `decryptionPromise = null` below - otherwise we
         //   risk a race:
         //
         //   * A: we check retryDecryption here and see that it is
         //        false
         //   * B: we get a second call to attemptDecryption, which sees
-        //        that _decryptionPromise is set so sets
+        //        that decryptionPromise is set so sets
         //        retryDecryption
-        //   * A: we continue below, clear _decryptionPromise, and
+        //   * A: we continue below, clear decryptionPromise, and
         //        never do the retry.
         //
-
         if (this.retryDecryption) {
           // decryption error, but we have a retry queued.
-          _logger.logger.log(`Got error decrypting event (id=${this.getId()}: ${e.detailedString}), but retrying`, e);
-
+          _logger.logger.log(`Error decrypting event (${this.getDetails()}), but retrying: ${detailedError}`);
           continue;
-        } // decryption error, no retries queued. Warn about the error and
-        // set it to m.bad.encrypted.
-
+        }
 
-        _logger.logger.warn(`Got error decrypting event (id=${this.getId()}: ${e.detailedString})`, e);
+        // decryption error, no retries queued. Warn about the error and
+        // set it to m.bad.encrypted.
+        //
+        // the detailedString already includes the name and message of the error, and the stack isn't much use,
+        // so we don't bother to log `e` separately.
+        _logger.logger.warn(`Error decrypting event (${this.getDetails()}): ${detailedError}`);
+        res = this.badEncryptedMessage(String(e));
+      }
 
-        res = this.badEncryptedMessage(e.message);
-      } // at this point, we've either successfully decrypted the event, or have given up
+      // at this point, we've either successfully decrypted the event, or have given up
       // (and set res to a 'badEncryptedMessage'). Either way, we can now set the
       // cleartext of the event and raise Event.decrypted.
       //
-      // make sure we clear '_decryptionPromise' before sending the 'Event.decrypted' event,
+      // make sure we clear 'decryptionPromise' before sending the 'Event.decrypted' event,
       // otherwise the app will be confused to see `isBeingDecrypted` still set when
       // there isn't an `Event.decrypted` on the way.
       //
       // see also notes on retryDecryption above.
       //
-
-
-      this._decryptionPromise = null;
+      this.decryptionPromise = null;
       this.retryDecryption = false;
-      this.setClearData(res); // Before we emit the event, clear the push actions so that they can be recalculated
+      this.setClearData(res);
+
+      // Before we emit the event, clear the push actions so that they can be recalculated
       // by relevant code. We do this because the clear event has now changed, making it
       // so that existing rules can be re-run over the applicable properties. Stuff like
       // highlighting when the user's name is mentioned rely on this happening. We also want
       // to set the push actions before emitting so that any notification listeners don't
       // pick up the wrong contents.
-
       this.setPushActions(null);
-
       if (options.emit !== false) {
         this.emit(MatrixEventEvent.Decrypted, this, err);
       }
-
       return;
     }
   }
-
   badEncryptedMessage(reason) {
     return {
       clearEvent: {
@@ -753,9 +698,11 @@
           msgtype: "m.bad.encrypted",
           body: "** Unable to decrypt: " + reason + " **"
         }
-      }
+      },
+      encryptedDisabledForUnverifiedDevices: reason === `DecryptionError: ${_OlmDevice.WITHHELD_MESSAGES["m.unverified"]}`
     };
   }
+
   /**
    * Update the cleartext data on this event.
    *
@@ -763,41 +710,39 @@
    *
    * @internal
    *
-   * @fires module:models/event.MatrixEvent#"Event.decrypted"
+   * @param decryptionResult - the decryption result, including the plaintext and some key info
    *
-   * @param {module:crypto~EventDecryptionResult} decryptionResult
-   *     the decryption result, including the plaintext and some key info
+   * @remarks
+   * Fires {@link MatrixEventEvent.Decrypted}
    */
-
-
   setClearData(decryptionResult) {
     this.clearEvent = decryptionResult.clearEvent;
-    this.senderCurve25519Key = decryptionResult.senderCurve25519Key || null;
-    this.claimedEd25519Key = decryptionResult.claimedEd25519Key || null;
+    this.senderCurve25519Key = decryptionResult.senderCurve25519Key ?? null;
+    this.claimedEd25519Key = decryptionResult.claimedEd25519Key ?? null;
     this.forwardingCurve25519KeyChain = decryptionResult.forwardingCurve25519KeyChain || [];
     this.untrusted = decryptionResult.untrusted || false;
+    this.encryptedDisabledForUnverifiedDevices = decryptionResult.encryptedDisabledForUnverifiedDevices || false;
     this.invalidateExtensibleEvent();
   }
+
   /**
    * Gets the cleartext content for this event. If the event is not encrypted,
    * or encryption has not been completed, this will return null.
    *
-   * @returns {Object} The cleartext (decrypted) content for the event
+   * @returns The cleartext (decrypted) content for the event
    */
-
-
   getClearContent() {
     return this.clearEvent ? this.clearEvent.content : null;
   }
+
   /**
    * Check if the event is encrypted.
-   * @return {boolean} True if this event is encrypted.
+   * @returns True if this event is encrypted.
    */
-
-
   isEncrypted() {
     return !this.isState() && this.event.type === _event.EventType.RoomMessageEncrypted;
   }
+
   /**
    * The curve25519 key for the device that we think sent this event
    *
@@ -808,28 +753,23 @@
    *
    * For a megolm-encrypted event, it is inferred from the Olm message which
    * established the megolm session
-   *
-   * @return {string}
    */
-
-
   getSenderKey() {
     return this.senderCurve25519Key;
   }
+
   /**
    * The additional keys the sender of this encrypted event claims to possess.
    *
    * Just a wrapper for #getClaimedEd25519Key (q.v.)
-   *
-   * @return {Object<string, string>}
    */
-
-
   getKeysClaimed() {
+    if (!this.claimedEd25519Key) return {};
     return {
       ed25519: this.claimedEd25519Key
     };
   }
+
   /**
    * Get the ed25519 the sender of this event claims to own.
    *
@@ -844,14 +784,11 @@
    *
    * In general, applications should not use this method directly, but should
    * instead use MatrixClient.getEventSenderDeviceInfo.
-   *
-   * @return {string}
    */
-
-
   getClaimedEd25519Key() {
     return this.claimedEd25519Key;
   }
+
   /**
    * Get the curve25519 keys of the devices which were involved in telling us
    * about the claimedEd25519Key and sender curve25519 key.
@@ -864,177 +801,152 @@
    * If the device that sent us the key (A) got it from another device which
    * it wasn't prepared to vouch for (B), the result will be [A, B]. And so on.
    *
-   * @return {string[]} base64-encoded curve25519 keys, from oldest to newest.
+   * @returns base64-encoded curve25519 keys, from oldest to newest.
    */
-
-
   getForwardingCurve25519KeyChain() {
     return this.forwardingCurve25519KeyChain;
   }
+
   /**
    * Whether the decryption key was obtained from an untrusted source. If so,
    * we cannot verify the authenticity of the message.
-   *
-   * @return {boolean}
    */
-
-
   isKeySourceUntrusted() {
-    return this.untrusted;
+    return !!this.untrusted;
   }
-
   getUnsigned() {
     return this.event.unsigned || {};
   }
-
   setUnsigned(unsigned) {
     this.event.unsigned = unsigned;
   }
-
   unmarkLocallyRedacted() {
     const value = this._localRedactionEvent;
     this._localRedactionEvent = null;
-
     if (this.event.unsigned) {
-      this.event.unsigned.redacted_because = null;
+      this.event.unsigned.redacted_because = undefined;
     }
-
     return !!value;
   }
-
   markLocallyRedacted(redactionEvent) {
     if (this._localRedactionEvent) return;
     this.emit(MatrixEventEvent.BeforeRedaction, this, redactionEvent);
     this._localRedactionEvent = redactionEvent;
-
     if (!this.event.unsigned) {
       this.event.unsigned = {};
     }
-
     this.event.unsigned.redacted_because = redactionEvent.event;
   }
+
   /**
    * Change the visibility of an event, as per https://github.com/matrix-org/matrix-doc/pull/3531 .
    *
-   * @fires module:models/event.MatrixEvent#"Event.visibilityChange" if `visibilityEvent`
+   * @param visibilityChange - event holding a hide/unhide payload, or nothing
+   *   if the event is being reset to its original visibility (presumably
+   *   by a visibility event being redacted).
+   *
+   * @remarks
+   * Fires {@link MatrixEventEvent.VisibilityChange} if `visibilityEvent`
    *   caused a change in the actual visibility of this event, either by making it
    *   visible (if it was hidden), by making it hidden (if it was visible) or by
    *   changing the reason (if it was hidden).
-   * @param visibilityChange event holding a hide/unhide payload, or nothing
-   *   if the event is being reset to its original visibility (presumably
-   *   by a visibility event being redacted).
    */
-
-
   applyVisibilityEvent(visibilityChange) {
-    const visible = visibilityChange ? visibilityChange.visible : true;
-    const reason = visibilityChange ? visibilityChange.reason : null;
+    const visible = visibilityChange?.visible ?? true;
+    const reason = visibilityChange?.reason ?? null;
     let change = false;
-
-    if (this.visibility.visible !== visibilityChange.visible) {
+    if (this.visibility.visible !== visible) {
       change = true;
     } else if (!this.visibility.visible && this.visibility["reason"] !== reason) {
       change = true;
     }
-
     if (change) {
       if (visible) {
         this.visibility = MESSAGE_VISIBLE;
       } else {
         this.visibility = Object.freeze({
           visible: false,
-          reason: reason
+          reason
         });
       }
-
       this.emit(MatrixEventEvent.VisibilityChange, this, visible);
     }
   }
+
   /**
    * Return instructions to display or hide the message.
    *
    * @returns Instructions determining whether the message
    * should be displayed.
    */
-
-
   messageVisibility() {
     // Note: We may return `this.visibility` without fear, as
     // this is a shallow frozen object.
     return this.visibility;
   }
+
   /**
    * Update the content of an event in the same way it would be by the server
    * if it were redacted before it was sent to us
    *
-   * @param {module:models/event.MatrixEvent} redactionEvent
-   *     event causing the redaction
+   * @param redactionEvent - event causing the redaction
    */
-
-
   makeRedacted(redactionEvent) {
     // quick sanity-check
     if (!redactionEvent.event) {
       throw new Error("invalid redactionEvent in makeRedacted");
     }
-
     this._localRedactionEvent = null;
     this.emit(MatrixEventEvent.BeforeRedaction, this, redactionEvent);
-    this._replacingEvent = null; // we attempt to replicate what we would see from the server if
+    this._replacingEvent = null;
+    // we attempt to replicate what we would see from the server if
     // the event had been redacted before we saw it.
     //
     // The server removes (most of) the content of the event, and adds a
     // "redacted_because" key to the unsigned section containing the
     // redacted event.
-
     if (!this.event.unsigned) {
       this.event.unsigned = {};
     }
-
     this.event.unsigned.redacted_because = redactionEvent.event;
-
     for (const key in this.event) {
       if (this.event.hasOwnProperty(key) && !REDACT_KEEP_KEYS.has(key)) {
         delete this.event[key];
       }
-    } // If the event is encrypted prune the decrypted bits
-
+    }
 
+    // If the event is encrypted prune the decrypted bits
     if (this.isEncrypted()) {
-      this.clearEvent = null;
+      this.clearEvent = undefined;
     }
-
-    const keeps = REDACT_KEEP_CONTENT_MAP[this.getType()] || {};
+    const keeps = this.getType() in REDACT_KEEP_CONTENT_MAP ? REDACT_KEEP_CONTENT_MAP[this.getType()] : {};
     const content = this.getContent();
-
     for (const key in content) {
       if (content.hasOwnProperty(key) && !keeps[key]) {
         delete content[key];
       }
     }
-
     this.invalidateExtensibleEvent();
   }
+
   /**
    * Check if this event has been redacted
    *
-   * @return {boolean} True if this event has been redacted
+   * @returns True if this event has been redacted
    */
-
-
   isRedacted() {
     return Boolean(this.getUnsigned().redacted_because);
   }
+
   /**
    * Check if this event is a redaction of another event
    *
-   * @return {boolean} True if this event is a redaction
+   * @returns True if this event is a redaction
    */
-
-
   isRedaction() {
     return this.getType() === _event.EventType.RoomRedaction;
   }
+
   /**
    * Return the visibility change caused by this event,
    * as per https://github.com/matrix-org/matrix-doc/pull/3531.
@@ -1042,200 +954,168 @@
    * @returns If the event is a well-formed visibility change event,
    * an instance of `IVisibilityChange`, otherwise `null`.
    */
-
-
   asVisibilityChange() {
     if (!_event.EVENT_VISIBILITY_CHANGE_TYPE.matches(this.getType())) {
       // Not a visibility change event.
       return null;
     }
-
     const relation = this.getRelation();
-
     if (!relation || relation.rel_type != "m.reference") {
       // Ill-formed, ignore this event.
       return null;
     }
-
     const eventId = relation.event_id;
-
     if (!eventId) {
       // Ill-formed, ignore this event.
       return null;
     }
-
     const content = this.getWireContent();
     const visible = !!content.visible;
     const reason = content.reason;
-
     if (reason && typeof reason != "string") {
       // Ill-formed, ignore this event.
       return null;
-    } // Well-formed visibility change event.
-
-
+    }
+    // Well-formed visibility change event.
     return {
       visible,
       reason,
       eventId
     };
   }
+
   /**
    * Check if this event alters the visibility of another event,
    * as per https://github.com/matrix-org/matrix-doc/pull/3531.
    *
-   * @returns {boolean} True if this event alters the visibility
+   * @returns True if this event alters the visibility
    * of another event.
    */
-
-
   isVisibilityEvent() {
     return _event.EVENT_VISIBILITY_CHANGE_TYPE.matches(this.getType());
   }
+
   /**
    * Get the (decrypted, if necessary) redaction event JSON
    * if event was redacted
    *
-   * @returns {object} The redaction event JSON, or an empty object
+   * @returns The redaction event JSON, or an empty object
    */
-
-
   getRedactionEvent() {
     if (!this.isRedacted()) return null;
-
     if (this.clearEvent?.unsigned) {
-      return this.clearEvent?.unsigned.redacted_because;
-    } else if (this.event.unsigned.redacted_because) {
+      return this.clearEvent?.unsigned.redacted_because ?? null;
+    } else if (this.event.unsigned?.redacted_because) {
       return this.event.unsigned.redacted_because;
     } else {
       return {};
     }
   }
+
   /**
    * Get the push actions, if known, for this event
    *
-   * @return {?Object} push actions
+   * @returns push actions
    */
-
-
   getPushActions() {
     return this.pushActions;
   }
+
   /**
    * Set the push actions for this event.
    *
-   * @param {Object} pushActions push actions
+   * @param pushActions - push actions
    */
-
-
   setPushActions(pushActions) {
     this.pushActions = pushActions;
   }
+
   /**
    * Replace the `event` property and recalculate any properties based on it.
-   * @param {Object} event the object to assign to the `event` property
+   * @param event - the object to assign to the `event` property
    */
-
-
   handleRemoteEcho(event) {
     const oldUnsigned = this.getUnsigned();
     const oldId = this.getId();
-    this.event = event; // if this event was redacted before it was sent, it's locally marked as redacted.
+    this.event = event;
+    // if this event was redacted before it was sent, it's locally marked as redacted.
     // At this point, we've received the remote echo for the event, but not yet for
     // the redaction that we are sending ourselves. Preserve the locally redacted
     // state by copying over redacted_because so we don't get a flash of
     // redacted, not-redacted, redacted as remote echos come in
-
     if (oldUnsigned.redacted_because) {
       if (!this.event.unsigned) {
         this.event.unsigned = {};
       }
-
       this.event.unsigned.redacted_because = oldUnsigned.redacted_because;
-    } // successfully sent.
-
-
+    }
+    // successfully sent.
     this.setStatus(null);
-
     if (this.getId() !== oldId) {
       // emit the event if it changed
       this.emit(MatrixEventEvent.LocalEventIdReplaced, this);
     }
-
     this.localTimestamp = Date.now() - this.getAge();
   }
+
   /**
    * Whether the event is in any phase of sending, send failure, waiting for
    * remote echo, etc.
-   *
-   * @return {boolean}
    */
-
-
   isSending() {
     return !!this.status;
   }
+
   /**
    * Update the event's sending status and emit an event as well.
    *
-   * @param {String} status The new status
+   * @param status - The new status
    */
-
-
   setStatus(status) {
     this.status = status;
     this.emit(MatrixEventEvent.Status, this, status);
   }
-
   replaceLocalEventId(eventId) {
     this.event.event_id = eventId;
     this.emit(MatrixEventEvent.LocalEventIdReplaced, this);
   }
+
   /**
    * Get whether the event is a relation event, and of a given type if
    * `relType` is passed in. State events cannot be relation events
    *
-   * @param {string?} relType if given, checks that the relation is of the
+   * @param relType - if given, checks that the relation is of the
    * given type
-   * @return {boolean}
    */
-
-
-  isRelation(relType = undefined) {
+  isRelation(relType) {
     // Relation info is lifted out of the encrypted content when sent to
     // encrypted rooms, so we have to check `getWireContent` for this.
     const relation = this.getWireContent()?.["m.relates_to"];
-
     if (this.isState() && relation?.rel_type === _event.RelationType.Replace) {
       // State events cannot be m.replace relations
       return false;
     }
-
-    return relation?.rel_type && relation.event_id && (relType ? relation.rel_type === relType : true);
+    return !!(relation?.rel_type && relation.event_id && (relType ? relation.rel_type === relType : true));
   }
+
   /**
    * Get relation info for the event, if any.
-   *
-   * @return {Object}
    */
-
-
   getRelation() {
     if (!this.isRelation()) {
       return null;
     }
-
-    return this.getWireContent()["m.relates_to"];
+    return this.getWireContent()["m.relates_to"] ?? null;
   }
+
   /**
    * Set an event that replaces the content of this event, through an m.replace relation.
    *
-   * @fires module:models/event.MatrixEvent#"Event.replaced"
+   * @param newEvent - the event with the replacing content, if any.
    *
-   * @param {MatrixEvent?} newEvent the event with the replacing content, if any.
+   * @remarks
+   * Fires {@link MatrixEventEvent.Replaced}
    */
-
-
   makeReplaced(newEvent) {
     // don't allow redacted events to be replaced.
     // if newEvent is null we allow to go through though,
@@ -1243,108 +1123,84 @@
     // cancelled, which should be reflected on the target event.
     if (this.isRedacted() && newEvent) {
       return;
-    } // don't allow state events to be replaced using this mechanism as per MSC2676
-
-
+    }
+    // don't allow state events to be replaced using this mechanism as per MSC2676
     if (this.isState()) {
       return;
     }
-
     if (this._replacingEvent !== newEvent) {
-      this._replacingEvent = newEvent;
+      this._replacingEvent = newEvent ?? null;
       this.emit(MatrixEventEvent.Replaced, this);
       this.invalidateExtensibleEvent();
     }
   }
+
   /**
    * Returns the status of any associated edit or redaction
    * (not for reactions/annotations as their local echo doesn't affect the original event),
    * or else the status of the event.
-   *
-   * @return {EventStatus}
    */
-
-
   getAssociatedStatus() {
     if (this._replacingEvent) {
       return this._replacingEvent.status;
     } else if (this._localRedactionEvent) {
       return this._localRedactionEvent.status;
     }
-
     return this.status;
   }
-
   getServerAggregatedRelation(relType) {
     return this.getUnsigned()["m.relations"]?.[relType];
   }
+
   /**
    * Returns the event ID of the event replacing the content of this event, if any.
-   *
-   * @return {string?}
    */
-
-
   replacingEventId() {
     const replaceRelation = this.getServerAggregatedRelation(_event.RelationType.Replace);
-
     if (replaceRelation) {
       return replaceRelation.event_id;
     } else if (this._replacingEvent) {
       return this._replacingEvent.getId();
     }
   }
+
   /**
    * Returns the event replacing the content of this event, if any.
    * Replacements are aggregated on the server, so this would only
    * return an event in case it came down the sync, or for local echo of edits.
-   *
-   * @return {MatrixEvent?}
    */
-
-
   replacingEvent() {
     return this._replacingEvent;
   }
+
   /**
    * Returns the origin_server_ts of the event replacing the content of this event, if any.
-   *
-   * @return {Date?}
    */
-
-
   replacingEventDate() {
     const replaceRelation = this.getServerAggregatedRelation(_event.RelationType.Replace);
-
     if (replaceRelation) {
       const ts = replaceRelation.origin_server_ts;
-
       if (Number.isFinite(ts)) {
         return new Date(ts);
       }
     } else if (this._replacingEvent) {
-      return this._replacingEvent.getDate();
+      return this._replacingEvent.getDate() ?? undefined;
     }
   }
+
   /**
    * Returns the event that wants to redact this event, but hasn't been sent yet.
-   * @return {MatrixEvent} the event
+   * @returns the event
    */
-
-
   localRedactionEvent() {
     return this._localRedactionEvent;
   }
+
   /**
    * For relations and redactions, returns the event_id this event is referring to.
-   *
-   * @return {string?}
    */
-
-
   getAssociatedId() {
     const relation = this.getRelation();
-
     if (this.replyEventId) {
       return this.replyEventId;
     } else if (relation) {
@@ -1353,56 +1209,58 @@
       return this.event.redacts;
     }
   }
+
   /**
    * Checks if this event is associated with another event. See `getAssociatedId`.
-   *
-   * @return {boolean}
+   * @deprecated use hasAssociation instead.
    */
-
-
   hasAssocation() {
     return !!this.getAssociatedId();
   }
+
+  /**
+   * Checks if this event is associated with another event. See `getAssociatedId`.
+   */
+  hasAssociation() {
+    return !!this.getAssociatedId();
+  }
+
   /**
    * Update the related id with a new one.
    *
    * Used to replace a local id with remote one before sending
    * an event with a related id.
    *
-   * @param {string} eventId the new event id
+   * @param eventId - the new event id
    */
-
-
   updateAssociatedId(eventId) {
     const relation = this.getRelation();
-
     if (relation) {
       relation.event_id = eventId;
     } else if (this.isRedaction()) {
       this.event.redacts = eventId;
     }
   }
+
   /**
    * Flags an event as cancelled due to future conditions. For example, a verification
    * request event in the same sync transaction may be flagged as cancelled to warn
    * listeners that a cancellation event is coming down the same pipe shortly.
-   * @param {boolean} cancelled Whether the event is to be cancelled or not.
+   * @param cancelled - Whether the event is to be cancelled or not.
    */
-
-
   flagCancelled(cancelled = true) {
     this._isCancelled = cancelled;
   }
+
   /**
    * Gets whether or not the event is flagged as cancelled. See flagCancelled() for
    * more information.
-   * @returns {boolean} True if the event is cancelled, false otherwise.
+   * @returns True if the event is cancelled, false otherwise.
    */
-
-
   isCancelled() {
     return this._isCancelled;
   }
+
   /**
    * Get a copy/snapshot of this event. The returned copy will be loosely linked
    * back to this instance, though will have "frozen" event information. Other
@@ -1415,31 +1273,27 @@
    *
    * This is meant to be used to snapshot the event details themselves, not the
    * features (such as sender) surrounding the event.
-   * @returns {MatrixEvent} A snapshot of this event.
+   * @returns A snapshot of this event.
    */
-
-
   toSnapshot() {
     const ev = new MatrixEvent(JSON.parse(JSON.stringify(this.event)));
-
     for (const [p, v] of Object.entries(this)) {
       if (p !== "event") {
         // exclude the thing we just cloned
+        // @ts-ignore - XXX: this is just nasty
         ev[p] = v;
       }
     }
-
     return ev;
   }
+
   /**
    * Determines if this event is equivalent to the given event. This only checks
    * the event object itself, not the other properties of the event. Intended for
    * use with toSnapshot() to identify events changing.
-   * @param {MatrixEvent} otherEvent The other event to check against.
-   * @returns {boolean} True if the events are the same, false otherwise.
+   * @param otherEvent - The other event to check against.
+   * @returns True if the events are the same, false otherwise.
    */
-
-
   isEquivalentTo(otherEvent) {
     if (!otherEvent) return false;
     if (otherEvent === this) return true;
@@ -1447,6 +1301,7 @@
     const theirProps = (0, _utils.deepSortedObjectEntries)(otherEvent.event);
     return JSON.stringify(myProps) === JSON.stringify(theirProps);
   }
+
   /**
    * Summarise the event as JSON. This is currently used by React SDK's view
    * event source feature and Seshat's event indexing, so take care when
@@ -1457,59 +1312,53 @@
    * This is named `toJSON` for use with `JSON.stringify` which checks objects
    * for functions named `toJSON` and will call them to customise the output
    * if they are defined.
-   *
-   * @return {Object}
    */
-
-
   toJSON() {
     const event = this.getEffectiveEvent();
-
     if (!this.isEncrypted()) {
       return event;
     }
-
     return {
       decrypted: event,
       encrypted: this.event
     };
   }
-
   setVerificationRequest(request) {
     this.verificationRequest = request;
   }
-
   setTxnId(txnId) {
     this.txnId = txnId;
   }
-
   getTxnId() {
     return this.txnId;
   }
+
   /**
-   * @experimental
+   * Set the instance of a thread associated with the current event
+   * @param thread - the thread
    */
-
-
   setThread(thread) {
+    if (this.thread) {
+      this.reEmitter.stopReEmitting(this.thread, [_thread.ThreadEvent.Update]);
+    }
     this.thread = thread;
-    this.setThreadId(thread.id);
-    this.reEmitter.reEmit(thread, [_thread.ThreadEvent.Update]);
+    this.setThreadId(thread?.id);
+    if (thread) {
+      this.reEmitter.reEmit(thread, [_thread.ThreadEvent.Update]);
+    }
   }
+
   /**
-   * @experimental
+   * Get the instance of the thread associated with the current event
    */
-
-
   getThread() {
     return this.thread;
   }
-
   setThreadId(threadId) {
     this.threadId = threadId;
   }
-
 }
+
 /* REDACT_KEEP_KEYS gives the keys we keep when an event is redacted
  *
  * This is specified here:
@@ -1519,43 +1368,28 @@
  *  - We keep 'unsigned' since that is created by the local server
  *  - We keep user_id for backwards-compat with v1
  */
-
-
 exports.MatrixEvent = MatrixEvent;
-const REDACT_KEEP_KEYS = new Set(['event_id', 'type', 'room_id', 'user_id', 'sender', 'state_key', 'prev_state', 'content', 'unsigned', 'origin_server_ts']); // a map from state event type to the .content keys we keep when an event is redacted
+const REDACT_KEEP_KEYS = new Set(["event_id", "type", "room_id", "user_id", "sender", "state_key", "prev_state", "content", "unsigned", "origin_server_ts"]);
 
+// a map from state event type to the .content keys we keep when an event is redacted
 const REDACT_KEEP_CONTENT_MAP = {
   [_event.EventType.RoomMember]: {
-    'membership': 1
+    membership: 1
   },
   [_event.EventType.RoomCreate]: {
-    'creator': 1
+    creator: 1
   },
   [_event.EventType.RoomJoinRules]: {
-    'join_rule': 1
+    join_rule: 1
   },
   [_event.EventType.RoomPowerLevels]: {
-    'ban': 1,
-    'events': 1,
-    'events_default': 1,
-    'kick': 1,
-    'redact': 1,
-    'state_default': 1,
-    'users': 1,
-    'users_default': 1
-  },
-  [_event.EventType.RoomAliases]: {
-    'aliases': 1
+    ban: 1,
+    events: 1,
+    events_default: 1,
+    kick: 1,
+    redact: 1,
+    state_default: 1,
+    users: 1,
+    users_default: 1
   }
-};
-/**
- * Fires when an event is decrypted
- *
- * @event module:models/event.MatrixEvent#"Event.decrypted"
- *
- * @param {module:models/event.MatrixEvent} event
- *    The matrix event which has been decrypted
- * @param {module:crypto/algorithms/base.DecryptionError?} err
- *    The error that occurred during decryption, or `undefined` if no
- *    error occurred.
- */
\ No newline at end of file
+};
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/event-status.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/event-status.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/event-status.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/event-status.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,7 +4,6 @@
   value: true
 });
 exports.EventStatus = void 0;
-
 /*
 Copyright 2015 - 2022 The Matrix.org Foundation C.I.C.
 
@@ -20,15 +19,12 @@
 See the License for the specific language governing permissions and
 limitations under the License.
 */
-
 /**
  * Enum for event statuses.
  * @readonly
- * @enum {string}
  */
 let EventStatus;
 exports.EventStatus = EventStatus;
-
 (function (EventStatus) {
   EventStatus["NOT_SENT"] = "not_sent";
   EventStatus["ENCRYPTING"] = "encrypting";
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/event-timeline.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/event-timeline.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/event-timeline.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/event-timeline.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,23 +4,18 @@
   value: true
 });
 exports.EventTimeline = exports.Direction = void 0;
-
 var _logger = require("../logger");
-
 var _roomState = require("./room-state");
-
 var _event = require("../@types/event");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 let Direction;
 exports.Direction = Direction;
-
 (function (Direction) {
   Direction["Backward"] = "b";
   Direction["Forward"] = "f";
 })(Direction || (exports.Direction = Direction = {}));
-
 class EventTimeline {
   /**
    * Symbolic constant for methods which take a 'direction' argument:
@@ -35,9 +30,9 @@
   /**
    * Static helper method to set sender and target properties
    *
-   * @param {MatrixEvent} event   the event whose metadata is to be set
-   * @param {RoomState} stateContext  the room state to be queried
-   * @param {boolean} toStartOfTimeline  if true the event's forwardLooking flag is set false
+   * @param event -   the event whose metadata is to be set
+   * @param stateContext -  the room state to be queried
+   * @param toStartOfTimeline -  if true the event's forwardLooking flag is set false
    */
   static setEventMetadata(event, stateContext, toStartOfTimeline) {
     // When we try to generate a sentinel member before we have that member
@@ -48,11 +43,9 @@
     if (!event.sender?.events?.member) {
       event.sender = stateContext.getSentinelMember(event.getSender());
     }
-
     if (!event.target?.events?.member && event.getType() === _event.EventType.RoomMember) {
       event.target = stateContext.getSentinelMember(event.getStateKey());
     }
-
     if (event.isState()) {
       // room state has no concept of 'old' or 'current', but we want the
       // room state to regress back to previous values if toStartOfTimeline
@@ -63,7 +56,6 @@
       }
     }
   }
-
   /**
    * Construct a new EventTimeline
    *
@@ -81,160 +73,128 @@
    * <p>Once a timeline joins up with its neighbour, they are linked together into a
    * doubly-linked list.
    *
-   * @param {EventTimelineSet} eventTimelineSet the set of timelines this is part of
-   * @constructor
+   * @param eventTimelineSet - the set of timelines this is part of
    */
   constructor(eventTimelineSet) {
     this.eventTimelineSet = eventTimelineSet;
-
     _defineProperty(this, "roomId", void 0);
-
     _defineProperty(this, "name", void 0);
-
     _defineProperty(this, "events", []);
-
     _defineProperty(this, "baseIndex", 0);
-
     _defineProperty(this, "startState", void 0);
-
     _defineProperty(this, "endState", void 0);
-
-    _defineProperty(this, "prevTimeline", void 0);
-
-    _defineProperty(this, "nextTimeline", void 0);
-
+    _defineProperty(this, "startToken", null);
+    _defineProperty(this, "endToken", null);
+    _defineProperty(this, "prevTimeline", null);
+    _defineProperty(this, "nextTimeline", null);
     _defineProperty(this, "paginationRequests", {
       [Direction.Backward]: null,
       [Direction.Forward]: null
     });
-
     this.roomId = eventTimelineSet.room?.roomId ?? null;
-    this.startState = new _roomState.RoomState(this.roomId);
-    this.startState.paginationToken = null;
-    this.endState = new _roomState.RoomState(this.roomId);
-    this.endState.paginationToken = null;
-    this.prevTimeline = null;
-    this.nextTimeline = null; // this is used by client.js
+    if (this.roomId) {
+      this.startState = new _roomState.RoomState(this.roomId);
+      this.endState = new _roomState.RoomState(this.roomId);
+    }
 
+    // this is used by client.js
     this.paginationRequests = {
-      'b': null,
-      'f': null
+      b: null,
+      f: null
     };
     this.name = this.roomId + ":" + new Date().toISOString();
   }
+
   /**
    * Initialise the start and end state with the given events
    *
    * <p>This can only be called before any events are added.
    *
-   * @param {MatrixEvent[]} stateEvents list of state events to initialise the
+   * @param stateEvents - list of state events to initialise the
    * state with.
-   * @throws {Error} if an attempt is made to call this after addEvent is called.
+   * @throws Error if an attempt is made to call this after addEvent is called.
    */
-
-
   initialiseState(stateEvents, {
     timelineWasEmpty
   } = {}) {
     if (this.events.length > 0) {
       throw new Error("Cannot initialise state after events are added");
-    } // We previously deep copied events here and used different copies in
-    // the oldState and state events: this decision seems to date back
-    // quite a way and was apparently made to fix a bug where modifications
-    // made to the start state leaked through to the end state.
-    // This really shouldn't be possible though: the events themselves should
-    // not change. Duplicating the events uses a lot of extra memory,
-    // so we now no longer do it. To assert that they really do never change,
-    // freeze them! Note that we can't do this for events in general:
-    // although it looks like the only things preventing us are the
-    // 'status' flag, forwardLooking (which is only set once when adding to the
-    // timeline) and possibly the sender (which seems like it should never be
-    // reset but in practice causes a lot of the tests to break).
-
-
-    for (const e of stateEvents) {
-      Object.freeze(e);
     }
-
-    this.startState.setStateEvents(stateEvents, {
+    this.startState?.setStateEvents(stateEvents, {
       timelineWasEmpty
     });
-    this.endState.setStateEvents(stateEvents, {
+    this.endState?.setStateEvents(stateEvents, {
       timelineWasEmpty
     });
   }
+
   /**
    * Forks the (live) timeline, taking ownership of the existing directional state of this timeline.
    * All attached listeners will keep receiving state updates from the new live timeline state.
    * The end state of this timeline gets replaced with an independent copy of the current RoomState,
    * and will need a new pagination token if it ever needs to paginate forwards.
-    * @param {string} direction   EventTimeline.BACKWARDS to get the state at the
+    * @param direction -   EventTimeline.BACKWARDS to get the state at the
    *   start of the timeline; EventTimeline.FORWARDS to get the state at the end
    *   of the timeline.
    *
-   * @return {EventTimeline} the new timeline
+   * @returns the new timeline
    */
-
-
   forkLive(direction) {
     const forkState = this.getState(direction);
     const timeline = new EventTimeline(this.eventTimelineSet);
-    timeline.startState = forkState.clone(); // Now clobber the end state of the new live timeline with that from the
+    timeline.startState = forkState?.clone();
+    // Now clobber the end state of the new live timeline with that from the
     // previous live timeline. It will be identical except that we'll keep
     // using the same RoomMember objects for the 'live' set of members with any
     // listeners still attached
-
-    timeline.endState = forkState; // Firstly, we just stole the current timeline's end state, so it needs a new one.
+    timeline.endState = forkState;
+    // Firstly, we just stole the current timeline's end state, so it needs a new one.
     // Make an immutable copy of the state so back pagination will get the correct sentinels.
-
-    this.endState = forkState.clone();
+    this.endState = forkState?.clone();
     return timeline;
   }
+
   /**
    * Creates an independent timeline, inheriting the directional state from this timeline.
    *
-   * @param {string} direction   EventTimeline.BACKWARDS to get the state at the
+   * @param direction -   EventTimeline.BACKWARDS to get the state at the
    *   start of the timeline; EventTimeline.FORWARDS to get the state at the end
    *   of the timeline.
    *
-   * @return {EventTimeline} the new timeline
+   * @returns the new timeline
    */
-
-
   fork(direction) {
     const forkState = this.getState(direction);
     const timeline = new EventTimeline(this.eventTimelineSet);
-    timeline.startState = forkState.clone();
-    timeline.endState = forkState.clone();
+    timeline.startState = forkState?.clone();
+    timeline.endState = forkState?.clone();
     return timeline;
   }
+
   /**
    * Get the ID of the room for this timeline
-   * @return {string} room ID
+   * @returns room ID
    */
-
-
   getRoomId() {
     return this.roomId;
   }
+
   /**
    * Get the filter for this timeline's timelineSet (if any)
-   * @return {Filter} filter
+   * @returns filter
    */
-
-
   getFilter() {
     return this.eventTimelineSet.getFilter();
   }
+
   /**
    * Get the timelineSet for this timeline
-   * @return {EventTimelineSet} timelineSet
+   * @returns timelineSet
    */
-
-
   getTimelineSet() {
     return this.eventTimelineSet;
   }
+
   /**
    * Get the base index.
    *
@@ -243,35 +203,29 @@
    * relative to the base index (although note that a given event's index may
    * well be less than the base index, thus giving that event a negative relative
    * index).
-   *
-   * @return {number}
    */
-
-
   getBaseIndex() {
     return this.baseIndex;
   }
+
   /**
    * Get the list of events in this context
    *
-   * @return {MatrixEvent[]} An array of MatrixEvents
+   * @returns An array of MatrixEvents
    */
-
-
   getEvents() {
     return this.events;
   }
+
   /**
    * Get the room state at the start/end of the timeline
    *
-   * @param {string} direction   EventTimeline.BACKWARDS to get the state at the
+   * @param direction -   EventTimeline.BACKWARDS to get the state at the
    *   start of the timeline; EventTimeline.FORWARDS to get the state at the end
    *   of the timeline.
    *
-   * @return {RoomState} state at the start/end of the timeline
+   * @returns state at the start/end of the timeline
    */
-
-
   getState(direction) {
     if (direction == EventTimeline.BACKWARDS) {
       return this.startState;
@@ -281,45 +235,54 @@
       throw new Error("Invalid direction '" + direction + "'");
     }
   }
+
   /**
    * Get a pagination token
    *
-   * @param {string} direction   EventTimeline.BACKWARDS to get the pagination
+   * @param direction -   EventTimeline.BACKWARDS to get the pagination
    *   token for going backwards in time; EventTimeline.FORWARDS to get the
    *   pagination token for going forwards in time.
    *
-   * @return {?string} pagination token
+   * @returns pagination token
    */
-
-
   getPaginationToken(direction) {
-    return this.getState(direction).paginationToken;
+    if (this.roomId) {
+      return this.getState(direction).paginationToken;
+    } else if (direction === Direction.Backward) {
+      return this.startToken;
+    } else {
+      return this.endToken;
+    }
   }
+
   /**
    * Set a pagination token
    *
-   * @param {?string} token       pagination token
+   * @param token -       pagination token
    *
-   * @param {string} direction    EventTimeline.BACKWARDS to set the paginatio
+   * @param direction -    EventTimeline.BACKWARDS to set the pagination
    *   token for going backwards in time; EventTimeline.FORWARDS to set the
    *   pagination token for going forwards in time.
    */
-
-
   setPaginationToken(token, direction) {
-    this.getState(direction).paginationToken = token;
+    if (this.roomId) {
+      this.getState(direction).paginationToken = token;
+    } else if (direction === Direction.Backward) {
+      this.startToken = token;
+    } else {
+      this.endToken = token;
+    }
   }
+
   /**
    * Get the next timeline in the series
    *
-   * @param {string} direction EventTimeline.BACKWARDS to get the previous
+   * @param direction - EventTimeline.BACKWARDS to get the previous
    *   timeline; EventTimeline.FORWARDS to get the next timeline.
    *
-   * @return {?EventTimeline} previous or following timeline, if they have been
+   * @returns previous or following timeline, if they have been
    * joined up.
    */
-
-
   getNeighbouringTimeline(direction) {
     if (direction == EventTimeline.BACKWARDS) {
       return this.prevTimeline;
@@ -329,48 +292,45 @@
       throw new Error("Invalid direction '" + direction + "'");
     }
   }
+
   /**
    * Set the next timeline in the series
    *
-   * @param {EventTimeline} neighbour previous/following timeline
+   * @param neighbour - previous/following timeline
    *
-   * @param {string} direction EventTimeline.BACKWARDS to set the previous
+   * @param direction - EventTimeline.BACKWARDS to set the previous
    *   timeline; EventTimeline.FORWARDS to set the next timeline.
    *
-   * @throws {Error} if an attempt is made to set the neighbouring timeline when
+   * @throws Error if an attempt is made to set the neighbouring timeline when
    * it is already set.
    */
-
-
   setNeighbouringTimeline(neighbour, direction) {
     if (this.getNeighbouringTimeline(direction)) {
       throw new Error("timeline already has a neighbouring timeline - " + "cannot reset neighbour (direction: " + direction + ")");
     }
-
     if (direction == EventTimeline.BACKWARDS) {
       this.prevTimeline = neighbour;
     } else if (direction == EventTimeline.FORWARDS) {
       this.nextTimeline = neighbour;
     } else {
       throw new Error("Invalid direction '" + direction + "'");
-    } // make sure we don't try to paginate this timeline
-
+    }
 
+    // make sure we don't try to paginate this timeline
     this.setPaginationToken(null, direction);
   }
+
   /**
    * Add a new event to the timeline, and update the state
    *
-   * @param {MatrixEvent} event   new event
-   * @param {IAddEventOptions} options addEvent options
+   * @param event - new event
+   * @param options - addEvent options
    */
 
-
   addEvent(event, toStartOfTimelineOrOpts, roomState) {
     let toStartOfTimeline = !!toStartOfTimelineOrOpts;
     let timelineWasEmpty;
-
-    if (typeof toStartOfTimelineOrOpts === 'object') {
+    if (typeof toStartOfTimelineOrOpts === "object") {
       ({
         toStartOfTimeline,
         roomState,
@@ -379,22 +339,21 @@
     } else if (toStartOfTimelineOrOpts !== undefined) {
       // Deprecation warning
       // FIXME: Remove after 2023-06-01 (technical debt)
-      _logger.logger.warn('Overload deprecated: ' + '`EventTimeline.addEvent(event, toStartOfTimeline, roomState?)` ' + 'is deprecated in favor of the overload with `EventTimeline.addEvent(event, IAddEventOptions)`');
+      _logger.logger.warn("Overload deprecated: " + "`EventTimeline.addEvent(event, toStartOfTimeline, roomState?)` " + "is deprecated in favor of the overload with `EventTimeline.addEvent(event, IAddEventOptions)`");
     }
-
     if (!roomState) {
       roomState = toStartOfTimeline ? this.startState : this.endState;
     }
-
     const timelineSet = this.getTimelineSet();
-
     if (timelineSet.room) {
-      EventTimeline.setEventMetadata(event, roomState, toStartOfTimeline); // modify state but only on unfiltered timelineSets
+      EventTimeline.setEventMetadata(event, roomState, toStartOfTimeline);
 
+      // modify state but only on unfiltered timelineSets
       if (event.isState() && timelineSet.room.getUnfilteredTimelineSet() === timelineSet) {
-        roomState.setStateEvents([event], {
+        roomState?.setStateEvents([event], {
           timelineWasEmpty
-        }); // it is possible that the act of setting the state event means we
+        });
+        // it is possible that the act of setting the state event means we
         // can set more metadata (specifically sender/target props), so try
         // it again if the prop wasn't previously set. It may also mean that
         // the sender/target is updated (if the event set was a room member event)
@@ -404,67 +363,52 @@
         // back in time, else we'll set the .sender value for BEFORE the given
         // member event, whereas we want to set the .sender value for the ACTUAL
         // member event itself.
-
-        if (!event.sender || event.getType() === "m.room.member" && !toStartOfTimeline) {
+        if (!event.sender || event.getType() === _event.EventType.RoomMember && !toStartOfTimeline) {
           EventTimeline.setEventMetadata(event, roomState, toStartOfTimeline);
         }
       }
     }
-
     let insertIndex;
-
     if (toStartOfTimeline) {
       insertIndex = 0;
     } else {
       insertIndex = this.events.length;
     }
-
     this.events.splice(insertIndex, 0, event); // insert element
-
     if (toStartOfTimeline) {
       this.baseIndex++;
     }
   }
+
   /**
    * Remove an event from the timeline
    *
-   * @param {string} eventId  ID of event to be removed
-   * @return {?MatrixEvent} removed event, or null if not found
+   * @param eventId -  ID of event to be removed
+   * @returns removed event, or null if not found
    */
-
-
   removeEvent(eventId) {
     for (let i = this.events.length - 1; i >= 0; i--) {
       const ev = this.events[i];
-
       if (ev.getId() == eventId) {
         this.events.splice(i, 1);
-
         if (i < this.baseIndex) {
           this.baseIndex--;
         }
-
         return ev;
       }
     }
-
     return null;
   }
+
   /**
    * Return a string to identify this timeline, for debugging
    *
-   * @return {string} name for this timeline
+   * @returns name for this timeline
    */
-
-
   toString() {
     return this.name;
   }
-
 }
-
 exports.EventTimeline = EventTimeline;
-
 _defineProperty(EventTimeline, "BACKWARDS", Direction.Backward);
-
 _defineProperty(EventTimeline, "FORWARDS", Direction.Forward);
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/event-timeline-set.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/event-timeline-set.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/event-timeline-set.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/event-timeline-set.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,37 +4,31 @@
   value: true
 });
 exports.EventTimelineSet = exports.DuplicateStrategy = void 0;
-
 var _eventTimeline = require("./event-timeline");
-
 var _logger = require("../logger");
-
 var _room = require("./room");
-
 var _typedEventEmitter = require("./typed-event-emitter");
-
 var _relationsContainer = require("./relations-container");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 const DEBUG = true;
-let debuglog;
 
+/* istanbul ignore next */
+let debuglog;
 if (DEBUG) {
   // using bind means that we get to keep useful line numbers in the console
   debuglog = _logger.logger.log.bind(_logger.logger);
 } else {
+  /* istanbul ignore next */
   debuglog = function () {};
 }
-
 let DuplicateStrategy;
 exports.DuplicateStrategy = DuplicateStrategy;
-
 (function (DuplicateStrategy) {
   DuplicateStrategy["Ignore"] = "ignore";
   DuplicateStrategy["Replace"] = "replace";
 })(DuplicateStrategy || (exports.DuplicateStrategy = DuplicateStrategy = {}));
-
 class EventTimelineSet extends _typedEventEmitter.TypedEventEmitter {
   /**
    * Construct a set of EventTimeline objects, typically on behalf of a given
@@ -57,154 +51,131 @@
    * <p>In order that we can find events from their ids later, we also maintain a
    * map from event_id to timeline and index.
    *
-   * @constructor
-   * @param {Room=} room
-   * Room for this timelineSet. May be null for non-room cases, such as the
+   * @param room - Room for this timelineSet. May be null for non-room cases, such as the
    * notification timeline.
-   * @param {Object} opts Options inherited from Room.
-   *
-   * @param {boolean} [opts.timelineSupport = false]
-   * Set to true to enable improved timeline support.
-   * @param {Object} [opts.filter = null]
-   * The filter object, if any, for this timelineSet.
-   * @param {MatrixClient=} client the Matrix client which owns this EventTimelineSet,
+   * @param opts - Options inherited from Room.
+   * @param client - the Matrix client which owns this EventTimelineSet,
    * can be omitted if room is specified.
-   * @param {Thread=} thread the thread to which this timeline set relates.
+   * @param thread - the thread to which this timeline set relates.
+   * @param isThreadTimeline - Whether this timeline set relates to a thread list timeline
+   * (e.g., All threads or My threads)
    */
-  constructor(room, opts = {}, client, thread) {
+  constructor(room, opts = {}, client, thread, threadListType = null) {
     super();
     this.room = room;
     this.thread = thread;
-
+    this.threadListType = threadListType;
     _defineProperty(this, "relations", void 0);
-
     _defineProperty(this, "timelineSupport", void 0);
-
     _defineProperty(this, "displayPendingEvents", void 0);
-
     _defineProperty(this, "liveTimeline", void 0);
-
     _defineProperty(this, "timelines", void 0);
-
     _defineProperty(this, "_eventIdToTimeline", new Map());
-
     _defineProperty(this, "filter", void 0);
-
     this.timelineSupport = Boolean(opts.timelineSupport);
     this.liveTimeline = new _eventTimeline.EventTimeline(this);
-    this.displayPendingEvents = opts.pendingEvents !== false; // just a list - *not* ordered.
+    this.displayPendingEvents = opts.pendingEvents !== false;
 
+    // just a list - *not* ordered.
     this.timelines = [this.liveTimeline];
     this._eventIdToTimeline = new Map();
     this.filter = opts.filter;
     this.relations = this.room?.relations ?? new _relationsContainer.RelationsContainer(room?.client ?? client);
   }
+
   /**
    * Get all the timelines in this set
-   * @return {module:models/event-timeline~EventTimeline[]} the timelines in this set
+   * @returns the timelines in this set
    */
-
-
   getTimelines() {
     return this.timelines;
   }
+
   /**
    * Get the filter object this timeline set is filtered on, if any
-   * @return {?Filter} the optional filter for this timelineSet
+   * @returns the optional filter for this timelineSet
    */
-
-
   getFilter() {
     return this.filter;
   }
+
   /**
    * Set the filter object this timeline set is filtered on
    * (passed to the server when paginating via /messages).
-   * @param {Filter} filter the filter for this timelineSet
+   * @param filter - the filter for this timelineSet
    */
-
-
   setFilter(filter) {
     this.filter = filter;
   }
+
   /**
    * Get the list of pending sent events for this timelineSet's room, filtered
    * by the timelineSet's filter if appropriate.
    *
-   * @return {module:models/event.MatrixEvent[]} A list of the sent events
+   * @returns A list of the sent events
    * waiting for remote echo.
    *
-   * @throws If <code>opts.pendingEventOrdering</code> was not 'detached'
+   * @throws If `opts.pendingEventOrdering` was not 'detached'
    */
-
-
   getPendingEvents() {
     if (!this.room || !this.displayPendingEvents) {
       return [];
     }
-
     return this.room.getPendingEvents();
   }
   /**
    * Get the live timeline for this room.
    *
-   * @return {module:models/event-timeline~EventTimeline} live timeline
+   * @returns live timeline
    */
-
-
   getLiveTimeline() {
     return this.liveTimeline;
   }
+
   /**
    * Set the live timeline for this room.
    *
-   * @return {module:models/event-timeline~EventTimeline} live timeline
+   * @returns live timeline
    */
-
-
   setLiveTimeline(timeline) {
     this.liveTimeline = timeline;
   }
+
   /**
    * Return the timeline (if any) this event is in.
-   * @param {String} eventId the eventId being sought
-   * @return {module:models/event-timeline~EventTimeline} timeline
+   * @param eventId - the eventId being sought
+   * @returns timeline
    */
-
-
   eventIdToTimeline(eventId) {
     return this._eventIdToTimeline.get(eventId);
   }
+
   /**
    * Track a new event as if it were in the same timeline as an old event,
    * replacing it.
-   * @param {String} oldEventId  event ID of the original event
-   * @param {String} newEventId  event ID of the replacement event
+   * @param oldEventId -  event ID of the original event
+   * @param newEventId -  event ID of the replacement event
    */
-
-
   replaceEventId(oldEventId, newEventId) {
     const existingTimeline = this._eventIdToTimeline.get(oldEventId);
-
     if (existingTimeline) {
       this._eventIdToTimeline.delete(oldEventId);
-
       this._eventIdToTimeline.set(newEventId, existingTimeline);
     }
   }
+
   /**
    * Reset the live timeline, and start a new one.
    *
    * <p>This is used when /sync returns a 'limited' timeline.
    *
-   * @param {string=} backPaginationToken   token for back-paginating the new timeline
-   * @param {string=} forwardPaginationToken token for forward-paginating the old live timeline,
+   * @param backPaginationToken -   token for back-paginating the new timeline
+   * @param forwardPaginationToken - token for forward-paginating the old live timeline,
    * if absent or null, all timelines are reset.
    *
-   * @fires module:client~MatrixClient#event:"Room.timelineReset"
+   * @remarks
+   * Fires {@link RoomEvent.TimelineReset}
    */
-
-
   resetLiveTimeline(backPaginationToken, forwardPaginationToken) {
     // Each EventTimeline has RoomState objects tracking the state at the start
     // and end of that timeline. The copies at the end of the live timeline are
@@ -213,121 +184,115 @@
     // current live timeline to the end of the new one and, if necessary,
     // replace it with a newly created one. We also make a copy for the start
     // of the new timeline.
+
     // if timeline support is disabled, forget about the old timelines
     const resetAllTimelines = !this.timelineSupport || !forwardPaginationToken;
     const oldTimeline = this.liveTimeline;
     const newTimeline = resetAllTimelines ? oldTimeline.forkLive(_eventTimeline.EventTimeline.FORWARDS) : oldTimeline.fork(_eventTimeline.EventTimeline.FORWARDS);
-
     if (resetAllTimelines) {
       this.timelines = [newTimeline];
       this._eventIdToTimeline = new Map();
     } else {
       this.timelines.push(newTimeline);
     }
-
     if (forwardPaginationToken) {
       // Now set the forward pagination token on the old live timeline
       // so it can be forward-paginated.
       oldTimeline.setPaginationToken(forwardPaginationToken, _eventTimeline.EventTimeline.FORWARDS);
-    } // make sure we set the pagination token before firing timelineReset,
+    }
+
+    // make sure we set the pagination token before firing timelineReset,
     // otherwise clients which start back-paginating will fail, and then get
     // stuck without realising that they *can* back-paginate.
+    newTimeline.setPaginationToken(backPaginationToken ?? null, _eventTimeline.EventTimeline.BACKWARDS);
 
-
-    newTimeline.setPaginationToken(backPaginationToken, _eventTimeline.EventTimeline.BACKWARDS); // Now we can swap the live timeline to the new one.
-
+    // Now we can swap the live timeline to the new one.
     this.liveTimeline = newTimeline;
     this.emit(_room.RoomEvent.TimelineReset, this.room, this, resetAllTimelines);
   }
+
   /**
    * Get the timeline which contains the given event, if any
    *
-   * @param {string} eventId  event ID to look for
-   * @return {?module:models/event-timeline~EventTimeline} timeline containing
+   * @param eventId -  event ID to look for
+   * @returns timeline containing
    * the given event, or null if unknown
    */
-
-
   getTimelineForEvent(eventId) {
+    if (eventId === null || eventId === undefined) {
+      return null;
+    }
     const res = this._eventIdToTimeline.get(eventId);
-
     return res === undefined ? null : res;
   }
+
   /**
    * Get an event which is stored in our timelines
    *
-   * @param {string} eventId  event ID to look for
-   * @return {?module:models/event~MatrixEvent} the given event, or undefined if unknown
+   * @param eventId -  event ID to look for
+   * @returns the given event, or undefined if unknown
    */
-
-
   findEventById(eventId) {
     const tl = this.getTimelineForEvent(eventId);
-
     if (!tl) {
       return undefined;
     }
-
     return tl.getEvents().find(function (ev) {
       return ev.getId() == eventId;
     });
   }
+
   /**
    * Add a new timeline to this timeline list
    *
-   * @return {module:models/event-timeline~EventTimeline} newly-created timeline
+   * @returns newly-created timeline
    */
-
-
   addTimeline() {
     if (!this.timelineSupport) {
       throw new Error("timeline support is disabled. Set the 'timelineSupport'" + " parameter to true when creating MatrixClient to enable" + " it.");
     }
-
     const timeline = new _eventTimeline.EventTimeline(this);
     this.timelines.push(timeline);
     return timeline;
   }
+
   /**
    * Add events to a timeline
    *
    * <p>Will fire "Room.timeline" for each event added.
    *
-   * @param {MatrixEvent[]} events A list of events to add.
+   * @param events - A list of events to add.
    *
-   * @param {boolean} toStartOfTimeline   True to add these events to the start
+   * @param toStartOfTimeline -   True to add these events to the start
    * (oldest) instead of the end (newest) of the timeline. If true, the oldest
    * event will be the <b>last</b> element of 'events'.
    *
-   * @param {module:models/event-timeline~EventTimeline} timeline   timeline to
+   * @param timeline -   timeline to
    *    add events to.
    *
-   * @param {string=} paginationToken   token for the next batch of events
+   * @param paginationToken -   token for the next batch of events
    *
-   * @fires module:client~MatrixClient#event:"Room.timeline"
+   * @remarks
+   * Fires {@link RoomEvent.Timeline}
    *
    */
-
-
   addEventsToTimeline(events, toStartOfTimeline, timeline, paginationToken) {
     if (!timeline) {
       throw new Error("'timeline' not specified for EventTimelineSet.addEventsToTimeline");
     }
-
     if (!toStartOfTimeline && timeline == this.liveTimeline) {
       throw new Error("EventTimelineSet.addEventsToTimeline cannot be used for adding events to " + "the live timeline - use Room.addLiveEvents instead");
     }
-
     if (this.filter) {
       events = this.filter.filterRoomTimeline(events);
-
       if (!events.length) {
         return;
       }
     }
-
     const direction = toStartOfTimeline ? _eventTimeline.EventTimeline.BACKWARDS : _eventTimeline.EventTimeline.FORWARDS;
-    const inverseDirection = toStartOfTimeline ? _eventTimeline.EventTimeline.FORWARDS : _eventTimeline.EventTimeline.BACKWARDS; // Adding events to timelines can be quite complicated. The following
+    const inverseDirection = toStartOfTimeline ? _eventTimeline.EventTimeline.FORWARDS : _eventTimeline.EventTimeline.BACKWARDS;
+
+    // Adding events to timelines can be quite complicated. The following
     // illustrates some of the corner-cases.
     //
     // Let's say we start by knowing about four timelines. timeline3 and
@@ -398,13 +363,9 @@
 
     let didUpdate = false;
     let lastEventWasNew = false;
-
-    for (let i = 0; i < events.length; i++) {
-      const event = events[i];
+    for (const event of events) {
       const eventId = event.getId();
-
       const existingTimeline = this._eventIdToTimeline.get(eventId);
-
       if (!existingTimeline) {
         // we don't know about this event yet. Just add it to the timeline.
         this.addEventToTimeline(event, timeline, {
@@ -414,16 +375,12 @@
         didUpdate = true;
         continue;
       }
-
       lastEventWasNew = false;
-
       if (existingTimeline == timeline) {
         debuglog("Event " + eventId + " already in timeline " + timeline);
         continue;
       }
-
       const neighbour = timeline.getNeighbouringTimeline(direction);
-
       if (neighbour) {
         // this timeline already has a neighbour in the relevant direction;
         // let's assume the timelines are already correctly linked up, and
@@ -439,31 +396,27 @@
         } else {
           debuglog("Event " + eventId + " already in a different " + "timeline " + existingTimeline);
         }
-
         timeline = existingTimeline;
         continue;
-      } // time to join the timelines.
-
-
-      _logger.logger.info("Already have timeline for " + eventId + " - joining timeline " + timeline + " to " + existingTimeline); // Variables to keep the line length limited below.
+      }
 
+      // time to join the timelines.
+      _logger.logger.info("Already have timeline for " + eventId + " - joining timeline " + timeline + " to " + existingTimeline);
 
+      // Variables to keep the line length limited below.
       const existingIsLive = existingTimeline === this.liveTimeline;
       const timelineIsLive = timeline === this.liveTimeline;
       const backwardsIsLive = direction === _eventTimeline.EventTimeline.BACKWARDS && existingIsLive;
       const forwardsIsLive = direction === _eventTimeline.EventTimeline.FORWARDS && timelineIsLive;
-
       if (backwardsIsLive || forwardsIsLive) {
         // The live timeline should never be spliced into a non-live position.
         // We use independent logging to better discover the problem at a glance.
         if (backwardsIsLive) {
           _logger.logger.warn("Refusing to set a preceding existingTimeLine on our " + "timeline as the existingTimeLine is live (" + existingTimeline + ")");
         }
-
         if (forwardsIsLive) {
           _logger.logger.warn("Refusing to set our preceding timeline on a existingTimeLine " + "as our timeline is live (" + timeline + ")");
         }
-
         continue; // abort splicing - try next event
       }
 
@@ -471,40 +424,35 @@
       existingTimeline.setNeighbouringTimeline(timeline, inverseDirection);
       timeline = existingTimeline;
       didUpdate = true;
-    } // see above - if the last event was new to us, or if we didn't find any
+    }
+
+    // see above - if the last event was new to us, or if we didn't find any
     // new information, we update the pagination token for whatever
     // timeline we ended up on.
-
-
     if (lastEventWasNew || !didUpdate) {
       if (direction === _eventTimeline.EventTimeline.FORWARDS && timeline === this.liveTimeline) {
         _logger.logger.warn({
           lastEventWasNew,
           didUpdate
         }); // for debugging
-
-
         _logger.logger.warn(`Refusing to set forwards pagination token of live timeline ` + `${timeline} to ${paginationToken}`);
-
         return;
       }
-
-      timeline.setPaginationToken(paginationToken, direction);
+      timeline.setPaginationToken(paginationToken ?? null, direction);
     }
   }
+
   /**
    * Add an event to the end of this live timeline.
    *
-   * @param {MatrixEvent} event Event to be added
-   * @param {IAddLiveEventOptions} options addLiveEvent options
+   * @param event - Event to be added
+   * @param options - addLiveEvent options
    */
 
-
   addLiveEvent(event, duplicateStrategyOrOpts, fromCache = false, roomState) {
     let duplicateStrategy = duplicateStrategyOrOpts || DuplicateStrategy.Ignore;
     let timelineWasEmpty;
-
-    if (typeof duplicateStrategyOrOpts === 'object') {
+    if (typeof duplicateStrategyOrOpts === "object") {
       ({
         duplicateStrategy = DuplicateStrategy.Ignore,
         fromCache = false,
@@ -514,45 +462,37 @@
     } else if (duplicateStrategyOrOpts !== undefined) {
       // Deprecation warning
       // FIXME: Remove after 2023-06-01 (technical debt)
-      _logger.logger.warn('Overload deprecated: ' + '`EventTimelineSet.addLiveEvent(event, duplicateStrategy?, fromCache?, roomState?)` ' + 'is deprecated in favor of the overload with ' + '`EventTimelineSet.addLiveEvent(event, IAddLiveEventOptions)`');
+      _logger.logger.warn("Overload deprecated: " + "`EventTimelineSet.addLiveEvent(event, duplicateStrategy?, fromCache?, roomState?)` " + "is deprecated in favor of the overload with " + "`EventTimelineSet.addLiveEvent(event, IAddLiveEventOptions)`");
     }
-
     if (this.filter) {
       const events = this.filter.filterRoomTimeline([event]);
-
       if (!events.length) {
         return;
       }
     }
-
     const timeline = this._eventIdToTimeline.get(event.getId());
-
     if (timeline) {
       if (duplicateStrategy === DuplicateStrategy.Replace) {
         debuglog("EventTimelineSet.addLiveEvent: replacing duplicate event " + event.getId());
         const tlEvents = timeline.getEvents();
-
         for (let j = 0; j < tlEvents.length; j++) {
           if (tlEvents[j].getId() === event.getId()) {
             // still need to set the right metadata on this event
             if (!roomState) {
               roomState = timeline.getState(_eventTimeline.EventTimeline.FORWARDS);
             }
-
             _eventTimeline.EventTimeline.setEventMetadata(event, roomState, false);
+            tlEvents[j] = event;
 
-            tlEvents[j] = event; // XXX: we need to fire an event when this happens.
-
+            // XXX: we need to fire an event when this happens.
             break;
           }
         }
       } else {
         debuglog("EventTimelineSet.addLiveEvent: ignoring duplicate event " + event.getId());
       }
-
       return;
     }
-
     this.addEventToTimeline(event, this.liveTimeline, {
       toStartOfTimeline: false,
       fromCache,
@@ -560,25 +500,23 @@
       timelineWasEmpty
     });
   }
+
   /**
    * Add event to the given timeline, and emit Room.timeline. Assumes
    * we have already checked we don't know about this event.
    *
    * Will fire "Room.timeline" for each event added.
    *
-   * @param {MatrixEvent} event
-   * @param {EventTimeline} timeline
-   * @param {IAddEventToTimelineOptions} options addEventToTimeline options
+   * @param options - addEventToTimeline options
    *
-   * @fires module:client~MatrixClient#event:"Room.timeline"
+   * @remarks
+   * Fires {@link RoomEvent.Timeline}
    */
 
-
   addEventToTimeline(event, timeline, toStartOfTimelineOrOpts, fromCache = false, roomState) {
     let toStartOfTimeline = !!toStartOfTimelineOrOpts;
     let timelineWasEmpty;
-
-    if (typeof toStartOfTimelineOrOpts === 'object') {
+    if (typeof toStartOfTimelineOrOpts === "object") {
       ({
         toStartOfTimeline,
         fromCache = false,
@@ -588,18 +526,33 @@
     } else if (toStartOfTimelineOrOpts !== undefined) {
       // Deprecation warning
       // FIXME: Remove after 2023-06-01 (technical debt)
-      _logger.logger.warn('Overload deprecated: ' + '`EventTimelineSet.addEventToTimeline(event, timeline, toStartOfTimeline, fromCache?, roomState?)` ' + 'is deprecated in favor of the overload with ' + '`EventTimelineSet.addEventToTimeline(event, timeline, IAddEventToTimelineOptions)`');
+      _logger.logger.warn("Overload deprecated: " + "`EventTimelineSet.addEventToTimeline(event, timeline, toStartOfTimeline, fromCache?, roomState?)` " + "is deprecated in favor of the overload with " + "`EventTimelineSet.addEventToTimeline(event, timeline, IAddEventToTimelineOptions)`");
+    }
+    if (timeline.getTimelineSet() !== this) {
+      throw new Error(`EventTimelineSet.addEventToTimeline: Timeline=${timeline.toString()} does not belong " +
+                "in timelineSet(threadId=${this.thread?.id})`);
+    }
+
+    // Make sure events don't get mixed in timelines they shouldn't be in (e.g. a
+    // threaded message should not be in the main timeline).
+    //
+    // We can only run this check for timelines with a `room` because `canContain`
+    // requires it
+    if (this.room && !this.canContain(event)) {
+      let eventDebugString = `event=${event.getId()}`;
+      if (event.threadRootId) {
+        eventDebugString += `(belongs to thread=${event.threadRootId})`;
+      }
+      _logger.logger.warn(`EventTimelineSet.addEventToTimeline: Ignoring ${eventDebugString} that does not belong ` + `in timeline=${timeline.toString()} timelineSet(threadId=${this.thread?.id})`);
+      return;
     }
-
     const eventId = event.getId();
     timeline.addEvent(event, {
       toStartOfTimeline,
       roomState,
       timelineWasEmpty
     });
-
     this._eventIdToTimeline.set(eventId, timeline);
-
     this.relations.aggregateParentEvent(event);
     this.relations.aggregateChildEvent(event, this);
     const data = {
@@ -608,25 +561,23 @@
     };
     this.emit(_room.RoomEvent.Timeline, event, this.room, Boolean(toStartOfTimeline), false, data);
   }
+
   /**
    * Replaces event with ID oldEventId with one with newEventId, if oldEventId is
    * recognised.  Otherwise, add to the live timeline.  Used to handle remote echos.
    *
-   * @param {MatrixEvent} localEvent     the new event to be added to the timeline
-   * @param {String} oldEventId          the ID of the original event
-   * @param {boolean} newEventId         the ID of the replacement event
+   * @param localEvent -     the new event to be added to the timeline
+   * @param oldEventId -          the ID of the original event
+   * @param newEventId -         the ID of the replacement event
    *
-   * @fires module:client~MatrixClient#event:"Room.timeline"
+   * @remarks
+   * Fires {@link RoomEvent.Timeline}
    */
-
-
   handleRemoteEcho(localEvent, oldEventId, newEventId) {
     // XXX: why don't we infer newEventId from localEvent?
     const existingTimeline = this._eventIdToTimeline.get(oldEventId);
-
     if (existingTimeline) {
       this._eventIdToTimeline.delete(oldEventId);
-
       this._eventIdToTimeline.set(newEventId, existingTimeline);
     } else if (!this.filter || this.filter.filterRoomTimeline([localEvent]).length) {
       this.addEventToTimeline(localEvent, this.liveTimeline, {
@@ -634,118 +585,99 @@
       });
     }
   }
+
   /**
    * Removes a single event from this room.
    *
-   * @param {String} eventId  The id of the event to remove
+   * @param eventId -  The id of the event to remove
    *
-   * @return {?MatrixEvent} the removed event, or null if the event was not found
+   * @returns the removed event, or null if the event was not found
    * in this room.
    */
-
-
   removeEvent(eventId) {
     const timeline = this._eventIdToTimeline.get(eventId);
-
     if (!timeline) {
       return null;
     }
-
     const removed = timeline.removeEvent(eventId);
-
     if (removed) {
       this._eventIdToTimeline.delete(eventId);
-
       const data = {
         timeline: timeline
       };
       this.emit(_room.RoomEvent.Timeline, removed, this.room, undefined, true, data);
     }
-
     return removed;
   }
+
   /**
    * Determine where two events appear in the timeline relative to one another
    *
-   * @param {string} eventId1   The id of the first event
-   * @param {string} eventId2   The id of the second event
-    * @return {?number} a number less than zero if eventId1 precedes eventId2, and
+   * @param eventId1 -   The id of the first event
+   * @param eventId2 -   The id of the second event
+    * @returns a number less than zero if eventId1 precedes eventId2, and
    *    greater than zero if eventId1 succeeds eventId2. zero if they are the
    *    same event; null if we can't tell (either because we don't know about one
    *    of the events, or because they are in separate timelines which don't join
    *    up).
    */
-
-
   compareEventOrdering(eventId1, eventId2) {
     if (eventId1 == eventId2) {
       // optimise this case
       return 0;
     }
-
     const timeline1 = this._eventIdToTimeline.get(eventId1);
-
     const timeline2 = this._eventIdToTimeline.get(eventId2);
-
     if (timeline1 === undefined) {
       return null;
     }
-
     if (timeline2 === undefined) {
       return null;
     }
-
     if (timeline1 === timeline2) {
-      // both events are in the same timeline - figure out their
-      // relative indices
-      let idx1;
-      let idx2;
+      // both events are in the same timeline - figure out their relative indices
+      let idx1 = undefined;
+      let idx2 = undefined;
       const events = timeline1.getEvents();
-
       for (let idx = 0; idx < events.length && (idx1 === undefined || idx2 === undefined); idx++) {
         const evId = events[idx].getId();
-
         if (evId == eventId1) {
           idx1 = idx;
         }
-
         if (evId == eventId2) {
           idx2 = idx;
         }
       }
-
       return idx1 - idx2;
-    } // the events are in different timelines. Iterate through the
-    // linkedlist to see which comes first.
-    // first work forwards from timeline1
+    }
 
+    // the events are in different timelines. Iterate through the
+    // linkedlist to see which comes first.
 
+    // first work forwards from timeline1
     let tl = timeline1;
-
     while (tl) {
       if (tl === timeline2) {
         // timeline1 is before timeline2
         return -1;
       }
-
       tl = tl.getNeighbouringTimeline(_eventTimeline.EventTimeline.FORWARDS);
-    } // now try backwards from timeline1
-
+    }
 
+    // now try backwards from timeline1
     tl = timeline1;
-
     while (tl) {
       if (tl === timeline2) {
         // timeline2 is before timeline1
         return 1;
       }
-
       tl = tl.getNeighbouringTimeline(_eventTimeline.EventTimeline.BACKWARDS);
-    } // the timelines are not contiguous.
-
+    }
 
+    // the timelines are not contiguous.
     return null;
   }
+
   /**
    * Determine whether a given event can sanely be added to this event timeline set,
    * for timeline sets relating to a thread, only return true for events in the same
@@ -753,69 +685,22 @@
    * for events which should be shown in the main room timeline.
    * Requires the `room` property to have been set at EventTimelineSet construction time.
    *
-   * @param event {MatrixEvent} the event to check whether it belongs to this timeline set.
-   * @throws {Error} if `room` was not set when constructing this timeline set.
-   * @return {boolean} whether the event belongs to this timeline set.
+   * @param event - the event to check whether it belongs to this timeline set.
+   * @throws Error if `room` was not set when constructing this timeline set.
+   * @returns whether the event belongs to this timeline set.
    */
-
-
   canContain(event) {
     if (!this.room) {
       throw new Error("Cannot call `EventTimelineSet::canContain without a `room` set. " + "Set the room when creating the EventTimelineSet to call this method.");
     }
-
     const {
       threadId,
       shouldLiveInRoom
     } = this.room.eventShouldLiveIn(event);
-
     if (this.thread) {
       return this.thread.id === threadId;
     }
-
     return shouldLiveInRoom;
   }
-
 }
-/**
- * Fires whenever the timeline in a room is updated.
- * @event module:client~MatrixClient#"Room.timeline"
- * @param {MatrixEvent} event The matrix event which caused this event to fire.
- * @param {?Room} room The room, if any, whose timeline was updated.
- * @param {boolean} toStartOfTimeline True if this event was added to the start
- * @param {boolean} removed True if this event has just been removed from the timeline
- * (beginning; oldest) of the timeline e.g. due to pagination.
- *
- * @param {object} data  more data about the event
- *
- * @param {module:models/event-timeline.EventTimeline} data.timeline the timeline the
- * event was added to/removed from
- *
- * @param {boolean} data.liveEvent true if the event was a real-time event
- * added to the end of the live timeline
- *
- * @example
- * matrixClient.on("Room.timeline",
- *                 function(event, room, toStartOfTimeline, removed, data) {
- *   if (!toStartOfTimeline && data.liveEvent) {
- *     var messageToAppend = room.timeline.[room.timeline.length - 1];
- *   }
- * });
- */
-
-/**
- * Fires whenever the live timeline in a room is reset.
- *
- * When we get a 'limited' sync (for example, after a network outage), we reset
- * the live timeline to be empty before adding the recent events to the new
- * timeline. This event is fired after the timeline is reset, and before the
- * new events are added.
- *
- * @event module:client~MatrixClient#"Room.timelineReset"
- * @param {Room} room The room whose live timeline was reset, if any
- * @param {EventTimelineSet} timelineSet timelineSet room whose live timeline was reset
- * @param {boolean} resetAllTimelines True if all timelines were reset.
- */
-
-
 exports.EventTimelineSet = EventTimelineSet;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/invites-ignorer.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/invites-ignorer.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/invites-ignorer.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/invites-ignorer.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,15 +4,10 @@
   value: true
 });
 exports.PolicyScope = exports.POLICIES_ACCOUNT_EVENT_TYPE = exports.IgnoredInvites = exports.IGNORE_INVITES_ACCOUNT_EVENT_KEY = void 0;
-
 var _matrixEventsSdk = require("matrix-events-sdk");
-
 var _eventTimeline = require("./event-timeline");
-
 var _partials = require("../@types/partials");
-
 var _utils = require("../utils");
-
 /*
 Copyright 2022 The Matrix.org Foundation C.I.C.
 
@@ -28,26 +23,27 @@
 See the License for the specific language governing permissions and
 limitations under the License.
 */
+
 /// The event type storing the user's individual policies.
 ///
 /// Exported for testing purposes.
-const POLICIES_ACCOUNT_EVENT_TYPE = new _matrixEventsSdk.UnstableValue("m.policies", "org.matrix.msc3847.policies"); /// The key within the user's individual policies storing the user's ignored invites.
+const POLICIES_ACCOUNT_EVENT_TYPE = new _matrixEventsSdk.UnstableValue("m.policies", "org.matrix.msc3847.policies");
+
+/// The key within the user's individual policies storing the user's ignored invites.
 ///
 /// Exported for testing purposes.
-
 exports.POLICIES_ACCOUNT_EVENT_TYPE = POLICIES_ACCOUNT_EVENT_TYPE;
-const IGNORE_INVITES_ACCOUNT_EVENT_KEY = new _matrixEventsSdk.UnstableValue("m.ignore.invites", "org.matrix.msc3847.ignore.invites"); /// The types of recommendations understood.
+const IGNORE_INVITES_ACCOUNT_EVENT_KEY = new _matrixEventsSdk.UnstableValue("m.ignore.invites", "org.matrix.msc3847.ignore.invites");
 
+/// The types of recommendations understood.
 exports.IGNORE_INVITES_ACCOUNT_EVENT_KEY = IGNORE_INVITES_ACCOUNT_EVENT_KEY;
 var PolicyRecommendation;
 /**
  * The various scopes for policies.
  */
-
 (function (PolicyRecommendation) {
   PolicyRecommendation["Ban"] = "m.ban";
 })(PolicyRecommendation || (PolicyRecommendation = {}));
-
 let PolicyScope;
 /**
  * A container for ignored invites.
@@ -59,29 +55,25 @@
  * applications turn out to require longer lists, we may need to rework
  * our data structures.
  */
-
 exports.PolicyScope = PolicyScope;
-
 (function (PolicyScope) {
   PolicyScope["User"] = "m.policy.user";
   PolicyScope["Room"] = "m.policy.room";
   PolicyScope["Server"] = "m.policy.server";
 })(PolicyScope || (exports.PolicyScope = PolicyScope = {}));
-
 class IgnoredInvites {
   constructor(client) {
     this.client = client;
   }
+
   /**
    * Add a new rule.
    *
-   * @param scope The scope for this rule.
-   * @param entity The entity covered by this rule. Globs are supported.
-   * @param reason A human-readable reason for introducing this new rule.
-   * @return The event id for the new rule.
+   * @param scope - The scope for this rule.
+   * @param entity - The entity covered by this rule. Globs are supported.
+   * @param reason - A human-readable reason for introducing this new rule.
+   * @returns The event id for the new rule.
    */
-
-
   async addRule(scope, entity, reason) {
     const target = await this.getOrCreateTargetRoom();
     const response = await this.client.sendStateEvent(target.roomId, scope, {
@@ -91,21 +83,21 @@
     });
     return response.event_id;
   }
+
   /**
    * Remove a rule.
    */
-
-
   async removeRule(event) {
     await this.client.redactEvent(event.getRoomId(), event.getId());
   }
+
   /**
    * Add a new room to the list of sources. If the user isn't a member of the
    * room, attempt to join it.
    *
-   * @param roomId A valid room id. If this room is already in the list
+   * @param roomId - A valid room id. If this room is already in the list
    * of sources, it will not be duplicated.
-   * @return `true` if the source was added, `false` if it was already present.
+   * @returns `true` if the source was added, `false` if it was already present.
    * @throws If `roomId` isn't the id of a room that the current user is already
    * member of or can join.
    *
@@ -115,36 +107,32 @@
    * This rewrite is inherently racy and could overwrite or be overwritten by
    * other concurrent rewrites of the same object.
    */
-
-
   async addSource(roomId) {
     // We attempt to join the room *before* calling
     // `await this.getOrCreateSourceRooms()` to decrease the duration
     // of the racy section.
-    await this.client.joinRoom(roomId); // Race starts.
-
+    await this.client.joinRoom(roomId);
+    // Race starts.
     const sources = (await this.getOrCreateSourceRooms()).map(room => room.roomId);
-
     if (sources.includes(roomId)) {
       return false;
     }
-
     sources.push(roomId);
     await this.withIgnoreInvitesPolicies(ignoreInvitesPolicies => {
       ignoreInvitesPolicies.sources = sources;
-    }); // Race ends.
+    });
 
+    // Race ends.
     return true;
   }
+
   /**
    * Find out whether an invite should be ignored.
    *
-   * @param sender The user id for the user who issued the invite.
-   * @param roomId The room to which the user is invited.
+   * @param sender - The user id for the user who issued the invite.
+   * @param roomId - The room to which the user is invited.
    * @returns A rule matching the entity, if any was found, `null` otherwise.
    */
-
-
   async getRuleForInvite({
     sender,
     roomId
@@ -162,10 +150,8 @@
     const policyRooms = await this.getOrCreateSourceRooms();
     const senderServer = sender.split(":")[1];
     const roomServer = roomId.split(":")[1];
-
     for (const room of policyRooms) {
       const state = room.getUnfilteredTimelineSet().getLiveTimeline().getState(_eventTimeline.EventTimeline.FORWARDS);
-
       for (const {
         scope,
         entities
@@ -180,43 +166,37 @@
         entities: [senderServer, roomServer]
       }]) {
         const events = state.getStateEvents(scope);
-
         for (const event of events) {
           const content = event.getContent();
-
           if (content?.recommendation != PolicyRecommendation.Ban) {
             // Ignoring invites only looks at `m.ban` recommendations.
             continue;
           }
-
           const glob = content?.entity;
-
           if (!glob) {
             // Invalid event.
             continue;
           }
-
           let regexp;
-
           try {
             regexp = new RegExp((0, _utils.globToRegexp)(glob, false));
           } catch (ex) {
             // Assume invalid event.
             continue;
           }
-
           for (const entity of entities) {
             if (entity && regexp.test(entity)) {
               return event;
             }
-          } // No match.
-
+          }
+          // No match.
         }
       }
     }
 
     return null;
   }
+
   /**
    * Get the target room, i.e. the room in which any new rule should be written.
    *
@@ -231,39 +211,36 @@
    * This rewrite is inherently racy and could overwrite or be overwritten by
    * other concurrent rewrites of the same object.
    */
-
-
   async getOrCreateTargetRoom() {
     const ignoreInvitesPolicies = this.getIgnoreInvitesPolicies();
-    let target = ignoreInvitesPolicies.target; // Validate `target`. If it is invalid, trash out the current `target`
+    let target = ignoreInvitesPolicies.target;
+    // Validate `target`. If it is invalid, trash out the current `target`
     // and create a new room.
-
     if (typeof target !== "string") {
       target = null;
     }
-
     if (target) {
       // Check that the room exists and is valid.
       const room = this.client.getRoom(target);
-
       if (room) {
         return room;
       } else {
         target = null;
       }
-    } // We need to create our own policy room for ignoring invites.
-
-
+    }
+    // We need to create our own policy room for ignoring invites.
     target = (await this.client.createRoom({
       name: "Individual Policy Room",
       preset: _partials.Preset.PrivateChat
     })).room_id;
     await this.withIgnoreInvitesPolicies(ignoreInvitesPolicies => {
       ignoreInvitesPolicies.target = target;
-    }); // Since we have just called `createRoom`, `getRoom` should not be `null`.
+    });
 
+    // Since we have just called `createRoom`, `getRoom` should not be `null`.
     return this.client.getRoom(target);
   }
+
   /**
    * Get the list of source rooms, i.e. the rooms from which rules need to be read.
    *
@@ -278,28 +255,24 @@
    * This rewrite is inherently racy and could overwrite or be overwritten by
    * other concurrent rewrites of the same object.
    */
-
-
   async getOrCreateSourceRooms() {
     const ignoreInvitesPolicies = this.getIgnoreInvitesPolicies();
-    let sources = ignoreInvitesPolicies.sources; // Validate `sources`. If it is invalid, trash out the current `sources`
-    // and create a new list of sources from `target`.
+    let sources = ignoreInvitesPolicies.sources;
 
+    // Validate `sources`. If it is invalid, trash out the current `sources`
+    // and create a new list of sources from `target`.
     let hasChanges = false;
-
     if (!Array.isArray(sources)) {
       // `sources` could not be an array.
       hasChanges = true;
       sources = [];
     }
-
-    let sourceRooms = sources // `sources` could contain non-string / invalid room ids
+    let sourceRooms = sources
+    // `sources` could contain non-string / invalid room ids
     .filter(roomId => typeof roomId === "string").map(roomId => this.client.getRoom(roomId)).filter(room => !!room);
-
     if (sourceRooms.length != sources.length) {
       hasChanges = true;
     }
-
     if (sourceRooms.length == 0) {
       // `sources` could be empty (possibly because we've removed
       // invalid content)
@@ -307,7 +280,6 @@
       hasChanges = true;
       sourceRooms = [target];
     }
-
     if (hasChanges) {
       // Reload `policies`/`ignoreInvitesPolicies` in case it has been changed
       // during or by our call to `this.getTargetRoom()`.
@@ -315,9 +287,9 @@
         ignoreInvitesPolicies.sources = sources;
       });
     }
-
     return sourceRooms;
   }
+
   /**
    * Fetch the `IGNORE_INVITES_POLICIES` object from account data.
    *
@@ -328,16 +300,13 @@
    *
    * @returns A non-null object.
    */
-
-
   getIgnoreInvitesPolicies() {
     return this.getPoliciesAndIgnoreInvitesPolicies().ignoreInvitesPolicies;
   }
+
   /**
    * Modify in place the `IGNORE_INVITES_POLICIES` object from account data.
    */
-
-
   async withIgnoreInvitesPolicies(cb) {
     const {
       policies,
@@ -347,55 +316,43 @@
     policies[IGNORE_INVITES_ACCOUNT_EVENT_KEY.name] = ignoreInvitesPolicies;
     await this.client.setAccountData(POLICIES_ACCOUNT_EVENT_TYPE.name, policies);
   }
+
   /**
    * As `getIgnoreInvitesPolicies` but also return the `POLICIES_ACCOUNT_EVENT_TYPE`
    * object.
    */
-
-
   getPoliciesAndIgnoreInvitesPolicies() {
     let policies = {};
-
     for (const key of [POLICIES_ACCOUNT_EVENT_TYPE.name, POLICIES_ACCOUNT_EVENT_TYPE.altName]) {
       if (!key) {
         continue;
       }
-
       const value = this.client.getAccountData(key)?.getContent();
-
       if (value) {
         policies = value;
         break;
       }
     }
-
     let ignoreInvitesPolicies = {};
     let hasIgnoreInvitesPolicies = false;
-
     for (const key of [IGNORE_INVITES_ACCOUNT_EVENT_KEY.name, IGNORE_INVITES_ACCOUNT_EVENT_KEY.altName]) {
       if (!key) {
         continue;
       }
-
       const value = policies[key];
-
       if (value && typeof value == "object") {
         ignoreInvitesPolicies = value;
         hasIgnoreInvitesPolicies = true;
         break;
       }
     }
-
     if (!hasIgnoreInvitesPolicies) {
       policies[IGNORE_INVITES_ACCOUNT_EVENT_KEY.name] = ignoreInvitesPolicies;
     }
-
     return {
       policies,
       ignoreInvitesPolicies
     };
   }
-
 }
-
 exports.IgnoredInvites = IgnoredInvites;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/MSC3089Branch.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/MSC3089Branch.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/MSC3089Branch.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/MSC3089Branch.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,222 +4,201 @@
   value: true
 });
 exports.MSC3089Branch = void 0;
-
 var _event = require("../@types/event");
-
 var _eventTimeline = require("./event-timeline");
-
 function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
-
 function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /**
  * Represents a [MSC3089](https://github.com/matrix-org/matrix-doc/pull/3089) branch - a reference
  * to a file (leaf) in the tree. Note that this is UNSTABLE and subject to breaking changes
  * without notice.
  */
 class MSC3089Branch {
-  constructor(client, indexEvent, directory) {// Nothing to do
-
+  constructor(client, indexEvent, directory) {
     this.client = client;
     this.indexEvent = indexEvent;
     this.directory = directory;
-  }
+  } // Nothing to do
+
   /**
    * The file ID.
    */
-
-
   get id() {
     const stateKey = this.indexEvent.getStateKey();
-
     if (!stateKey) {
       throw new Error("State key not found for branch");
     }
-
     return stateKey;
   }
+
   /**
    * Whether this branch is active/valid.
    */
-
-
   get isActive() {
     return this.indexEvent.getContent()["active"] === true;
   }
+
   /**
    * Version for the file, one-indexed.
    */
-
-
   get version() {
     return this.indexEvent.getContent()["version"] ?? 1;
   }
-
   get roomId() {
     return this.indexEvent.getRoomId();
   }
+
   /**
    * Deletes the file from the tree, including all prior edits/versions.
-   * @returns {Promise<void>} Resolves when complete.
+   * @returns Promise which resolves when complete.
    */
-
-
   async delete() {
     await this.client.sendStateEvent(this.roomId, _event.UNSTABLE_MSC3089_BRANCH.name, {}, this.id);
     await this.client.redactEvent(this.roomId, this.id);
     const nextVersion = (await this.getVersionHistory())[1]; // [0] will be us
-
     if (nextVersion) await nextVersion.delete(); // implicit recursion
   }
+
   /**
    * Gets the name for this file.
-   * @returns {string} The name, or "Unnamed File" if unknown.
+   * @returns The name, or "Unnamed File" if unknown.
    */
-
-
   getName() {
-    return this.indexEvent.getContent()['name'] || "Unnamed File";
+    return this.indexEvent.getContent()["name"] || "Unnamed File";
   }
+
   /**
    * Sets the name for this file.
-   * @param {string} name The new name for this file.
-   * @returns {Promise<void>} Resolves when complete.
+   * @param name - The new name for this file.
+   * @returns Promise which resolves when complete.
    */
-
-
   async setName(name) {
     await this.client.sendStateEvent(this.roomId, _event.UNSTABLE_MSC3089_BRANCH.name, _objectSpread(_objectSpread({}, this.indexEvent.getContent()), {}, {
       name: name
     }), this.id);
   }
+
   /**
    * Gets whether or not a file is locked.
-   * @returns {boolean} True if locked, false otherwise.
+   * @returns True if locked, false otherwise.
    */
-
-
   isLocked() {
-    return this.indexEvent.getContent()['locked'] || false;
+    return this.indexEvent.getContent()["locked"] || false;
   }
+
   /**
    * Sets a file as locked or unlocked.
-   * @param {boolean} locked True to lock the file, false otherwise.
-   * @returns {Promise<void>} Resolves when complete.
+   * @param locked - True to lock the file, false otherwise.
+   * @returns Promise which resolves when complete.
    */
-
-
   async setLocked(locked) {
     await this.client.sendStateEvent(this.roomId, _event.UNSTABLE_MSC3089_BRANCH.name, _objectSpread(_objectSpread({}, this.indexEvent.getContent()), {}, {
       locked: locked
     }), this.id);
   }
+
   /**
    * Gets information about the file needed to download it.
-   * @returns {Promise<{info: IEncryptedFile, httpUrl: string}>} Information about the file.
+   * @returns Information about the file.
    */
-
-
   async getFileInfo() {
     const event = await this.getFileEvent();
-    const file = event.getOriginalContent()['file'];
-    const httpUrl = this.client.mxcUrlToHttp(file['url']);
-
+    const file = event.getOriginalContent()["file"];
+    const httpUrl = this.client.mxcUrlToHttp(file["url"]);
     if (!httpUrl) {
-      throw new Error(`No HTTP URL available for ${file['url']}`);
+      throw new Error(`No HTTP URL available for ${file["url"]}`);
     }
-
     return {
       info: file,
       httpUrl: httpUrl
     };
   }
+
   /**
    * Gets the event the file points to.
-   * @returns {Promise<MatrixEvent>} Resolves to the file's event.
+   * @returns Promise which resolves to the file's event.
    */
-
-
   async getFileEvent() {
     const room = this.client.getRoom(this.roomId);
     if (!room) throw new Error("Unknown room");
-    let event = room.getUnfilteredTimelineSet().findEventById(this.id); // keep scrolling back if needed until we find the event or reach the start of the room:
+    let event = room.getUnfilteredTimelineSet().findEventById(this.id);
 
+    // keep scrolling back if needed until we find the event or reach the start of the room:
     while (!event && room.getLiveTimeline().getState(_eventTimeline.EventTimeline.BACKWARDS).paginationToken) {
       await this.client.scrollback(room, 100);
       event = room.getUnfilteredTimelineSet().findEventById(this.id);
     }
+    if (!event) throw new Error("Failed to find event");
 
-    if (!event) throw new Error("Failed to find event"); // Sometimes the event isn't decrypted for us, so do that. We specifically set `emit: true`
+    // Sometimes the event isn't decrypted for us, so do that. We specifically set `emit: true`
     // to ensure that the relations system in the sdk will function.
-
     await this.client.decryptEventIfNeeded(event, {
       emit: true,
       isRetry: true
     });
     return event;
   }
+
   /**
    * Creates a new version of this file with contents in a type that is compatible with MatrixClient.uploadContent().
-   * @param {string} name The name of the file.
-   * @param {File | String | Buffer | ReadStream | Blob} encryptedContents The encrypted contents.
-   * @param {Partial<IEncryptedFile>} info The encrypted file information.
-   * @param {IContent} additionalContent Optional event content fields to include in the message.
-   * @returns {Promise<ISendEventResponse>} Resolves to the file event's sent response.
+   * @param name - The name of the file.
+   * @param encryptedContents - The encrypted contents.
+   * @param info - The encrypted file information.
+   * @param additionalContent - Optional event content fields to include in the message.
+   * @returns Promise which resolves to the file event's sent response.
    */
-
-
   async createNewVersion(name, encryptedContents, info, additionalContent) {
     const fileEventResponse = await this.directory.createFile(name, encryptedContents, info, _objectSpread(_objectSpread({}, additionalContent ?? {}), {}, {
       "m.new_content": true,
       "m.relates_to": {
-        "rel_type": _event.RelationType.Replace,
-        "event_id": this.id
+        rel_type: _event.RelationType.Replace,
+        event_id: this.id
       }
-    })); // Update the version of the new event
+    }));
 
+    // Update the version of the new event
     await this.client.sendStateEvent(this.roomId, _event.UNSTABLE_MSC3089_BRANCH.name, {
       active: true,
       name: name,
       version: this.version + 1
-    }, fileEventResponse['event_id']); // Deprecate ourselves
+    }, fileEventResponse["event_id"]);
 
+    // Deprecate ourselves
     await this.client.sendStateEvent(this.roomId, _event.UNSTABLE_MSC3089_BRANCH.name, _objectSpread(_objectSpread({}, this.indexEvent.getContent()), {}, {
       active: false
     }), this.id);
     return fileEventResponse;
   }
+
   /**
    * Gets the file's version history, starting at this file.
-   * @returns {Promise<MSC3089Branch[]>} Resolves to the file's version history, with the
+   * @returns Promise which resolves to the file's version history, with the
    * first element being the current version and the last element being the first version.
    */
-
-
   async getVersionHistory() {
     const fileHistory = [];
     fileHistory.push(this); // start with ourselves
 
     const room = this.client.getRoom(this.roomId);
-    if (!room) throw new Error("Invalid or unknown room"); // Clone the timeline to reverse it, getting most-recent-first ordering, hopefully
+    if (!room) throw new Error("Invalid or unknown room");
+
+    // Clone the timeline to reverse it, getting most-recent-first ordering, hopefully
     // shortening the awful loop below. Without the clone, we can unintentionally mutate
     // the timeline.
+    const timelineEvents = [...room.getLiveTimeline().getEvents()].reverse();
 
-    const timelineEvents = [...room.getLiveTimeline().getEvents()].reverse(); // XXX: This is a very inefficient search, but it's the best we can do with the
+    // XXX: This is a very inefficient search, but it's the best we can do with the
     // relations structure we have in the SDK. As of writing, it is not worth the
     // investment in improving the structure.
-
     let childEvent;
     let parentEvent = await this.getFileEvent();
-
     do {
       childEvent = timelineEvents.find(e => e.replacingEventId() === parentEvent.getId());
-
       if (childEvent) {
         const branch = this.directory.getFile(childEvent.getId());
-
         if (branch) {
           fileHistory.push(branch);
           parentEvent = childEvent;
@@ -228,10 +207,7 @@
         }
       }
     } while (childEvent);
-
     return fileHistory;
   }
-
 }
-
 exports.MSC3089Branch = MSC3089Branch;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/MSC3089TreeSpace.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/MSC3089TreeSpace.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/MSC3089TreeSpace.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/MSC3089TreeSpace.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,27 +4,18 @@
   value: true
 });
 exports.TreePermissions = exports.MSC3089TreeSpace = exports.DEFAULT_TREE_POWER_LEVELS_TEMPLATE = void 0;
-
 var _pRetry = _interopRequireDefault(require("p-retry"));
-
 var _event = require("../@types/event");
-
 var _logger = require("../logger");
-
 var _utils = require("../utils");
-
 var _MSC3089Branch = require("./MSC3089Branch");
-
 var _megolm = require("../crypto/algorithms/megolm");
-
 function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; }
-
 function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
-
 function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /**
  * The recommended defaults for a tree space's power levels. Note that this
  * is UNSTABLE and subject to breaking changes without notice.
@@ -52,93 +43,81 @@
     [_event.EventType.Sticker]: 50
   },
   users: {} // defined by calling code
-
 };
+
 /**
  * Ease-of-use representation for power levels represented as simple roles.
  * Note that this is UNSTABLE and subject to breaking changes without notice.
  */
-
 exports.DEFAULT_TREE_POWER_LEVELS_TEMPLATE = DEFAULT_TREE_POWER_LEVELS_TEMPLATE;
-let TreePermissions;
+let TreePermissions; // "Admin" or PL100
 /**
  * Represents a [MSC3089](https://github.com/matrix-org/matrix-doc/pull/3089)
  * file tree Space. Note that this is UNSTABLE and subject to breaking changes
  * without notice.
  */
-
 exports.TreePermissions = TreePermissions;
-
 (function (TreePermissions) {
   TreePermissions["Viewer"] = "viewer";
   TreePermissions["Editor"] = "editor";
   TreePermissions["Owner"] = "owner";
 })(TreePermissions || (exports.TreePermissions = TreePermissions = {}));
-
 class MSC3089TreeSpace {
   constructor(client, roomId) {
     this.client = client;
     this.roomId = roomId;
-
     _defineProperty(this, "room", void 0);
-
     this.room = this.client.getRoom(this.roomId);
     if (!this.room) throw new Error("Unknown room");
   }
+
   /**
    * Syntactic sugar for room ID of the Space.
    */
-
-
   get id() {
     return this.roomId;
   }
+
   /**
    * Whether or not this is a top level space.
    */
-
-
   get isTopLevel() {
     // XXX: This is absolutely not how you find out if the space is top level
     // but is safe for a managed usecase like we offer in the SDK.
     const parentEvents = this.room.currentState.getStateEvents(_event.EventType.SpaceParent);
     if (!parentEvents?.length) return true;
-    return parentEvents.every(e => !e.getContent()?.['via']);
+    return parentEvents.every(e => !e.getContent()?.["via"]);
   }
+
   /**
    * Sets the name of the tree space.
-   * @param {string} name The new name for the space.
-   * @returns {Promise<void>} Resolves when complete.
+   * @param name - The new name for the space.
+   * @returns Promise which resolves when complete.
    */
-
-
   async setName(name) {
     await this.client.sendStateEvent(this.roomId, _event.EventType.RoomName, {
       name
     }, "");
   }
+
   /**
    * Invites a user to the tree space. They will be given the default Viewer
    * permission level unless specified elsewhere.
-   * @param {string} userId The user ID to invite.
-   * @param {boolean} andSubspaces True (default) to invite the user to all
+   * @param userId - The user ID to invite.
+   * @param andSubspaces - True (default) to invite the user to all
    * directories/subspaces too, recursively.
-   * @param {boolean} shareHistoryKeys True (default) to share encryption keys
+   * @param shareHistoryKeys - True (default) to share encryption keys
    * with the invited user. This will allow them to decrypt the events (files)
    * in the tree. Keys will not be shared if the room is lacking appropriate
    * history visibility (by default, history visibility is "shared" in trees,
    * which is an appropriate visibility for these purposes).
-   * @returns {Promise<void>} Resolves when complete.
+   * @returns Promise which resolves when complete.
    */
-
-
   async invite(userId, andSubspaces = true, shareHistoryKeys = true) {
     const promises = [this.retryInvite(userId)];
-
     if (andSubspaces) {
       promises.push(...this.getDirectories().map(d => d.invite(userId, andSubspaces, shareHistoryKeys)));
     }
-
     return Promise.all(promises).then(() => {
       // Note: key sharing is default on because for file trees it is relatively important that the invite
       // target can actually decrypt the files. The implied use case is that by inviting a user to the tree
@@ -150,7 +129,6 @@
       }
     });
   }
-
   retryInvite(userId) {
     return (0, _utils.simpleRetryOperation)(async () => {
       await this.client.invite(this.roomId, userId).catch(e => {
@@ -158,78 +136,69 @@
         if (e?.errcode === "M_FORBIDDEN") {
           throw new _pRetry.default.AbortError(e);
         }
-
         throw e;
       });
     });
   }
+
   /**
    * Sets the permissions of a user to the given role. Note that if setting a user
    * to Owner then they will NOT be able to be demoted. If the user does not have
    * permission to change the power level of the target, an error will be thrown.
-   * @param {string} userId The user ID to change the role of.
-   * @param {TreePermissions} role The role to assign.
-   * @returns {Promise<void>} Resolves when complete.
+   * @param userId - The user ID to change the role of.
+   * @param role - The role to assign.
+   * @returns Promise which resolves when complete.
    */
-
-
   async setPermissions(userId, role) {
     const currentPls = this.room.currentState.getStateEvents(_event.EventType.RoomPowerLevels, "");
     if (Array.isArray(currentPls)) throw new Error("Unexpected return type for power levels");
-    const pls = currentPls.getContent() || {};
-    const viewLevel = pls['users_default'] || 0;
-    const editLevel = pls['events_default'] || 50;
-    const adminLevel = pls['events']?.[_event.EventType.RoomPowerLevels] || 100;
-    const users = pls['users'] || {};
-
+    const pls = currentPls?.getContent() || {};
+    const viewLevel = pls["users_default"] || 0;
+    const editLevel = pls["events_default"] || 50;
+    const adminLevel = pls["events"]?.[_event.EventType.RoomPowerLevels] || 100;
+    const users = pls["users"] || {};
     switch (role) {
       case TreePermissions.Viewer:
         users[userId] = viewLevel;
         break;
-
       case TreePermissions.Editor:
         users[userId] = editLevel;
         break;
-
       case TreePermissions.Owner:
         users[userId] = adminLevel;
         break;
-
       default:
         throw new Error("Invalid role: " + role);
     }
-
-    pls['users'] = users;
+    pls["users"] = users;
     await this.client.sendStateEvent(this.roomId, _event.EventType.RoomPowerLevels, pls, "");
   }
+
   /**
    * Gets the current permissions of a user. Note that any users missing explicit permissions (or not
    * in the space) will be considered Viewers. Appropriate membership checks need to be performed
    * elsewhere.
-   * @param {string} userId The user ID to check permissions of.
-   * @returns {TreePermissions} The permissions for the user, defaulting to Viewer.
+   * @param userId - The user ID to check permissions of.
+   * @returns The permissions for the user, defaulting to Viewer.
    */
-
-
   getPermissions(userId) {
     const currentPls = this.room.currentState.getStateEvents(_event.EventType.RoomPowerLevels, "");
     if (Array.isArray(currentPls)) throw new Error("Unexpected return type for power levels");
-    const pls = currentPls.getContent() || {};
-    const viewLevel = pls['users_default'] || 0;
-    const editLevel = pls['events_default'] || 50;
-    const adminLevel = pls['events']?.[_event.EventType.RoomPowerLevels] || 100;
-    const userLevel = pls['users']?.[userId] || viewLevel;
+    const pls = currentPls?.getContent() || {};
+    const viewLevel = pls["users_default"] || 0;
+    const editLevel = pls["events_default"] || 50;
+    const adminLevel = pls["events"]?.[_event.EventType.RoomPowerLevels] || 100;
+    const userLevel = pls["users"]?.[userId] || viewLevel;
     if (userLevel >= adminLevel) return TreePermissions.Owner;
     if (userLevel >= editLevel) return TreePermissions.Editor;
     return TreePermissions.Viewer;
   }
+
   /**
    * Creates a directory under this tree space, represented as another tree space.
-   * @param {string} name The name for the directory.
-   * @returns {Promise<MSC3089TreeSpace>} Resolves to the created directory.
+   * @param name - The name for the directory.
+   * @returns Promise which resolves to the created directory.
    */
-
-
   async createDirectory(name) {
     const directory = await this.client.unstableCreateFileTree(name);
     await this.client.sendStateEvent(this.roomId, _event.EventType.SpaceChild, {
@@ -240,20 +209,17 @@
     }, this.roomId);
     return directory;
   }
+
   /**
    * Gets a list of all known immediate subdirectories to this tree space.
-   * @returns {MSC3089TreeSpace[]} The tree spaces (directories). May be empty, but not null.
+   * @returns The tree spaces (directories). May be empty, but not null.
    */
-
-
   getDirectories() {
     const trees = [];
     const children = this.room.currentState.getStateEvents(_event.EventType.SpaceChild);
-
     for (const child of children) {
       try {
         const stateKey = child.getStateKey();
-
         if (stateKey) {
           const tree = this.client.unstableGetFileTreeSpace(stateKey);
           if (tree) trees.push(tree);
@@ -262,57 +228,46 @@
         _logger.logger.warn("Unable to create tree space instance for listing. Are we joined?", e);
       }
     }
-
     return trees;
   }
+
   /**
    * Gets a subdirectory of a given ID under this tree space. Note that this will not recurse
    * into children and instead only look one level deep.
-   * @param {string} roomId The room ID (directory ID) to find.
-   * @returns {MSC3089TreeSpace | undefined} The directory, or undefined if not found.
+   * @param roomId - The room ID (directory ID) to find.
+   * @returns The directory, or undefined if not found.
    */
-
-
   getDirectory(roomId) {
     return this.getDirectories().find(r => r.roomId === roomId);
   }
+
   /**
    * Deletes the tree, kicking all members and deleting **all subdirectories**.
-   * @returns {Promise<void>} Resolves when complete.
+   * @returns Promise which resolves when complete.
    */
-
-
   async delete() {
     const subdirectories = this.getDirectories();
-
     for (const dir of subdirectories) {
       await dir.delete();
     }
-
     const kickMemberships = ["invite", "knock", "join"];
     const members = this.room.currentState.getStateEvents(_event.EventType.RoomMember);
-
     for (const member of members) {
       const isNotUs = member.getStateKey() !== this.client.getUserId();
-
       if (isNotUs && kickMemberships.includes(member.getContent().membership)) {
         const stateKey = member.getStateKey();
-
         if (!stateKey) {
           throw new Error("State key not found for branch");
         }
-
         await this.client.kick(this.roomId, stateKey, "Room deleted");
       }
     }
-
     await this.client.leave(this.roomId);
   }
-
   getOrderedChildren(children) {
     const ordered = children.map(c => ({
       roomId: c.getStateKey(),
-      order: c.getContent()['order']
+      order: c.getContent()["order"]
     })).filter(c => c.roomId);
     ordered.sort((a, b) => {
       if (a.order && !b.order) {
@@ -322,19 +277,15 @@
       } else if (!a.order && !b.order) {
         const roomA = this.client.getRoom(a.roomId);
         const roomB = this.client.getRoom(b.roomId);
-
         if (!roomA || !roomB) {
           // just don't bother trying to do more partial sorting
           return (0, _utils.lexicographicCompare)(a.roomId, b.roomId);
         }
-
         const createTsA = roomA.currentState.getStateEvents(_event.EventType.RoomCreate, "")?.getTs() ?? 0;
         const createTsB = roomB.currentState.getStateEvents(_event.EventType.RoomCreate, "")?.getTs() ?? 0;
-
         if (createTsA === createTsB) {
           return (0, _utils.lexicographicCompare)(a.roomId, b.roomId);
         }
-
         return createTsA - createTsB;
       } else {
         // both not-null orders
@@ -343,27 +294,25 @@
     });
     return ordered;
   }
-
   getParentRoom() {
     const parents = this.room.currentState.getStateEvents(_event.EventType.SpaceParent);
     const parent = parents[0]; // XXX: Wild assumption
+    if (!parent) throw new Error("Expected to have a parent in a non-top level space");
 
-    if (!parent) throw new Error("Expected to have a parent in a non-top level space"); // XXX: We are assuming the parent is a valid tree space.
+    // XXX: We are assuming the parent is a valid tree space.
     // We probably don't need to validate the parent room state for this usecase though.
-
     const stateKey = parent.getStateKey();
     if (!stateKey) throw new Error("No state key found for parent");
     const parentRoom = this.client.getRoom(stateKey);
     if (!parentRoom) throw new Error("Unable to locate room for parent");
     return parentRoom;
   }
+
   /**
    * Gets the current order index for this directory. Note that if this is the top level space
    * then -1 will be returned.
-   * @returns {number} The order index of this space.
+   * @returns The order index of this space.
    */
-
-
   getOrder() {
     if (this.isTopLevel) return -1;
     const parentRoom = this.getParentRoom();
@@ -371,16 +320,15 @@
     const ordered = this.getOrderedChildren(children);
     return ordered.findIndex(c => c.roomId === this.roomId);
   }
+
   /**
    * Sets the order index for this directory within its parent. Note that if this is a top level
    * space then an error will be thrown. -1 can be used to move the child to the start, and numbers
    * larger than the number of children can be used to move the child to the end.
-   * @param {number} index The new order index for this space.
-   * @returns {Promise<void>} Resolves when complete.
+   * @param index - The new order index for this space.
+   * @returns Promise which resolves when complete.
    * @throws Throws if this is a top level space.
    */
-
-
   async setOrder(index) {
     if (this.isTopLevel) throw new Error("Cannot set order of top level spaces currently");
     const parentRoom = this.getParentRoom();
@@ -389,18 +337,15 @@
     index = Math.max(Math.min(index, ordered.length - 1), 0);
     const currentIndex = this.getOrder();
     const movingUp = currentIndex < index;
-
     if (movingUp && index === ordered.length - 1) {
       index--;
     } else if (!movingUp && index === 0) {
       index++;
     }
-
     const prev = ordered[movingUp ? index : index - 1];
     const next = ordered[movingUp ? index + 1 : index];
     let newOrder = _utils.DEFAULT_ALPHABET[0];
     let ensureBeforeIsSane = false;
-
     if (!prev) {
       // Move to front
       if (next?.order) {
@@ -415,7 +360,6 @@
       // Move somewhere in the middle
       const startOrder = prev?.order;
       const endOrder = next?.order;
-
       if (startOrder && endOrder) {
         if (startOrder === endOrder) {
           // Error case: just move +1 to break out of awful math
@@ -439,20 +383,16 @@
         }
       }
     }
-
     if (ensureBeforeIsSane) {
       // We were asked by the order algorithm to prepare the moving space for a landing
       // in the undefined order part of the order array, which means we need to update the
       // spaces that come before it with a stable order value.
       let lastOrder;
-
       for (let i = 0; i <= index; i++) {
         const target = ordered[i];
-
         if (i === 0) {
           lastOrder = target.order;
         }
-
         if (!target.order) {
           // XXX: We should be creating gaps to avoid conflicts
           lastOrder = lastOrder ? (0, _utils.nextString)(lastOrder) : _utils.DEFAULT_ALPHABET[0];
@@ -467,14 +407,14 @@
           lastOrder = target.order;
         }
       }
-
       if (lastOrder) {
         newOrder = (0, _utils.nextString)(lastOrder);
       }
-    } // TODO: Deal with order conflicts by reordering
-    // Now we can finally update our own order state
+    }
 
+    // TODO: Deal with order conflicts by reordering
 
+    // Now we can finally update our own order state
     const currentChild = parentRoom.currentState.getStateEvents(_event.EventType.SpaceChild, this.roomId);
     const content = currentChild?.getContent() ?? {
       via: [this.client.getDomain()]
@@ -484,23 +424,21 @@
       order: newOrder
     }), this.roomId);
   }
+
   /**
    * Creates (uploads) a new file to this tree. The file must have already been encrypted for the room.
    * The file contents are in a type that is compatible with MatrixClient.uploadContent().
-   * @param {string} name The name of the file.
-   * @param {File | String | Buffer | ReadStream | Blob} encryptedContents The encrypted contents.
-   * @param {Partial<IEncryptedFile>} info The encrypted file information.
-   * @param {IContent} additionalContent Optional event content fields to include in the message.
-   * @returns {Promise<ISendEventResponse>} Resolves to the file event's sent response.
+   * @param name - The name of the file.
+   * @param encryptedContents - The encrypted contents.
+   * @param info - The encrypted file information.
+   * @param additionalContent - Optional event content fields to include in the message.
+   * @returns Promise which resolves to the file event's sent response.
    */
-
-
   async createFile(name, encryptedContents, info, additionalContent) {
-    const mxc = await this.client.uploadContent(encryptedContents, {
-      includeFilename: false,
-      onlyContentUri: true,
-      rawResponse: false // make this explicit otherwise behaviour is different on browser vs NodeJS
-
+    const {
+      content_uri: mxc
+    } = await this.client.uploadContent(encryptedContents, {
+      includeFilename: false
     });
     info.url = mxc;
     const fileContent = {
@@ -510,54 +448,47 @@
       file: info
     };
     additionalContent = additionalContent ?? {};
-
     if (additionalContent["m.new_content"]) {
       // We do the right thing according to the spec, but due to how relations are
       // handled we also end up duplicating this information to the regular `content`
       // as well.
       additionalContent["m.new_content"] = fileContent;
     }
-
     const res = await this.client.sendMessage(this.roomId, _objectSpread(_objectSpread(_objectSpread({}, additionalContent), fileContent), {}, {
       [_event.UNSTABLE_MSC3089_LEAF.name]: {}
     }));
     await this.client.sendStateEvent(this.roomId, _event.UNSTABLE_MSC3089_BRANCH.name, {
       active: true,
       name: name
-    }, res['event_id']);
+    }, res["event_id"]);
     return res;
   }
+
   /**
    * Retrieves a file from the tree.
-   * @param {string} fileEventId The event ID of the file.
-   * @returns {MSC3089Branch | null} The file, or null if not found.
+   * @param fileEventId - The event ID of the file.
+   * @returns The file, or null if not found.
    */
-
-
   getFile(fileEventId) {
     const branch = this.room.currentState.getStateEvents(_event.UNSTABLE_MSC3089_BRANCH.name, fileEventId);
     return branch ? new _MSC3089Branch.MSC3089Branch(this.client, branch, this) : null;
   }
+
   /**
    * Gets an array of all known files for the tree.
-   * @returns {MSC3089Branch[]} The known files. May be empty, but not null.
+   * @returns The known files. May be empty, but not null.
    */
-
-
   listFiles() {
     return this.listAllFiles().filter(b => b.isActive);
   }
+
   /**
    * Gets an array of all known files for the tree, including inactive/invalid ones.
-   * @returns {MSC3089Branch[]} The known files. May be empty, but not null.
+   * @returns The known files. May be empty, but not null.
    */
-
-
   listAllFiles() {
     const branches = this.room.currentState.getStateEvents(_event.UNSTABLE_MSC3089_BRANCH.name) ?? [];
     return branches.map(e => new _MSC3089Branch.MSC3089Branch(this.client, e, this));
   }
-
 }
-
 exports.MSC3089TreeSpace = MSC3089TreeSpace;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/poll.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/poll.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/poll.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/poll.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,211 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.PollEvent = exports.Poll = void 0;
+var _polls = require("../@types/polls");
+var _relations = require("./relations");
+var _typedEventEmitter = require("./typed-event-emitter");
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+let PollEvent;
+exports.PollEvent = PollEvent;
+(function (PollEvent) {
+  PollEvent["New"] = "Poll.new";
+  PollEvent["End"] = "Poll.end";
+  PollEvent["Update"] = "Poll.update";
+  PollEvent["Responses"] = "Poll.Responses";
+  PollEvent["Destroy"] = "Poll.Destroy";
+  PollEvent["UndecryptableRelations"] = "Poll.UndecryptableRelations";
+})(PollEvent || (exports.PollEvent = PollEvent = {}));
+const filterResponseRelations = (relationEvents, pollEndTimestamp) => {
+  const responseEvents = relationEvents.filter(event => {
+    if (event.isDecryptionFailure()) {
+      return;
+    }
+    return _polls.M_POLL_RESPONSE.matches(event.getType()) &&
+    // From MSC3381:
+    // "Votes sent on or before the end event's timestamp are valid votes"
+    event.getTs() <= pollEndTimestamp;
+  });
+  return {
+    responseEvents
+  };
+};
+class Poll extends _typedEventEmitter.TypedEventEmitter {
+  /**
+   * Keep track of undecryptable relations
+   * As incomplete result sets affect poll results
+   */
+
+  constructor(rootEvent, matrixClient, room) {
+    super();
+    this.rootEvent = rootEvent;
+    this.matrixClient = matrixClient;
+    this.room = room;
+    _defineProperty(this, "roomId", void 0);
+    _defineProperty(this, "pollEvent", void 0);
+    _defineProperty(this, "_isFetchingResponses", false);
+    _defineProperty(this, "relationsNextBatch", void 0);
+    _defineProperty(this, "responses", null);
+    _defineProperty(this, "endEvent", void 0);
+    _defineProperty(this, "undecryptableRelationEventIds", new Set());
+    _defineProperty(this, "countUndecryptableEvents", events => {
+      const undecryptableEventIds = events.filter(event => event.isDecryptionFailure()).map(event => event.getId());
+      const previousCount = this.undecryptableRelationsCount;
+      this.undecryptableRelationEventIds = new Set([...this.undecryptableRelationEventIds, ...undecryptableEventIds]);
+      if (this.undecryptableRelationsCount !== previousCount) {
+        this.emit(PollEvent.UndecryptableRelations, this.undecryptableRelationsCount);
+      }
+    });
+    if (!this.rootEvent.getRoomId() || !this.rootEvent.getId()) {
+      throw new Error("Invalid poll start event.");
+    }
+    this.roomId = this.rootEvent.getRoomId();
+    this.pollEvent = this.rootEvent.unstableExtensibleEvent;
+  }
+  get pollId() {
+    return this.rootEvent.getId();
+  }
+  get endEventId() {
+    return this.endEvent?.getId();
+  }
+  get isEnded() {
+    return !!this.endEvent;
+  }
+  get isFetchingResponses() {
+    return this._isFetchingResponses;
+  }
+  get undecryptableRelationsCount() {
+    return this.undecryptableRelationEventIds.size;
+  }
+  async getResponses() {
+    // if we have already fetched some responses
+    // just return them
+    if (this.responses) {
+      return this.responses;
+    }
+
+    // if there is no fetching in progress
+    // start fetching
+    if (!this.isFetchingResponses) {
+      await this.fetchResponses();
+    }
+    // return whatever responses we got from the first page
+    return this.responses;
+  }
+
+  /**
+   *
+   * @param event - event with a relation to the rootEvent
+   * @returns void
+   */
+  onNewRelation(event) {
+    if (_polls.M_POLL_END.matches(event.getType()) && this.validateEndEvent(event)) {
+      this.endEvent = event;
+      this.refilterResponsesOnEnd();
+      this.emit(PollEvent.End);
+    }
+
+    // wait for poll responses to be initialised
+    if (!this.responses) {
+      return;
+    }
+    const pollEndTimestamp = this.endEvent?.getTs() || Number.MAX_SAFE_INTEGER;
+    const {
+      responseEvents
+    } = filterResponseRelations([event], pollEndTimestamp);
+    this.countUndecryptableEvents([event]);
+    if (responseEvents.length) {
+      responseEvents.forEach(event => {
+        this.responses.addEvent(event);
+      });
+      this.emit(PollEvent.Responses, this.responses);
+    }
+  }
+  async fetchResponses() {
+    this._isFetchingResponses = true;
+
+    // we want:
+    // - stable and unstable M_POLL_RESPONSE
+    // - stable and unstable M_POLL_END
+    // so make one api call and filter by event type client side
+    const allRelations = await this.matrixClient.relations(this.roomId, this.rootEvent.getId(), "m.reference", undefined, {
+      from: this.relationsNextBatch || undefined
+    });
+    await Promise.all(allRelations.events.map(event => this.matrixClient.decryptEventIfNeeded(event)));
+    const responses = this.responses || new _relations.Relations("m.reference", _polls.M_POLL_RESPONSE.name, this.matrixClient, [_polls.M_POLL_RESPONSE.altName]);
+    const pollEndEvent = allRelations.events.find(event => _polls.M_POLL_END.matches(event.getType()));
+    if (this.validateEndEvent(pollEndEvent)) {
+      this.endEvent = pollEndEvent;
+      this.refilterResponsesOnEnd();
+      this.emit(PollEvent.End);
+    }
+    const pollCloseTimestamp = this.endEvent?.getTs() || Number.MAX_SAFE_INTEGER;
+    const {
+      responseEvents
+    } = filterResponseRelations(allRelations.events, pollCloseTimestamp);
+    responseEvents.forEach(event => {
+      responses.addEvent(event);
+    });
+    this.relationsNextBatch = allRelations.nextBatch ?? undefined;
+    this.responses = responses;
+    this.countUndecryptableEvents(allRelations.events);
+
+    // while there are more pages of relations
+    // fetch them
+    if (this.relationsNextBatch) {
+      // don't await
+      // we want to return the first page as soon as possible
+      this.fetchResponses();
+    } else {
+      // no more pages
+      this._isFetchingResponses = false;
+    }
+
+    // emit after updating _isFetchingResponses state
+    this.emit(PollEvent.Responses, this.responses);
+  }
+
+  /**
+   * Only responses made before the poll ended are valid
+   * Refilter after an end event is recieved
+   * To ensure responses are valid
+   */
+  refilterResponsesOnEnd() {
+    if (!this.responses) {
+      return;
+    }
+    const pollEndTimestamp = this.endEvent?.getTs() || Number.MAX_SAFE_INTEGER;
+    this.responses.getRelations().forEach(event => {
+      if (event.getTs() > pollEndTimestamp) {
+        this.responses?.removeEvent(event);
+      }
+    });
+    this.emit(PollEvent.Responses, this.responses);
+  }
+  validateEndEvent(endEvent) {
+    if (!endEvent) {
+      return false;
+    }
+    /**
+     * Repeated end events are ignored -
+     * only the first (valid) closure event by origin_server_ts is counted.
+     */
+    if (this.endEvent && this.endEvent.getTs() < endEvent.getTs()) {
+      return false;
+    }
+
+    /**
+     * MSC3381
+     * If a m.poll.end event is received from someone other than the poll creator or user with permission to redact
+     * others' messages in the room, the event must be ignored by clients due to being invalid.
+     */
+    const roomCurrentState = this.room.currentState;
+    const endEventSender = endEvent.getSender();
+    return !!endEventSender && (endEventSender === this.rootEvent.getSender() || roomCurrentState.maySendRedactionForEvent(this.rootEvent, endEventSender));
+  }
+}
+exports.Poll = Poll;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/read-receipt.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/read-receipt.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/read-receipt.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/read-receipt.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,246 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.ReadReceipt = void 0;
+exports.synthesizeReceipt = synthesizeReceipt;
+var _read_receipts = require("../@types/read_receipts");
+var _typedEventEmitter = require("./typed-event-emitter");
+var utils = _interopRequireWildcard(require("../utils"));
+var _event = require("./event");
+var _event2 = require("../@types/event");
+var _room = require("./room");
+function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
+function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+function synthesizeReceipt(userId, event, receiptType) {
+  return new _event.MatrixEvent({
+    content: {
+      [event.getId()]: {
+        [receiptType]: {
+          [userId]: {
+            ts: event.getTs(),
+            thread_id: event.threadRootId ?? _read_receipts.MAIN_ROOM_TIMELINE
+          }
+        }
+      }
+    },
+    type: _event2.EventType.Receipt,
+    room_id: event.getRoomId()
+  });
+}
+const ReceiptPairRealIndex = 0;
+const ReceiptPairSyntheticIndex = 1;
+class ReadReceipt extends _typedEventEmitter.TypedEventEmitter {
+  constructor(...args) {
+    super(...args);
+    _defineProperty(this, "receipts", new utils.MapWithDefault(() => new Map()));
+    _defineProperty(this, "receiptCacheByEventId", new Map());
+    _defineProperty(this, "timeline", void 0);
+  }
+  /**
+   * Gets the latest receipt for a given user in the room
+   * @param userId - The id of the user for which we want the receipt
+   * @param ignoreSynthesized - Whether to ignore synthesized receipts or not
+   * @param receiptType - Optional. The type of the receipt we want to get
+   * @returns the latest receipts of the chosen type for the chosen user
+   */
+  getReadReceiptForUserId(userId, ignoreSynthesized = false, receiptType = _read_receipts.ReceiptType.Read) {
+    const [realReceipt, syntheticReceipt] = this.receipts.get(receiptType)?.get(userId) ?? [null, null];
+    if (ignoreSynthesized) {
+      return realReceipt;
+    }
+    return syntheticReceipt ?? realReceipt;
+  }
+
+  /**
+   * Get the ID of the event that a given user has read up to, or null if we
+   * have received no read receipts from them.
+   * @param userId - The user ID to get read receipt event ID for
+   * @param ignoreSynthesized - If true, return only receipts that have been
+   *                                    sent by the server, not implicit ones generated
+   *                                    by the JS SDK.
+   * @returns ID of the latest event that the given user has read, or null.
+   */
+  getEventReadUpTo(userId, ignoreSynthesized = false) {
+    // XXX: This is very very ugly and I hope I won't have to ever add a new
+    // receipt type here again. IMHO this should be done by the server in
+    // some more intelligent manner or the client should just use timestamps
+
+    const timelineSet = this.getUnfilteredTimelineSet();
+    const publicReadReceipt = this.getReadReceiptForUserId(userId, ignoreSynthesized, _read_receipts.ReceiptType.Read);
+    const privateReadReceipt = this.getReadReceiptForUserId(userId, ignoreSynthesized, _read_receipts.ReceiptType.ReadPrivate);
+
+    // If we have both, compare them
+    let comparison;
+    if (publicReadReceipt?.eventId && privateReadReceipt?.eventId) {
+      comparison = timelineSet.compareEventOrdering(publicReadReceipt?.eventId, privateReadReceipt?.eventId);
+    }
+
+    // If we didn't get a comparison try to compare the ts of the receipts
+    if (!comparison && publicReadReceipt?.data?.ts && privateReadReceipt?.data?.ts) {
+      comparison = publicReadReceipt?.data?.ts - privateReadReceipt?.data?.ts;
+    }
+
+    // The public receipt is more likely to drift out of date so the private
+    // one has precedence
+    if (!comparison) return privateReadReceipt?.eventId ?? publicReadReceipt?.eventId ?? null;
+
+    // If public read receipt is older, return the private one
+    return (comparison < 0 ? privateReadReceipt?.eventId : publicReadReceipt?.eventId) ?? null;
+  }
+  addReceiptToStructure(eventId, receiptType, userId, receipt, synthetic) {
+    const receiptTypesMap = this.receipts.getOrCreate(receiptType);
+    let pair = receiptTypesMap.get(userId);
+    if (!pair) {
+      pair = [null, null];
+      receiptTypesMap.set(userId, pair);
+    }
+    let existingReceipt = pair[ReceiptPairRealIndex];
+    if (synthetic) {
+      existingReceipt = pair[ReceiptPairSyntheticIndex] ?? pair[ReceiptPairRealIndex];
+    }
+    if (existingReceipt) {
+      // we only want to add this receipt if we think it is later than the one we already have.
+      // This is managed server-side, but because we synthesize RRs locally we have to do it here too.
+      const ordering = this.getUnfilteredTimelineSet().compareEventOrdering(existingReceipt.eventId, eventId);
+      if (ordering !== null && ordering >= 0) {
+        return;
+      }
+    }
+    const wrappedReceipt = {
+      eventId,
+      data: receipt
+    };
+    const realReceipt = synthetic ? pair[ReceiptPairRealIndex] : wrappedReceipt;
+    const syntheticReceipt = synthetic ? wrappedReceipt : pair[ReceiptPairSyntheticIndex];
+    let ordering = null;
+    if (realReceipt && syntheticReceipt) {
+      ordering = this.getUnfilteredTimelineSet().compareEventOrdering(realReceipt.eventId, syntheticReceipt.eventId);
+    }
+    const preferSynthetic = ordering === null || ordering < 0;
+
+    // we don't bother caching just real receipts by event ID as there's nothing that would read it.
+    // Take the current cached receipt before we overwrite the pair elements.
+    const cachedReceipt = pair[ReceiptPairSyntheticIndex] ?? pair[ReceiptPairRealIndex];
+    if (synthetic && preferSynthetic) {
+      pair[ReceiptPairSyntheticIndex] = wrappedReceipt;
+    } else if (!synthetic) {
+      pair[ReceiptPairRealIndex] = wrappedReceipt;
+      if (!preferSynthetic) {
+        pair[ReceiptPairSyntheticIndex] = null;
+      }
+    }
+    const newCachedReceipt = pair[ReceiptPairSyntheticIndex] ?? pair[ReceiptPairRealIndex];
+    if (cachedReceipt === newCachedReceipt) return;
+
+    // clean up any previous cache entry
+    if (cachedReceipt && this.receiptCacheByEventId.get(cachedReceipt.eventId)) {
+      const previousEventId = cachedReceipt.eventId;
+      // Remove the receipt we're about to clobber out of existence from the cache
+      this.receiptCacheByEventId.set(previousEventId, this.receiptCacheByEventId.get(previousEventId).filter(r => {
+        return r.type !== receiptType || r.userId !== userId;
+      }));
+      if (this.receiptCacheByEventId.get(previousEventId).length < 1) {
+        this.receiptCacheByEventId.delete(previousEventId); // clean up the cache keys
+      }
+    }
+
+    // cache the new one
+    if (!this.receiptCacheByEventId.get(eventId)) {
+      this.receiptCacheByEventId.set(eventId, []);
+    }
+    this.receiptCacheByEventId.get(eventId).push({
+      userId: userId,
+      type: receiptType,
+      data: receipt
+    });
+  }
+
+  /**
+   * Get a list of receipts for the given event.
+   * @param event - the event to get receipts for
+   * @returns A list of receipts with a userId, type and data keys or
+   * an empty list.
+   */
+  getReceiptsForEvent(event) {
+    return this.receiptCacheByEventId.get(event.getId()) || [];
+  }
+  /**
+   * This issue should also be addressed on synapse's side and is tracked as part
+   * of https://github.com/matrix-org/synapse/issues/14837
+   *
+   * Retrieves the read receipt for the logged in user and checks if it matches
+   * the last event in the room and whether that event originated from the logged
+   * in user.
+   * Under those conditions we can consider the context as read. This is useful
+   * because we never send read receipts against our own events
+   * @param userId - the logged in user
+   */
+  fixupNotifications(userId) {
+    const receipt = this.getReadReceiptForUserId(userId, false);
+    const lastEvent = this.timeline[this.timeline.length - 1];
+    if (lastEvent && receipt?.eventId === lastEvent.getId() && userId === lastEvent.getSender()) {
+      this.setUnread(_room.NotificationCountType.Total, 0);
+      this.setUnread(_room.NotificationCountType.Highlight, 0);
+    }
+  }
+
+  /**
+   * Add a temporary local-echo receipt to the room to reflect in the
+   * client the fact that we've sent one.
+   * @param userId - The user ID if the receipt sender
+   * @param e - The event that is to be acknowledged
+   * @param receiptType - The type of receipt
+   */
+  addLocalEchoReceipt(userId, e, receiptType) {
+    this.addReceipt(synthesizeReceipt(userId, e, receiptType), true);
+  }
+
+  /**
+   * Get a list of user IDs who have <b>read up to</b> the given event.
+   * @param event - the event to get read receipts for.
+   * @returns A list of user IDs.
+   */
+  getUsersReadUpTo(event) {
+    return this.getReceiptsForEvent(event).filter(function (receipt) {
+      return utils.isSupportedReceiptType(receipt.type);
+    }).map(function (receipt) {
+      return receipt.userId;
+    });
+  }
+
+  /**
+   * Determines if the given user has read a particular event ID with the known
+   * history of the room. This is not a definitive check as it relies only on
+   * what is available to the room at the time of execution.
+   * @param userId - The user ID to check the read state of.
+   * @param eventId - The event ID to check if the user read.
+   * @returns True if the user has read the event, false otherwise.
+   */
+  hasUserReadEvent(userId, eventId) {
+    const readUpToId = this.getEventReadUpTo(userId, false);
+    if (readUpToId === eventId) return true;
+    if (this.timeline?.length && this.timeline[this.timeline.length - 1].getSender() && this.timeline[this.timeline.length - 1].getSender() === userId) {
+      // It doesn't matter where the event is in the timeline, the user has read
+      // it because they've sent the latest event.
+      return true;
+    }
+    for (let i = this.timeline?.length - 1; i >= 0; --i) {
+      const ev = this.timeline[i];
+
+      // If we encounter the target event first, the user hasn't read it
+      // however if we encounter the readUpToId first then the user has read
+      // it. These rules apply because we're iterating bottom-up.
+      if (ev.getId() === eventId) return false;
+      if (ev.getId() === readUpToId) return true;
+    }
+
+    // We don't know if the user has read it, so assume not.
+    return false;
+  }
+}
+exports.ReadReceipt = ReadReceipt;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/related-relations.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/related-relations.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/related-relations.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/related-relations.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,9 +4,9 @@
   value: true
 });
 exports.RelatedRelations = void 0;
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /*
 Copyright 2022 The Matrix.org Foundation C.I.C.
 
@@ -22,25 +22,20 @@
 See the License for the specific language governing permissions and
 limitations under the License.
 */
+
 class RelatedRelations {
   constructor(relations) {
     _defineProperty(this, "relations", void 0);
-
     this.relations = relations.filter(r => !!r);
   }
-
   getRelations() {
     return this.relations.reduce((c, p) => [...c, ...p.getRelations()], []);
   }
-
   on(ev, fn) {
     this.relations.forEach(r => r.on(ev, fn));
   }
-
   off(ev, fn) {
     this.relations.forEach(r => r.off(ev, fn));
   }
-
 }
-
 exports.RelatedRelations = RelatedRelations;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/relations-container.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/relations-container.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/relations-container.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/relations-container.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,92 +4,78 @@
   value: true
 });
 exports.RelationsContainer = void 0;
-
 var _relations = require("./relations");
-
 var _event = require("./event");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 class RelationsContainer {
   // A tree of objects to access a set of related children for an event, as in:
   // this.relations.get(parentEventId).get(relationType).get(relationEventType)
+
   constructor(client, room) {
     this.client = client;
     this.room = room;
-
     _defineProperty(this, "relations", new Map());
   }
+
   /**
    * Get a collection of child events to a given event in this timeline set.
    *
-   * @param {String} eventId
-   * The ID of the event that you'd like to access child events for.
+   * @param eventId - The ID of the event that you'd like to access child events for.
    * For example, with annotations, this would be the ID of the event being annotated.
-   * @param {String} relationType
-   * The type of relationship involved, such as "m.annotation", "m.reference", "m.replace", etc.
-   * @param {String} eventType
-   * The relation event's type, such as "m.reaction", etc.
-   * @throws If <code>eventId</code>, <code>relationType</code> or <code>eventType</code>
+   * @param relationType - The type of relationship involved, such as "m.annotation", "m.reference", "m.replace", etc.
+   * @param eventType - The relation event's type, such as "m.reaction", etc.
+   * @throws If `eventId</code>, <code>relationType</code> or <code>eventType`
    * are not valid.
    *
-   * @returns {?Relations}
+   * @returns
    * A container for relation events or undefined if there are no relation events for
    * the relationType.
    */
-
-
   getChildEventsForEvent(eventId, relationType, eventType) {
     return this.relations.get(eventId)?.get(relationType)?.get(eventType);
   }
-
   getAllChildEventsForEvent(parentEventId) {
     const relationsForEvent = this.relations.get(parentEventId) ?? new Map();
     const events = [];
-
     for (const relationsRecord of relationsForEvent.values()) {
       for (const relations of relationsRecord.values()) {
         events.push(...relations.getRelations());
       }
     }
-
     return events;
   }
+
   /**
    * Set an event as the target event if any Relations exist for it already.
    * Child events can point to other child events as their parent, so this method may be
    * called for events which are also logically child events.
    *
-   * @param {MatrixEvent} event The event to check as relation target.
+   * @param event - The event to check as relation target.
    */
-
-
   aggregateParentEvent(event) {
     const relationsForEvent = this.relations.get(event.getId());
     if (!relationsForEvent) return;
-
     for (const relationsWithRelType of relationsForEvent.values()) {
       for (const relationsWithEventType of relationsWithRelType.values()) {
         relationsWithEventType.setTargetEvent(event);
       }
     }
   }
+
   /**
    * Add relation events to the relevant relation collection.
    *
-   * @param {MatrixEvent} event The new child event to be aggregated.
-   * @param {EventTimelineSet} timelineSet The event timeline set within which to search for the related event if any.
+   * @param event - The new child event to be aggregated.
+   * @param timelineSet - The event timeline set within which to search for the related event if any.
    */
-
-
   aggregateChildEvent(event, timelineSet) {
     if (event.isRedacted() || event.status === _event.EventStatus.CANCELLED) {
       return;
     }
-
     const relation = event.getRelation();
     if (!relation) return;
-
     const onEventDecrypted = () => {
       if (event.isDecryptionFailure()) {
         // This could for example happen if the encryption keys are not yet available.
@@ -97,51 +83,40 @@
         event.once(_event.MatrixEventEvent.Decrypted, onEventDecrypted);
         return;
       }
-
       this.aggregateChildEvent(event, timelineSet);
-    }; // If the event is currently encrypted, wait until it has been decrypted.
-
+    };
 
+    // If the event is currently encrypted, wait until it has been decrypted.
     if (event.isBeingDecrypted() || event.shouldAttemptDecryption()) {
       event.once(_event.MatrixEventEvent.Decrypted, onEventDecrypted);
       return;
     }
-
     const {
       event_id: relatesToEventId,
       rel_type: relationType
     } = relation;
     const eventType = event.getType();
     let relationsForEvent = this.relations.get(relatesToEventId);
-
     if (!relationsForEvent) {
       relationsForEvent = new Map();
       this.relations.set(relatesToEventId, relationsForEvent);
     }
-
     let relationsWithRelType = relationsForEvent.get(relationType);
-
     if (!relationsWithRelType) {
       relationsWithRelType = new Map();
       relationsForEvent.set(relationType, relationsWithRelType);
     }
-
     let relationsWithEventType = relationsWithRelType.get(eventType);
-
     if (!relationsWithEventType) {
       relationsWithEventType = new _relations.Relations(relationType, eventType, this.client);
       relationsWithRelType.set(eventType, relationsWithEventType);
       const room = this.room ?? timelineSet?.room;
       const relatesToEvent = timelineSet?.findEventById(relatesToEventId) ?? room?.findEventById(relatesToEventId) ?? room?.getPendingEvent(relatesToEventId);
-
       if (relatesToEvent) {
         relationsWithEventType.setTargetEvent(relatesToEvent);
       }
     }
-
     relationsWithEventType.addEvent(event);
   }
-
 }
-
 exports.RelationsContainer = RelationsContainer;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/relations.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/relations.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/relations.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/relations.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,27 +4,22 @@
   value: true
 });
 exports.RelationsEvent = exports.Relations = void 0;
-
 var _event = require("./event");
-
 var _logger = require("../logger");
-
 var _event2 = require("../@types/event");
-
 var _typedEventEmitter = require("./typed-event-emitter");
-
 var _room = require("./room");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 let RelationsEvent;
 exports.RelationsEvent = RelationsEvent;
-
 (function (RelationsEvent) {
   RelationsEvent["Add"] = "Relations.add";
   RelationsEvent["Remove"] = "Relations.remove";
   RelationsEvent["Redaction"] = "Relations.redaction";
 })(RelationsEvent || (exports.RelationsEvent = RelationsEvent = {}));
+const matchesEventType = (eventType, targetEventType, altTargetEventTypes = []) => [targetEventType, ...altTargetEventTypes].includes(eventType);
 
 /**
  * A container for relation events that supports easy access to common ways of
@@ -36,58 +31,42 @@
  */
 class Relations extends _typedEventEmitter.TypedEventEmitter {
   /**
-   * @param {RelationType} relationType
-   * The type of relation involved, such as "m.annotation", "m.reference",
-   * "m.replace", etc.
-   * @param {String} eventType
-   * The relation event's type, such as "m.reaction", etc.
-   * @param {MatrixClient|Room} client
-   * The client which created this instance. For backwards compatibility also accepts a Room.
+   * @param relationType - The type of relation involved, such as "m.annotation", "m.reference", "m.replace", etc.
+   * @param eventType - The relation event's type, such as "m.reaction", etc.
+   * @param client - The client which created this instance. For backwards compatibility also accepts a Room.
+   * @param altEventTypes - alt event types for relation events, for example to support unstable prefixed event types
    */
-  constructor(relationType, eventType, client) {
+  constructor(relationType, eventType, client, altEventTypes) {
     super();
     this.relationType = relationType;
     this.eventType = eventType;
-
+    this.altEventTypes = altEventTypes;
     _defineProperty(this, "relationEventIds", new Set());
-
     _defineProperty(this, "relations", new Set());
-
     _defineProperty(this, "annotationsByKey", {});
-
     _defineProperty(this, "annotationsBySender", {});
-
     _defineProperty(this, "sortedAnnotationsByKey", []);
-
     _defineProperty(this, "targetEvent", null);
-
     _defineProperty(this, "creationEmitted", false);
-
     _defineProperty(this, "client", void 0);
-
     _defineProperty(this, "onEventStatus", (event, status) => {
       if (!event.isSending()) {
         // Sending is done, so we don't need to listen anymore
         event.removeListener(_event.MatrixEventEvent.Status, this.onEventStatus);
         return;
       }
-
       if (status !== _event.EventStatus.CANCELLED) {
         return;
-      } // Event was cancelled, remove from the collection
-
-
+      }
+      // Event was cancelled, remove from the collection
       event.removeListener(_event.MatrixEventEvent.Status, this.onEventStatus);
       this.removeEvent(event);
     });
-
     _defineProperty(this, "onBeforeRedaction", async redactedEvent => {
       if (!this.relations.has(redactedEvent)) {
         return;
       }
-
       this.relations.delete(redactedEvent);
-
       if (this.relationType === _event2.RelationType.Annotation) {
         // Remove the redacted annotation from aggregation by key
         this.removeAnnotationFromAggregation(redactedEvent);
@@ -95,112 +74,77 @@
         const lastReplacement = await this.getLastReplacement();
         this.targetEvent.makeReplaced(lastReplacement);
       }
-
       redactedEvent.removeListener(_event.MatrixEventEvent.BeforeRedaction, this.onBeforeRedaction);
       this.emit(RelationsEvent.Redaction, redactedEvent);
     });
-
     this.client = client instanceof _room.Room ? client.client : client;
   }
+
   /**
    * Add relation events to this collection.
    *
-   * @param {MatrixEvent} event
-   * The new relation event to be added.
+   * @param event - The new relation event to be added.
    */
-
-
   async addEvent(event) {
     if (this.relationEventIds.has(event.getId())) {
       return;
     }
-
     const relation = event.getRelation();
-
     if (!relation) {
       _logger.logger.error("Event must have relation info");
-
       return;
     }
-
     const relationType = relation.rel_type;
     const eventType = event.getType();
-
-    if (this.relationType !== relationType || this.eventType !== eventType) {
+    if (this.relationType !== relationType || !matchesEventType(eventType, this.eventType, this.altEventTypes)) {
       _logger.logger.error("Event relation info doesn't match this container");
-
       return;
-    } // If the event is in the process of being sent, listen for cancellation
-    // so we can remove the event from the collection.
-
+    }
 
+    // If the event is in the process of being sent, listen for cancellation
+    // so we can remove the event from the collection.
     if (event.isSending()) {
       event.on(_event.MatrixEventEvent.Status, this.onEventStatus);
     }
-
     this.relations.add(event);
     this.relationEventIds.add(event.getId());
-
     if (this.relationType === _event2.RelationType.Annotation) {
       this.addAnnotationToAggregation(event);
     } else if (this.relationType === _event2.RelationType.Replace && this.targetEvent && !this.targetEvent.isState()) {
       const lastReplacement = await this.getLastReplacement();
       this.targetEvent.makeReplaced(lastReplacement);
     }
-
     event.on(_event.MatrixEventEvent.BeforeRedaction, this.onBeforeRedaction);
     this.emit(RelationsEvent.Add, event);
     this.maybeEmitCreated();
   }
+
   /**
    * Remove relation event from this collection.
    *
-   * @param {MatrixEvent} event
-   * The relation event to remove.
+   * @param event - The relation event to remove.
    */
-
-
   async removeEvent(event) {
     if (!this.relations.has(event)) {
       return;
     }
-
-    const relation = event.getRelation();
-
-    if (!relation) {
-      _logger.logger.error("Event must have relation info");
-
-      return;
-    }
-
-    const relationType = relation.rel_type;
-    const eventType = event.getType();
-
-    if (this.relationType !== relationType || this.eventType !== eventType) {
-      _logger.logger.error("Event relation info doesn't match this container");
-
-      return;
-    }
-
     this.relations.delete(event);
-
     if (this.relationType === _event2.RelationType.Annotation) {
       this.removeAnnotationFromAggregation(event);
     } else if (this.relationType === _event2.RelationType.Replace && this.targetEvent && !this.targetEvent.isState()) {
       const lastReplacement = await this.getLastReplacement();
       this.targetEvent.makeReplaced(lastReplacement);
     }
-
     this.emit(RelationsEvent.Remove, event);
   }
+
   /**
    * Listens for event status changes to remove cancelled events.
    *
-   * @param {MatrixEvent} event The event whose status has changed
-   * @param {EventStatus} status The new status
+   * @param event - The event whose status has changed
+   * @param status - The new status
    */
 
-
   /**
    * Get all relation events in this collection.
    *
@@ -208,32 +152,24 @@
    * won't match timeline order in the case of scrollback.
    * TODO: Tweak `addEvent` to insert correctly for scrollback.
    *
-   * @return {Array}
    * Relation events in insertion order.
    */
   getRelations() {
     return [...this.relations];
   }
-
   addAnnotationToAggregation(event) {
     const {
       key
-    } = event.getRelation();
-
-    if (!key) {
-      return;
-    }
-
+    } = event.getRelation() ?? {};
+    if (!key) return;
     let eventsForKey = this.annotationsByKey[key];
-
     if (!eventsForKey) {
       eventsForKey = this.annotationsByKey[key] = new Set();
       this.sortedAnnotationsByKey.push([key, eventsForKey]);
-    } // Add the new event to the set for this key
-
-
-    eventsForKey.add(event); // Re-sort the [key, events] pairs in descending order of event count
-
+    }
+    // Add the new event to the set for this key
+    eventsForKey.add(event);
+    // Re-sort the [key, events] pairs in descending order of event count
     this.sortedAnnotationsByKey.sort((a, b) => {
       const aEvents = a[1];
       const bEvents = b[1];
@@ -241,43 +177,35 @@
     });
     const sender = event.getSender();
     let eventsFromSender = this.annotationsBySender[sender];
-
     if (!eventsFromSender) {
       eventsFromSender = this.annotationsBySender[sender] = new Set();
-    } // Add the new event to the set for this sender
-
-
+    }
+    // Add the new event to the set for this sender
     eventsFromSender.add(event);
   }
-
   removeAnnotationFromAggregation(event) {
     const {
       key
-    } = event.getRelation();
-
-    if (!key) {
-      return;
-    }
-
+    } = event.getRelation() ?? {};
+    if (!key) return;
     const eventsForKey = this.annotationsByKey[key];
-
     if (eventsForKey) {
-      eventsForKey.delete(event); // Re-sort the [key, events] pairs in descending order of event count
+      eventsForKey.delete(event);
 
+      // Re-sort the [key, events] pairs in descending order of event count
       this.sortedAnnotationsByKey.sort((a, b) => {
         const aEvents = a[1];
         const bEvents = b[1];
         return bEvents.size - aEvents.size;
       });
     }
-
     const sender = event.getSender();
     const eventsFromSender = this.annotationsBySender[sender];
-
     if (eventsFromSender) {
       eventsFromSender.delete(event);
     }
   }
+
   /**
    * For relations that have been redacted, we want to remove them from
    * aggregation data sets and emit an update event.
@@ -286,18 +214,15 @@
    *   - after the server accepted the redaction and remote echoed back to us
    *   - before the original event has been marked redacted in the client
    *
-   * @param {MatrixEvent} redactedEvent
-   * The original relation event that is about to be redacted.
+   * @param redactedEvent - The original relation event that is about to be redacted.
    */
 
-
   /**
    * Get all events in this collection grouped by key and sorted by descending
    * event count in each group.
    *
    * This is currently only supported for the annotation relation type.
    *
-   * @return {Array}
    * An array of [key, events] pairs sorted by descending event count.
    * The events are stored in a Set (which preserves insertion order).
    */
@@ -306,118 +231,96 @@
       // Other relation types are not grouped currently.
       return null;
     }
-
     return this.sortedAnnotationsByKey;
   }
+
   /**
    * Get all events in this collection grouped by sender.
    *
    * This is currently only supported for the annotation relation type.
    *
-   * @return {Object}
    * An object with each relation sender as a key and the matching Set of
    * events for that sender as a value.
    */
-
-
   getAnnotationsBySender() {
     if (this.relationType !== _event2.RelationType.Annotation) {
       // Other relation types are not grouped currently.
       return null;
     }
-
     return this.annotationsBySender;
   }
+
   /**
    * Returns the most recent (and allowed) m.replace relation, if any.
    *
    * This is currently only supported for the m.replace relation type,
    * once the target event is known, see `addEvent`.
-   *
-   * @return {MatrixEvent?}
    */
-
-
   async getLastReplacement() {
     if (this.relationType !== _event2.RelationType.Replace) {
       // Aggregating on last only makes sense for this relation type
       return null;
     }
-
     if (!this.targetEvent) {
       // Don't know which replacements to accept yet.
       // This method shouldn't be called before the original
       // event is known anyway.
       return null;
-    } // the all-knowning server tells us that the event at some point had
-    // this timestamp for its replacement, so any following replacement should definitely not be less
-
+    }
 
+    // the all-knowning server tells us that the event at some point had
+    // this timestamp for its replacement, so any following replacement should definitely not be less
     const replaceRelation = this.targetEvent.getServerAggregatedRelation(_event2.RelationType.Replace);
     const minTs = replaceRelation?.origin_server_ts;
     const lastReplacement = this.getRelations().reduce((last, event) => {
       if (event.getSender() !== this.targetEvent.getSender()) {
         return last;
       }
-
       if (minTs && minTs > event.getTs()) {
         return last;
       }
-
       if (last && last.getTs() > event.getTs()) {
         return last;
       }
-
       return event;
     }, null);
-
-    if (lastReplacement?.shouldAttemptDecryption()) {
+    if (lastReplacement?.shouldAttemptDecryption() && this.client.isCryptoEnabled()) {
       await lastReplacement.attemptDecryption(this.client.crypto);
     } else if (lastReplacement?.isBeingDecrypted()) {
       await lastReplacement.getDecryptionPromise();
     }
-
     return lastReplacement;
   }
+
   /*
-   * @param {MatrixEvent} targetEvent the event the relations are related to.
+   * @param targetEvent - the event the relations are related to.
    */
-
-
   async setTargetEvent(event) {
     if (this.targetEvent) {
       return;
     }
-
     this.targetEvent = event;
-
     if (this.relationType === _event2.RelationType.Replace && !this.targetEvent.isState()) {
-      const replacement = await this.getLastReplacement(); // this is the initial update, so only call it if we already have something
+      const replacement = await this.getLastReplacement();
+      // this is the initial update, so only call it if we already have something
       // to not emit Event.replaced needlessly
-
       if (replacement) {
         this.targetEvent.makeReplaced(replacement);
       }
     }
-
     this.maybeEmitCreated();
   }
-
   maybeEmitCreated() {
     if (this.creationEmitted) {
       return;
-    } // Only emit we're "created" once we have a target event instance _and_
+    }
+    // Only emit we're "created" once we have a target event instance _and_
     // at least one related event.
-
-
     if (!this.targetEvent || !this.relations.size) {
       return;
     }
-
     this.creationEmitted = true;
     this.targetEvent.emit(_event.MatrixEventEvent.RelationsCreated, this.relationType, this.eventType);
   }
-
 }
-
 exports.Relations = Relations;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/room.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/room.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/room.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/room.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,85 +4,43 @@
   value: true
 });
 exports.RoomNameType = exports.RoomEvent = exports.Room = exports.NotificationCountType = exports.KNOWN_SAFE_ROOM_VERSION = void 0;
-
+var _matrixEventsSdk = require("matrix-events-sdk");
 var _eventTimelineSet = require("./event-timeline-set");
-
 var _eventTimeline = require("./event-timeline");
-
 var _contentRepo = require("../content-repo");
-
 var utils = _interopRequireWildcard(require("../utils"));
-
 var _event = require("./event");
-
 var _eventStatus = require("./event-status");
-
 var _roomMember = require("./room-member");
-
 var _roomSummary = require("./room-summary");
-
 var _logger = require("../logger");
-
 var _ReEmitter = require("../ReEmitter");
-
 var _event2 = require("../@types/event");
-
 var _client = require("../client");
-
 var _filter = require("../filter");
-
 var _roomState = require("./room-state");
-
 var _beacon = require("./beacon");
-
 var _thread = require("./thread");
-
-var _typedEventEmitter = require("./typed-event-emitter");
-
 var _read_receipts = require("../@types/read_receipts");
-
 var _relationsContainer = require("./relations-container");
-
+var _readReceipt = require("./read-receipt");
+var _poll = require("./poll");
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
 function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
-
 function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 // These constants are used as sane defaults when the homeserver doesn't support
 // the m.room_versions capability. In practice, KNOWN_SAFE_ROOM_VERSION should be
 // the same as the common default room version whereas SAFE_ROOM_VERSIONS are the
 // room versions which are considered okay for people to run without being asked
 // to upgrade (ie: "stable"). Eventually, we should remove these when all homeservers
 // return an m.room_versions capability.
-const KNOWN_SAFE_ROOM_VERSION = '9';
+const KNOWN_SAFE_ROOM_VERSION = "9";
 exports.KNOWN_SAFE_ROOM_VERSION = KNOWN_SAFE_ROOM_VERSION;
-const SAFE_ROOM_VERSIONS = ['1', '2', '3', '4', '5', '6', '7', '8', '9'];
-
-function synthesizeReceipt(userId, event, receiptType) {
-  // console.log("synthesizing receipt for "+event.getId());
-  return new _event.MatrixEvent({
-    content: {
-      [event.getId()]: {
-        [receiptType]: {
-          [userId]: {
-            ts: event.getTs()
-          }
-        }
-      }
-    },
-    type: _event2.EventType.Receipt,
-    room_id: event.getRoomId()
-  });
-}
-
-const ReceiptPairRealIndex = 0;
-const ReceiptPairSyntheticIndex = 1; // We will only hold a synthetic receipt if we do not have a real receipt or the synthetic is newer.
-
+const SAFE_ROOM_VERSIONS = ["1", "2", "3", "4", "5", "6", "7", "8", "9"];
 // When inserting a visibility event affecting event `eventId`, we
 // need to scan through existing visibility events for `eventId`.
 // In theory, this could take an unlimited amount of time if:
@@ -100,15 +58,12 @@
 const MAX_NUMBER_OF_VISIBILITY_EVENTS_TO_SCAN_THROUGH = 30;
 let NotificationCountType;
 exports.NotificationCountType = NotificationCountType;
-
 (function (NotificationCountType) {
   NotificationCountType["Highlight"] = "highlight";
   NotificationCountType["Total"] = "total";
 })(NotificationCountType || (exports.NotificationCountType = NotificationCountType = {}));
-
 let RoomEvent;
 exports.RoomEvent = RoomEvent;
-
 (function (RoomEvent) {
   RoomEvent["MyMembership"] = "Room.myMembership";
   RoomEvent["Tags"] = "Room.tags";
@@ -124,22 +79,26 @@
   RoomEvent["OldStateUpdated"] = "Room.OldStateUpdated";
   RoomEvent["CurrentStateUpdated"] = "Room.CurrentStateUpdated";
   RoomEvent["HistoryImportedWithinTimeline"] = "Room.historyImportedWithinTimeline";
+  RoomEvent["UnreadNotifications"] = "Room.UnreadNotifications";
 })(RoomEvent || (exports.RoomEvent = RoomEvent = {}));
-
-class Room extends _typedEventEmitter.TypedEventEmitter {
+class Room extends _readReceipt.ReadReceipt {
   // Pending in-flight requests { string: MatrixEvent }
-  // receipts should clobber based on receipt_type and user_id pairs hence
-  // the form of this structure. This is sub-optimal for the exposed APIs
-  // which pass in an event ID and get back some receipts, so we also store
-  // a pre-cached list for this purpose.
-  // { receipt_type: { user_id: IReceipt } }
-  // { event_id: ICachedReceipt[] }
+
+  // Useful to know at what point the current user has started using threads in this room
+
+  /**
+   * A record of the latest unthread receipts per user
+   * This is useful in determining whether a user has read a thread or not
+   */
+
   // any filtered timeline sets we're maintaining for this room
   // filter_id: timelineSet
+
   // read by megolm via getter; boolean value - null indicates "use global value"
+
   // flags to stop logspam about missing m.room.create events
-  // XXX: These should be read-only
 
+  // XXX: These should be read-only
   /**
    * The human-readable display name for this room.
    */
@@ -150,25 +109,19 @@
 
   /**
    * Dict of room tags; the keys are the tag name and the values
-   * are any metadata associated with the tag - e.g. { "fav" : { order: 1 } }
+   * are any metadata associated with the tag - e.g. `{ "fav" : { order: 1 } }`
    */
   // $tagName: { $metadata: $value }
-
   /**
    * accountData Dict of per-room account_data events; the keys are the
    * event type and the values are the events.
    */
   // $eventType: $event
-
   /**
    * The room summary.
    */
 
-  /**
-   * A token which a data store can use to remember the state of the room.
-   */
   // legacy fields
-
   /**
    * The live event timeline for this room, with the oldest event at index 0.
    * Present for backwards compatibility - prefer getLiveTimeline().getEvents()
@@ -187,7 +140,8 @@
    */
 
   /**
-   * @experimental
+   * A collection of events known by the client
+   * This is not a comprehensive list of the threads that exist in this room
    */
 
   /**
@@ -225,183 +179,171 @@
    * <p>In order that we can find events from their ids later, we also maintain a
    * map from event_id to timeline and index.
    *
-   * @constructor
-   * @alias module:models/room
-   * @param {string} roomId Required. The ID of this room.
-   * @param {MatrixClient} client Required. The client, used to lazy load members.
-   * @param {string} myUserId Required. The ID of the syncing user.
-   * @param {Object=} opts Configuration options
-   * @param {*} opts.storageToken Optional. The token which a data store can use
-   * to remember the state of the room. What this means is dependent on the store
-   * implementation.
-   *
-   * @param {String=} opts.pendingEventOrdering Controls where pending messages
-   * appear in a room's timeline. If "<b>chronological</b>", messages will appear
-   * in the timeline when the call to <code>sendEvent</code> was made. If
-   * "<b>detached</b>", pending messages will appear in a separate list,
-   * accessible via {@link module:models/room#getPendingEvents}. Default:
-   * "chronological".
-   * @param {boolean} [opts.timelineSupport = false] Set to true to enable improved
-   * timeline support.
+   * @param roomId - Required. The ID of this room.
+   * @param client - Required. The client, used to lazy load members.
+   * @param myUserId - Required. The ID of the syncing user.
+   * @param opts - Configuration options
    */
   constructor(roomId, client, myUserId, opts = {}) {
-    super(); // In some cases, we add listeners for every displayed Matrix event, so it's
+    super();
+    // In some cases, we add listeners for every displayed Matrix event, so it's
     // common to have quite a few more than the default limit.
-
     this.roomId = roomId;
     this.client = client;
     this.myUserId = myUserId;
     this.opts = opts;
-
     _defineProperty(this, "reEmitter", void 0);
-
-    _defineProperty(this, "txnToEvent", {});
-
-    _defineProperty(this, "receipts", {});
-
-    _defineProperty(this, "receiptCacheByEventId", {});
-
+    _defineProperty(this, "txnToEvent", new Map());
     _defineProperty(this, "notificationCounts", {});
-
+    _defineProperty(this, "threadNotifications", new Map());
+    _defineProperty(this, "cachedThreadReadReceipts", new Map());
+    _defineProperty(this, "oldestThreadedReceiptTs", Infinity);
+    _defineProperty(this, "unthreadedReceipts", new Map());
     _defineProperty(this, "timelineSets", void 0);
-
+    _defineProperty(this, "polls", new Map());
     _defineProperty(this, "threadsTimelineSets", []);
-
     _defineProperty(this, "filteredTimelineSets", {});
-
     _defineProperty(this, "timelineNeedsRefresh", false);
-
     _defineProperty(this, "pendingEventList", void 0);
-
-    _defineProperty(this, "blacklistUnverifiedDevices", null);
-
-    _defineProperty(this, "selfMembership", null);
-
+    _defineProperty(this, "blacklistUnverifiedDevices", void 0);
+    _defineProperty(this, "selfMembership", void 0);
     _defineProperty(this, "summaryHeroes", null);
-
     _defineProperty(this, "getTypeWarning", false);
-
     _defineProperty(this, "getVersionWarning", false);
-
     _defineProperty(this, "membersPromise", void 0);
-
     _defineProperty(this, "name", void 0);
-
     _defineProperty(this, "normalizedName", void 0);
-
     _defineProperty(this, "tags", {});
-
-    _defineProperty(this, "accountData", {});
-
+    _defineProperty(this, "accountData", new Map());
     _defineProperty(this, "summary", null);
-
-    _defineProperty(this, "storageToken", void 0);
-
     _defineProperty(this, "timeline", void 0);
-
     _defineProperty(this, "oldState", void 0);
-
     _defineProperty(this, "currentState", void 0);
-
     _defineProperty(this, "relations", new _relationsContainer.RelationsContainer(this.client, this));
-
     _defineProperty(this, "threads", new Map());
-
     _defineProperty(this, "lastThread", void 0);
-
     _defineProperty(this, "visibilityEvents", new Map());
-
     _defineProperty(this, "threadTimelineSetsPromise", null);
-
     _defineProperty(this, "threadsReady", false);
-
+    _defineProperty(this, "updateThreadRootEvents", (thread, toStartOfTimeline, recreateEvent) => {
+      if (thread.length) {
+        this.updateThreadRootEvent(this.threadsTimelineSets?.[0], thread, toStartOfTimeline, recreateEvent);
+        if (thread.hasCurrentUserParticipated) {
+          this.updateThreadRootEvent(this.threadsTimelineSets?.[1], thread, toStartOfTimeline, recreateEvent);
+        }
+      }
+    });
+    _defineProperty(this, "updateThreadRootEvent", (timelineSet, thread, toStartOfTimeline, recreateEvent) => {
+      if (timelineSet && thread.rootEvent) {
+        if (recreateEvent) {
+          timelineSet.removeEvent(thread.id);
+        }
+        if (_thread.Thread.hasServerSideSupport) {
+          timelineSet.addLiveEvent(thread.rootEvent, {
+            duplicateStrategy: _eventTimelineSet.DuplicateStrategy.Replace,
+            fromCache: false,
+            roomState: this.currentState
+          });
+        } else {
+          timelineSet.addEventToTimeline(thread.rootEvent, timelineSet.getLiveTimeline(), {
+            toStartOfTimeline
+          });
+        }
+      }
+    });
     _defineProperty(this, "applyRedaction", event => {
       if (event.isRedaction()) {
-        const redactId = event.event.redacts; // if we know about this event, redact its contents now.
-
-        const redactedEvent = this.findEventById(redactId);
+        const redactId = event.event.redacts;
 
+        // if we know about this event, redact its contents now.
+        const redactedEvent = redactId ? this.findEventById(redactId) : undefined;
         if (redactedEvent) {
-          redactedEvent.makeRedacted(event); // If this is in the current state, replace it with the redacted version
+          redactedEvent.makeRedacted(event);
 
+          // If this is in the current state, replace it with the redacted version
           if (redactedEvent.isState()) {
             const currentStateEvent = this.currentState.getStateEvents(redactedEvent.getType(), redactedEvent.getStateKey());
-
-            if (currentStateEvent.getId() === redactedEvent.getId()) {
+            if (currentStateEvent?.getId() === redactedEvent.getId()) {
               this.currentState.setStateEvents([redactedEvent]);
             }
           }
+          this.emit(RoomEvent.Redaction, event, this);
 
-          this.emit(RoomEvent.Redaction, event, this); // TODO: we stash user displaynames (among other things) in
+          // TODO: we stash user displaynames (among other things) in
           // RoomMember objects which are then attached to other events
           // (in the sender and target fields). We should get those
           // RoomMember objects to update themselves when the events that
           // they are based on are changed.
+
           // Remove any visibility change on this event.
+          this.visibilityEvents.delete(redactId);
 
-          this.visibilityEvents.delete(redactId); // If this event is a visibility change event, remove it from the
+          // If this event is a visibility change event, remove it from the
           // list of visibility changes and update any event affected by it.
-
           if (redactedEvent.isVisibilityEvent()) {
             this.redactVisibilityChangeEvent(event);
           }
-        } // FIXME: apply redactions to notification list
+        }
+
+        // FIXME: apply redactions to notification list
+
         // NB: We continue to add the redaction event to the timeline so
         // clients can say "so and so redacted an event" if they wish to. Also
         // this may be needed to trigger an update.
-
       }
     });
-
     this.setMaxListeners(100);
     this.reEmitter = new _ReEmitter.TypedReEmitter(this);
     opts.pendingEventOrdering = opts.pendingEventOrdering || _client.PendingEventOrdering.Chronological;
-    this.name = roomId; // all our per-room timeline sets. the first one is the unfiltered ones;
-    // the subsequent ones are the filtered ones in no particular order.
+    this.name = roomId;
+    this.normalizedName = roomId;
 
+    // all our per-room timeline sets. the first one is the unfiltered ones;
+    // the subsequent ones are the filtered ones in no particular order.
     this.timelineSets = [new _eventTimelineSet.EventTimelineSet(this, opts)];
     this.reEmitter.reEmit(this.getUnfilteredTimelineSet(), [RoomEvent.Timeline, RoomEvent.TimelineReset]);
     this.fixUpLegacyTimelineFields();
-
     if (this.opts.pendingEventOrdering === _client.PendingEventOrdering.Detached) {
       this.pendingEventList = [];
       this.client.store.getPendingEvents(this.roomId).then(events => {
+        const mapper = this.client.getEventMapper({
+          toDevice: false,
+          decrypt: false
+        });
         events.forEach(async serializedEvent => {
-          const event = new _event.MatrixEvent(serializedEvent);
-
-          if (event.getType() === _event2.EventType.RoomMessageEncrypted) {
-            await event.attemptDecryption(this.client.crypto);
-          }
-
+          const event = mapper(serializedEvent);
+          await client.decryptEventIfNeeded(event);
           event.setStatus(_eventStatus.EventStatus.NOT_SENT);
           this.addPendingEvent(event, event.getTxnId());
         });
       });
-    } // awaited by getEncryptionTargetMembers while room members are loading
-
+    }
 
+    // awaited by getEncryptionTargetMembers while room members are loading
     if (!this.opts.lazyLoadMembers) {
       this.membersPromise = Promise.resolve(false);
     } else {
-      this.membersPromise = null;
+      this.membersPromise = undefined;
     }
   }
-
   async createThreadsTimelineSets() {
     if (this.threadTimelineSetsPromise) {
       return this.threadTimelineSetsPromise;
     }
-
-    if (this.client?.supportsExperimentalThreads()) {
+    if (this.client?.supportsThreads()) {
       try {
         this.threadTimelineSetsPromise = Promise.all([this.createThreadTimelineSet(), this.createThreadTimelineSet(_thread.ThreadFilterType.My)]);
         const timelineSets = await this.threadTimelineSetsPromise;
         this.threadsTimelineSets.push(...timelineSets);
+        return timelineSets;
       } catch (e) {
         this.threadTimelineSetsPromise = null;
+        return null;
       }
     }
+    return null;
   }
+
   /**
    * Bulk decrypt critical events in a room
    *
@@ -411,75 +353,66 @@
    * - Last event of every room (to generate likely message preview)
    * - All events up to the read receipt (to calculate an accurate notification count)
    *
-   * @returns {Promise} Signals when all events have been decrypted
+   * @returns Signals when all events have been decrypted
    */
-
-
-  decryptCriticalEvents() {
+  async decryptCriticalEvents() {
+    if (!this.client.isCryptoEnabled()) return;
     const readReceiptEventId = this.getEventReadUpTo(this.client.getUserId(), true);
     const events = this.getLiveTimeline().getEvents();
     const readReceiptTimelineIndex = events.findIndex(matrixEvent => {
       return matrixEvent.event.event_id === readReceiptEventId;
     });
-    const decryptionPromises = events.slice(readReceiptTimelineIndex).filter(event => event.shouldAttemptDecryption()).reverse().map(event => event.attemptDecryption(this.client.crypto, {
+    const decryptionPromises = events.slice(readReceiptTimelineIndex).reverse().map(event => this.client.decryptEventIfNeeded(event, {
       isRetry: true
     }));
-    return Promise.allSettled(decryptionPromises);
+    await Promise.allSettled(decryptionPromises);
   }
+
   /**
    * Bulk decrypt events in a room
    *
-   * @returns {Promise} Signals when all events have been decrypted
+   * @returns Signals when all events have been decrypted
    */
-
-
-  decryptAllEvents() {
-    const decryptionPromises = this.getUnfilteredTimelineSet().getLiveTimeline().getEvents().filter(event => event.shouldAttemptDecryption()).reverse().map(event => event.attemptDecryption(this.client.crypto, {
+  async decryptAllEvents() {
+    if (!this.client.isCryptoEnabled()) return;
+    const decryptionPromises = this.getUnfilteredTimelineSet().getLiveTimeline().getEvents().slice(0) // copy before reversing
+    .reverse().map(event => this.client.decryptEventIfNeeded(event, {
       isRetry: true
     }));
-    return Promise.allSettled(decryptionPromises);
+    await Promise.allSettled(decryptionPromises);
   }
+
   /**
    * Gets the creator of the room
-   * @returns {string} The creator of the room, or null if it could not be determined
+   * @returns The creator of the room, or null if it could not be determined
    */
-
-
   getCreator() {
     const createEvent = this.currentState.getStateEvents(_event2.EventType.RoomCreate, "");
-    return createEvent?.getContent()['creator'] ?? null;
+    return createEvent?.getContent()["creator"] ?? null;
   }
+
   /**
    * Gets the version of the room
-   * @returns {string} The version of the room, or null if it could not be determined
+   * @returns The version of the room, or null if it could not be determined
    */
-
-
   getVersion() {
     const createEvent = this.currentState.getStateEvents(_event2.EventType.RoomCreate, "");
-
     if (!createEvent) {
       if (!this.getVersionWarning) {
         _logger.logger.warn("[getVersion] Room " + this.roomId + " does not have an m.room.create event");
-
         this.getVersionWarning = true;
       }
-
-      return '1';
+      return "1";
     }
-
-    const ver = createEvent.getContent()['room_version'];
-    if (ver === undefined) return '1';
-    return ver;
+    return createEvent.getContent()["room_version"] ?? "1";
   }
+
   /**
    * Determines whether this room needs to be upgraded to a new version
-   * @returns {string?} What version the room should be upgraded to, or null if
+   * @returns What version the room should be upgraded to, or null if
    *     the room does not require upgrading at this time.
    * @deprecated Use #getRecommendedVersion() instead
    */
-
-
   shouldUpgradeToVersion() {
     // TODO: Remove this function.
     // This makes assumptions about which versions are safe, and can easily
@@ -487,42 +420,37 @@
     // which determines a safer value. This function doesn't use that function
     // because this is not async-capable, and to avoid breaking the contract
     // we're deprecating this.
+
     if (!SAFE_ROOM_VERSIONS.includes(this.getVersion())) {
       return KNOWN_SAFE_ROOM_VERSION;
     }
-
     return null;
   }
+
   /**
    * Determines the recommended room version for the room. This returns an
-   * object with 3 properties: <code>version</code> as the new version the
+   * object with 3 properties: `version` as the new version the
    * room should be upgraded to (may be the same as the current version);
-   * <code>needsUpgrade</code> to indicate if the room actually can be
-   * upgraded (ie: does the current version not match?); and <code>urgent</code>
+   * `needsUpgrade` to indicate if the room actually can be
+   * upgraded (ie: does the current version not match?); and `urgent`
    * to indicate if the new version patches a vulnerability in a previous
    * version.
-   * @returns {Promise<{version: string, needsUpgrade: boolean, urgent: boolean}>}
+   * @returns
    * Resolves to the version the room should be upgraded to.
    */
-
-
   async getRecommendedVersion() {
     const capabilities = await this.client.getCapabilities();
     let versionCap = capabilities["m.room_versions"];
-
     if (!versionCap) {
       versionCap = {
         default: KNOWN_SAFE_ROOM_VERSION,
         available: {}
       };
-
       for (const safeVer of SAFE_ROOM_VERSIONS) {
         versionCap.available[safeVer] = _client.RoomVersionStability.Stable;
       }
     }
-
     let result = this.checkVersionAgainstCapability(versionCap);
-
     if (result.urgent && result.needsUpgrade) {
       // Something doesn't feel right: we shouldn't need to update
       // because the version we're on should be in the protocol's
@@ -531,156 +459,127 @@
       // room version is not stable. As a solution, we'll refresh
       // the capability we're using to determine this.
       _logger.logger.warn("Refreshing room version capability because the server looks " + "to be supporting a newer room version we don't know about.");
-
       const caps = await this.client.getCapabilities(true);
       versionCap = caps["m.room_versions"];
-
       if (!versionCap) {
         _logger.logger.warn("No room version capability - assuming upgrade required.");
-
         return result;
       } else {
         result = this.checkVersionAgainstCapability(versionCap);
       }
     }
-
     return result;
   }
-
   checkVersionAgainstCapability(versionCap) {
     const currentVersion = this.getVersion();
-
     _logger.logger.log(`[${this.roomId}] Current version: ${currentVersion}`);
-
     _logger.logger.log(`[${this.roomId}] Version capability: `, versionCap);
-
     const result = {
       version: currentVersion,
       needsUpgrade: false,
       urgent: false
-    }; // If the room is on the default version then nothing needs to change
+    };
 
+    // If the room is on the default version then nothing needs to change
     if (currentVersion === versionCap.default) return result;
-    const stableVersions = Object.keys(versionCap.available).filter(v => versionCap.available[v] === 'stable'); // Check if the room is on an unstable version. We determine urgency based
+    const stableVersions = Object.keys(versionCap.available).filter(v => versionCap.available[v] === "stable");
+
+    // Check if the room is on an unstable version. We determine urgency based
     // off the version being in the Matrix spec namespace or not (if the version
     // is in the current namespace and unstable, the room is probably vulnerable).
-
     if (!stableVersions.includes(currentVersion)) {
       result.version = versionCap.default;
       result.needsUpgrade = true;
       result.urgent = !!this.getVersion().match(/^[0-9]+[0-9.]*$/g);
-
       if (result.urgent) {
         _logger.logger.warn(`URGENT upgrade required on ${this.roomId}`);
       } else {
         _logger.logger.warn(`Non-urgent upgrade required on ${this.roomId}`);
       }
-
       return result;
-    } // The room is on a stable, but non-default, version by this point.
-    // No upgrade needed.
-
+    }
 
+    // The room is on a stable, but non-default, version by this point.
+    // No upgrade needed.
     return result;
   }
+
   /**
    * Determines whether the given user is permitted to perform a room upgrade
-   * @param {String} userId The ID of the user to test against
-   * @returns {boolean} True if the given user is permitted to upgrade the room
+   * @param userId - The ID of the user to test against
+   * @returns True if the given user is permitted to upgrade the room
    */
-
-
   userMayUpgradeRoom(userId) {
     return this.currentState.maySendStateEvent(_event2.EventType.RoomTombstone, userId);
   }
+
   /**
    * Get the list of pending sent events for this room
    *
-   * @return {module:models/event.MatrixEvent[]} A list of the sent events
+   * @returns A list of the sent events
    * waiting for remote echo.
    *
-   * @throws If <code>opts.pendingEventOrdering</code> was not 'detached'
+   * @throws If `opts.pendingEventOrdering` was not 'detached'
    */
-
-
   getPendingEvents() {
-    if (this.opts.pendingEventOrdering !== _client.PendingEventOrdering.Detached) {
+    if (!this.pendingEventList) {
       throw new Error("Cannot call getPendingEvents with pendingEventOrdering == " + this.opts.pendingEventOrdering);
     }
-
     return this.pendingEventList;
   }
+
   /**
    * Removes a pending event for this room
    *
-   * @param {string} eventId
-   * @return {boolean} True if an element was removed.
+   * @returns True if an element was removed.
    */
-
-
   removePendingEvent(eventId) {
-    if (this.opts.pendingEventOrdering !== _client.PendingEventOrdering.Detached) {
+    if (!this.pendingEventList) {
       throw new Error("Cannot call removePendingEvent with pendingEventOrdering == " + this.opts.pendingEventOrdering);
     }
-
     const removed = utils.removeElement(this.pendingEventList, function (ev) {
       return ev.getId() == eventId;
     }, false);
     this.savePendingEvents();
     return removed;
   }
+
   /**
    * Check whether the pending event list contains a given event by ID.
    * If pending event ordering is not "detached" then this returns false.
    *
-   * @param {string} eventId The event ID to check for.
-   * @return {boolean}
+   * @param eventId - The event ID to check for.
    */
-
-
   hasPendingEvent(eventId) {
-    if (this.opts.pendingEventOrdering !== _client.PendingEventOrdering.Detached) {
-      return false;
-    }
-
-    return this.pendingEventList.some(event => event.getId() === eventId);
+    return this.pendingEventList?.some(event => event.getId() === eventId) ?? false;
   }
+
   /**
    * Get a specific event from the pending event list, if configured, null otherwise.
    *
-   * @param {string} eventId The event ID to check for.
-   * @return {MatrixEvent}
+   * @param eventId - The event ID to check for.
    */
-
-
   getPendingEvent(eventId) {
-    if (this.opts.pendingEventOrdering !== _client.PendingEventOrdering.Detached) {
-      return null;
-    }
-
-    return this.pendingEventList.find(event => event.getId() === eventId);
+    return this.pendingEventList?.find(event => event.getId() === eventId) ?? null;
   }
+
   /**
    * Get the live unfiltered timeline for this room.
    *
-   * @return {module:models/event-timeline~EventTimeline} live timeline
+   * @returns live timeline
    */
-
-
   getLiveTimeline() {
     return this.getUnfilteredTimelineSet().getLiveTimeline();
   }
+
   /**
    * Get the timestamp of the last message in the room
    *
-   * @return {number} the timestamp of the last message in the room
+   * @returns the timestamp of the last message in the room
    */
-
-
   getLastActiveTimestamp() {
     const timeline = this.getLiveTimeline();
     const events = timeline.getEvents();
-
     if (events.length) {
       const lastEvent = events[events.length - 1];
       return lastEvent.getTs();
@@ -688,116 +587,90 @@
       return Number.MIN_SAFE_INTEGER;
     }
   }
+
   /**
-   * @return {string} the membership type (join | leave | invite) for the logged in user
+   * @returns the membership type (join | leave | invite) for the logged in user
    */
-
-
   getMyMembership() {
-    return this.selfMembership;
+    return this.selfMembership ?? "leave";
   }
+
   /**
    * If this room is a DM we're invited to,
    * try to find out who invited us
-   * @return {string} user id of the inviter
+   * @returns user id of the inviter
    */
-
-
   getDMInviter() {
-    if (this.myUserId) {
-      const me = this.getMember(this.myUserId);
-
-      if (me) {
-        return me.getDMInviter();
-      }
+    const me = this.getMember(this.myUserId);
+    if (me) {
+      return me.getDMInviter();
     }
-
     if (this.selfMembership === "invite") {
       // fall back to summary information
       const memberCount = this.getInvitedAndJoinedMemberCount();
-
-      if (memberCount == 2 && this.summaryHeroes.length) {
-        return this.summaryHeroes[0];
+      if (memberCount === 2) {
+        return this.summaryHeroes?.[0];
       }
     }
   }
+
   /**
    * Assuming this room is a DM room, tries to guess with which user.
-   * @return {string} user id of the other member (could be syncing user)
+   * @returns user id of the other member (could be syncing user)
    */
-
-
   guessDMUserId() {
     const me = this.getMember(this.myUserId);
-
     if (me) {
       const inviterId = me.getDMInviter();
-
       if (inviterId) {
         return inviterId;
       }
-    } // remember, we're assuming this room is a DM,
-    // so returning the first member we find should be fine
-
-
-    const hasHeroes = Array.isArray(this.summaryHeroes) && this.summaryHeroes.length;
-
-    if (hasHeroes) {
+    }
+    // Remember, we're assuming this room is a DM, so returning the first member we find should be fine
+    if (Array.isArray(this.summaryHeroes) && this.summaryHeroes.length) {
       return this.summaryHeroes[0];
     }
-
     const members = this.currentState.getMembers();
     const anyMember = members.find(m => m.userId !== this.myUserId);
-
     if (anyMember) {
       return anyMember.userId;
-    } // it really seems like I'm the only user in the room
+    }
+    // it really seems like I'm the only user in the room
     // so I probably created a room with just me in it
     // and marked it as a DM. Ok then
-
-
     return this.myUserId;
   }
-
   getAvatarFallbackMember() {
     const memberCount = this.getInvitedAndJoinedMemberCount();
-
     if (memberCount > 2) {
       return;
     }
-
     const hasHeroes = Array.isArray(this.summaryHeroes) && this.summaryHeroes.length;
-
     if (hasHeroes) {
       const availableMember = this.summaryHeroes.map(userId => {
         return this.getMember(userId);
       }).find(member => !!member);
-
       if (availableMember) {
         return availableMember;
       }
     }
-
-    const members = this.currentState.getMembers(); // could be different than memberCount
+    const members = this.currentState.getMembers();
+    // could be different than memberCount
     // as this includes left members
-
     if (members.length <= 2) {
       const availableMember = members.find(m => {
         return m.userId !== this.myUserId;
       });
-
       if (availableMember) {
         return availableMember;
       }
-    } // if all else fails, try falling back to a user,
+    }
+    // if all else fails, try falling back to a user,
     // and create a one-off member for it
-
-
     if (hasHeroes) {
       const availableUser = this.summaryHeroes.map(userId => {
         return this.client.getUser(userId);
       }).find(user => !!user);
-
       if (availableUser) {
         const member = new _roomMember.RoomMember(this.roomId, availableUser.userId);
         member.user = availableUser;
@@ -805,95 +678,94 @@
       }
     }
   }
+
   /**
    * Sets the membership this room was received as during sync
-   * @param {string} membership join | leave | invite
+   * @param membership - join | leave | invite
    */
-
-
   updateMyMembership(membership) {
     const prevMembership = this.selfMembership;
     this.selfMembership = membership;
-
     if (prevMembership !== membership) {
       if (membership === "leave") {
         this.cleanupAfterLeaving();
       }
-
       this.emit(RoomEvent.MyMembership, this, membership, prevMembership);
     }
   }
-
   async loadMembersFromServer() {
     const lastSyncToken = this.client.store.getSyncToken();
-    const response = await this.client.members(this.roomId, undefined, "leave", lastSyncToken);
+    const response = await this.client.members(this.roomId, undefined, "leave", lastSyncToken ?? undefined);
     return response.chunk;
   }
-
   async loadMembers() {
     // were the members loaded from the server?
     let fromServer = false;
-    let rawMembersEvents = await this.client.store.getOutOfBandMembers(this.roomId); // If the room is encrypted, we always fetch members from the server at
+    let rawMembersEvents = await this.client.store.getOutOfBandMembers(this.roomId);
+    // If the room is encrypted, we always fetch members from the server at
     // least once, in case the latest state wasn't persisted properly. Note
     // that this function is only called once (unless loading the members
     // fails), since loadMembersIfNeeded always returns this.membersPromise
     // if set, which will be the result of the first (successful) call.
-
     if (rawMembersEvents === null || this.client.isCryptoEnabled() && this.client.isRoomEncrypted(this.roomId)) {
       fromServer = true;
       rawMembersEvents = await this.loadMembersFromServer();
-
       _logger.logger.log(`LL: got ${rawMembersEvents.length} ` + `members from server for room ${this.roomId}`);
     }
-
-    const memberEvents = rawMembersEvents.map(this.client.getEventMapper());
+    const memberEvents = rawMembersEvents.filter(utils.noUnsafeEventProps).map(this.client.getEventMapper());
     return {
       memberEvents,
       fromServer
     };
   }
+
+  /**
+   * Check if loading of out-of-band-members has completed
+   *
+   * @returns true if the full membership list of this room has been loaded (including if lazy-loading is disabled).
+   *    False if the load is not started or is in progress.
+   */
+  membersLoaded() {
+    if (!this.opts.lazyLoadMembers) {
+      return true;
+    }
+    return this.currentState.outOfBandMembersReady();
+  }
+
   /**
    * Preloads the member list in case lazy loading
    * of memberships is in use. Can be called multiple times,
    * it will only preload once.
-   * @return {Promise} when preloading is done and
+   * @returns when preloading is done and
    * accessing the members on the room will take
    * all members in the room into account
    */
-
-
   loadMembersIfNeeded() {
     if (this.membersPromise) {
       return this.membersPromise;
-    } // mark the state so that incoming messages while
+    }
+
+    // mark the state so that incoming messages while
     // the request is in flight get marked as superseding
     // the OOB members
-
-
     this.currentState.markOutOfBandMembersStarted();
     const inMemoryUpdate = this.loadMembers().then(result => {
-      this.currentState.setOutOfBandMembers(result.memberEvents); // now the members are loaded, start to track the e2e devices if needed
-
-      if (this.client.isCryptoEnabled() && this.client.isRoomEncrypted(this.roomId)) {
-        this.client.crypto.trackRoomDevices(this.roomId);
-      }
-
+      this.currentState.setOutOfBandMembers(result.memberEvents);
       return result.fromServer;
     }).catch(err => {
       // allow retries on fail
-      this.membersPromise = null;
+      this.membersPromise = undefined;
       this.currentState.markOutOfBandMembersFailed();
       throw err;
-    }); // update members in storage, but don't wait for it
-
+    });
+    // update members in storage, but don't wait for it
     inMemoryUpdate.then(fromServer => {
       if (fromServer) {
-        const oobMembers = this.currentState.getMembers().filter(m => m.isOutOfBand()).map(m => m.events.member.event);
-
+        const oobMembers = this.currentState.getMembers().filter(m => m.isOutOfBand()).map(m => m.events.member?.event);
         _logger.logger.log(`LL: telling store to write ${oobMembers.length}` + ` members for room ${this.roomId}`);
-
         const store = this.client.store;
-        return store.setOutOfBandMembers(this.roomId, oobMembers) // swallow any IDB error as we don't want to fail
+        return store.setOutOfBandMembers(this.roomId, oobMembers)
+        // swallow any IDB error as we don't want to fail
         // because of this
         .catch(err => {
           _logger.logger.log("LL: storing OOB room members failed, oh well", err);
@@ -907,35 +779,33 @@
     this.membersPromise = inMemoryUpdate;
     return this.membersPromise;
   }
+
   /**
    * Removes the lazily loaded members from storage if needed
    */
-
-
   async clearLoadedMembersIfNeeded() {
     if (this.opts.lazyLoadMembers && this.membersPromise) {
       await this.loadMembersIfNeeded();
       await this.client.store.clearOutOfBandMembers(this.roomId);
       this.currentState.clearOutOfBandMembers();
-      this.membersPromise = null;
+      this.membersPromise = undefined;
     }
   }
+
   /**
    * called when sync receives this room in the leave section
    * to do cleanup after leaving a room. Possibly called multiple times.
    */
-
-
   cleanupAfterLeaving() {
     this.clearLoadedMembersIfNeeded().catch(err => {
       _logger.logger.error(`error after clearing loaded members from ` + `room ${this.roomId} after leaving`);
-
       _logger.logger.log(err);
     });
   }
+
   /**
    * Empty out the current live timeline and re-request it. This is used when
-   * historical messages are imported into the room via MSC2716 `/batch_send
+   * historical messages are imported into the room via MSC2716 `/batch_send`
    * because the client may already have that section of the timeline loaded.
    * We need to force the client to throw away their current timeline so that
    * when they back paginate over the area again with the historical messages
@@ -946,26 +816,23 @@
    * valid marker and can check the needs refresh status via
    * `room.getTimelineNeedsRefresh()`.
    */
-
-
   async refreshLiveTimeline() {
     const liveTimelineBefore = this.getLiveTimeline();
     const forwardPaginationToken = liveTimelineBefore.getPaginationToken(_eventTimeline.EventTimeline.FORWARDS);
     const backwardPaginationToken = liveTimelineBefore.getPaginationToken(_eventTimeline.EventTimeline.BACKWARDS);
     const eventsBefore = liveTimelineBefore.getEvents();
     const mostRecentEventInTimeline = eventsBefore[eventsBefore.length - 1];
+    _logger.logger.log(`[refreshLiveTimeline for ${this.roomId}] at ` + `mostRecentEventInTimeline=${mostRecentEventInTimeline && mostRecentEventInTimeline.getId()} ` + `liveTimelineBefore=${liveTimelineBefore.toString()} ` + `forwardPaginationToken=${forwardPaginationToken} ` + `backwardPaginationToken=${backwardPaginationToken}`);
 
-    _logger.logger.log(`[refreshLiveTimeline for ${this.roomId}] at ` + `mostRecentEventInTimeline=${mostRecentEventInTimeline && mostRecentEventInTimeline.getId()} ` + `liveTimelineBefore=${liveTimelineBefore.toString()} ` + `forwardPaginationToken=${forwardPaginationToken} ` + `backwardPaginationToken=${backwardPaginationToken}`); // Get the main TimelineSet
-
-
+    // Get the main TimelineSet
     const timelineSet = this.getUnfilteredTimelineSet();
-    let newTimeline; // If there isn't any event in the timeline, let's go fetch the latest
+    let newTimeline;
+    // If there isn't any event in the timeline, let's go fetch the latest
     // event and construct a timeline from it.
     //
     // This should only really happen if the user ran into an error
     // with refreshing the timeline before which left them in a blank
     // timeline from `resetLiveTimeline`.
-
     if (!mostRecentEventInTimeline) {
       newTimeline = await this.client.getLatestTimeline(timelineSet);
     } else {
@@ -976,103 +843,108 @@
       // `timelineSet` empty so that the `client.getEventTimeline(...)` call
       // later, will call `/context` and create a new timeline instead of
       // returning the same one.
-      this.resetLiveTimeline(null, null); // Make the UI timeline show the new blank live timeline we just
+      this.resetLiveTimeline(null, null);
+
+      // Make the UI timeline show the new blank live timeline we just
       // reset so that if the network fails below it's showing the
       // accurate state of what we're working with instead of the
       // disconnected one in the TimelineWindow which is just hanging
       // around by reference.
+      this.emit(RoomEvent.TimelineRefresh, this, timelineSet);
 
-      this.emit(RoomEvent.TimelineRefresh, this, timelineSet); // Use `client.getEventTimeline(...)` to construct a new timeline from a
+      // Use `client.getEventTimeline(...)` to construct a new timeline from a
       // `/context` response state and events for the most recent event before
       // we reset everything. The `timelineSet` we pass in needs to be empty
       // in order for this function to call `/context` and generate a new
       // timeline.
-
       newTimeline = await this.client.getEventTimeline(timelineSet, mostRecentEventInTimeline.getId());
-    } // If a racing `/sync` beat us to creating a new timeline, use that
+    }
+
+    // If a racing `/sync` beat us to creating a new timeline, use that
     // instead because it's the latest in the room and any new messages in
     // the scrollback will include the history.
-
-
     const liveTimeline = timelineSet.getLiveTimeline();
-
     if (!liveTimeline || liveTimeline.getPaginationToken(_eventTimeline.Direction.Forward) === null && liveTimeline.getPaginationToken(_eventTimeline.Direction.Backward) === null && liveTimeline.getEvents().length === 0) {
-      _logger.logger.log(`[refreshLiveTimeline for ${this.roomId}] using our new live timeline`); // Set the pagination token back to the live sync token (`null`) instead
+      _logger.logger.log(`[refreshLiveTimeline for ${this.roomId}] using our new live timeline`);
+      // Set the pagination token back to the live sync token (`null`) instead
       // of using the `/context` historical token (ex. `t12-13_0_0_0_0_0_0_0_0`)
       // so that it matches the next response from `/sync` and we can properly
       // continue the timeline.
+      newTimeline.setPaginationToken(forwardPaginationToken, _eventTimeline.EventTimeline.FORWARDS);
 
-
-      newTimeline.setPaginationToken(forwardPaginationToken, _eventTimeline.EventTimeline.FORWARDS); // Set our new fresh timeline as the live timeline to continue syncing
+      // Set our new fresh timeline as the live timeline to continue syncing
       // forwards and back paginating from.
-
-      timelineSet.setLiveTimeline(newTimeline); // Fixup `this.oldstate` so that `scrollback` has the pagination tokens
+      timelineSet.setLiveTimeline(newTimeline);
+      // Fixup `this.oldstate` so that `scrollback` has the pagination tokens
       // available
-
       this.fixUpLegacyTimelineFields();
     } else {
       _logger.logger.log(`[refreshLiveTimeline for ${this.roomId}] \`/sync\` or some other request beat us to creating a new ` + `live timeline after we reset it. We'll use that instead since any events in the scrollback from ` + `this timeline will include the history.`);
-    } // The timeline has now been refreshed ✅
+    }
 
+    // The timeline has now been refreshed ✅
+    this.setTimelineNeedsRefresh(false);
 
-    this.setTimelineNeedsRefresh(false); // Emit an event which clients can react to and re-load the timeline
+    // Emit an event which clients can react to and re-load the timeline
     // from the SDK
-
     this.emit(RoomEvent.TimelineRefresh, this, timelineSet);
   }
+
   /**
    * Reset the live timeline of all timelineSets, and start new ones.
    *
    * <p>This is used when /sync returns a 'limited' timeline.
    *
-   * @param {string=} backPaginationToken   token for back-paginating the new timeline
-   * @param {string=} forwardPaginationToken token for forward-paginating the old live timeline,
+   * @param backPaginationToken -   token for back-paginating the new timeline
+   * @param forwardPaginationToken - token for forward-paginating the old live timeline,
    * if absent or null, all timelines are reset, removing old ones (including the previous live
    * timeline which would otherwise be unable to paginate forwards without this token).
    * Removing just the old live timeline whilst preserving previous ones is not supported.
    */
-
-
   resetLiveTimeline(backPaginationToken, forwardPaginationToken) {
-    for (let i = 0; i < this.timelineSets.length; i++) {
-      this.timelineSets[i].resetLiveTimeline(backPaginationToken, forwardPaginationToken);
+    for (const timelineSet of this.timelineSets) {
+      timelineSet.resetLiveTimeline(backPaginationToken ?? undefined, forwardPaginationToken ?? undefined);
+    }
+    for (const thread of this.threads.values()) {
+      thread.resetLiveTimeline(backPaginationToken, forwardPaginationToken);
     }
-
     this.fixUpLegacyTimelineFields();
   }
+
   /**
    * Fix up this.timeline, this.oldState and this.currentState
    *
-   * @private
+   * @internal
    */
-
-
   fixUpLegacyTimelineFields() {
     const previousOldState = this.oldState;
-    const previousCurrentState = this.currentState; // maintain this.timeline as a reference to the live timeline,
+    const previousCurrentState = this.currentState;
+
+    // maintain this.timeline as a reference to the live timeline,
     // and this.oldState and this.currentState as references to the
     // state at the start and end of that timeline. These are more
     // for backwards-compatibility than anything else.
-
     this.timeline = this.getLiveTimeline().getEvents();
     this.oldState = this.getLiveTimeline().getState(_eventTimeline.EventTimeline.BACKWARDS);
-    this.currentState = this.getLiveTimeline().getState(_eventTimeline.EventTimeline.FORWARDS); // Let people know to register new listeners for the new state
+    this.currentState = this.getLiveTimeline().getState(_eventTimeline.EventTimeline.FORWARDS);
+
+    // Let people know to register new listeners for the new state
     // references. The reference won't necessarily change every time so only
     // emit when we see a change.
-
     if (previousOldState !== this.oldState) {
       this.emit(RoomEvent.OldStateUpdated, this, previousOldState, this.oldState);
     }
-
     if (previousCurrentState !== this.currentState) {
-      this.emit(RoomEvent.CurrentStateUpdated, this, previousCurrentState, this.currentState); // Re-emit various events on the current room state
+      this.emit(RoomEvent.CurrentStateUpdated, this, previousCurrentState, this.currentState);
+
+      // Re-emit various events on the current room state
       // TODO: If currentState really only exists for backwards
       // compatibility, shouldn't we be doing this some other way?
-
       this.reEmitter.stopReEmitting(previousCurrentState, [_roomState.RoomStateEvent.Events, _roomState.RoomStateEvent.Members, _roomState.RoomStateEvent.NewMember, _roomState.RoomStateEvent.Update, _roomState.RoomStateEvent.Marker, _beacon.BeaconEvent.New, _beacon.BeaconEvent.Update, _beacon.BeaconEvent.Destroy, _beacon.BeaconEvent.LivenessChange]);
       this.reEmitter.reEmit(this.currentState, [_roomState.RoomStateEvent.Events, _roomState.RoomStateEvent.Members, _roomState.RoomStateEvent.NewMember, _roomState.RoomStateEvent.Update, _roomState.RoomStateEvent.Marker, _beacon.BeaconEvent.New, _beacon.BeaconEvent.Update, _beacon.BeaconEvent.Destroy, _beacon.BeaconEvent.LivenessChange]);
     }
   }
+
   /**
    * Returns whether there are any devices in the room that are unverified
    *
@@ -1080,155 +952,229 @@
    * disabled, then we aren't tracking room devices at all, so we can't answer this, and an
    * error will be thrown.
    *
-   * @return {boolean} the result
+   * @returns the result
    */
-
-
   async hasUnverifiedDevices() {
     if (!this.client.isRoomEncrypted(this.roomId)) {
       return false;
     }
-
     const e2eMembers = await this.getEncryptionTargetMembers();
-
     for (const member of e2eMembers) {
       const devices = this.client.getStoredDevicesForUser(member.userId);
-
       if (devices.some(device => device.isUnverified())) {
         return true;
       }
     }
-
     return false;
   }
+
   /**
    * Return the timeline sets for this room.
-   * @return {EventTimelineSet[]} array of timeline sets for this room
+   * @returns array of timeline sets for this room
    */
-
-
   getTimelineSets() {
     return this.timelineSets;
   }
+
   /**
    * Helper to return the main unfiltered timeline set for this room
-   * @return {EventTimelineSet} room's unfiltered timeline set
+   * @returns room's unfiltered timeline set
    */
-
-
   getUnfilteredTimelineSet() {
     return this.timelineSets[0];
   }
+
   /**
    * Get the timeline which contains the given event from the unfiltered set, if any
    *
-   * @param {string} eventId  event ID to look for
-   * @return {?module:models/event-timeline~EventTimeline} timeline containing
+   * @param eventId -  event ID to look for
+   * @returns timeline containing
    * the given event, or null if unknown
    */
-
-
   getTimelineForEvent(eventId) {
     const event = this.findEventById(eventId);
     const thread = this.findThreadForEvent(event);
-
     if (thread) {
-      return thread.timelineSet.getLiveTimeline();
+      return thread.timelineSet.getTimelineForEvent(eventId);
     } else {
       return this.getUnfilteredTimelineSet().getTimelineForEvent(eventId);
     }
   }
+
   /**
    * Add a new timeline to this room's unfiltered timeline set
    *
-   * @return {module:models/event-timeline~EventTimeline} newly-created timeline
+   * @returns newly-created timeline
    */
-
-
   addTimeline() {
     return this.getUnfilteredTimelineSet().addTimeline();
   }
+
   /**
    * Whether the timeline needs to be refreshed in order to pull in new
    * historical messages that were imported.
-   * @param {Boolean} value The value to set
+   * @param value - The value to set
    */
-
-
   setTimelineNeedsRefresh(value) {
     this.timelineNeedsRefresh = value;
   }
+
   /**
    * Whether the timeline needs to be refreshed in order to pull in new
    * historical messages that were imported.
-   * @return {Boolean} .
+   * @returns .
    */
-
-
   getTimelineNeedsRefresh() {
     return this.timelineNeedsRefresh;
   }
+
   /**
    * Get an event which is stored in our unfiltered timeline set, or in a thread
    *
-   * @param {string} eventId event ID to look for
-   * @return {?module:models/event.MatrixEvent} the given event, or undefined if unknown
+   * @param eventId - event ID to look for
+   * @returns the given event, or undefined if unknown
    */
-
-
   findEventById(eventId) {
     let event = this.getUnfilteredTimelineSet().findEventById(eventId);
-
     if (!event) {
       const threads = this.getThreads();
-
       for (let i = 0; i < threads.length; i++) {
         const thread = threads[i];
         event = thread.findEventById(eventId);
-
         if (event) {
           return event;
         }
       }
     }
-
     return event;
   }
+
   /**
    * Get one of the notification counts for this room
-   * @param {String} type The type of notification count to get. default: 'total'
-   * @return {Number} The notification count, or undefined if there is no count
+   * @param type - The type of notification count to get. default: 'total'
+   * @returns The notification count, or undefined if there is no count
    *                  for this type.
    */
+  getUnreadNotificationCount(type = NotificationCountType.Total) {
+    let count = this.getRoomUnreadNotificationCount(type);
+    for (const threadNotification of this.threadNotifications.values()) {
+      count += threadNotification[type] ?? 0;
+    }
+    return count;
+  }
 
+  /**
+   * Get the notification for the event context (room or thread timeline)
+   */
+  getUnreadCountForEventContext(type = NotificationCountType.Total, event) {
+    const isThreadEvent = !!event.threadRootId && !event.isThreadRoot;
+    return (isThreadEvent ? this.getThreadUnreadNotificationCount(event.threadRootId, type) : this.getRoomUnreadNotificationCount(type)) ?? 0;
+  }
 
-  getUnreadNotificationCount(type = NotificationCountType.Total) {
-    return this.notificationCounts[type];
+  /**
+   * Get one of the notification counts for this room
+   * @param type - The type of notification count to get. default: 'total'
+   * @returns The notification count, or undefined if there is no count
+   *                  for this type.
+   */
+  getRoomUnreadNotificationCount(type = NotificationCountType.Total) {
+    return this.notificationCounts[type] ?? 0;
   }
+
   /**
-   * Set one of the notification counts for this room
-   * @param {String} type The type of notification count to set.
-   * @param {Number} count The new count
+   * Get one of the notification counts for a thread
+   * @param threadId - the root event ID
+   * @param type - The type of notification count to get. default: 'total'
+   * @returns The notification count, or undefined if there is no count
+   *          for this type.
    */
+  getThreadUnreadNotificationCount(threadId, type = NotificationCountType.Total) {
+    return this.threadNotifications.get(threadId)?.[type] ?? 0;
+  }
+
+  /**
+   * Checks if the current room has unread thread notifications
+   * @returns
+   */
+  hasThreadUnreadNotification() {
+    for (const notification of this.threadNotifications.values()) {
+      if ((notification.highlight ?? 0) > 0 || (notification.total ?? 0) > 0) {
+        return true;
+      }
+    }
+    return false;
+  }
+
+  /**
+   * Swet one of the notification count for a thread
+   * @param threadId - the root event ID
+   * @param type - The type of notification count to get. default: 'total'
+   * @returns
+   */
+  setThreadUnreadNotificationCount(threadId, type, count) {
+    const notification = _objectSpread({
+      highlight: this.threadNotifications.get(threadId)?.highlight,
+      total: this.threadNotifications.get(threadId)?.total
+    }, {
+      [type]: count
+    });
+    this.threadNotifications.set(threadId, notification);
+    this.emit(RoomEvent.UnreadNotifications, notification, threadId);
+  }
+
+  /**
+   * @returns the notification count type for all the threads in the room
+   */
+  get threadsAggregateNotificationType() {
+    let type = null;
+    for (const threadNotification of this.threadNotifications.values()) {
+      if ((threadNotification.highlight ?? 0) > 0) {
+        return NotificationCountType.Highlight;
+      } else if ((threadNotification.total ?? 0) > 0 && !type) {
+        type = NotificationCountType.Total;
+      }
+    }
+    return type;
+  }
 
+  /**
+   * Resets the thread notifications for this room
+   */
+  resetThreadUnreadNotificationCount(notificationsToKeep) {
+    if (notificationsToKeep) {
+      for (const [threadId] of this.threadNotifications) {
+        if (!notificationsToKeep.includes(threadId)) {
+          this.threadNotifications.delete(threadId);
+        }
+      }
+    } else {
+      this.threadNotifications.clear();
+    }
+    this.emit(RoomEvent.UnreadNotifications);
+  }
 
+  /**
+   * Set one of the notification counts for this room
+   * @param type - The type of notification count to set.
+   * @param count - The new count
+   */
   setUnreadNotificationCount(type, count) {
     this.notificationCounts[type] = count;
+    this.emit(RoomEvent.UnreadNotifications, this.notificationCounts);
+  }
+  setUnread(type, count) {
+    return this.setUnreadNotificationCount(type, count);
   }
-
   setSummary(summary) {
     const heroes = summary["m.heroes"];
     const joinedCount = summary["m.joined_member_count"];
     const invitedCount = summary["m.invited_member_count"];
-
     if (Number.isInteger(joinedCount)) {
       this.currentState.setJoinedMemberCount(joinedCount);
     }
-
     if (Number.isInteger(invitedCount)) {
       this.currentState.setInvitedMemberCount(invitedCount);
     }
-
     if (Array.isArray(heroes)) {
       // be cautious about trusting server values,
       // and make sure heroes doesn't contain our own id
@@ -1238,302 +1184,241 @@
       });
     }
   }
+
   /**
    * Whether to send encrypted messages to devices within this room.
-   * @param {Boolean} value true to blacklist unverified devices, null
+   * @param value - true to blacklist unverified devices, null
    * to use the global value for this room.
    */
-
-
   setBlacklistUnverifiedDevices(value) {
     this.blacklistUnverifiedDevices = value;
   }
+
   /**
    * Whether to send encrypted messages to devices within this room.
-   * @return {Boolean} true if blacklisting unverified devices, null
+   * @returns true if blacklisting unverified devices, null
    * if the global value should be used for this room.
    */
-
-
   getBlacklistUnverifiedDevices() {
+    if (this.blacklistUnverifiedDevices === undefined) return null;
     return this.blacklistUnverifiedDevices;
   }
+
   /**
    * Get the avatar URL for a room if one was set.
-   * @param {String} baseUrl The homeserver base URL. See
-   * {@link module:client~MatrixClient#getHomeserverUrl}.
-   * @param {Number} width The desired width of the thumbnail.
-   * @param {Number} height The desired height of the thumbnail.
-   * @param {string} resizeMethod The thumbnail resize method to use, either
+   * @param baseUrl - The homeserver base URL. See
+   * {@link MatrixClient#getHomeserverUrl}.
+   * @param width - The desired width of the thumbnail.
+   * @param height - The desired height of the thumbnail.
+   * @param resizeMethod - The thumbnail resize method to use, either
    * "crop" or "scale".
-   * @param {boolean} allowDefault True to allow an identicon for this room if an
+   * @param allowDefault - True to allow an identicon for this room if an
    * avatar URL wasn't explicitly set. Default: true. (Deprecated)
-   * @return {?string} the avatar URL or null.
+   * @returns the avatar URL or null.
    */
-
-
   getAvatarUrl(baseUrl, width, height, resizeMethod, allowDefault = true) {
     const roomAvatarEvent = this.currentState.getStateEvents(_event2.EventType.RoomAvatar, "");
-
     if (!roomAvatarEvent && !allowDefault) {
       return null;
     }
-
     const mainUrl = roomAvatarEvent ? roomAvatarEvent.getContent().url : null;
-
     if (mainUrl) {
       return (0, _contentRepo.getHttpUriForMxc)(baseUrl, mainUrl, width, height, resizeMethod);
     }
-
     return null;
   }
+
   /**
    * Get the mxc avatar url for the room, if one was set.
-   * @return {string} the mxc avatar url or falsy
+   * @returns the mxc avatar url or falsy
    */
-
-
   getMxcAvatarUrl() {
     return this.currentState.getStateEvents(_event2.EventType.RoomAvatar, "")?.getContent()?.url || null;
   }
-  /**
-   * Get the aliases this room has according to the room's state
-   * The aliases returned by this function may not necessarily
-   * still point to this room.
-   * @return {array} The room's alias as an array of strings
-   * @deprecated this uses m.room.aliases events, replaced by Room::getAltAliases()
-   */
-
-
-  getAliases() {
-    const aliasStrings = [];
-    const aliasEvents = this.currentState.getStateEvents(_event2.EventType.RoomAliases);
-
-    if (aliasEvents) {
-      for (const aliasEvent of aliasEvents) {
-        if (Array.isArray(aliasEvent.getContent().aliases)) {
-          const filteredAliases = aliasEvent.getContent().aliases.filter(a => {
-            if (typeof a !== "string") return false;
-            if (a[0] !== '#') return false;
-            if (!a.endsWith(`:${aliasEvent.getStateKey()}`)) return false; // It's probably valid by here.
 
-            return true;
-          });
-          aliasStrings.push(...filteredAliases);
-        }
-      }
-    }
-
-    return aliasStrings;
-  }
   /**
    * Get this room's canonical alias
    * The alias returned by this function may not necessarily
    * still point to this room.
-   * @return {?string} The room's canonical alias, or null if there is none
+   * @returns The room's canonical alias, or null if there is none
    */
-
-
   getCanonicalAlias() {
     const canonicalAlias = this.currentState.getStateEvents(_event2.EventType.RoomCanonicalAlias, "");
-
     if (canonicalAlias) {
       return canonicalAlias.getContent().alias || null;
     }
-
     return null;
   }
+
   /**
    * Get this room's alternative aliases
-   * @return {array} The room's alternative aliases, or an empty array
+   * @returns The room's alternative aliases, or an empty array
    */
-
-
   getAltAliases() {
     const canonicalAlias = this.currentState.getStateEvents(_event2.EventType.RoomCanonicalAlias, "");
-
     if (canonicalAlias) {
       return canonicalAlias.getContent().alt_aliases || [];
     }
-
     return [];
   }
+
   /**
    * Add events to a timeline
    *
    * <p>Will fire "Room.timeline" for each event added.
    *
-   * @param {MatrixEvent[]} events A list of events to add.
+   * @param events - A list of events to add.
    *
-   * @param {boolean} toStartOfTimeline   True to add these events to the start
+   * @param toStartOfTimeline -   True to add these events to the start
    * (oldest) instead of the end (newest) of the timeline. If true, the oldest
    * event will be the <b>last</b> element of 'events'.
    *
-   * @param {module:models/event-timeline~EventTimeline} timeline   timeline to
+   * @param timeline -   timeline to
    *    add events to.
    *
-   * @param {string=} paginationToken   token for the next batch of events
-   *
-   * @fires module:client~MatrixClient#event:"Room.timeline"
+   * @param paginationToken -   token for the next batch of events
    *
+   * @remarks
+   * Fires {@link RoomEvent.Timeline}
    */
-
-
   addEventsToTimeline(events, toStartOfTimeline, timeline, paginationToken) {
     timeline.getTimelineSet().addEventsToTimeline(events, toStartOfTimeline, timeline, paginationToken);
   }
+
   /**
-   * @experimental
+   * Get the instance of the thread associated with the current event
+   * @param eventId - the ID of the current event
+   * @returns a thread instance if known
    */
-
-
   getThread(eventId) {
-    return this.threads.get(eventId);
+    return this.threads.get(eventId) ?? null;
   }
+
   /**
-   * @experimental
+   * Get all the known threads in the room
    */
-
-
   getThreads() {
     return Array.from(this.threads.values());
   }
+
   /**
    * Get a member from the current room state.
-   * @param {string} userId The user ID of the member.
-   * @return {RoomMember} The member or <code>null</code>.
+   * @param userId - The user ID of the member.
+   * @returns The member or `null`.
    */
-
-
   getMember(userId) {
     return this.currentState.getMember(userId);
   }
+
   /**
    * Get all currently loaded members from the current
    * room state.
-   * @returns {RoomMember[]} Room members
+   * @returns Room members
    */
-
-
   getMembers() {
     return this.currentState.getMembers();
   }
+
   /**
    * Get a list of members whose membership state is "join".
-   * @return {RoomMember[]} A list of currently joined members.
+   * @returns A list of currently joined members.
    */
-
-
   getJoinedMembers() {
     return this.getMembersWithMembership("join");
   }
+
   /**
    * Returns the number of joined members in this room
    * This method caches the result.
    * This is a wrapper around the method of the same name in roomState, returning
    * its result for the room's current state.
-   * @return {number} The number of members in this room whose membership is 'join'
+   * @returns The number of members in this room whose membership is 'join'
    */
-
-
   getJoinedMemberCount() {
     return this.currentState.getJoinedMemberCount();
   }
+
   /**
    * Returns the number of invited members in this room
-   * @return {number} The number of members in this room whose membership is 'invite'
+   * @returns The number of members in this room whose membership is 'invite'
    */
-
-
   getInvitedMemberCount() {
     return this.currentState.getInvitedMemberCount();
   }
+
   /**
    * Returns the number of invited + joined members in this room
-   * @return {number} The number of members in this room whose membership is 'invite' or 'join'
+   * @returns The number of members in this room whose membership is 'invite' or 'join'
    */
-
-
   getInvitedAndJoinedMemberCount() {
     return this.getInvitedMemberCount() + this.getJoinedMemberCount();
   }
+
   /**
    * Get a list of members with given membership state.
-   * @param {string} membership The membership state.
-   * @return {RoomMember[]} A list of members with the given membership state.
+   * @param membership - The membership state.
+   * @returns A list of members with the given membership state.
    */
-
-
   getMembersWithMembership(membership) {
     return this.currentState.getMembers().filter(function (m) {
       return m.membership === membership;
     });
   }
+
   /**
    * Get a list of members we should be encrypting for in this room
-   * @return {Promise<RoomMember[]>} A list of members who
+   * @returns A list of members who
    * we should encrypt messages for in this room.
    */
-
-
   async getEncryptionTargetMembers() {
     await this.loadMembersIfNeeded();
     let members = this.getMembersWithMembership("join");
-
     if (this.shouldEncryptForInvitedMembers()) {
       members = members.concat(this.getMembersWithMembership("invite"));
     }
-
     return members;
   }
+
   /**
    * Determine whether we should encrypt messages for invited users in this room
-   * @return {boolean} if we should encrypt messages for invited users
+   * @returns if we should encrypt messages for invited users
    */
-
-
   shouldEncryptForInvitedMembers() {
     const ev = this.currentState.getStateEvents(_event2.EventType.RoomHistoryVisibility, "");
     return ev?.getContent()?.history_visibility !== "joined";
   }
+
   /**
    * Get the default room name (i.e. what a given user would see if the
    * room had no m.room.name)
-   * @param {string} userId The userId from whose perspective we want
+   * @param userId - The userId from whose perspective we want
    * to calculate the default name
-   * @return {string} The default room name
+   * @returns The default room name
    */
-
-
   getDefaultRoomName(userId) {
     return this.calculateRoomName(userId, true);
   }
+
   /**
    * Check if the given user_id has the given membership state.
-   * @param {string} userId The user ID to check.
-   * @param {string} membership The membership e.g. <code>'join'</code>
-   * @return {boolean} True if this user_id has the given membership state.
+   * @param userId - The user ID to check.
+   * @param membership - The membership e.g. `'join'`
+   * @returns True if this user_id has the given membership state.
    */
-
-
   hasMembershipState(userId, membership) {
     const member = this.getMember(userId);
-
     if (!member) {
       return false;
     }
-
     return member.membership === membership;
   }
+
   /**
    * Add a timelineSet for this room with the given filter
-   * @param {Filter} filter The filter to be applied to this timelineSet
-   * @param {Object=} opts Configuration options
-   * @param {*} opts.storageToken Optional.
-   * @return {EventTimelineSet} The timelineSet
+   * @param filter - The filter to be applied to this timelineSet
+   * @param opts - Configuration options
+   * @returns The timelineSet
    */
-
-
   getOrCreateFilteredTimelineSet(filter, {
     prepopulateTimeline = true,
     useSyncEvents = true,
@@ -1542,23 +1427,20 @@
     if (this.filteredTimelineSets[filter.filterId]) {
       return this.filteredTimelineSets[filter.filterId];
     }
-
     const opts = Object.assign({
       filter,
       pendingEvents
     }, this.opts);
     const timelineSet = new _eventTimelineSet.EventTimelineSet(this, opts);
     this.reEmitter.reEmit(timelineSet, [RoomEvent.Timeline, RoomEvent.TimelineReset]);
-
     if (useSyncEvents) {
       this.filteredTimelineSets[filter.filterId] = timelineSet;
       this.timelineSets.push(timelineSet);
     }
-
-    const unfilteredLiveTimeline = this.getLiveTimeline(); // Not all filter are possible to replicate client-side only
+    const unfilteredLiveTimeline = this.getLiveTimeline();
+    // Not all filter are possible to replicate client-side only
     // When that's the case we do not want to prepopulate from the live timeline
     // as we would get incorrect results compared to what the server would send back
-
     if (prepopulateTimeline) {
       // populate up the new timelineSet with filtered events from our live
       // unfiltered timeline.
@@ -1566,21 +1448,23 @@
       // XXX: This is risky as our timeline
       // may have grown huge and so take a long time to filter.
       // see https://github.com/vector-im/vector-web/issues/2109
+
       unfilteredLiveTimeline.getEvents().forEach(function (event) {
         timelineSet.addLiveEvent(event);
-      }); // find the earliest unfiltered timeline
+      });
 
+      // find the earliest unfiltered timeline
       let timeline = unfilteredLiveTimeline;
-
       while (timeline.getNeighbouringTimeline(_eventTimeline.EventTimeline.BACKWARDS)) {
         timeline = timeline.getNeighbouringTimeline(_eventTimeline.EventTimeline.BACKWARDS);
       }
-
       timelineSet.getLiveTimeline().setPaginationToken(timeline.getPaginationToken(_eventTimeline.EventTimeline.BACKWARDS), _eventTimeline.EventTimeline.BACKWARDS);
     } else if (useSyncEvents) {
       const livePaginationToken = unfilteredLiveTimeline.getPaginationToken(_eventTimeline.Direction.Forward);
       timelineSet.getLiveTimeline().setPaginationToken(livePaginationToken, _eventTimeline.Direction.Backward);
-    } // alternatively, we could try to do something like this to try and re-paginate
+    }
+
+    // alternatively, we could try to do something like this to try and re-paginate
     // in the filtered events from nothing, but Mark says it's an abuse of the API
     // to do so:
     //
@@ -1588,35 +1472,34 @@
     //      unfilteredLiveTimeline.getPaginationToken(EventTimeline.FORWARDS)
     // );
 
-
     return timelineSet;
   }
-
   async getThreadListFilter(filterType = _thread.ThreadFilterType.All) {
     const myUserId = this.client.getUserId();
     const filter = new _filter.Filter(myUserId);
     const definition = {
-      "room": {
-        "timeline": {
+      room: {
+        timeline: {
           [_thread.FILTER_RELATED_BY_REL_TYPES.name]: [_thread.THREAD_RELATION_TYPE.name]
         }
       }
     };
-
     if (filterType === _thread.ThreadFilterType.My) {
       definition.room.timeline[_thread.FILTER_RELATED_BY_SENDERS.name] = [myUserId];
     }
-
     filter.setDefinition(definition);
     const filterId = await this.client.getOrCreateFilter(`THREAD_PANEL_${this.roomId}_${filterType}`, filter);
     filter.filterId = filterId;
     return filter;
   }
-
   async createThreadTimelineSet(filterType) {
     let timelineSet;
-
-    if (_thread.Thread.hasServerSideSupport) {
+    if (_thread.Thread.hasServerSideListSupport) {
+      timelineSet = new _eventTimelineSet.EventTimelineSet(this, _objectSpread(_objectSpread({}, this.opts), {}, {
+        pendingEvents: false
+      }), undefined, undefined, filterType ?? _thread.ThreadFilterType.All);
+      this.reEmitter.reEmit(timelineSet, [RoomEvent.Timeline, RoomEvent.TimelineReset]);
+    } else if (_thread.Thread.hasServerSideSupport) {
       const filter = await this.getThreadListFilter(filterType);
       timelineSet = this.getOrCreateFilteredTimelineSet(filter, {
         prepopulateTimeline: false,
@@ -1629,10 +1512,9 @@
       });
       Array.from(this.threads).forEach(([, thread]) => {
         if (thread.length === 0) return;
-        const currentUserParticipated = thread.events.some(event => {
+        const currentUserParticipated = thread.timeline.some(event => {
           return event.getSender() === this.client.getUserId();
         });
-
         if (filterType !== _thread.ThreadFilterType.My || currentUserParticipated) {
           timelineSet.getLiveTimeline().addEvent(thread.rootEvent, {
             toStartOfTimeline: false
@@ -1640,108 +1522,176 @@
         }
       });
     }
-
     return timelineSet;
   }
+  /**
+   * Takes the given thread root events and creates threads for them.
+   */
+  processThreadRoots(events, toStartOfTimeline) {
+    for (const rootEvent of events) {
+      _eventTimeline.EventTimeline.setEventMetadata(rootEvent, this.currentState, toStartOfTimeline);
+      if (!this.getThread(rootEvent.getId())) {
+        this.createThread(rootEvent.getId(), rootEvent, [], toStartOfTimeline);
+      }
+    }
+  }
 
+  /**
+   * Fetch the bare minimum of room threads required for the thread list to work reliably.
+   * With server support that means fetching one page.
+   * Without server support that means fetching as much at once as the server allows us to.
+   */
   async fetchRoomThreads() {
-    if (this.threadsReady || !this.client.supportsExperimentalThreads()) {
+    if (this.threadsReady || !this.client.supportsThreads()) {
       return;
     }
-
-    const allThreadsFilter = await this.getThreadListFilter();
-    const {
-      chunk: events
-    } = await this.client.createMessagesRequest(this.roomId, "", Number.MAX_SAFE_INTEGER, _eventTimeline.Direction.Backward, allThreadsFilter);
-    if (!events.length) return; // Sorted by last_reply origin_server_ts
-
-    const threadRoots = events.map(this.client.getEventMapper()).sort((eventA, eventB) => {
-      /**
-       * `origin_server_ts` in a decentralised world is far from ideal
-       * but for lack of any better, we will have to use this
-       * Long term the sorting should be handled by homeservers and this
-       * is only meant as a short term patch
-       */
-      const threadAMetadata = eventA.getServerAggregatedRelation(_event2.RelationType.Thread);
-      const threadBMetadata = eventB.getServerAggregatedRelation(_event2.RelationType.Thread);
-      return threadAMetadata.latest_event.origin_server_ts - threadBMetadata.latest_event.origin_server_ts;
-    });
-    let latestMyThreadsRootEvent;
-    const roomState = this.getLiveTimeline().getState(_eventTimeline.EventTimeline.FORWARDS);
-
-    for (const rootEvent of threadRoots) {
-      this.threadsTimelineSets[0].addLiveEvent(rootEvent, {
-        duplicateStrategy: _eventTimelineSet.DuplicateStrategy.Ignore,
-        fromCache: false,
-        roomState
+    if (_thread.Thread.hasServerSideListSupport) {
+      await Promise.all([this.fetchRoomThreadList(_thread.ThreadFilterType.All), this.fetchRoomThreadList(_thread.ThreadFilterType.My)]);
+    } else {
+      const allThreadsFilter = await this.getThreadListFilter();
+      const {
+        chunk: events
+      } = await this.client.createMessagesRequest(this.roomId, "", Number.MAX_SAFE_INTEGER, _eventTimeline.Direction.Backward, allThreadsFilter);
+      if (!events.length) return;
+
+      // Sorted by last_reply origin_server_ts
+      const threadRoots = events.map(this.client.getEventMapper()).sort((eventA, eventB) => {
+        /**
+         * `origin_server_ts` in a decentralised world is far from ideal
+         * but for lack of any better, we will have to use this
+         * Long term the sorting should be handled by homeservers and this
+         * is only meant as a short term patch
+         */
+        const threadAMetadata = eventA.getServerAggregatedRelation(_thread.THREAD_RELATION_TYPE.name);
+        const threadBMetadata = eventB.getServerAggregatedRelation(_thread.THREAD_RELATION_TYPE.name);
+        return threadAMetadata.latest_event.origin_server_ts - threadBMetadata.latest_event.origin_server_ts;
       });
-      const threadRelationship = rootEvent.getServerAggregatedRelation(_event2.RelationType.Thread);
-
-      if (threadRelationship.current_user_participated) {
-        this.threadsTimelineSets[1].addLiveEvent(rootEvent, {
+      let latestMyThreadsRootEvent;
+      const roomState = this.getLiveTimeline().getState(_eventTimeline.EventTimeline.FORWARDS);
+      for (const rootEvent of threadRoots) {
+        const opts = {
           duplicateStrategy: _eventTimelineSet.DuplicateStrategy.Ignore,
           fromCache: false,
           roomState
-        });
-        latestMyThreadsRootEvent = rootEvent;
+        };
+        this.threadsTimelineSets[0]?.addLiveEvent(rootEvent, opts);
+        const threadRelationship = rootEvent.getServerAggregatedRelation(_thread.THREAD_RELATION_TYPE.name);
+        if (threadRelationship?.current_user_participated) {
+          this.threadsTimelineSets[1]?.addLiveEvent(rootEvent, opts);
+          latestMyThreadsRootEvent = rootEvent;
+        }
       }
-
-      if (!this.getThread(rootEvent.getId())) {
-        this.createThread(rootEvent.getId(), rootEvent, [], true);
+      this.processThreadRoots(threadRoots, true);
+      this.client.decryptEventIfNeeded(threadRoots[threadRoots.length - 1]);
+      if (latestMyThreadsRootEvent) {
+        this.client.decryptEventIfNeeded(latestMyThreadsRootEvent);
       }
     }
+    this.on(_thread.ThreadEvent.NewReply, this.onThreadNewReply);
+    this.on(_thread.ThreadEvent.Delete, this.onThreadDelete);
+    this.threadsReady = true;
+  }
+  async processPollEvents(events) {
+    const processPollStartEvent = event => {
+      if (!_matrixEventsSdk.M_POLL_START.matches(event.getType())) return;
+      try {
+        const poll = new _poll.Poll(event, this.client, this);
+        this.polls.set(event.getId(), poll);
+        this.emit(_poll.PollEvent.New, poll);
+      } catch {}
+      // poll creation can fail for malformed poll start events
+    };
 
-    this.client.decryptEventIfNeeded(threadRoots[threadRoots.length - 1]);
-
-    if (latestMyThreadsRootEvent) {
-      this.client.decryptEventIfNeeded(latestMyThreadsRootEvent);
+    const processPollRelationEvent = event => {
+      const relationEventId = event.relationEventId;
+      if (relationEventId && this.polls.has(relationEventId)) {
+        const poll = this.polls.get(relationEventId);
+        poll?.onNewRelation(event);
+      }
+    };
+    const processPollEvent = event => {
+      processPollStartEvent(event);
+      processPollRelationEvent(event);
+    };
+    for (const event of events) {
+      try {
+        await this.client.decryptEventIfNeeded(event);
+        processPollEvent(event);
+      } catch {}
     }
-
-    this.threadsReady = true;
-    this.on(_thread.ThreadEvent.NewReply, this.onThreadNewReply);
   }
 
+  /**
+   * Fetch a single page of threadlist messages for the specific thread filter
+   * @internal
+   */
+  async fetchRoomThreadList(filter) {
+    const timelineSet = filter === _thread.ThreadFilterType.My ? this.threadsTimelineSets[1] : this.threadsTimelineSets[0];
+    const {
+      chunk: events,
+      end
+    } = await this.client.createThreadListMessagesRequest(this.roomId, null, undefined, _eventTimeline.Direction.Backward, timelineSet.threadListType, timelineSet.getFilter());
+    timelineSet.getLiveTimeline().setPaginationToken(end ?? null, _eventTimeline.Direction.Backward);
+    if (!events.length) return;
+    const matrixEvents = events.map(this.client.getEventMapper());
+    this.processThreadRoots(matrixEvents, true);
+    const roomState = this.getLiveTimeline().getState(_eventTimeline.EventTimeline.FORWARDS);
+    for (const rootEvent of matrixEvents) {
+      timelineSet.addLiveEvent(rootEvent, {
+        duplicateStrategy: _eventTimelineSet.DuplicateStrategy.Replace,
+        fromCache: false,
+        roomState
+      });
+    }
+  }
   onThreadNewReply(thread) {
+    this.updateThreadRootEvents(thread, false, true);
+  }
+  onThreadDelete(thread) {
+    this.threads.delete(thread.id);
+    const timeline = this.getTimelineForEvent(thread.id);
+    const roomEvent = timeline?.getEvents()?.find(it => it.getId() === thread.id);
+    if (roomEvent) {
+      thread.clearEventMetadata(roomEvent);
+    } else {
+      _logger.logger.debug("onThreadDelete: Could not find root event in room timeline");
+    }
     for (const timelineSet of this.threadsTimelineSets) {
       timelineSet.removeEvent(thread.id);
-      timelineSet.addLiveEvent(thread.rootEvent);
     }
   }
+
   /**
    * Forget the timelineSet for this room with the given filter
    *
-   * @param {Filter} filter the filter whose timelineSet is to be forgotten
+   * @param filter - the filter whose timelineSet is to be forgotten
    */
-
-
   removeFilteredTimelineSet(filter) {
     const timelineSet = this.filteredTimelineSets[filter.filterId];
     delete this.filteredTimelineSets[filter.filterId];
     const i = this.timelineSets.indexOf(timelineSet);
-
     if (i > -1) {
       this.timelineSets.splice(i, 1);
     }
   }
-
   eventShouldLiveIn(event, events, roots) {
-    if (!this.client.supportsExperimentalThreads()) {
+    if (!this.client?.supportsThreads()) {
       return {
         shouldLiveInRoom: true,
         shouldLiveInThread: false
       };
-    } // A thread root is always shown in both timelines
-
+    }
 
+    // A thread root is always shown in both timelines
     if (event.isThreadRoot || roots?.has(event.getId())) {
       return {
         shouldLiveInRoom: true,
         shouldLiveInThread: true,
         threadId: event.getId()
       };
-    } // A thread relation is always only shown in a thread
-
+    }
 
+    // A thread relation is always only shown in a thread
     if (event.isRelation(_thread.THREAD_RELATION_TYPE.name)) {
       return {
         shouldLiveInRoom: false,
@@ -1749,30 +1699,29 @@
         threadId: event.threadRootId
       };
     }
-
     const parentEventId = event.getAssociatedId();
-    const parentEvent = this.findEventById(parentEventId) ?? events?.find(e => e.getId() === parentEventId); // Treat relations and redactions as extensions of their parents so evaluate parentEvent instead
+    const parentEvent = this.findEventById(parentEventId) ?? events?.find(e => e.getId() === parentEventId);
 
+    // Treat relations and redactions as extensions of their parents so evaluate parentEvent instead
     if (parentEvent && (event.isRelation() || event.isRedaction())) {
       return this.eventShouldLiveIn(parentEvent, events, roots);
-    } // Edge case where we know the event is a relation but don't have the parentEvent
-
+    }
 
+    // Edge case where we know the event is a relation but don't have the parentEvent
     if (roots?.has(event.relationEventId)) {
       return {
         shouldLiveInRoom: true,
         shouldLiveInThread: true,
         threadId: event.relationEventId
       };
-    } // We've exhausted all scenarios, can safely assume that this event should live in the room timeline only
-
+    }
 
+    // We've exhausted all scenarios, can safely assume that this event should live in the room timeline only
     return {
       shouldLiveInRoom: true,
       shouldLiveInThread: false
     };
   }
-
   findThreadForEvent(event) {
     if (!event) return null;
     const {
@@ -1780,112 +1729,101 @@
     } = this.eventShouldLiveIn(event);
     return threadId ? this.getThread(threadId) : null;
   }
-
   addThreadedEvents(threadId, events, toStartOfTimeline = false) {
     let thread = this.getThread(threadId);
-
-    if (thread) {
-      thread.addEvents(events, toStartOfTimeline);
-    } else {
+    if (!thread) {
       const rootEvent = this.findEventById(threadId) ?? events.find(e => e.getId() === threadId);
       thread = this.createThread(threadId, rootEvent, events, toStartOfTimeline);
-      this.emit(_thread.ThreadEvent.Update, thread);
     }
+    thread.addEvents(events, toStartOfTimeline);
   }
+
   /**
    * Adds events to a thread's timeline. Will fire "Thread.update"
-   * @experimental
    */
-
-
   processThreadedEvents(events, toStartOfTimeline) {
     events.forEach(this.applyRedaction);
     const eventsByThread = {};
-
     for (const event of events) {
       const {
         threadId,
         shouldLiveInThread
       } = this.eventShouldLiveIn(event);
-
       if (shouldLiveInThread && !eventsByThread[threadId]) {
         eventsByThread[threadId] = [];
       }
-
       eventsByThread[threadId]?.push(event);
     }
-
     Object.entries(eventsByThread).map(([threadId, threadEvents]) => this.addThreadedEvents(threadId, threadEvents, toStartOfTimeline));
   }
-
   createThread(threadId, rootEvent, events = [], toStartOfTimeline) {
+    if (this.threads.has(threadId)) {
+      return this.threads.get(threadId);
+    }
     if (rootEvent) {
       const relatedEvents = this.relations.getAllChildEventsForEvent(rootEvent.getId());
-
       if (relatedEvents?.length) {
         // Include all relations of the root event, given it'll be visible in both timelines,
         // except `m.replace` as that will already be applied atop the event using `MatrixEvent::makeReplaced`
         events = events.concat(relatedEvents.filter(e => !e.isRelation(_event2.RelationType.Replace)));
       }
     }
-
     const thread = new _thread.Thread(threadId, rootEvent, {
-      initialEvents: events,
       room: this,
-      client: this.client
-    }); // If we managed to create a thread and figure out its `id` then we can use it
+      client: this.client,
+      pendingEventOrdering: this.opts.pendingEventOrdering,
+      receipts: this.cachedThreadReadReceipts.get(threadId) ?? []
+    });
 
+    // All read receipts should now come down from sync, we do not need to keep
+    // a reference to the cached receipts anymore.
+    this.cachedThreadReadReceipts.delete(threadId);
+
+    // If we managed to create a thread and figure out its `id` then we can use it
+    // This has to happen before thread.addEvents, because that adds events to the eventtimeline, and the
+    // eventtimeline sometimes looks up thread information via the room.
     this.threads.set(thread.id, thread);
-    this.reEmitter.reEmit(thread, [_thread.ThreadEvent.Update, _thread.ThreadEvent.NewReply, RoomEvent.Timeline, RoomEvent.TimelineReset]);
 
-    if (!this.lastThread || this.lastThread.rootEvent?.localTimestamp < rootEvent?.localTimestamp) {
+    // This is necessary to be able to jump to events in threads:
+    // If we jump to an event in a thread where neither the event, nor the root,
+    // nor any thread event are loaded yet, we'll load the event as well as the thread root, create the thread,
+    // and pass the event through this.
+    thread.addEvents(events, false);
+    this.reEmitter.reEmit(thread, [_thread.ThreadEvent.Delete, _thread.ThreadEvent.Update, _thread.ThreadEvent.NewReply, RoomEvent.Timeline, RoomEvent.TimelineReset]);
+    const isNewer = this.lastThread?.rootEvent && rootEvent?.localTimestamp && this.lastThread.rootEvent?.localTimestamp < rootEvent?.localTimestamp;
+    if (!this.lastThread || isNewer) {
       this.lastThread = thread;
     }
-
-    this.emit(_thread.ThreadEvent.New, thread, toStartOfTimeline);
-
     if (this.threadsReady) {
-      this.threadsTimelineSets.forEach(timelineSet => {
-        if (thread.rootEvent) {
-          if (_thread.Thread.hasServerSideSupport) {
-            timelineSet.addLiveEvent(thread.rootEvent);
-          } else {
-            timelineSet.addEventToTimeline(thread.rootEvent, timelineSet.getLiveTimeline(), toStartOfTimeline);
-          }
-        }
-      });
+      this.updateThreadRootEvents(thread, toStartOfTimeline, false);
     }
-
+    this.emit(_thread.ThreadEvent.New, thread, toStartOfTimeline);
     return thread;
   }
-
   processLiveEvent(event) {
-    this.applyRedaction(event); // Implement MSC3531: hiding messages.
+    this.applyRedaction(event);
 
+    // Implement MSC3531: hiding messages.
     if (event.isVisibilityEvent()) {
       // This event changes the visibility of another event, record
       // the visibility change, inform clients if necessary.
       this.applyNewVisibilityEvent(event);
-    } // If any pending visibility change is waiting for this (older) event,
-
+    }
+    // If any pending visibility change is waiting for this (older) event,
+    this.applyPendingVisibilityEvents(event);
 
-    this.applyPendingVisibilityEvents(event); // Sliding Sync modifications:
+    // Sliding Sync modifications:
     // The proxy cannot guarantee every sent event will have a transaction_id field, so we need
     // to check the event ID against the list of pending events if there is no transaction ID
     // field. Only do this for events sent by us though as it's potentially expensive to loop
     // the pending events map.
-
     const txnId = event.getUnsigned().transaction_id;
-
     if (!txnId && event.getSender() === this.myUserId) {
       // check the txn map for a matching event ID
-      for (const tid in this.txnToEvent) {
-        const localEvent = this.txnToEvent[tid];
-
+      for (const [tid, localEvent] of this.txnToEvent) {
         if (localEvent.getId() === event.getId()) {
-          _logger.logger.debug("processLiveEvent: found sent event without txn ID: ", tid, event.getId()); // update the unsigned field so we can re-use the same codepaths
-
-
+          _logger.logger.debug("processLiveEvent: found sent event without txn ID: ", tid, event.getId());
+          // update the unsigned field so we can re-use the same codepaths
           const unsigned = event.getUnsigned();
           unsigned.transaction_id = tid;
           event.setUnsigned(unsigned);
@@ -1894,38 +1832,42 @@
       }
     }
   }
+
   /**
    * Add an event to the end of this room's live timelines. Will fire
    * "Room.timeline".
    *
-   * @param {MatrixEvent} event Event to be added
-   * @param {IAddLiveEventOptions} addLiveEventOptions addLiveEvent options
-   * @fires module:client~MatrixClient#event:"Room.timeline"
-   * @private
+   * @param event - Event to be added
+   * @param addLiveEventOptions - addLiveEvent options
+   * @internal
+   *
+   * @remarks
+   * Fires {@link RoomEvent.Timeline}
    */
-
-
   addLiveEvent(event, addLiveEventOptions) {
     const {
       duplicateStrategy,
       timelineWasEmpty,
       fromCache
-    } = addLiveEventOptions; // add to our timeline sets
+    } = addLiveEventOptions;
 
-    for (let i = 0; i < this.timelineSets.length; i++) {
-      this.timelineSets[i].addLiveEvent(event, {
+    // add to our timeline sets
+    for (const timelineSet of this.timelineSets) {
+      timelineSet.addLiveEvent(event, {
         duplicateStrategy,
         fromCache,
         timelineWasEmpty
       });
-    } // synthesize and inject implicit read receipts
+    }
+
+    // synthesize and inject implicit read receipts
     // Done after adding the event because otherwise the app would get a read receipt
     // pointing to an event that wasn't yet in the timeline
     // Don't synthesize RR for m.room.redaction as this causes the RR to go missing.
-
-
     if (event.sender && event.getType() !== _event2.EventType.RoomRedaction) {
-      this.addReceipt(synthesizeReceipt(event.sender.userId, event, _read_receipts.ReceiptType.Read), true); // Any live events from a user could be taken as implicit
+      this.addReceipt((0, _readReceipt.synthesizeReceipt)(event.sender.userId, event, _read_receipts.ReceiptType.Read), true);
+
+      // Any live events from a user could be taken as implicit
       // presence information: evidence that they are currently active.
       // ...except in a world where we use 'user.currentlyActive' to reduce
       // presence spam, this isn't very useful - we'll get a transition when
@@ -1933,6 +1875,7 @@
       // reset the lastActiveAgo and lastPresenceTs from the RoomState's user.
     }
   }
+
   /**
    * Add a pending outgoing event to this room.
    *
@@ -1941,67 +1884,55 @@
    *
    * <p>This is an internal method, intended for use by MatrixClient.
    *
-   * @param {module:models/event.MatrixEvent} event The event to add.
-   *
-   * @param {string} txnId Transaction id for this outgoing event
+   * @param event - The event to add.
    *
-   * @fires module:client~MatrixClient#event:"Room.localEchoUpdated"
+   * @param txnId - Transaction id for this outgoing event
    *
    * @throws if the event doesn't have status SENDING, or we aren't given a
    * unique transaction id.
+   *
+   * @remarks
+   * Fires {@link RoomEvent.LocalEchoUpdated}
    */
-
-
   addPendingEvent(event, txnId) {
     if (event.status !== _eventStatus.EventStatus.SENDING && event.status !== _eventStatus.EventStatus.NOT_SENT) {
       throw new Error("addPendingEvent called on an event with status " + event.status);
     }
-
-    if (this.txnToEvent[txnId]) {
+    if (this.txnToEvent.get(txnId)) {
       throw new Error("addPendingEvent called on an event with known txnId " + txnId);
-    } // call setEventMetadata to set up event.sender etc
+    }
+
+    // call setEventMetadata to set up event.sender etc
     // as event is shared over all timelineSets, we set up its metadata based
     // on the unfiltered timelineSet.
-
-
     _eventTimeline.EventTimeline.setEventMetadata(event, this.getLiveTimeline().getState(_eventTimeline.EventTimeline.FORWARDS), false);
-
-    this.txnToEvent[txnId] = event;
-
-    if (this.opts.pendingEventOrdering === _client.PendingEventOrdering.Detached) {
+    this.txnToEvent.set(txnId, event);
+    if (this.pendingEventList) {
       if (this.pendingEventList.some(e => e.status === _eventStatus.EventStatus.NOT_SENT)) {
         _logger.logger.warn("Setting event as NOT_SENT due to messages in the same state");
-
         event.setStatus(_eventStatus.EventStatus.NOT_SENT);
       }
-
       this.pendingEventList.push(event);
       this.savePendingEvents();
-
       if (event.isRelation()) {
         // For pending events, add them to the relations collection immediately.
         // (The alternate case below already covers this as part of adding to
         // the timeline set.)
         this.aggregateNonLiveRelation(event);
       }
-
       if (event.isRedaction()) {
         const redactId = event.event.redacts;
-        let redactedEvent = this.pendingEventList?.find(e => e.getId() === redactId);
-
-        if (!redactedEvent) {
+        let redactedEvent = this.pendingEventList.find(e => e.getId() === redactId);
+        if (!redactedEvent && redactId) {
           redactedEvent = this.findEventById(redactId);
         }
-
         if (redactedEvent) {
           redactedEvent.markLocallyRedacted(event);
           this.emit(RoomEvent.Redaction, event, this);
         }
       }
     } else {
-      for (let i = 0; i < this.timelineSets.length; i++) {
-        const timelineSet = this.timelineSets[i];
-
+      for (const timelineSet of this.timelineSets) {
         if (timelineSet.getFilter()) {
           if (timelineSet.getFilter().filterRoomTimeline([event]).length) {
             timelineSet.addEventToTimeline(event, timelineSet.getLiveTimeline(), {
@@ -2015,9 +1946,9 @@
         }
       }
     }
-
-    this.emit(RoomEvent.LocalEchoUpdated, event, this, null, null);
+    this.emit(RoomEvent.LocalEchoUpdated, event, this);
   }
+
   /**
    * Persists all pending events to local storage
    *
@@ -2025,14 +1956,12 @@
    * all messages that are not yet encrypted will be discarded
    *
    * This is because the flow of EVENT_STATUS transition is
-   * queued => sending => encrypting => sending => sent
+   * `queued => sending => encrypting => sending => sent`
    *
    * Steps 3 and 4 are skipped for unencrypted room.
    * It is better to discard an unencrypted message rather than persisting
    * it locally for everyone to read
    */
-
-
   savePendingEvents() {
     if (this.pendingEventList) {
       const pendingEvents = this.pendingEventList.map(event => {
@@ -2048,6 +1977,7 @@
       this.client.store.setPendingEvents(this.roomId, pendingEvents);
     }
   }
+
   /**
    * Used to aggregate the local echo for a relation, and also
    * for re-applying a relation after it's redaction has been cancelled,
@@ -2056,132 +1986,119 @@
    * which are just kept detached for their local echo.
    *
    * Also note that live events are aggregated in the live EventTimelineSet.
-   * @param {module:models/event.MatrixEvent} event the relation event that needs to be aggregated.
+   * @param event - the relation event that needs to be aggregated.
    */
-
-
   aggregateNonLiveRelation(event) {
     this.relations.aggregateChildEvent(event);
   }
-
   getEventForTxnId(txnId) {
-    return this.txnToEvent[txnId];
+    return this.txnToEvent.get(txnId);
   }
+
   /**
    * Deal with the echo of a message we sent.
    *
    * <p>We move the event to the live timeline if it isn't there already, and
    * update it.
    *
-   * @param {module:models/event.MatrixEvent} remoteEvent   The event received from
+   * @param remoteEvent -   The event received from
    *    /sync
-   * @param {module:models/event.MatrixEvent} localEvent    The local echo, which
+   * @param localEvent -    The local echo, which
    *    should be either in the pendingEventList or the timeline.
    *
-   * @fires module:client~MatrixClient#event:"Room.localEchoUpdated"
-   * @private
+   * @internal
+   *
+   * @remarks
+   * Fires {@link RoomEvent.LocalEchoUpdated}
    */
-
-
   handleRemoteEcho(remoteEvent, localEvent) {
     const oldEventId = localEvent.getId();
     const newEventId = remoteEvent.getId();
     const oldStatus = localEvent.status;
+    _logger.logger.debug(`Got remote echo for event ${oldEventId} -> ${newEventId} old status ${oldStatus}`);
 
-    _logger.logger.debug(`Got remote echo for event ${oldEventId} -> ${newEventId} old status ${oldStatus}`); // no longer pending
-
-
-    delete this.txnToEvent[remoteEvent.getUnsigned().transaction_id]; // if it's in the pending list, remove it
+    // no longer pending
+    this.txnToEvent.delete(remoteEvent.getUnsigned().transaction_id);
 
+    // if it's in the pending list, remove it
     if (this.pendingEventList) {
       this.removePendingEvent(oldEventId);
-    } // replace the event source (this will preserve the plaintext payload if
-    // any, which is good, because we don't want to try decoding it again).
-
+    }
 
+    // replace the event source (this will preserve the plaintext payload if
+    // any, which is good, because we don't want to try decoding it again).
     localEvent.handleRemoteEcho(remoteEvent.event);
     const {
       shouldLiveInRoom,
       threadId
     } = this.eventShouldLiveIn(remoteEvent);
-    const thread = this.getThread(threadId);
+    const thread = threadId ? this.getThread(threadId) : null;
+    thread?.setEventMetadata(localEvent);
     thread?.timelineSet.handleRemoteEcho(localEvent, oldEventId, newEventId);
-
     if (shouldLiveInRoom) {
-      for (let i = 0; i < this.timelineSets.length; i++) {
-        const timelineSet = this.timelineSets[i]; // if it's already in the timeline, update the timeline map. If it's not, add it.
-
+      for (const timelineSet of this.timelineSets) {
+        // if it's already in the timeline, update the timeline map. If it's not, add it.
         timelineSet.handleRemoteEcho(localEvent, oldEventId, newEventId);
       }
     }
-
     this.emit(RoomEvent.LocalEchoUpdated, localEvent, this, oldEventId, oldStatus);
   }
+
   /**
    * Update the status / event id on a pending event, to reflect its transmission
    * progress.
    *
    * <p>This is an internal method.
    *
-   * @param {MatrixEvent} event      local echo event
-   * @param {EventStatus} newStatus  status to assign
-   * @param {string} newEventId      new event id to assign. Ignored unless
-   *    newStatus == EventStatus.SENT.
-   * @fires module:client~MatrixClient#event:"Room.localEchoUpdated"
+   * @param event -      local echo event
+   * @param newStatus -  status to assign
+   * @param newEventId -      new event id to assign. Ignored unless newStatus == EventStatus.SENT.
+   *
+   * @remarks
+   * Fires {@link RoomEvent.LocalEchoUpdated}
    */
-
-
   updatePendingEvent(event, newStatus, newEventId) {
-    _logger.logger.log(`setting pendingEvent status to ${newStatus} in ${event.getRoomId()} ` + `event ID ${event.getId()} -> ${newEventId}`); // if the message was sent, we expect an event id
-
+    _logger.logger.log(`setting pendingEvent status to ${newStatus} in ${event.getRoomId()} ` + `event ID ${event.getId()} -> ${newEventId}`);
 
+    // if the message was sent, we expect an event id
     if (newStatus == _eventStatus.EventStatus.SENT && !newEventId) {
-      throw new Error("updatePendingEvent called with status=SENT, " + "but no new event id");
-    } // SENT races against /sync, so we have to special-case it.
-
+      throw new Error("updatePendingEvent called with status=SENT, but no new event id");
+    }
 
+    // SENT races against /sync, so we have to special-case it.
     if (newStatus == _eventStatus.EventStatus.SENT) {
       const timeline = this.getTimelineForEvent(newEventId);
-
       if (timeline) {
         // we've already received the event via the event stream.
         // nothing more to do here, assuming the transaction ID was correctly matched.
         // Let's check that.
         const remoteEvent = this.findEventById(newEventId);
-        const remoteTxnId = remoteEvent.getUnsigned().transaction_id;
-
-        if (!remoteTxnId) {
+        const remoteTxnId = remoteEvent?.getUnsigned().transaction_id;
+        if (!remoteTxnId && remoteEvent) {
           // This code path is mostly relevant for the Sliding Sync proxy.
           // The remote event did not contain a transaction ID, so we did not handle
           // the remote echo yet. Handle it now.
           const unsigned = remoteEvent.getUnsigned();
           unsigned.transaction_id = event.getTxnId();
-          remoteEvent.setUnsigned(unsigned); // the remote event is _already_ in the timeline, so we need to remove it so
+          remoteEvent.setUnsigned(unsigned);
+          // the remote event is _already_ in the timeline, so we need to remove it so
           // we can convert the local event into the final event.
-
           this.removeEvent(remoteEvent.getId());
           this.handleRemoteEcho(remoteEvent, event);
         }
-
         return;
       }
     }
-
     const oldStatus = event.status;
     const oldEventId = event.getId();
-
     if (!oldStatus) {
-      throw new Error("updatePendingEventStatus called on an event which is " + "not a local echo.");
+      throw new Error("updatePendingEventStatus called on an event which is not a local echo.");
     }
-
     const allowed = ALLOWED_TRANSITIONS[oldStatus];
-
-    if (!allowed || allowed.indexOf(newStatus) < 0) {
-      throw new Error("Invalid EventStatus transition " + oldStatus + "->" + newStatus);
+    if (!allowed?.includes(newStatus)) {
+      throw new Error(`Invalid EventStatus transition ${oldStatus}->${newStatus}`);
     }
-
     event.setStatus(newStatus);
-
     if (newStatus == _eventStatus.EventStatus.SENT) {
       // update the event id
       event.replaceLocalEventId(newEventId);
@@ -2189,15 +2106,15 @@
         shouldLiveInRoom,
         threadId
       } = this.eventShouldLiveIn(event);
-      const thread = this.getThread(threadId);
+      const thread = threadId ? this.getThread(threadId) : undefined;
+      thread?.setEventMetadata(event);
       thread?.timelineSet.replaceEventId(oldEventId, newEventId);
-
       if (shouldLiveInRoom) {
         // if the event was already in the timeline (which will be the case if
         // opts.pendingEventOrdering==chronological), we need to update the
         // timeline map.
-        for (let i = 0; i < this.timelineSets.length; i++) {
-          this.timelineSets[i].replaceEventId(oldEventId, newEventId);
+        for (const timelineSet of this.timelineSets) {
+          timelineSet.replaceEventId(oldEventId, newEventId);
         }
       }
     } else if (newStatus == _eventStatus.EventStatus.CANCELLED) {
@@ -2205,84 +2122,71 @@
       if (this.pendingEventList) {
         const removedEvent = this.getPendingEvent(oldEventId);
         this.removePendingEvent(oldEventId);
-
-        if (removedEvent.isRedaction()) {
+        if (removedEvent?.isRedaction()) {
           this.revertRedactionLocalEcho(removedEvent);
         }
       }
-
       this.removeEvent(oldEventId);
     }
-
     this.savePendingEvents();
     this.emit(RoomEvent.LocalEchoUpdated, event, this, oldEventId, oldStatus);
   }
-
   revertRedactionLocalEcho(redactionEvent) {
     const redactId = redactionEvent.event.redacts;
-
     if (!redactId) {
       return;
     }
-
     const redactedEvent = this.getUnfilteredTimelineSet().findEventById(redactId);
-
     if (redactedEvent) {
-      redactedEvent.unmarkLocallyRedacted(); // re-render after undoing redaction
-
-      this.emit(RoomEvent.RedactionCancelled, redactionEvent, this); // reapply relation now redaction failed
-
+      redactedEvent.unmarkLocallyRedacted();
+      // re-render after undoing redaction
+      this.emit(RoomEvent.RedactionCancelled, redactionEvent, this);
+      // reapply relation now redaction failed
       if (redactedEvent.isRelation()) {
         this.aggregateNonLiveRelation(redactedEvent);
       }
     }
   }
+
   /**
    * Add some events to this room. This can include state events, message
    * events and typing notifications. These events are treated as "live" so
    * they will go to the end of the timeline.
    *
-   * @param {MatrixEvent[]} events A list of events to add.
-   * @param {IAddLiveEventOptions} options addLiveEvent options
-   * @throws If <code>duplicateStrategy</code> is not falsey, 'replace' or 'ignore'.
+   * @param events - A list of events to add.
+   * @param addLiveEventOptions - addLiveEvent options
+   * @throws If `duplicateStrategy` is not falsey, 'replace' or 'ignore'.
    */
 
-
   addLiveEvents(events, duplicateStrategyOrOpts, fromCache = false) {
     let duplicateStrategy = duplicateStrategyOrOpts;
     let timelineWasEmpty = false;
-
-    if (typeof duplicateStrategyOrOpts === 'object') {
+    if (typeof duplicateStrategyOrOpts === "object") {
       ({
         duplicateStrategy,
         fromCache = false,
-
         /* roomState, (not used here) */
         timelineWasEmpty
       } = duplicateStrategyOrOpts);
     } else if (duplicateStrategyOrOpts !== undefined) {
       // Deprecation warning
       // FIXME: Remove after 2023-06-01 (technical debt)
-      _logger.logger.warn('Overload deprecated: ' + '`Room.addLiveEvents(events, duplicateStrategy?, fromCache?)` ' + 'is deprecated in favor of the overload with `Room.addLiveEvents(events, IAddLiveEventOptions)`');
+      _logger.logger.warn("Overload deprecated: " + "`Room.addLiveEvents(events, duplicateStrategy?, fromCache?)` " + "is deprecated in favor of the overload with `Room.addLiveEvents(events, IAddLiveEventOptions)`");
     }
-
     if (duplicateStrategy && ["replace", "ignore"].indexOf(duplicateStrategy) === -1) {
       throw new Error("duplicateStrategy MUST be either 'replace' or 'ignore'");
-    } // sanity check that the live timeline is still live
-
+    }
 
+    // sanity check that the live timeline is still live
     for (let i = 0; i < this.timelineSets.length; i++) {
       const liveTimeline = this.timelineSets[i].getLiveTimeline();
-
       if (liveTimeline.getPaginationToken(_eventTimeline.EventTimeline.FORWARDS)) {
         throw new Error("live timeline " + i + " is no longer live - it has a pagination token " + "(" + liveTimeline.getPaginationToken(_eventTimeline.EventTimeline.FORWARDS) + ")");
       }
-
       if (liveTimeline.getNeighbouringTimeline(_eventTimeline.EventTimeline.FORWARDS)) {
         throw new Error(`live timeline ${i} is no longer live - it has a neighbouring timeline`);
       }
     }
-
     const threadRoots = this.findThreadRoots(events);
     const eventsByThread = {};
     const options = {
@@ -2290,14 +2194,11 @@
       fromCache,
       timelineWasEmpty
     };
-
     for (const event of events) {
       // TODO: We should have a filter to say "only add state event types X Y Z to the timeline".
       this.processLiveEvent(event);
-
       if (event.getUnsigned().transaction_id) {
-        const existingEvent = this.txnToEvent[event.getUnsigned().transaction_id];
-
+        const existingEvent = this.txnToEvent.get(event.getUnsigned().transaction_id);
         if (existingEvent) {
           // remote echo of an event we sent earlier
           this.handleRemoteEcho(event, existingEvent);
@@ -2310,29 +2211,23 @@
         shouldLiveInThread,
         threadId
       } = this.eventShouldLiveIn(event, events, threadRoots);
-
-      if (shouldLiveInThread && !eventsByThread[threadId]) {
-        eventsByThread[threadId] = [];
+      if (shouldLiveInThread && !eventsByThread[threadId ?? ""]) {
+        eventsByThread[threadId ?? ""] = [];
       }
-
-      eventsByThread[threadId]?.push(event);
-
+      eventsByThread[threadId ?? ""]?.push(event);
       if (shouldLiveInRoom) {
         this.addLiveEvent(event, options);
       }
     }
-
     Object.entries(eventsByThread).forEach(([threadId, threadEvents]) => {
       this.addThreadedEvents(threadId, threadEvents, false);
     });
   }
-
   partitionThreadedEvents(events) {
     // Indices to the events array, for readability
     const ROOM = 0;
     const THREAD = 1;
-
-    if (this.client.supportsExperimentalThreads()) {
+    if (this.client.supportsThreads()) {
       const threadRoots = this.findThreadRoots(events);
       return events.reduce((memo, event) => {
         const {
@@ -2340,16 +2235,13 @@
           shouldLiveInThread,
           threadId
         } = this.eventShouldLiveIn(event, events, threadRoots);
-
         if (shouldLiveInRoom) {
           memo[ROOM].push(event);
         }
-
         if (shouldLiveInThread) {
-          event.setThreadId(threadId);
+          event.setThreadId(threadId ?? "");
           memo[THREAD].push(event);
         }
-
         return memo;
       }, [[], []]);
     } else {
@@ -2357,28 +2249,85 @@
       return [events, []];
     }
   }
+
   /**
    * Given some events, find the IDs of all the thread roots that are referred to by them.
    */
-
-
   findThreadRoots(events) {
     const threadRoots = new Set();
-
     for (const event of events) {
       if (event.isRelation(_thread.THREAD_RELATION_TYPE.name)) {
-        threadRoots.add(event.relationEventId);
+        threadRoots.add(event.relationEventId ?? "");
       }
     }
-
     return threadRoots;
   }
+
   /**
-   * Adds/handles ephemeral events such as typing notifications and read receipts.
-   * @param {MatrixEvent[]} events A list of events to process
+   * Add a receipt event to the room.
+   * @param event - The m.receipt event.
+   * @param synthetic - True if this event is implicit.
    */
+  addReceipt(event, synthetic = false) {
+    const content = event.getContent();
+    Object.keys(content).forEach(eventId => {
+      Object.keys(content[eventId]).forEach(receiptType => {
+        Object.keys(content[eventId][receiptType]).forEach(userId => {
+          const receipt = content[eventId][receiptType][userId];
+          const receiptForMainTimeline = !receipt.thread_id || receipt.thread_id === _read_receipts.MAIN_ROOM_TIMELINE;
+          const receiptDestination = receiptForMainTimeline ? this : this.threads.get(receipt.thread_id ?? "");
+          if (receiptDestination) {
+            receiptDestination.addReceiptToStructure(eventId, receiptType, userId, receipt, synthetic);
+
+            // If the read receipt sent for the logged in user matches
+            // the last event of the live timeline, then we know for a fact
+            // that the user has read that message.
+            // We can mark the room as read and not wait for the local echo
+            // from synapse
+            // This needs to be done after the initial sync as we do not want this
+            // logic to run whilst the room is being initialised
+            if (this.client.isInitialSyncComplete() && userId === this.client.getUserId()) {
+              const lastEvent = receiptDestination.timeline[receiptDestination.timeline.length - 1];
+              if (lastEvent && eventId === lastEvent.getId() && userId === lastEvent.getSender()) {
+                receiptDestination.setUnread(NotificationCountType.Total, 0);
+                receiptDestination.setUnread(NotificationCountType.Highlight, 0);
+              }
+            }
+          } else {
+            // The thread does not exist locally, keep the read receipt
+            // in a cache locally, and re-apply  the `addReceipt` logic
+            // when the thread is created
+            this.cachedThreadReadReceipts.set(receipt.thread_id, [...(this.cachedThreadReadReceipts.get(receipt.thread_id) ?? []), {
+              eventId,
+              receiptType,
+              userId,
+              receipt,
+              synthetic
+            }]);
+          }
+          const me = this.client.getUserId();
+          // Track the time of the current user's oldest threaded receipt in the room.
+          if (userId === me && !receiptForMainTimeline && receipt.ts < this.oldestThreadedReceiptTs) {
+            this.oldestThreadedReceiptTs = receipt.ts;
+          }
 
+          // Track each user's unthreaded read receipt.
+          if (!receipt.thread_id && receipt.ts > (this.unthreadedReceipts.get(userId)?.ts ?? 0)) {
+            this.unthreadedReceipts.set(userId, receipt);
+          }
+        });
+      });
+    });
 
+    // send events after we've regenerated the structure & cache, otherwise things that
+    // listened for the event would read stale data.
+    this.emit(RoomEvent.Receipt, event, this);
+  }
+
+  /**
+   * Adds/handles ephemeral events such as typing notifications and read receipts.
+   * @param events - A list of events to process
+   */
   addEphemeralEvents(events) {
     for (const event of events) {
       if (event.getType() === _event2.EventType.Typing) {
@@ -2386,68 +2335,59 @@
       } else if (event.getType() === _event2.EventType.Receipt) {
         this.addReceipt(event);
       } // else ignore - life is too short for us to care about these events
-
     }
   }
+
   /**
    * Removes events from this room.
-   * @param {String[]} eventIds A list of eventIds to remove.
+   * @param eventIds - A list of eventIds to remove.
    */
-
-
   removeEvents(eventIds) {
-    for (let i = 0; i < eventIds.length; ++i) {
-      this.removeEvent(eventIds[i]);
+    for (const eventId of eventIds) {
+      this.removeEvent(eventId);
     }
   }
+
   /**
    * Removes a single event from this room.
    *
-   * @param {String} eventId  The id of the event to remove
+   * @param eventId -  The id of the event to remove
    *
-   * @return {boolean} true if the event was removed from any of the room's timeline sets
+   * @returns true if the event was removed from any of the room's timeline sets
    */
-
-
   removeEvent(eventId) {
     let removedAny = false;
-
-    for (let i = 0; i < this.timelineSets.length; i++) {
-      const removed = this.timelineSets[i].removeEvent(eventId);
-
+    for (const timelineSet of this.timelineSets) {
+      const removed = timelineSet.removeEvent(eventId);
       if (removed) {
         if (removed.isRedaction()) {
           this.revertRedactionLocalEcho(removed);
         }
-
         removedAny = true;
       }
     }
-
     return removedAny;
   }
+
   /**
    * Recalculate various aspects of the room, including the room name and
    * room summary. Call this any time the room's current state is modified.
    * May fire "Room.name" if the room name is updated.
-   * @fires module:client~MatrixClient#event:"Room.name"
+   *
+   * @remarks
+   * Fires {@link RoomEvent.Name}
    */
-
-
   recalculate() {
     // set fake stripped state events if this is an invite room so logic remains
     // consistent elsewhere.
     const membershipEvent = this.currentState.getStateEvents(_event2.EventType.RoomMember, this.myUserId);
-
     if (membershipEvent) {
       const membership = membershipEvent.getContent().membership;
       this.updateMyMembership(membership);
-
       if (membership === "invite") {
         const strippedStateEvents = membershipEvent.getUnsigned().invite_room_state || [];
         strippedStateEvents.forEach(strippedEvent => {
           const existingEvent = this.currentState.getStateEvents(strippedEvent.type, strippedEvent.state_key);
-
           if (!existingEvent) {
             // set the fake stripped event instead
             this.currentState.setStateEvents([new _event.MatrixEvent({
@@ -2457,7 +2397,6 @@
               event_id: "$fake" + Date.now(),
               room_id: this.roomId,
               user_id: this.myUserId // technically a lie
-
             })]);
           }
         });
@@ -2470,248 +2409,15 @@
     this.summary = new _roomSummary.RoomSummary(this.roomId, {
       title: this.name
     });
-
     if (oldName !== this.name) {
       this.emit(RoomEvent.Name, this);
     }
   }
-  /**
-   * Get a list of user IDs who have <b>read up to</b> the given event.
-   * @param {MatrixEvent} event the event to get read receipts for.
-   * @return {String[]} A list of user IDs.
-   */
-
-
-  getUsersReadUpTo(event) {
-    return this.getReceiptsForEvent(event).filter(function (receipt) {
-      return utils.isSupportedReceiptType(receipt.type);
-    }).map(function (receipt) {
-      return receipt.userId;
-    });
-  }
-  /**
-   * Gets the latest receipt for a given user in the room
-   * @param userId The id of the user for which we want the receipt
-   * @param ignoreSynthesized Whether to ignore synthesized receipts or not
-   * @param receiptType Optional. The type of the receipt we want to get
-   * @returns the latest receipts of the chosen type for the chosen user
-   */
-
-
-  getReadReceiptForUserId(userId, ignoreSynthesized = false, receiptType = _read_receipts.ReceiptType.Read) {
-    const [realReceipt, syntheticReceipt] = this.receipts[receiptType]?.[userId] ?? [];
-
-    if (ignoreSynthesized) {
-      return realReceipt;
-    }
-
-    return syntheticReceipt ?? realReceipt;
-  }
-  /**
-   * Get the ID of the event that a given user has read up to, or null if we
-   * have received no read receipts from them.
-   * @param {String} userId The user ID to get read receipt event ID for
-   * @param {Boolean} ignoreSynthesized If true, return only receipts that have been
-   *                                    sent by the server, not implicit ones generated
-   *                                    by the JS SDK.
-   * @return {String} ID of the latest event that the given user has read, or null.
-   */
-
-
-  getEventReadUpTo(userId, ignoreSynthesized = false) {
-    // XXX: This is very very ugly and I hope I won't have to ever add a new
-    // receipt type here again. IMHO this should be done by the server in
-    // some more intelligent manner or the client should just use timestamps
-    const timelineSet = this.getUnfilteredTimelineSet();
-    const publicReadReceipt = this.getReadReceiptForUserId(userId, ignoreSynthesized, _read_receipts.ReceiptType.Read);
-    const privateReadReceipt = this.getReadReceiptForUserId(userId, ignoreSynthesized, _read_receipts.ReceiptType.ReadPrivate); // If we have both, compare them
-
-    let comparison;
-
-    if (publicReadReceipt?.eventId && privateReadReceipt?.eventId) {
-      comparison = timelineSet.compareEventOrdering(publicReadReceipt?.eventId, privateReadReceipt?.eventId);
-    } // If we didn't get a comparison try to compare the ts of the receipts
-
-
-    if (!comparison && publicReadReceipt?.data?.ts && privateReadReceipt?.data?.ts) {
-      comparison = publicReadReceipt?.data?.ts - privateReadReceipt?.data?.ts;
-    } // The public receipt is more likely to drift out of date so the private
-    // one has precedence
-
 
-    if (!comparison) return privateReadReceipt?.eventId ?? publicReadReceipt?.eventId ?? null; // If public read receipt is older, return the private one
-
-    return (comparison < 0 ? privateReadReceipt?.eventId : publicReadReceipt?.eventId) ?? null;
-  }
-  /**
-   * Determines if the given user has read a particular event ID with the known
-   * history of the room. This is not a definitive check as it relies only on
-   * what is available to the room at the time of execution.
-   * @param {String} userId The user ID to check the read state of.
-   * @param {String} eventId The event ID to check if the user read.
-   * @returns {Boolean} True if the user has read the event, false otherwise.
-   */
-
-
-  hasUserReadEvent(userId, eventId) {
-    const readUpToId = this.getEventReadUpTo(userId, false);
-    if (readUpToId === eventId) return true;
-
-    if (this.timeline.length && this.timeline[this.timeline.length - 1].getSender() && this.timeline[this.timeline.length - 1].getSender() === userId) {
-      // It doesn't matter where the event is in the timeline, the user has read
-      // it because they've sent the latest event.
-      return true;
-    }
-
-    for (let i = this.timeline.length - 1; i >= 0; --i) {
-      const ev = this.timeline[i]; // If we encounter the target event first, the user hasn't read it
-      // however if we encounter the readUpToId first then the user has read
-      // it. These rules apply because we're iterating bottom-up.
-
-      if (ev.getId() === eventId) return false;
-      if (ev.getId() === readUpToId) return true;
-    } // We don't know if the user has read it, so assume not.
-
-
-    return false;
-  }
-  /**
-   * Get a list of receipts for the given event.
-   * @param {MatrixEvent} event the event to get receipts for
-   * @return {Object[]} A list of receipts with a userId, type and data keys or
-   * an empty list.
-   */
-
-
-  getReceiptsForEvent(event) {
-    return this.receiptCacheByEventId[event.getId()] || [];
-  }
-  /**
-   * Add a receipt event to the room.
-   * @param {MatrixEvent} event The m.receipt event.
-   * @param {Boolean} synthetic True if this event is implicit.
-   */
-
-
-  addReceipt(event, synthetic = false) {
-    this.addReceiptsToStructure(event, synthetic); // send events after we've regenerated the structure & cache, otherwise things that
-    // listened for the event would read stale data.
-
-    this.emit(RoomEvent.Receipt, event, this);
-  }
-  /**
-   * Add a receipt event to the room.
-   * @param {MatrixEvent} event The m.receipt event.
-   * @param {Boolean} synthetic True if this event is implicit.
-   */
-
-
-  addReceiptsToStructure(event, synthetic) {
-    const content = event.getContent();
-    Object.keys(content).forEach(eventId => {
-      Object.keys(content[eventId]).forEach(receiptType => {
-        Object.keys(content[eventId][receiptType]).forEach(userId => {
-          const receipt = content[eventId][receiptType][userId];
-
-          if (!this.receipts[receiptType]) {
-            this.receipts[receiptType] = {};
-          }
-
-          if (!this.receipts[receiptType][userId]) {
-            this.receipts[receiptType][userId] = [null, null];
-          }
-
-          const pair = this.receipts[receiptType][userId];
-          let existingReceipt = pair[ReceiptPairRealIndex];
-
-          if (synthetic) {
-            existingReceipt = pair[ReceiptPairSyntheticIndex] ?? pair[ReceiptPairRealIndex];
-          }
-
-          if (existingReceipt) {
-            // we only want to add this receipt if we think it is later than the one we already have.
-            // This is managed server-side, but because we synthesize RRs locally we have to do it here too.
-            const ordering = this.getUnfilteredTimelineSet().compareEventOrdering(existingReceipt.eventId, eventId);
-
-            if (ordering !== null && ordering >= 0) {
-              return;
-            }
-          }
-
-          const wrappedReceipt = {
-            eventId,
-            data: receipt
-          };
-          const realReceipt = synthetic ? pair[ReceiptPairRealIndex] : wrappedReceipt;
-          const syntheticReceipt = synthetic ? wrappedReceipt : pair[ReceiptPairSyntheticIndex];
-          let ordering = null;
-
-          if (realReceipt && syntheticReceipt) {
-            ordering = this.getUnfilteredTimelineSet().compareEventOrdering(realReceipt.eventId, syntheticReceipt.eventId);
-          }
-
-          const preferSynthetic = ordering === null || ordering < 0; // we don't bother caching just real receipts by event ID as there's nothing that would read it.
-          // Take the current cached receipt before we overwrite the pair elements.
-
-          const cachedReceipt = pair[ReceiptPairSyntheticIndex] ?? pair[ReceiptPairRealIndex];
-
-          if (synthetic && preferSynthetic) {
-            pair[ReceiptPairSyntheticIndex] = wrappedReceipt;
-          } else if (!synthetic) {
-            pair[ReceiptPairRealIndex] = wrappedReceipt;
-
-            if (!preferSynthetic) {
-              pair[ReceiptPairSyntheticIndex] = null;
-            }
-          }
-
-          const newCachedReceipt = pair[ReceiptPairSyntheticIndex] ?? pair[ReceiptPairRealIndex];
-          if (cachedReceipt === newCachedReceipt) return; // clean up any previous cache entry
-
-          if (cachedReceipt && this.receiptCacheByEventId[cachedReceipt.eventId]) {
-            const previousEventId = cachedReceipt.eventId; // Remove the receipt we're about to clobber out of existence from the cache
-
-            this.receiptCacheByEventId[previousEventId] = this.receiptCacheByEventId[previousEventId].filter(r => {
-              return r.type !== receiptType || r.userId !== userId;
-            });
-
-            if (this.receiptCacheByEventId[previousEventId].length < 1) {
-              delete this.receiptCacheByEventId[previousEventId]; // clean up the cache keys
-            }
-          } // cache the new one
-
-
-          if (!this.receiptCacheByEventId[eventId]) {
-            this.receiptCacheByEventId[eventId] = [];
-          }
-
-          this.receiptCacheByEventId[eventId].push({
-            userId: userId,
-            type: receiptType,
-            data: receipt
-          });
-        });
-      });
-    });
-  }
-  /**
-   * Add a temporary local-echo receipt to the room to reflect in the
-   * client the fact that we've sent one.
-   * @param {string} userId The user ID if the receipt sender
-   * @param {MatrixEvent} e The event that is to be acknowledged
-   * @param {ReceiptType} receiptType The type of receipt
-   */
-
-
-  addLocalEchoReceipt(userId, e, receiptType) {
-    this.addReceipt(synthesizeReceipt(userId, e, receiptType), true);
-  }
   /**
    * Update the room-tag event for the room.  The previous one is overwritten.
-   * @param {MatrixEvent} event the m.tag event
+   * @param event - the m.tag event
    */
-
-
   addTags(event) {
     // event content looks like:
     // content: {
@@ -2720,194 +2426,188 @@
     //       $tagName: { $metadata: $value },
     //    }
     // }
+
     // XXX: do we need to deep copy here?
-    this.tags = event.getContent().tags || {}; // XXX: we could do a deep-comparison to see if the tags have really
-    // changed - but do we want to bother?
+    this.tags = event.getContent().tags || {};
 
+    // XXX: we could do a deep-comparison to see if the tags have really
+    // changed - but do we want to bother?
     this.emit(RoomEvent.Tags, event, this);
   }
+
   /**
    * Update the account_data events for this room, overwriting events of the same type.
-   * @param {Array<MatrixEvent>} events an array of account_data events to add
+   * @param events - an array of account_data events to add
    */
-
-
   addAccountData(events) {
-    for (let i = 0; i < events.length; i++) {
-      const event = events[i];
-
+    for (const event of events) {
       if (event.getType() === "m.tag") {
         this.addTags(event);
       }
-
-      const lastEvent = this.accountData[event.getType()];
-      this.accountData[event.getType()] = event;
+      const eventType = event.getType();
+      const lastEvent = this.accountData.get(eventType);
+      this.accountData.set(eventType, event);
       this.emit(RoomEvent.AccountData, event, this, lastEvent);
     }
   }
+
   /**
    * Access account_data event of given event type for this room
-   * @param {string} type the type of account_data event to be accessed
-   * @return {?MatrixEvent} the account_data event in question
+   * @param type - the type of account_data event to be accessed
+   * @returns the account_data event in question
    */
-
-
   getAccountData(type) {
-    return this.accountData[type];
+    return this.accountData.get(type);
   }
+
   /**
    * Returns whether the syncing user has permission to send a message in the room
-   * @return {boolean} true if the user should be permitted to send
+   * @returns true if the user should be permitted to send
    *                   message events into the room.
    */
-
-
   maySendMessage() {
-    return this.getMyMembership() === 'join' && (this.client.isRoomEncrypted(this.roomId) ? this.currentState.maySendEvent(_event2.EventType.RoomMessageEncrypted, this.myUserId) : this.currentState.maySendEvent(_event2.EventType.RoomMessage, this.myUserId));
+    return this.getMyMembership() === "join" && (this.client.isRoomEncrypted(this.roomId) ? this.currentState.maySendEvent(_event2.EventType.RoomMessageEncrypted, this.myUserId) : this.currentState.maySendEvent(_event2.EventType.RoomMessage, this.myUserId));
   }
+
   /**
    * Returns whether the given user has permissions to issue an invite for this room.
-   * @param {string} userId the ID of the Matrix user to check permissions for
-   * @returns {boolean} true if the user should be permitted to issue invites for this room.
+   * @param userId - the ID of the Matrix user to check permissions for
+   * @returns true if the user should be permitted to issue invites for this room.
    */
-
-
   canInvite(userId) {
     let canInvite = this.getMyMembership() === "join";
     const powerLevelsEvent = this.currentState.getStateEvents(_event2.EventType.RoomPowerLevels, "");
     const powerLevels = powerLevelsEvent && powerLevelsEvent.getContent();
     const me = this.getMember(userId);
-
     if (powerLevels && me && powerLevels.invite > me.powerLevel) {
       canInvite = false;
     }
-
     return canInvite;
   }
+
   /**
    * Returns the join rule based on the m.room.join_rule state event, defaulting to `invite`.
-   * @returns {string} the join_rule applied to this room
+   * @returns the join_rule applied to this room
    */
-
-
   getJoinRule() {
     return this.currentState.getJoinRule();
   }
+
   /**
    * Returns the history visibility based on the m.room.history_visibility state event, defaulting to `shared`.
-   * @returns {HistoryVisibility} the history_visibility applied to this room
+   * @returns the history_visibility applied to this room
    */
-
-
   getHistoryVisibility() {
     return this.currentState.getHistoryVisibility();
   }
+
   /**
    * Returns the history visibility based on the m.room.history_visibility state event, defaulting to `shared`.
-   * @returns {HistoryVisibility} the history_visibility applied to this room
+   * @returns the history_visibility applied to this room
    */
-
-
   getGuestAccess() {
     return this.currentState.getGuestAccess();
   }
+
   /**
    * Returns the type of the room from the `m.room.create` event content or undefined if none is set
-   * @returns {?string} the type of the room.
+   * @returns the type of the room.
    */
-
-
   getType() {
     const createEvent = this.currentState.getStateEvents(_event2.EventType.RoomCreate, "");
-
     if (!createEvent) {
       if (!this.getTypeWarning) {
         _logger.logger.warn("[getType] Room " + this.roomId + " does not have an m.room.create event");
-
         this.getTypeWarning = true;
       }
-
       return undefined;
     }
-
     return createEvent.getContent()[_event2.RoomCreateTypeField];
   }
+
   /**
    * Returns whether the room is a space-room as defined by MSC1772.
-   * @returns {boolean} true if the room's type is RoomType.Space
+   * @returns true if the room's type is RoomType.Space
    */
-
-
   isSpaceRoom() {
     return this.getType() === _event2.RoomType.Space;
   }
+
   /**
    * Returns whether the room is a call-room as defined by MSC3417.
-   * @returns {boolean} true if the room's type is RoomType.UnstableCall
+   * @returns true if the room's type is RoomType.UnstableCall
    */
-
-
   isCallRoom() {
     return this.getType() === _event2.RoomType.UnstableCall;
   }
+
   /**
    * Returns whether the room is a video room.
-   * @returns {boolean} true if the room's type is RoomType.ElementVideo
+   * @returns true if the room's type is RoomType.ElementVideo
    */
-
-
   isElementVideoRoom() {
     return this.getType() === _event2.RoomType.ElementVideo;
   }
 
+  /**
+   * Find the predecessor of this room.
+   *
+   * @param msc3946ProcessDynamicPredecessor - if true, look for an
+   * m.room.predecessor state event and use it if found (MSC3946).
+   * @returns null if this room has no predecessor. Otherwise, returns
+   * the roomId and last eventId of the predecessor room.
+   * If msc3946ProcessDynamicPredecessor is true, use m.predecessor events
+   * as well as m.room.create events to find predecessors.
+   * Note: if an m.predecessor event is used, eventId may be undefined
+   * since last_known_event_id is optional.
+   */
+  findPredecessor(msc3946ProcessDynamicPredecessor = false) {
+    const currentState = this.getLiveTimeline().getState(_eventTimeline.EventTimeline.FORWARDS);
+    if (!currentState) {
+      return null;
+    }
+    return currentState.findPredecessor(msc3946ProcessDynamicPredecessor);
+  }
   roomNameGenerator(state) {
     if (this.client.roomNameGenerator) {
       const name = this.client.roomNameGenerator(this.roomId, state);
-
       if (name !== null) {
         return name;
       }
     }
-
     switch (state.type) {
       case RoomNameType.Actual:
         return state.name;
-
       case RoomNameType.Generated:
         switch (state.subtype) {
           case "Inviting":
             return `Inviting ${memberNamesToRoomName(state.names, state.count)}`;
-
           default:
             return memberNamesToRoomName(state.names, state.count);
         }
-
       case RoomNameType.EmptyRoom:
         if (state.oldName) {
           return `Empty room (was ${state.oldName})`;
         } else {
           return "Empty room";
         }
-
     }
   }
+
   /**
    * This is an internal method. Calculates the name of the room from the current
    * room state.
-   * @param {string} userId The client's user ID. Used to filter room members
+   * @param userId - The client's user ID. Used to filter room members
    * correctly.
-   * @param {boolean} ignoreRoomNameEvent Return the implicit room name that we'd see if there
+   * @param ignoreRoomNameEvent - Return the implicit room name that we'd see if there
    * was no m.room.name event.
-   * @return {string} The calculated room name.
+   * @returns The calculated room name.
    */
-
-
   calculateRoomName(userId, ignoreRoomNameEvent = false) {
     if (!ignoreRoomNameEvent) {
       // check for an alias, if any. for now, assume first alias is the
       // official one.
       const mRoomName = this.currentState.getStateEvents(_event2.EventType.RoomName, "");
-
       if (mRoomName?.getContent().name) {
         return this.roomNameGenerator({
           type: RoomNameType.Actual,
@@ -2915,42 +2615,35 @@
         });
       }
     }
-
     const alias = this.getCanonicalAlias();
-
     if (alias) {
       return this.roomNameGenerator({
         type: RoomNameType.Actual,
         name: alias
       });
     }
-
     const joinedMemberCount = this.currentState.getJoinedMemberCount();
-    const invitedMemberCount = this.currentState.getInvitedMemberCount(); // -1 because these numbers include the syncing user
-
-    let inviteJoinCount = joinedMemberCount + invitedMemberCount - 1; // get service members (e.g. helper bots) for exclusion
+    const invitedMemberCount = this.currentState.getInvitedMemberCount();
+    // -1 because these numbers include the syncing user
+    let inviteJoinCount = joinedMemberCount + invitedMemberCount - 1;
 
+    // get service members (e.g. helper bots) for exclusion
     let excludedUserIds = [];
     const mFunctionalMembers = this.currentState.getStateEvents(_event2.UNSTABLE_ELEMENT_FUNCTIONAL_USERS.name, "");
-
     if (Array.isArray(mFunctionalMembers?.getContent().service_members)) {
       excludedUserIds = mFunctionalMembers.getContent().service_members;
-    } // get members that are NOT ourselves and are actually in the room.
-
-
-    let otherNames = null;
+    }
 
+    // get members that are NOT ourselves and are actually in the room.
+    let otherNames = [];
     if (this.summaryHeroes) {
-      // if we have a summary, the member state events
-      // should be in the room state
-      otherNames = [];
+      // if we have a summary, the member state events should be in the room state
       this.summaryHeroes.forEach(userId => {
         // filter service members
         if (excludedUserIds.includes(userId)) {
           inviteJoinCount--;
           return;
         }
-
         const member = this.getMember(userId);
         otherNames.push(member ? member.name : userId);
       });
@@ -2966,16 +2659,14 @@
           inviteJoinCount--;
           return false;
         }
-
         return true;
-      }); // make sure members have stable order
-
-      otherMembers.sort((a, b) => utils.compare(a.userId, b.userId)); // only 5 first members, immitate summaryHeroes
-
+      });
+      // make sure members have stable order
+      otherMembers.sort((a, b) => utils.compare(a.userId, b.userId));
+      // only 5 first members, immitate summaryHeroes
       otherMembers = otherMembers.slice(0, 5);
       otherNames = otherMembers.map(m => m.name);
     }
-
     if (inviteJoinCount) {
       return this.roomNameGenerator({
         type: RoomNameType.Generated,
@@ -2983,13 +2674,11 @@
         count: inviteJoinCount
       });
     }
-
-    const myMembership = this.getMyMembership(); // if I have created a room and invited people through
+    const myMembership = this.getMyMembership();
+    // if I have created a room and invited people through
     // 3rd party invites
-
-    if (myMembership == 'join') {
+    if (myMembership == "join") {
       const thirdPartyInvites = this.currentState.getStateEvents(_event2.EventType.RoomThirdPartyInvite);
-
       if (thirdPartyInvites?.length) {
         const thirdPartyNames = thirdPartyInvites.map(i => {
           return i.getContent().display_name;
@@ -3001,19 +2690,17 @@
           count: thirdPartyNames.length + 1
         });
       }
-    } // let's try to figure out who was here before
-
-
-    let leftNames = otherNames; // if we didn't have heroes, try finding them in the room state
+    }
 
+    // let's try to figure out who was here before
+    let leftNames = otherNames;
+    // if we didn't have heroes, try finding them in the room state
     if (!leftNames.length) {
       leftNames = this.currentState.getMembers().filter(m => {
         return m.userId !== userId && m.membership !== "invite" && m.membership !== "join";
       }).map(m => m.name);
     }
-
     let oldName;
-
     if (leftNames.length) {
       oldName = this.roomNameGenerator({
         type: RoomNameType.Generated,
@@ -3021,12 +2708,12 @@
         count: leftNames.length + 1
       });
     }
-
     return this.roomNameGenerator({
       type: RoomNameType.EmptyRoom,
       oldName
     });
   }
+
   /**
    * When we receive a new visibility change event:
    *
@@ -3035,35 +2722,29 @@
    * - if we have already received the event whose visibility has changed,
    *   patch it to reflect the visibility change and inform listeners.
    */
-
-
   applyNewVisibilityEvent(event) {
     const visibilityChange = event.asVisibilityChange();
-
     if (!visibilityChange) {
       // The event is ill-formed.
       return;
-    } // Ignore visibility change events that are not emitted by moderators.
-
+    }
 
+    // Ignore visibility change events that are not emitted by moderators.
     const userId = event.getSender();
-
     if (!userId) {
       return;
     }
-
     const isPowerSufficient = _event2.EVENT_VISIBILITY_CHANGE_TYPE.name && this.currentState.maySendStateEvent(_event2.EVENT_VISIBILITY_CHANGE_TYPE.name, userId) || _event2.EVENT_VISIBILITY_CHANGE_TYPE.altName && this.currentState.maySendStateEvent(_event2.EVENT_VISIBILITY_CHANGE_TYPE.altName, userId);
-
     if (!isPowerSufficient) {
       // Powerlevel is insufficient.
       return;
-    } // Record this change in visibility.
+    }
+
+    // Record this change in visibility.
     // If the event is not in our timeline and we only receive it later,
     // we may need to apply the visibility change at a later date.
 
-
     const visibilityEventsOnOriginalEvent = this.visibilityEvents.get(visibilityChange.eventId);
-
     if (visibilityEventsOnOriginalEvent) {
       // It would be tempting to simply erase the latest visibility change
       // but we need to record all of the changes in case the latest change
@@ -3074,15 +2755,12 @@
       // number of iterations in this loop.
       let index = visibilityEventsOnOriginalEvent.length - 1;
       const min = Math.max(0, visibilityEventsOnOriginalEvent.length - MAX_NUMBER_OF_VISIBILITY_EVENTS_TO_SCAN_THROUGH);
-
       for (; index >= min; --index) {
         const target = visibilityEventsOnOriginalEvent[index];
-
         if (target.getTs() < event.getTs()) {
           break;
         }
       }
-
       if (index === -1) {
         visibilityEventsOnOriginalEvent.unshift(event);
       } else {
@@ -3090,54 +2768,46 @@
       }
     } else {
       this.visibilityEvents.set(visibilityChange.eventId, [event]);
-    } // Finally, let's check if the event is already in our timeline.
-    // If so, we need to patch it and inform listeners.
+    }
 
+    // Finally, let's check if the event is already in our timeline.
+    // If so, we need to patch it and inform listeners.
 
     const originalEvent = this.findEventById(visibilityChange.eventId);
-
     if (!originalEvent) {
       return;
     }
-
     originalEvent.applyVisibilityEvent(visibilityChange);
   }
-
   redactVisibilityChangeEvent(event) {
     // Sanity checks.
     if (!event.isVisibilityEvent) {
       throw new Error("expected a visibility change event");
     }
-
     const relation = event.getRelation();
-    const originalEventId = relation.event_id;
+    const originalEventId = relation?.event_id;
     const visibilityEventsOnOriginalEvent = this.visibilityEvents.get(originalEventId);
-
     if (!visibilityEventsOnOriginalEvent) {
       // No visibility changes on the original event.
       // In particular, this change event was not recorded,
       // most likely because it was ill-formed.
       return;
     }
-
     const index = visibilityEventsOnOriginalEvent.findIndex(change => change.getId() === event.getId());
-
     if (index === -1) {
       // This change event was not recorded, most likely because
       // it was ill-formed.
       return;
-    } // Remove visibility change.
-
-
-    visibilityEventsOnOriginalEvent.splice(index, 1); // If we removed the latest visibility change event, propagate changes.
+    }
+    // Remove visibility change.
+    visibilityEventsOnOriginalEvent.splice(index, 1);
 
+    // If we removed the latest visibility change event, propagate changes.
     if (index === visibilityEventsOnOriginalEvent.length) {
       const originalEvent = this.findEventById(originalEventId);
-
       if (!originalEvent) {
         return;
       }
-
       if (index === 0) {
         // We have just removed the only visibility change event.
         this.visibilityEvents.delete(originalEventId);
@@ -3145,83 +2815,110 @@
       } else {
         const newEvent = visibilityEventsOnOriginalEvent[visibilityEventsOnOriginalEvent.length - 1];
         const newVisibility = newEvent.asVisibilityChange();
-
         if (!newVisibility) {
           // Event is ill-formed.
           // This breaks our invariant.
           throw new Error("at this stage, visibility changes should be well-formed");
         }
-
         originalEvent.applyVisibilityEvent(newVisibility);
       }
     }
   }
+
   /**
    * When we receive an event whose visibility has been altered by
    * a (more recent) visibility change event, patch the event in
    * place so that clients now not to display it.
    *
-   * @param event Any matrix event. If this event has at least one a
+   * @param event - Any matrix event. If this event has at least one a
    * pending visibility change event, apply the latest visibility
    * change event.
    */
-
-
   applyPendingVisibilityEvents(event) {
     const visibilityEvents = this.visibilityEvents.get(event.getId());
-
     if (!visibilityEvents || visibilityEvents.length == 0) {
       // No pending visibility change in store.
       return;
     }
-
     const visibilityEvent = visibilityEvents[visibilityEvents.length - 1];
     const visibilityChange = visibilityEvent.asVisibilityChange();
-
     if (!visibilityChange) {
       return;
     }
-
-    if (visibilityChange.visible) {// Events are visible by default, no need to apply a visibility change.
+    if (visibilityChange.visible) {
+      // Events are visible by default, no need to apply a visibility change.
       // Note that we need to keep the visibility changes in `visibilityEvents`,
       // in case we later fetch an older visibility change event that is superseded
       // by `visibilityChange`.
     }
-
     if (visibilityEvent.getTs() < event.getTs()) {
       // Something is wrong, the visibility change cannot happen before the
       // event. Presumably an ill-formed event.
       return;
     }
-
     event.applyVisibilityEvent(visibilityChange);
   }
 
-} // a map from current event status to a list of allowed next statuses
+  /**
+   * Find when a client has gained thread capabilities by inspecting the oldest
+   * threaded receipt
+   * @returns the timestamp of the oldest threaded receipt
+   */
+  getOldestThreadedReceiptTs() {
+    return this.oldestThreadedReceiptTs;
+  }
+
+  /**
+   * Returns the most recent unthreaded receipt for a given user
+   * @param userId - the MxID of the User
+   * @returns an unthreaded Receipt. Can be undefined if receipts have been disabled
+   * or a user chooses to use private read receipts (or we have simply not received
+   * a receipt from this user yet).
+   */
+  getLastUnthreadedReceiptFor(userId) {
+    return this.unthreadedReceipts.get(userId);
+  }
 
+  /**
+   * This issue should also be addressed on synapse's side and is tracked as part
+   * of https://github.com/matrix-org/synapse/issues/14837
+   *
+   *
+   * We consider a room  fully read if the current user has sent
+   * the last event in the live timeline of that context and if the read receipt
+   * we have on record matches.
+   * This also detects all unread threads and applies the same logic to those
+   * contexts
+   */
+  fixupNotifications(userId) {
+    super.fixupNotifications(userId);
+    const unreadThreads = this.getThreads().filter(thread => this.getThreadUnreadNotificationCount(thread.id, NotificationCountType.Total) > 0);
+    for (const thread of unreadThreads) {
+      thread.fixupNotifications(userId);
+    }
+  }
+}
 
+// a map from current event status to a list of allowed next statuses
 exports.Room = Room;
 const ALLOWED_TRANSITIONS = {
   [_eventStatus.EventStatus.ENCRYPTING]: [_eventStatus.EventStatus.SENDING, _eventStatus.EventStatus.NOT_SENT, _eventStatus.EventStatus.CANCELLED],
   [_eventStatus.EventStatus.SENDING]: [_eventStatus.EventStatus.ENCRYPTING, _eventStatus.EventStatus.QUEUED, _eventStatus.EventStatus.NOT_SENT, _eventStatus.EventStatus.SENT],
-  [_eventStatus.EventStatus.QUEUED]: [_eventStatus.EventStatus.SENDING, _eventStatus.EventStatus.CANCELLED],
+  [_eventStatus.EventStatus.QUEUED]: [_eventStatus.EventStatus.SENDING, _eventStatus.EventStatus.NOT_SENT, _eventStatus.EventStatus.CANCELLED],
   [_eventStatus.EventStatus.SENT]: [],
   [_eventStatus.EventStatus.NOT_SENT]: [_eventStatus.EventStatus.SENDING, _eventStatus.EventStatus.QUEUED, _eventStatus.EventStatus.CANCELLED],
   [_eventStatus.EventStatus.CANCELLED]: []
 };
 let RoomNameType;
 exports.RoomNameType = RoomNameType;
-
 (function (RoomNameType) {
   RoomNameType[RoomNameType["EmptyRoom"] = 0] = "EmptyRoom";
   RoomNameType[RoomNameType["Generated"] = 1] = "Generated";
   RoomNameType[RoomNameType["Actual"] = 2] = "Actual";
 })(RoomNameType || (exports.RoomNameType = RoomNameType = {}));
-
 // Can be overriden by IMatrixClientCreateOpts::memberNamesToRoomNameFn
 function memberNamesToRoomName(names, count) {
   const countWithoutMe = count - 1;
-
   if (!names.length) {
     return "Empty room";
   } else if (names.length === 1 && countWithoutMe <= 1) {
@@ -3230,124 +2927,10 @@
     return `${names[0]} and ${names[1]}`;
   } else {
     const plural = countWithoutMe > 1;
-
     if (plural) {
       return `${names[0]} and ${countWithoutMe} others`;
     } else {
       return `${names[0]} and 1 other`;
     }
   }
-}
-/**
- * Fires when an event we had previously received is redacted.
- *
- * (Note this is *not* fired when the redaction happens before we receive the
- * event).
- *
- * @event module:client~MatrixClient#"Room.redaction"
- * @param {MatrixEvent} event The matrix redaction event
- * @param {Room} room The room containing the redacted event
- */
-
-/**
- * Fires when an event that was previously redacted isn't anymore.
- * This happens when the redaction couldn't be sent and
- * was subsequently cancelled by the user. Redactions have a local echo
- * which is undone in this scenario.
- *
- * @event module:client~MatrixClient#"Room.redactionCancelled"
- * @param {MatrixEvent} event The matrix redaction event that was cancelled.
- * @param {Room} room The room containing the unredacted event
- */
-
-/**
- * Fires whenever the name of a room is updated.
- * @event module:client~MatrixClient#"Room.name"
- * @param {Room} room The room whose Room.name was updated.
- * @example
- * matrixClient.on("Room.name", function(room){
- *   var newName = room.name;
- * });
- */
-
-/**
- * Fires whenever a receipt is received for a room
- * @event module:client~MatrixClient#"Room.receipt"
- * @param {event} event The receipt event
- * @param {Room} room The room whose receipts was updated.
- * @example
- * matrixClient.on("Room.receipt", function(event, room){
- *   var receiptContent = event.getContent();
- * });
- */
-
-/**
- * Fires whenever a room's tags are updated.
- * @event module:client~MatrixClient#"Room.tags"
- * @param {event} event The tags event
- * @param {Room} room The room whose Room.tags was updated.
- * @example
- * matrixClient.on("Room.tags", function(event, room){
- *   var newTags = event.getContent().tags;
- *   if (newTags["favourite"]) showStar(room);
- * });
- */
-
-/**
- * Fires whenever a room's account_data is updated.
- * @event module:client~MatrixClient#"Room.accountData"
- * @param {event} event The account_data event
- * @param {Room} room The room whose account_data was updated.
- * @param {MatrixEvent} prevEvent The event being replaced by
- * the new account data, if known.
- * @example
- * matrixClient.on("Room.accountData", function(event, room, oldEvent){
- *   if (event.getType() === "m.room.colorscheme") {
- *       applyColorScheme(event.getContents());
- *   }
- * });
- */
-
-/**
- * Fires when the status of a transmitted event is updated.
- *
- * <p>When an event is first transmitted, a temporary copy of the event is
- * inserted into the timeline, with a temporary event id, and a status of
- * 'SENDING'.
- *
- * <p>Once the echo comes back from the server, the content of the event
- * (MatrixEvent.event) is replaced by the complete event from the homeserver,
- * thus updating its event id, as well as server-generated fields such as the
- * timestamp. Its status is set to null.
- *
- * <p>Once the /send request completes, if the remote echo has not already
- * arrived, the event is updated with a new event id and the status is set to
- * 'SENT'. The server-generated fields are of course not updated yet.
- *
- * <p>If the /send fails, In this case, the event's status is set to
- * 'NOT_SENT'. If it is later resent, the process starts again, setting the
- * status to 'SENDING'. Alternatively, the message may be cancelled, which
- * removes the event from the room, and sets the status to 'CANCELLED'.
- *
- * <p>This event is raised to reflect each of the transitions above.
- *
- * @event module:client~MatrixClient#"Room.localEchoUpdated"
- *
- * @param {MatrixEvent} event The matrix event which has been updated
- *
- * @param {Room} room The room containing the redacted event
- *
- * @param {string} oldEventId The previous event id (the temporary event id,
- *    except when updating a successfully-sent event when its echo arrives)
- *
- * @param {EventStatus} oldStatus The previous event status.
- */
-
-/**
- * Fires when the logged in user's membership in the room is updated.
- *
- * @event module:models/room~Room#"Room.myMembership"
- * @param {Room} room The room in which the membership has been updated
- * @param {string} membership The new membership value
- * @param {string} prevMembership The previous membership value
- */
\ No newline at end of file
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/room-member.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/room-member.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/room-member.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/room-member.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,187 +4,174 @@
   value: true
 });
 exports.RoomMemberEvent = exports.RoomMember = void 0;
-
 var _contentRepo = require("../content-repo");
-
 var utils = _interopRequireWildcard(require("../utils"));
-
 var _logger = require("../logger");
-
 var _typedEventEmitter = require("./typed-event-emitter");
-
 var _event = require("../@types/event");
-
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 let RoomMemberEvent;
 exports.RoomMemberEvent = RoomMemberEvent;
-
 (function (RoomMemberEvent) {
   RoomMemberEvent["Membership"] = "RoomMember.membership";
   RoomMemberEvent["Name"] = "RoomMember.name";
   RoomMemberEvent["PowerLevel"] = "RoomMember.powerLevel";
   RoomMemberEvent["Typing"] = "RoomMember.typing";
 })(RoomMemberEvent || (exports.RoomMemberEvent = RoomMemberEvent = {}));
-
 class RoomMember extends _typedEventEmitter.TypedEventEmitter {
   // used by sync.ts
+
   // XXX these should be read-only
+  /**
+   * True if the room member is currently typing.
+   */
+
+  /**
+   * The human-readable name for this room member. This will be
+   * disambiguated with a suffix of " (\@user_id:matrix.org)" if another member shares the
+   * same displayname.
+   */
+
+  /**
+   * The ambiguous displayname of this room member.
+   */
+
+  /**
+   * The power level for this room member.
+   */
+
+  /**
+   * The normalised power level (0-100) for this room member.
+   */
+
+  /**
+   * The User object for this room member, if one exists.
+   */
+
+  /**
+   * The membership state for this room member e.g. 'join'.
+   */
+
+  /**
+   * True if the member's name is disambiguated.
+   */
+
+  /**
+   * The events describing this RoomMember.
+   */
 
   /**
    * Construct a new room member.
    *
-   * @constructor
-   * @alias module:models/room-member
-   *
-   * @param {string} roomId The room ID of the member.
-   * @param {string} userId The user ID of the member.
-   * @prop {string} roomId The room ID for this member.
-   * @prop {string} userId The user ID of this member.
-   * @prop {boolean} typing True if the room member is currently typing.
-   * @prop {string} name The human-readable name for this room member. This will be
-   * disambiguated with a suffix of " (@user_id:matrix.org)" if another member shares the
-   * same displayname.
-   * @prop {string} rawDisplayName The ambiguous displayname of this room member.
-   * @prop {Number} powerLevel The power level for this room member.
-   * @prop {Number} powerLevelNorm The normalised power level (0-100) for this
-   * room member.
-   * @prop {User} user The User object for this room member, if one exists.
-   * @prop {string} membership The membership state for this room member e.g. 'join'.
-   * @prop {Object} events The events describing this RoomMember.
-   * @prop {MatrixEvent} events.member The m.room.member event for this RoomMember.
-   * @prop {boolean} disambiguate True if the member's name is disambiguated.
+   * @param roomId - The room ID of the member.
+   * @param userId - The user ID of the member.
    */
   constructor(roomId, userId) {
     super();
     this.roomId = roomId;
     this.userId = userId;
-
     _defineProperty(this, "_isOutOfBand", false);
-
-    _defineProperty(this, "_modified", void 0);
-
-    _defineProperty(this, "_requestedProfileInfo", void 0);
-
+    _defineProperty(this, "modified", -1);
+    _defineProperty(this, "requestedProfileInfo", false);
     _defineProperty(this, "typing", false);
-
     _defineProperty(this, "name", void 0);
-
     _defineProperty(this, "rawDisplayName", void 0);
-
     _defineProperty(this, "powerLevel", 0);
-
     _defineProperty(this, "powerLevelNorm", 0);
-
-    _defineProperty(this, "user", null);
-
-    _defineProperty(this, "membership", null);
-
+    _defineProperty(this, "user", void 0);
+    _defineProperty(this, "membership", void 0);
     _defineProperty(this, "disambiguate", false);
-
-    _defineProperty(this, "events", {
-      member: null
-    });
-
+    _defineProperty(this, "events", {});
     this.name = userId;
     this.rawDisplayName = userId;
     this.updateModifiedTime();
   }
+
   /**
    * Mark the member as coming from a channel that is not sync
    */
-
-
   markOutOfBand() {
     this._isOutOfBand = true;
   }
+
   /**
-   * @return {boolean} does the member come from a channel that is not sync?
+   * @returns does the member come from a channel that is not sync?
    * This is used to store the member seperately
    * from the sync state so it available across browser sessions.
    */
-
-
   isOutOfBand() {
     return this._isOutOfBand;
   }
+
   /**
    * Update this room member's membership event. May fire "RoomMember.name" if
    * this event updates this member's name.
-   * @param {MatrixEvent} event The <code>m.room.member</code> event
-   * @param {RoomState} roomState Optional. The room state to take into account
+   * @param event - The `m.room.member` event
+   * @param roomState - Optional. The room state to take into account
    * when calculating (e.g. for disambiguating users with the same name).
-   * @fires module:client~MatrixClient#event:"RoomMember.name"
-   * @fires module:client~MatrixClient#event:"RoomMember.membership"
+   *
+   * @remarks
+   * Fires {@link RoomMemberEvent.Name}
+   * Fires {@link RoomMemberEvent.Membership}
    */
-
-
   setMembershipEvent(event, roomState) {
-    const displayName = event.getDirectionalContent().displayname;
-
+    const displayName = event.getDirectionalContent().displayname ?? "";
     if (event.getType() !== _event.EventType.RoomMember) {
       return;
     }
-
     this._isOutOfBand = false;
     this.events.member = event;
     const oldMembership = this.membership;
     this.membership = event.getDirectionalContent().membership;
-
     if (this.membership === undefined) {
       // logging to diagnose https://github.com/vector-im/element-web/issues/20962
       // (logs event content, although only of membership events)
       _logger.logger.trace(`membership event with membership undefined (forwardLooking: ${event.forwardLooking})!`, event.getContent(), `prevcontent is `, event.getPrevContent());
     }
-
     this.disambiguate = shouldDisambiguate(this.userId, displayName, roomState);
     const oldName = this.name;
-    this.name = calculateDisplayName(this.userId, displayName, roomState, this.disambiguate); // not quite raw: we strip direction override chars so it can safely be inserted into
-    // blocks of text without breaking the text direction
-
-    this.rawDisplayName = utils.removeDirectionOverrideChars(event.getDirectionalContent().displayname);
+    this.name = calculateDisplayName(this.userId, displayName, this.disambiguate);
 
+    // not quite raw: we strip direction override chars so it can safely be inserted into
+    // blocks of text without breaking the text direction
+    this.rawDisplayName = utils.removeDirectionOverrideChars(event.getDirectionalContent().displayname ?? "");
     if (!this.rawDisplayName || !utils.removeHiddenChars(this.rawDisplayName)) {
       this.rawDisplayName = this.userId;
     }
-
     if (oldMembership !== this.membership) {
       this.updateModifiedTime();
       this.emit(RoomMemberEvent.Membership, event, this, oldMembership);
     }
-
     if (oldName !== this.name) {
       this.updateModifiedTime();
       this.emit(RoomMemberEvent.Name, event, this, oldName);
     }
   }
+
   /**
    * Update this room member's power level event. May fire
    * "RoomMember.powerLevel" if this event updates this member's power levels.
-   * @param {MatrixEvent} powerLevelEvent The <code>m.room.power_levels</code>
-   * event
-   * @fires module:client~MatrixClient#event:"RoomMember.powerLevel"
+   * @param powerLevelEvent - The `m.room.power_levels` event
+   *
+   * @remarks
+   * Fires {@link RoomMemberEvent.PowerLevel}
    */
-
-
   setPowerLevelEvent(powerLevelEvent) {
-    if (powerLevelEvent.getType() !== "m.room.power_levels") {
+    if (powerLevelEvent.getType() !== _event.EventType.RoomPowerLevels || powerLevelEvent.getStateKey() !== "") {
       return;
     }
-
     const evContent = powerLevelEvent.getDirectionalContent();
     let maxLevel = evContent.users_default || 0;
     const users = evContent.users || {};
-    Object.values(users).forEach(function (lvl) {
+    Object.values(users).forEach(lvl => {
       maxLevel = Math.max(maxLevel, lvl);
     });
     const oldPowerLevel = this.powerLevel;
     const oldPowerLevelNorm = this.powerLevelNorm;
-
     if (users[this.userId] !== undefined && Number.isInteger(users[this.userId])) {
       this.powerLevel = users[this.userId];
     } else if (evContent.users_default !== undefined) {
@@ -192,188 +179,174 @@
     } else {
       this.powerLevel = 0;
     }
-
     this.powerLevelNorm = 0;
-
     if (maxLevel > 0) {
       this.powerLevelNorm = this.powerLevel * 100 / maxLevel;
-    } // emit for changes in powerLevelNorm as well (since the app will need to
-    // redraw everyone's level if the max has changed)
-
+    }
 
+    // emit for changes in powerLevelNorm as well (since the app will need to
+    // redraw everyone's level if the max has changed)
     if (oldPowerLevel !== this.powerLevel || oldPowerLevelNorm !== this.powerLevelNorm) {
       this.updateModifiedTime();
       this.emit(RoomMemberEvent.PowerLevel, powerLevelEvent, this);
     }
   }
+
   /**
    * Update this room member's typing event. May fire "RoomMember.typing" if
    * this event changes this member's typing state.
-   * @param {MatrixEvent} event The typing event
-   * @fires module:client~MatrixClient#event:"RoomMember.typing"
+   * @param event - The typing event
+   *
+   * @remarks
+   * Fires {@link RoomMemberEvent.Typing}
    */
-
-
   setTypingEvent(event) {
     if (event.getType() !== "m.typing") {
       return;
     }
-
     const oldTyping = this.typing;
     this.typing = false;
     const typingList = event.getContent().user_ids;
-
     if (!Array.isArray(typingList)) {
       // malformed event :/ bail early. TODO: whine?
       return;
     }
-
     if (typingList.indexOf(this.userId) !== -1) {
       this.typing = true;
     }
-
     if (oldTyping !== this.typing) {
       this.updateModifiedTime();
       this.emit(RoomMemberEvent.Typing, event, this);
     }
   }
+
   /**
    * Update the last modified time to the current time.
    */
-
-
   updateModifiedTime() {
-    this._modified = Date.now();
+    this.modified = Date.now();
   }
+
   /**
    * Get the timestamp when this RoomMember was last updated. This timestamp is
    * updated when properties on this RoomMember are updated.
    * It is updated <i>before</i> firing events.
-   * @return {number} The timestamp
+   * @returns The timestamp
    */
-
-
   getLastModifiedTime() {
-    return this._modified;
+    return this.modified;
   }
-
   isKicked() {
-    return this.membership === "leave" && this.events.member.getSender() !== this.events.member.getStateKey();
+    return this.membership === "leave" && this.events.member !== undefined && this.events.member.getSender() !== this.events.member.getStateKey();
   }
+
   /**
    * If this member was invited with the is_direct flag set, return
    * the user that invited this member
-   * @return {string} user id of the inviter
+   * @returns user id of the inviter
    */
-
-
   getDMInviter() {
     // when not available because that room state hasn't been loaded in,
     // we don't really know, but more likely to not be a direct chat
     if (this.events.member) {
       // TODO: persist the is_direct flag on the member as more member events
       //       come in caused by displayName changes.
+
       // the is_direct flag is set on the invite member event.
       // This is copied on the prev_content section of the join member event
       // when the invite is accepted.
+
       const memberEvent = this.events.member;
       let memberContent = memberEvent.getContent();
       let inviteSender = memberEvent.getSender();
-
       if (memberContent.membership === "join") {
         memberContent = memberEvent.getPrevContent();
         inviteSender = memberEvent.getUnsigned().prev_sender;
       }
-
       if (memberContent.membership === "invite" && memberContent.is_direct) {
         return inviteSender;
       }
     }
   }
+
   /**
    * Get the avatar URL for a room member.
-   * @param {string} baseUrl The base homeserver URL See
-   * {@link module:client~MatrixClient#getHomeserverUrl}.
-   * @param {Number} width The desired width of the thumbnail.
-   * @param {Number} height The desired height of the thumbnail.
-   * @param {string} resizeMethod The thumbnail resize method to use, either
+   * @param baseUrl - The base homeserver URL See
+   * {@link MatrixClient#getHomeserverUrl}.
+   * @param width - The desired width of the thumbnail.
+   * @param height - The desired height of the thumbnail.
+   * @param resizeMethod - The thumbnail resize method to use, either
    * "crop" or "scale".
-   * @param {Boolean} allowDefault (optional) Passing false causes this method to
+   * @param allowDefault - (optional) Passing false causes this method to
    * return null if the user has no avatar image. Otherwise, a default image URL
    * will be returned. Default: true. (Deprecated)
-   * @param {Boolean} allowDirectLinks (optional) If true, the avatar URL will be
+   * @param allowDirectLinks - (optional) If true, the avatar URL will be
    * returned even if it is a direct hyperlink rather than a matrix content URL.
    * If false, any non-matrix content URLs will be ignored. Setting this option to
    * true will expose URLs that, if fetched, will leak information about the user
    * to anyone who they share a room with.
-   * @return {?string} the avatar URL or null.
+   * @returns the avatar URL or null.
    */
-
-
   getAvatarUrl(baseUrl, width, height, resizeMethod, allowDefault = true, allowDirectLinks) {
     const rawUrl = this.getMxcAvatarUrl();
-
     if (!rawUrl && !allowDefault) {
       return null;
     }
-
     const httpUrl = (0, _contentRepo.getHttpUriForMxc)(baseUrl, rawUrl, width, height, resizeMethod, allowDirectLinks);
-
     if (httpUrl) {
       return httpUrl;
     }
-
     return null;
   }
+
   /**
    * get the mxc avatar url, either from a state event, or from a lazily loaded member
-   * @return {string} the mxc avatar url
+   * @returns the mxc avatar url
    */
-
-
   getMxcAvatarUrl() {
     if (this.events.member) {
       return this.events.member.getDirectionalContent().avatar_url;
     } else if (this.user) {
       return this.user.avatarUrl;
     }
-
-    return null;
   }
-
 }
-
 exports.RoomMember = RoomMember;
 const MXID_PATTERN = /@.+:.+/;
 const LTR_RTL_PATTERN = /[\u200E\u200F\u202A-\u202F]/;
-
 function shouldDisambiguate(selfUserId, displayName, roomState) {
-  if (!displayName || displayName === selfUserId) return false; // First check if the displayname is something we consider truthy
-  // after stripping it of zero width characters and padding spaces
+  if (!displayName || displayName === selfUserId) return false;
 
+  // First check if the displayname is something we consider truthy
+  // after stripping it of zero width characters and padding spaces
   if (!utils.removeHiddenChars(displayName)) return false;
-  if (!roomState) return false; // Next check if the name contains something that look like a mxid
+  if (!roomState) return false;
+
+  // Next check if the name contains something that look like a mxid
   // If it does, it may be someone trying to impersonate someone else
   // Show full mxid in this case
+  if (MXID_PATTERN.test(displayName)) return true;
 
-  if (MXID_PATTERN.test(displayName)) return true; // Also show mxid if the display name contains any LTR/RTL characters as these
+  // Also show mxid if the display name contains any LTR/RTL characters as these
   // make it very difficult for us to find similar *looking* display names
   // E.g "Mark" could be cloned by writing "kraM" but in RTL.
+  if (LTR_RTL_PATTERN.test(displayName)) return true;
 
-  if (LTR_RTL_PATTERN.test(displayName)) return true; // Also show mxid if there are other people with the same or similar
+  // Also show mxid if there are other people with the same or similar
   // displayname, after hidden character removal.
-
   const userIds = roomState.getUserIdsWithDisplayName(displayName);
   if (userIds.some(u => u !== selfUserId)) return true;
   return false;
 }
-
-function calculateDisplayName(selfUserId, displayName, roomState, disambiguate) {
+function calculateDisplayName(selfUserId, displayName, disambiguate) {
+  if (!displayName || displayName === selfUserId) return selfUserId;
   if (disambiguate) return utils.removeDirectionOverrideChars(displayName) + " (" + selfUserId + ")";
-  if (!displayName || displayName === selfUserId) return selfUserId; // First check if the displayname is something we consider truthy
+
+  // First check if the displayname is something we consider truthy
   // after stripping it of zero width characters and padding spaces
+  if (!utils.removeHiddenChars(displayName)) return selfUserId;
 
-  if (!utils.removeHiddenChars(displayName)) return selfUserId; // We always strip the direction override characters (LRO and RLO).
+  // We always strip the direction override characters (LRO and RLO).
   // These override the text direction for all subsequent characters
   // in the paragraph so if display names contained these, they'd
   // need to be wrapped in something to prevent this from leaking out
@@ -384,54 +357,5 @@
   // names should flip into the correct direction automatically based on
   // the characters, and you can still embed rtl in ltr or vice versa
   // with the embed chars or marker chars.
-
   return utils.removeDirectionOverrideChars(displayName);
-}
-/**
- * Fires whenever any room member's name changes.
- * @event module:client~MatrixClient#"RoomMember.name"
- * @param {MatrixEvent} event The matrix event which caused this event to fire.
- * @param {RoomMember} member The member whose RoomMember.name changed.
- * @param {string?} oldName The previous name. Null if the member didn't have a
- *    name previously.
- * @example
- * matrixClient.on("RoomMember.name", function(event, member){
- *   var newName = member.name;
- * });
- */
-
-/**
- * Fires whenever any room member's membership state changes.
- * @event module:client~MatrixClient#"RoomMember.membership"
- * @param {MatrixEvent} event The matrix event which caused this event to fire.
- * @param {RoomMember} member The member whose RoomMember.membership changed.
- * @param {string?} oldMembership The previous membership state. Null if it's a
- *    new member.
- * @example
- * matrixClient.on("RoomMember.membership", function(event, member, oldMembership){
- *   var newState = member.membership;
- * });
- */
-
-/**
- * Fires whenever any room member's typing state changes.
- * @event module:client~MatrixClient#"RoomMember.typing"
- * @param {MatrixEvent} event The matrix event which caused this event to fire.
- * @param {RoomMember} member The member whose RoomMember.typing changed.
- * @example
- * matrixClient.on("RoomMember.typing", function(event, member){
- *   var isTyping = member.typing;
- * });
- */
-
-/**
- * Fires whenever any room member's power level changes.
- * @event module:client~MatrixClient#"RoomMember.powerLevel"
- * @param {MatrixEvent} event The matrix event which caused this event to fire.
- * @param {RoomMember} member The member whose RoomMember.powerLevel changed.
- * @example
- * matrixClient.on("RoomMember.powerLevel", function(event, member){
- *   var newPowerLevel = member.powerLevel;
- *   var newNormPowerLevel = member.powerLevelNorm;
- * });
- */
\ No newline at end of file
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/room-state.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/room-state.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/room-state.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/room-state.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,49 +4,32 @@
   value: true
 });
 exports.RoomStateEvent = exports.RoomState = void 0;
-
 var _roomMember = require("./room-member");
-
 var _logger = require("../logger");
-
 var utils = _interopRequireWildcard(require("../utils"));
-
 var _event = require("../@types/event");
-
 var _event2 = require("./event");
-
 var _partials = require("../@types/partials");
-
 var _typedEventEmitter = require("./typed-event-emitter");
-
 var _beacon = require("./beacon");
-
 var _ReEmitter = require("../ReEmitter");
-
 var _beacon2 = require("../@types/beacon");
-
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
 function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
-
 function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 // possible statuses for out-of-band member loading
 var OobStatus;
-
 (function (OobStatus) {
   OobStatus[OobStatus["NotStarted"] = 0] = "NotStarted";
   OobStatus[OobStatus["InProgress"] = 1] = "InProgress";
   OobStatus[OobStatus["Finished"] = 2] = "Finished";
 })(OobStatus || (OobStatus = {}));
-
 let RoomStateEvent;
 exports.RoomStateEvent = RoomStateEvent;
-
 (function (RoomStateEvent) {
   RoomStateEvent["Events"] = "RoomState.events";
   RoomStateEvent["Members"] = "RoomState.members";
@@ -55,10 +38,10 @@
   RoomStateEvent["BeaconLiveness"] = "RoomState.BeaconLiveness";
   RoomStateEvent["Marker"] = "RoomState.Marker";
 })(RoomStateEvent || (exports.RoomStateEvent = RoomStateEvent = {}));
-
 class RoomState extends _typedEventEmitter.TypedEventEmitter {
   // userId: RoomMember
   // stores fuzzy matches to a list of userIDs (applies utils.removeHiddenChars to keys)
+
   // 3pid invite state_key to m.room.member invite
   // cache of the number of joined members
   // joined members count from summary api
@@ -66,10 +49,15 @@
   // and we should only trust that
   // we could also only trust that before OOB members
   // are loaded but doesn't seem worth the hassle atm
+
   // same for invited member count
+
   // XXX: Should be read-only
+  // The room member dictionary, keyed on the user's ID.
   // userId: RoomMember
+  // The state events dictionary, keyed on the event type and then the state_key value.
   // Map<eventType, Map<stateKey, MatrixEvent>>
+  // The pagination token for this state.
 
   /**
    * Construct room state.
@@ -78,8 +66,8 @@
    * It can be mutated by adding state events to it.
    * There are two types of room member associated with a state event:
    * normal member objects (accessed via getMember/getMembers) which mutate
-   * with the state to represent the current state of that room/user, eg.
-   * the object returned by getMember('@bob:example.com') will mutate to
+   * with the state to represent the current state of that room/user, e.g.
+   * the object returned by `getMember('@bob:example.com')` will mutate to
    * get a different display name if Bob later changes his display name
    * in the room.
    * There are also 'sentinel' members (accessed via getSentinelMember).
@@ -92,18 +80,12 @@
    * after the display name change will return a new RoomMember object
    * with Bob's new display name.
    *
-   * @constructor
-   * @param {?string} roomId Optional. The ID of the room which has this state.
+   * @param roomId - Optional. The ID of the room which has this state.
    * If none is specified it just tracks paginationTokens, useful for notifTimelineSet
-   * @param {?object} oobMemberFlags Optional. The state of loading out of bound members.
+   * @param oobMemberFlags - Optional. The state of loading out of bound members.
    * As the timeline might get reset while they are loading, this state needs to be inherited
    * and shared when the room state is cloned for the new timeline.
    * This should only be passed from clone.
-   * @prop {Object.<string, RoomMember>} members The room member dictionary, keyed
-   * on the user's ID.
-   * @prop {Object.<string, Object.<string, MatrixEvent>>} events The state
-   * events dictionary, keyed on the event type and then the state_key value.
-   * @prop {string} paginationToken The pagination token for this state.
    */
   constructor(roomId, oobMemberFlags = {
     status: OobStatus.NotStarted
@@ -111,309 +93,253 @@
     super();
     this.roomId = roomId;
     this.oobMemberFlags = oobMemberFlags;
-
     _defineProperty(this, "reEmitter", new _ReEmitter.TypedReEmitter(this));
-
     _defineProperty(this, "sentinels", {});
-
     _defineProperty(this, "displayNameToUserIds", new Map());
-
     _defineProperty(this, "userIdsToDisplayNames", {});
-
     _defineProperty(this, "tokenToInvite", {});
-
     _defineProperty(this, "joinedMemberCount", null);
-
     _defineProperty(this, "summaryJoinedMemberCount", null);
-
     _defineProperty(this, "invitedMemberCount", null);
-
     _defineProperty(this, "summaryInvitedMemberCount", null);
-
-    _defineProperty(this, "modified", void 0);
-
+    _defineProperty(this, "modified", -1);
     _defineProperty(this, "members", {});
-
     _defineProperty(this, "events", new Map());
-
     _defineProperty(this, "paginationToken", null);
-
     _defineProperty(this, "beacons", new Map());
-
     _defineProperty(this, "_liveBeaconIds", []);
-
     this.updateModifiedTime();
   }
+
   /**
    * Returns the number of joined members in this room
    * This method caches the result.
-   * @return {number} The number of members in this room whose membership is 'join'
+   * @returns The number of members in this room whose membership is 'join'
    */
-
-
   getJoinedMemberCount() {
     if (this.summaryJoinedMemberCount !== null) {
       return this.summaryJoinedMemberCount;
     }
-
     if (this.joinedMemberCount === null) {
       this.joinedMemberCount = this.getMembers().reduce((count, m) => {
-        return m.membership === 'join' ? count + 1 : count;
+        return m.membership === "join" ? count + 1 : count;
       }, 0);
     }
-
     return this.joinedMemberCount;
   }
+
   /**
    * Set the joined member count explicitly (like from summary part of the sync response)
-   * @param {number} count the amount of joined members
+   * @param count - the amount of joined members
    */
-
-
   setJoinedMemberCount(count) {
     this.summaryJoinedMemberCount = count;
   }
+
   /**
    * Returns the number of invited members in this room
-   * @return {number} The number of members in this room whose membership is 'invite'
+   * @returns The number of members in this room whose membership is 'invite'
    */
-
-
   getInvitedMemberCount() {
     if (this.summaryInvitedMemberCount !== null) {
       return this.summaryInvitedMemberCount;
     }
-
     if (this.invitedMemberCount === null) {
       this.invitedMemberCount = this.getMembers().reduce((count, m) => {
-        return m.membership === 'invite' ? count + 1 : count;
+        return m.membership === "invite" ? count + 1 : count;
       }, 0);
     }
-
     return this.invitedMemberCount;
   }
+
   /**
    * Set the amount of invited members in this room
-   * @param {number} count the amount of invited members
+   * @param count - the amount of invited members
    */
-
-
   setInvitedMemberCount(count) {
     this.summaryInvitedMemberCount = count;
   }
+
   /**
    * Get all RoomMembers in this room.
-   * @return {Array<RoomMember>} A list of RoomMembers.
+   * @returns A list of RoomMembers.
    */
-
-
   getMembers() {
     return Object.values(this.members);
   }
+
   /**
    * Get all RoomMembers in this room, excluding the user IDs provided.
-   * @param {Array<string>} excludedIds The user IDs to exclude.
-   * @return {Array<RoomMember>} A list of RoomMembers.
+   * @param excludedIds - The user IDs to exclude.
+   * @returns A list of RoomMembers.
    */
-
-
   getMembersExcept(excludedIds) {
     return this.getMembers().filter(m => !excludedIds.includes(m.userId));
   }
+
   /**
    * Get a room member by their user ID.
-   * @param {string} userId The room member's user ID.
-   * @return {RoomMember} The member or null if they do not exist.
+   * @param userId - The room member's user ID.
+   * @returns The member or null if they do not exist.
    */
-
-
   getMember(userId) {
     return this.members[userId] || null;
   }
+
   /**
    * Get a room member whose properties will not change with this room state. You
    * typically want this if you want to attach a RoomMember to a MatrixEvent which
    * may no longer be represented correctly by Room.currentState or Room.oldState.
    * The term 'sentinel' refers to the fact that this RoomMember is an unchanging
    * guardian for state at this particular point in time.
-   * @param {string} userId The room member's user ID.
-   * @return {RoomMember} The member or null if they do not exist.
+   * @param userId - The room member's user ID.
+   * @returns The member or null if they do not exist.
    */
-
-
   getSentinelMember(userId) {
     if (!userId) return null;
     let sentinel = this.sentinels[userId];
-
     if (sentinel === undefined) {
       sentinel = new _roomMember.RoomMember(this.roomId, userId);
       const member = this.members[userId];
-
-      if (member) {
+      if (member?.events.member) {
         sentinel.setMembershipEvent(member.events.member, this);
       }
-
       this.sentinels[userId] = sentinel;
     }
-
     return sentinel;
   }
+
   /**
    * Get state events from the state of the room.
-   * @param {string} eventType The event type of the state event.
-   * @param {string} stateKey Optional. The state_key of the state event. If
-   * this is <code>undefined</code> then all matching state events will be
+   * @param eventType - The event type of the state event.
+   * @param stateKey - Optional. The state_key of the state event. If
+   * this is `undefined` then all matching state events will be
    * returned.
-   * @return {MatrixEvent[]|MatrixEvent} A list of events if state_key was
-   * <code>undefined</code>, else a single event (or null if no match found).
+   * @returns A list of events if state_key was
+   * `undefined`, else a single event (or null if no match found).
    */
 
-
   getStateEvents(eventType, stateKey) {
     if (!this.events.has(eventType)) {
       // no match
       return stateKey === undefined ? [] : null;
     }
-
     if (stateKey === undefined) {
       // return all values
       return Array.from(this.events.get(eventType).values());
     }
-
     const event = this.events.get(eventType).get(stateKey);
     return event ? event : null;
   }
-
   get hasLiveBeacons() {
     return !!this.liveBeaconIds?.length;
   }
-
   get liveBeaconIds() {
     return this._liveBeaconIds;
   }
+
   /**
    * Creates a copy of this room state so that mutations to either won't affect the other.
-   * @return {RoomState} the copy of the room state
+   * @returns the copy of the room state
    */
-
-
   clone() {
-    const copy = new RoomState(this.roomId, this.oobMemberFlags); // Ugly hack: because setStateEvents will mark
+    const copy = new RoomState(this.roomId, this.oobMemberFlags);
+
+    // Ugly hack: because setStateEvents will mark
     // members as susperseding future out of bound members
     // if loading is in progress (through oobMemberFlags)
     // since these are not new members, we're merely copying them
     // set the status to not started
     // after copying, we set back the status
-
     const status = this.oobMemberFlags.status;
     this.oobMemberFlags.status = OobStatus.NotStarted;
     Array.from(this.events.values()).forEach(eventsByStateKey => {
       copy.setStateEvents(Array.from(eventsByStateKey.values()));
-    }); // Ugly hack: see above
+    });
 
+    // Ugly hack: see above
     this.oobMemberFlags.status = status;
-
     if (this.summaryInvitedMemberCount !== null) {
       copy.setInvitedMemberCount(this.getInvitedMemberCount());
     }
-
     if (this.summaryJoinedMemberCount !== null) {
       copy.setJoinedMemberCount(this.getJoinedMemberCount());
-    } // copy out of band flags if needed
-
+    }
 
+    // copy out of band flags if needed
     if (this.oobMemberFlags.status == OobStatus.Finished) {
       // copy markOutOfBand flags
       this.getMembers().forEach(member => {
         if (member.isOutOfBand()) {
-          const copyMember = copy.getMember(member.userId);
-          copyMember.markOutOfBand();
+          copy.getMember(member.userId)?.markOutOfBand();
         }
       });
     }
-
     return copy;
   }
+
   /**
    * Add previously unknown state events.
    * When lazy loading members while back-paginating,
    * the relevant room state for the timeline chunk at the end
    * of the chunk can be set with this method.
-   * @param {MatrixEvent[]} events state events to prepend
+   * @param events - state events to prepend
    */
-
-
   setUnknownStateEvents(events) {
     const unknownStateEvents = events.filter(event => {
       return !this.events.has(event.getType()) || !this.events.get(event.getType()).has(event.getStateKey());
     });
     this.setStateEvents(unknownStateEvents);
   }
+
   /**
    * Add an array of one or more state MatrixEvents, overwriting any existing
-   * state with the same {type, stateKey} tuple. Will fire "RoomState.events"
+   * state with the same `{type, stateKey}` tuple. Will fire "RoomState.events"
    * for every event added. May fire "RoomState.members" if there are
-   * <code>m.room.member</code> events. May fire "RoomStateEvent.Marker" if there are
-   * <code>UNSTABLE_MSC2716_MARKER</code> events.
-   * @param {MatrixEvent[]} stateEvents a list of state events for this room.
-   * @param {IMarkerFoundOptions} markerFoundOptions
-   * @fires module:client~MatrixClient#event:"RoomState.members"
-   * @fires module:client~MatrixClient#event:"RoomState.newMember"
-   * @fires module:client~MatrixClient#event:"RoomState.events"
-   * @fires module:client~MatrixClient#event:"RoomStateEvent.Marker"
+   * `m.room.member` events. May fire "RoomStateEvent.Marker" if there are
+   * `UNSTABLE_MSC2716_MARKER` events.
+   * @param stateEvents - a list of state events for this room.
+   *
+   * @remarks
+   * Fires {@link RoomStateEvent.Members}
+   * Fires {@link RoomStateEvent.NewMember}
+   * Fires {@link RoomStateEvent.Events}
+   * Fires {@link RoomStateEvent.Marker}
    */
-
-
   setStateEvents(stateEvents, markerFoundOptions) {
-    this.updateModifiedTime(); // update the core event dict
+    this.updateModifiedTime();
 
+    // update the core event dict
     stateEvents.forEach(event => {
-      if (event.getRoomId() !== this.roomId) {
-        return;
-      }
-
-      if (!event.isState()) {
-        return;
-      }
-
+      if (event.getRoomId() !== this.roomId || !event.isState()) return;
       if (_beacon2.M_BEACON_INFO.matches(event.getType())) {
         this.setBeacon(event);
       }
-
       const lastStateEvent = this.getStateEventMatching(event);
       this.setStateEvent(event);
-
       if (event.getType() === _event.EventType.RoomMember) {
-        this.updateDisplayNameCache(event.getStateKey(), event.getContent().displayname);
+        this.updateDisplayNameCache(event.getStateKey(), event.getContent().displayname ?? "");
         this.updateThirdPartyTokenCache(event);
       }
-
       this.emit(RoomStateEvent.Events, event, this, lastStateEvent);
     });
-    this.onBeaconLivenessChange(); // update higher level data structures. This needs to be done AFTER the
+    this.onBeaconLivenessChange();
+    // update higher level data structures. This needs to be done AFTER the
     // core event dict as these structures may depend on other state events in
     // the given array (e.g. disambiguating display names in one go to do both
     // clashing names rather than progressively which only catches 1 of them).
-
     stateEvents.forEach(event => {
-      if (event.getRoomId() !== this.roomId) {
-        return;
-      }
-
-      if (!event.isState()) {
-        return;
-      }
-
+      if (event.getRoomId() !== this.roomId || !event.isState()) return;
       if (event.getType() === _event.EventType.RoomMember) {
-        const userId = event.getStateKey(); // leave events apparently elide the displayname or avatar_url,
+        const userId = event.getStateKey();
+
+        // leave events apparently elide the displayname or avatar_url,
         // so let's fake one up so that we don't leak user ids
         // into the timeline
-
         if (event.getContent().membership === "leave" || event.getContent().membership === "ban") {
           event.getContent().avatar_url = event.getContent().avatar_url || event.getPrevContent().avatar_url;
           event.getContent().displayname = event.getContent().displayname || event.getPrevContent().displayname;
         }
-
         const member = this.getOrCreateMember(userId, event);
         member.setMembershipEvent(event, this);
         this.updateMember(member);
@@ -424,7 +350,6 @@
         if (event.getStateKey() !== "") {
           return;
         }
-
         const members = Object.values(this.members);
         members.forEach(member => {
           // We only propagate `RoomState.members` event if the
@@ -432,12 +357,12 @@
           // large room suffer from large re-rendering especially when not needed
           const oldLastModified = member.getLastModifiedTime();
           member.setPowerLevelEvent(event);
-
           if (oldLastModified !== member.getLastModifiedTime()) {
             this.emit(RoomStateEvent.Members, event, this, member);
           }
-        }); // assume all our sentinels are now out-of-date
+        });
 
+        // assume all our sentinels are now out-of-date
         this.sentinels = {};
       } else if (_event.UNSTABLE_MSC2716_MARKER.matches(event.getType())) {
         this.emit(RoomStateEvent.Marker, event, markerFoundOptions);
@@ -445,39 +370,29 @@
     });
     this.emit(RoomStateEvent.Update, this);
   }
-
   processBeaconEvents(events, matrixClient) {
-    if (!events.length || // discard locations if we have no beacons
+    if (!events.length ||
+    // discard locations if we have no beacons
     !this.beacons.size) {
       return;
     }
-
     const beaconByEventIdDict = [...this.beacons.values()].reduce((dict, beacon) => _objectSpread(_objectSpread({}, dict), {}, {
       [beacon.beaconInfoId]: beacon
     }), {});
-
     const processBeaconRelation = (beaconInfoEventId, event) => {
       if (!_beacon2.M_BEACON.matches(event.getType())) {
         return;
       }
-
       const beacon = beaconByEventIdDict[beaconInfoEventId];
-
       if (beacon) {
         beacon.addLocations([event]);
       }
     };
-
     events.forEach(event => {
-      const relatedToEventId = event.getRelation()?.event_id; // not related to a beacon we know about
-      // discard
-
-      if (!beaconByEventIdDict[relatedToEventId]) {
-        return;
-      }
-
+      const relatedToEventId = event.getRelation()?.event_id;
+      // not related to a beacon we know about; discard
+      if (!relatedToEventId || !beaconByEventIdDict[relatedToEventId]) return;
       matrixClient.decryptEventIfNeeded(event);
-
       if (event.isBeingDecrypted() || event.isDecryptionFailure()) {
         // add an event listener for once the event is decrypted.
         event.once(_event2.MatrixEventEvent.Decrypted, async () => {
@@ -488,66 +403,56 @@
       }
     });
   }
+
   /**
    * Looks up a member by the given userId, and if it doesn't exist,
    * create it and emit the `RoomState.newMember` event.
    * This method makes sure the member is added to the members dictionary
    * before emitting, as this is done from setStateEvents and setOutOfBandMember.
-   * @param {string} userId the id of the user to look up
-   * @param {MatrixEvent} event the membership event for the (new) member. Used to emit.
-   * @fires module:client~MatrixClient#event:"RoomState.newMember"
-   * @returns {RoomMember} the member, existing or newly created.
+   * @param userId - the id of the user to look up
+   * @param event - the membership event for the (new) member. Used to emit.
+   * @returns the member, existing or newly created.
+   *
+   * @remarks
+   * Fires {@link RoomStateEvent.NewMember}
    */
-
-
   getOrCreateMember(userId, event) {
     let member = this.members[userId];
-
     if (!member) {
-      member = new _roomMember.RoomMember(this.roomId, userId); // add member to members before emitting any events,
+      member = new _roomMember.RoomMember(this.roomId, userId);
+      // add member to members before emitting any events,
       // as event handlers often lookup the member
-
       this.members[userId] = member;
       this.emit(RoomStateEvent.NewMember, event, this, member);
     }
-
     return member;
   }
-
   setStateEvent(event) {
     if (!this.events.has(event.getType())) {
       this.events.set(event.getType(), new Map());
     }
-
     this.events.get(event.getType()).set(event.getStateKey(), event);
   }
+
   /**
    * @experimental
    */
-
-
   setBeacon(event) {
     const beaconIdentifier = (0, _beacon.getBeaconInfoIdentifier)(event);
-
     if (this.beacons.has(beaconIdentifier)) {
       const beacon = this.beacons.get(beaconIdentifier);
-
       if (event.isRedacted()) {
-        if (beacon.beaconInfoId === event.getRedactionEvent()?.['redacts']) {
+        if (beacon.beaconInfoId === event.getRedactionEvent()?.redacts) {
           beacon.destroy();
           this.beacons.delete(beaconIdentifier);
         }
-
         return;
       }
-
       return beacon.update(event);
     }
-
     if (event.isRedacted()) {
       return;
     }
-
     const beacon = new _beacon.Beacon(event);
     this.reEmitter.reEmit(beacon, [_beacon.BeaconEvent.New, _beacon.BeaconEvent.Update, _beacon.BeaconEvent.Destroy, _beacon.BeaconEvent.LivenessChange]);
     this.emit(_beacon.BeaconEvent.New, event, beacon);
@@ -555,427 +460,430 @@
     beacon.on(_beacon.BeaconEvent.Destroy, this.onBeaconLivenessChange.bind(this));
     this.beacons.set(beacon.identifier, beacon);
   }
+
   /**
    * @experimental
    * Check liveness of room beacons
    * emit RoomStateEvent.BeaconLiveness event
    */
-
-
   onBeaconLivenessChange() {
     this._liveBeaconIds = Array.from(this.beacons.values()).filter(beacon => beacon.isLive).map(beacon => beacon.identifier);
     this.emit(RoomStateEvent.BeaconLiveness, this, this.hasLiveBeacons);
   }
-
   getStateEventMatching(event) {
     return this.events.get(event.getType())?.get(event.getStateKey()) ?? null;
   }
-
   updateMember(member) {
     // this member may have a power level already, so set it.
     const pwrLvlEvent = this.getStateEvents(_event.EventType.RoomPowerLevels, "");
-
     if (pwrLvlEvent) {
       member.setPowerLevelEvent(pwrLvlEvent);
-    } // blow away the sentinel which is now outdated
-
+    }
 
+    // blow away the sentinel which is now outdated
     delete this.sentinels[member.userId];
     this.members[member.userId] = member;
     this.joinedMemberCount = null;
     this.invitedMemberCount = null;
   }
+
   /**
    * Get the out-of-band members loading state, whether loading is needed or not.
    * Note that loading might be in progress and hence isn't needed.
-   * @return {boolean} whether or not the members of this room need to be loaded
+   * @returns whether or not the members of this room need to be loaded
    */
-
-
   needsOutOfBandMembers() {
     return this.oobMemberFlags.status === OobStatus.NotStarted;
   }
+
+  /**
+   * Check if loading of out-of-band-members has completed
+   *
+   * @returns true if the full membership list of this room has been loaded. False if it is not started or is in
+   *    progress.
+   */
+  outOfBandMembersReady() {
+    return this.oobMemberFlags.status === OobStatus.Finished;
+  }
+
   /**
    * Mark this room state as waiting for out-of-band members,
    * ensuring it doesn't ask for them to be requested again
    * through needsOutOfBandMembers
    */
-
-
   markOutOfBandMembersStarted() {
     if (this.oobMemberFlags.status !== OobStatus.NotStarted) {
       return;
     }
-
     this.oobMemberFlags.status = OobStatus.InProgress;
   }
+
   /**
    * Mark this room state as having failed to fetch out-of-band members
    */
-
-
   markOutOfBandMembersFailed() {
     if (this.oobMemberFlags.status !== OobStatus.InProgress) {
       return;
     }
-
     this.oobMemberFlags.status = OobStatus.NotStarted;
   }
+
   /**
    * Clears the loaded out-of-band members
    */
-
-
   clearOutOfBandMembers() {
     let count = 0;
     Object.keys(this.members).forEach(userId => {
       const member = this.members[userId];
-
       if (member.isOutOfBand()) {
         ++count;
         delete this.members[userId];
       }
     });
-
     _logger.logger.log(`LL: RoomState removed ${count} members...`);
-
     this.oobMemberFlags.status = OobStatus.NotStarted;
   }
+
   /**
    * Sets the loaded out-of-band members.
-   * @param {MatrixEvent[]} stateEvents array of membership state events
+   * @param stateEvents - array of membership state events
    */
-
-
   setOutOfBandMembers(stateEvents) {
     _logger.logger.log(`LL: RoomState about to set ${stateEvents.length} OOB members ...`);
-
     if (this.oobMemberFlags.status !== OobStatus.InProgress) {
       return;
     }
-
     _logger.logger.log(`LL: RoomState put in finished state ...`);
-
     this.oobMemberFlags.status = OobStatus.Finished;
     stateEvents.forEach(e => this.setOutOfBandMember(e));
     this.emit(RoomStateEvent.Update, this);
   }
+
   /**
    * Sets a single out of band member, used by both setOutOfBandMembers and clone
-   * @param {MatrixEvent} stateEvent membership state event
+   * @param stateEvent - membership state event
    */
-
-
   setOutOfBandMember(stateEvent) {
     if (stateEvent.getType() !== _event.EventType.RoomMember) {
       return;
     }
-
     const userId = stateEvent.getStateKey();
-    const existingMember = this.getMember(userId); // never replace members received as part of the sync
-
+    const existingMember = this.getMember(userId);
+    // never replace members received as part of the sync
     if (existingMember && !existingMember.isOutOfBand()) {
       return;
     }
-
     const member = this.getOrCreateMember(userId, stateEvent);
-    member.setMembershipEvent(stateEvent, this); // needed to know which members need to be stored seperately
+    member.setMembershipEvent(stateEvent, this);
+    // needed to know which members need to be stored seperately
     // as they are not part of the sync accumulator
     // this is cleared by setMembershipEvent so when it's updated through /sync
-
     member.markOutOfBand();
     this.updateDisplayNameCache(member.userId, member.name);
     this.setStateEvent(stateEvent);
     this.updateMember(member);
     this.emit(RoomStateEvent.Members, stateEvent, this, member);
   }
+
   /**
    * Set the current typing event for this room.
-   * @param {MatrixEvent} event The typing event
+   * @param event - The typing event
    */
-
-
   setTypingEvent(event) {
     Object.values(this.members).forEach(function (member) {
       member.setTypingEvent(event);
     });
   }
+
   /**
    * Get the m.room.member event which has the given third party invite token.
    *
-   * @param {string} token The token
-   * @return {?MatrixEvent} The m.room.member event or null
+   * @param token - The token
+   * @returns The m.room.member event or null
    */
-
-
   getInviteForThreePidToken(token) {
     return this.tokenToInvite[token] || null;
   }
+
   /**
    * Update the last modified time to the current time.
    */
-
-
   updateModifiedTime() {
     this.modified = Date.now();
   }
+
   /**
    * Get the timestamp when this room state was last updated. This timestamp is
    * updated when this object has received new state events.
-   * @return {number} The timestamp
+   * @returns The timestamp
    */
-
-
   getLastModifiedTime() {
     return this.modified;
   }
+
   /**
    * Get user IDs with the specified or similar display names.
-   * @param {string} displayName The display name to get user IDs from.
-   * @return {string[]} An array of user IDs or an empty array.
+   * @param displayName - The display name to get user IDs from.
+   * @returns An array of user IDs or an empty array.
    */
-
-
   getUserIdsWithDisplayName(displayName) {
     return this.displayNameToUserIds.get(utils.removeHiddenChars(displayName)) ?? [];
   }
+
   /**
    * Returns true if userId is in room, event is not redacted and either sender of
    * mxEvent or has power level sufficient to redact events other than their own.
-   * @param {MatrixEvent} mxEvent The event to test permission for
-   * @param {string} userId The user ID of the user to test permission for
-   * @return {boolean} true if the given used ID can redact given event
+   * @param mxEvent - The event to test permission for
+   * @param userId - The user ID of the user to test permission for
+   * @returns true if the given used ID can redact given event
    */
-
-
   maySendRedactionForEvent(mxEvent, userId) {
     const member = this.getMember(userId);
-    if (!member || member.membership === 'leave') return false;
-    if (mxEvent.status || mxEvent.isRedacted()) return false; // The user may have been the sender, but they can't redact their own message
-    // if redactions are blocked.
+    if (!member || member.membership === "leave") return false;
+    if (mxEvent.status || mxEvent.isRedacted()) return false;
 
+    // The user may have been the sender, but they can't redact their own message
+    // if redactions are blocked.
     const canRedact = this.maySendEvent(_event.EventType.RoomRedaction, userId);
     if (mxEvent.getSender() === userId) return canRedact;
-    return this.hasSufficientPowerLevelFor('redact', member.powerLevel);
+    return this.hasSufficientPowerLevelFor("redact", member.powerLevel);
   }
+
   /**
    * Returns true if the given power level is sufficient for action
-   * @param {string} action The type of power level to check
-   * @param {number} powerLevel The power level of the member
-   * @return {boolean} true if the given power level is sufficient
+   * @param action - The type of power level to check
+   * @param powerLevel - The power level of the member
+   * @returns true if the given power level is sufficient
    */
-
-
   hasSufficientPowerLevelFor(action, powerLevel) {
     const powerLevelsEvent = this.getStateEvents(_event.EventType.RoomPowerLevels, "");
     let powerLevels = {};
-
     if (powerLevelsEvent) {
       powerLevels = powerLevelsEvent.getContent();
     }
-
     let requiredLevel = 50;
-
     if (utils.isNumber(powerLevels[action])) {
       requiredLevel = powerLevels[action];
     }
-
     return powerLevel >= requiredLevel;
   }
+
   /**
    * Short-form for maySendEvent('m.room.message', userId)
-   * @param {string} userId The user ID of the user to test permission for
-   * @return {boolean} true if the given user ID should be permitted to send
+   * @param userId - The user ID of the user to test permission for
+   * @returns true if the given user ID should be permitted to send
    *                   message events into the given room.
    */
-
-
   maySendMessage(userId) {
     return this.maySendEventOfType(_event.EventType.RoomMessage, userId, false);
   }
+
   /**
    * Returns true if the given user ID has permission to send a normal
    * event of type `eventType` into this room.
-   * @param {string} eventType The type of event to test
-   * @param {string} userId The user ID of the user to test permission for
-   * @return {boolean} true if the given user ID should be permitted to send
+   * @param eventType - The type of event to test
+   * @param userId - The user ID of the user to test permission for
+   * @returns true if the given user ID should be permitted to send
    *                        the given type of event into this room,
    *                        according to the room's state.
    */
-
-
   maySendEvent(eventType, userId) {
     return this.maySendEventOfType(eventType, userId, false);
   }
-  /**
-    * Returns true if the given MatrixClient has permission to send a state
-    * event of type `stateEventType` into this room.
-    * @param {string} stateEventType The type of state events to test
-    * @param {MatrixClient} cli The client to test permission for
-    * @return {boolean} true if the given client should be permitted to send
-    *                        the given type of state event into this room,
-    *                        according to the room's state.
-    */
-
 
+  /**
+   * Returns true if the given MatrixClient has permission to send a state
+   * event of type `stateEventType` into this room.
+   * @param stateEventType - The type of state events to test
+   * @param cli - The client to test permission for
+   * @returns true if the given client should be permitted to send
+   *                        the given type of state event into this room,
+   *                        according to the room's state.
+   */
   mayClientSendStateEvent(stateEventType, cli) {
-    if (cli.isGuest()) {
+    if (cli.isGuest() || !cli.credentials.userId) {
       return false;
     }
-
     return this.maySendStateEvent(stateEventType, cli.credentials.userId);
   }
+
   /**
    * Returns true if the given user ID has permission to send a state
    * event of type `stateEventType` into this room.
-   * @param {string} stateEventType The type of state events to test
-   * @param {string} userId The user ID of the user to test permission for
-   * @return {boolean} true if the given user ID should be permitted to send
+   * @param stateEventType - The type of state events to test
+   * @param userId - The user ID of the user to test permission for
+   * @returns true if the given user ID should be permitted to send
    *                        the given type of state event into this room,
    *                        according to the room's state.
    */
-
-
   maySendStateEvent(stateEventType, userId) {
     return this.maySendEventOfType(stateEventType, userId, true);
   }
+
   /**
    * Returns true if the given user ID has permission to send a normal or state
    * event of type `eventType` into this room.
-   * @param {string} eventType The type of event to test
-   * @param {string} userId The user ID of the user to test permission for
-   * @param {boolean} state If true, tests if the user may send a state
+   * @param eventType - The type of event to test
+   * @param userId - The user ID of the user to test permission for
+   * @param state - If true, tests if the user may send a state
    event of this type. Otherwise tests whether
    they may send a regular event.
-   * @return {boolean} true if the given user ID should be permitted to send
+   * @returns true if the given user ID should be permitted to send
    *                        the given type of event into this room,
    *                        according to the room's state.
    */
-
-
   maySendEventOfType(eventType, userId, state) {
-    const powerLevelsEvent = this.getStateEvents(_event.EventType.RoomPowerLevels, '');
+    const powerLevelsEvent = this.getStateEvents(_event.EventType.RoomPowerLevels, "");
     let powerLevels;
     let eventsLevels = {};
     let stateDefault = 0;
     let eventsDefault = 0;
     let powerLevel = 0;
-
     if (powerLevelsEvent) {
       powerLevels = powerLevelsEvent.getContent();
       eventsLevels = powerLevels.events || {};
-
       if (Number.isSafeInteger(powerLevels.state_default)) {
         stateDefault = powerLevels.state_default;
       } else {
         stateDefault = 50;
       }
-
       const userPowerLevel = powerLevels.users && powerLevels.users[userId];
-
       if (Number.isSafeInteger(userPowerLevel)) {
         powerLevel = userPowerLevel;
       } else if (Number.isSafeInteger(powerLevels.users_default)) {
         powerLevel = powerLevels.users_default;
       }
-
       if (Number.isSafeInteger(powerLevels.events_default)) {
         eventsDefault = powerLevels.events_default;
       }
     }
-
     let requiredLevel = state ? stateDefault : eventsDefault;
-
     if (Number.isSafeInteger(eventsLevels[eventType])) {
       requiredLevel = eventsLevels[eventType];
     }
-
     return powerLevel >= requiredLevel;
   }
+
   /**
    * Returns true if the given user ID has permission to trigger notification
    * of type `notifLevelKey`
-   * @param {string} notifLevelKey The level of notification to test (eg. 'room')
-   * @param {string} userId The user ID of the user to test permission for
-   * @return {boolean} true if the given user ID has permission to trigger a
+   * @param notifLevelKey - The level of notification to test (eg. 'room')
+   * @param userId - The user ID of the user to test permission for
+   * @returns true if the given user ID has permission to trigger a
    *                        notification of this type.
    */
-
-
   mayTriggerNotifOfType(notifLevelKey, userId) {
     const member = this.getMember(userId);
-
     if (!member) {
       return false;
     }
-
-    const powerLevelsEvent = this.getStateEvents(_event.EventType.RoomPowerLevels, '');
+    const powerLevelsEvent = this.getStateEvents(_event.EventType.RoomPowerLevels, "");
     let notifLevel = 50;
-
     if (powerLevelsEvent && powerLevelsEvent.getContent() && powerLevelsEvent.getContent().notifications && utils.isNumber(powerLevelsEvent.getContent().notifications[notifLevelKey])) {
       notifLevel = powerLevelsEvent.getContent().notifications[notifLevelKey];
     }
-
     return member.powerLevel >= notifLevel;
   }
+
   /**
    * Returns the join rule based on the m.room.join_rule state event, defaulting to `invite`.
-   * @returns {string} the join_rule applied to this room
+   * @returns the join_rule applied to this room
    */
-
-
   getJoinRule() {
     const joinRuleEvent = this.getStateEvents(_event.EventType.RoomJoinRules, "");
     const joinRuleContent = joinRuleEvent?.getContent() ?? {};
     return joinRuleContent["join_rule"] || _partials.JoinRule.Invite;
   }
+
   /**
    * Returns the history visibility based on the m.room.history_visibility state event, defaulting to `shared`.
-   * @returns {HistoryVisibility} the history_visibility applied to this room
+   * @returns the history_visibility applied to this room
    */
-
-
   getHistoryVisibility() {
     const historyVisibilityEvent = this.getStateEvents(_event.EventType.RoomHistoryVisibility, "");
     const historyVisibilityContent = historyVisibilityEvent?.getContent() ?? {};
     return historyVisibilityContent["history_visibility"] || _partials.HistoryVisibility.Shared;
   }
+
   /**
    * Returns the guest access based on the m.room.guest_access state event, defaulting to `shared`.
-   * @returns {GuestAccess} the guest_access applied to this room
+   * @returns the guest_access applied to this room
    */
-
-
   getGuestAccess() {
     const guestAccessEvent = this.getStateEvents(_event.EventType.RoomGuestAccess, "");
     const guestAccessContent = guestAccessEvent?.getContent() ?? {};
     return guestAccessContent["guest_access"] || _partials.GuestAccess.Forbidden;
   }
 
+  /**
+   * Find the predecessor room based on this room state.
+   *
+   * @param msc3946ProcessDynamicPredecessor - if true, look for an
+   * m.room.predecessor state event and use it if found (MSC3946).
+   * @returns null if this room has no predecessor. Otherwise, returns
+   * the roomId and last eventId of the predecessor room.
+   * If msc3946ProcessDynamicPredecessor is true, use m.predecessor events
+   * as well as m.room.create events to find predecessors.
+   * Note: if an m.predecessor event is used, eventId may be undefined
+   * since last_known_event_id is optional.
+   */
+  findPredecessor(msc3946ProcessDynamicPredecessor = false) {
+    // Note: the tests for this function are against Room.findPredecessor,
+    // which just calls through to here.
+
+    if (msc3946ProcessDynamicPredecessor) {
+      const predecessorEvent = this.getStateEvents(_event.EventType.RoomPredecessor, "");
+      if (predecessorEvent) {
+        const content = predecessorEvent.getContent();
+        const roomId = content.predecessor_room_id;
+        let eventId = content.last_known_event_id;
+        if (typeof eventId !== "string") {
+          eventId = undefined;
+        }
+        if (typeof roomId === "string") {
+          return {
+            roomId,
+            eventId
+          };
+        }
+      }
+    }
+    const createEvent = this.getStateEvents(_event.EventType.RoomCreate, "");
+    if (createEvent) {
+      const predecessor = createEvent.getContent()["predecessor"];
+      if (predecessor) {
+        const roomId = predecessor["room_id"];
+        if (typeof roomId === "string") {
+          let eventId = predecessor["event_id"];
+          if (typeof eventId !== "string" || eventId === "") {
+            eventId = undefined;
+          }
+          return {
+            roomId,
+            eventId
+          };
+        }
+      }
+    }
+    return null;
+  }
   updateThirdPartyTokenCache(memberEvent) {
     if (!memberEvent.getContent().third_party_invite) {
       return;
     }
-
     const token = (memberEvent.getContent().third_party_invite.signed || {}).token;
-
     if (!token) {
       return;
     }
-
     const threePidInvite = this.getStateEvents(_event.EventType.RoomThirdPartyInvite, token);
-
     if (!threePidInvite) {
       return;
     }
-
     this.tokenToInvite[token] = memberEvent;
   }
-
   updateDisplayNameCache(userId, displayName) {
     const oldName = this.userIdsToDisplayNames[userId];
     delete this.userIdsToDisplayNames[userId];
-
     if (oldName) {
       // Remove the old name from the cache.
       // We clobber the user_id > name lookup but the name -> [user_id] lookup
@@ -983,68 +891,20 @@
       // the lot.
       const strippedOldName = utils.removeHiddenChars(oldName);
       const existingUserIds = this.displayNameToUserIds.get(strippedOldName);
-
       if (existingUserIds) {
         // remove this user ID from this array
         const filteredUserIDs = existingUserIds.filter(id => id !== userId);
         this.displayNameToUserIds.set(strippedOldName, filteredUserIDs);
       }
     }
-
     this.userIdsToDisplayNames[userId] = displayName;
-    const strippedDisplayname = displayName && utils.removeHiddenChars(displayName); // an empty stripped displayname (undefined/'') will be set to MXID in room-member.js
-
+    const strippedDisplayname = displayName && utils.removeHiddenChars(displayName);
+    // an empty stripped displayname (undefined/'') will be set to MXID in room-member.js
     if (strippedDisplayname) {
       const arr = this.displayNameToUserIds.get(strippedDisplayname) ?? [];
       arr.push(userId);
       this.displayNameToUserIds.set(strippedDisplayname, arr);
     }
   }
-
 }
-/**
- * Fires whenever the event dictionary in room state is updated.
- * @event module:client~MatrixClient#"RoomState.events"
- * @param {MatrixEvent} event The matrix event which caused this event to fire.
- * @param {RoomState} state The room state whose RoomState.events dictionary
- * was updated.
- * @param {MatrixEvent} prevEvent The event being replaced by the new state, if
- * known. Note that this can differ from `getPrevContent()` on the new state event
- * as this is the store's view of the last state, not the previous state provided
- * by the server.
- * @example
- * matrixClient.on("RoomState.events", function(event, state, prevEvent){
- *   var newStateEvent = event;
- * });
- */
-
-/**
- * Fires whenever a member in the members dictionary is updated in any way.
- * @event module:client~MatrixClient#"RoomState.members"
- * @param {MatrixEvent} event The matrix event which caused this event to fire.
- * @param {RoomState} state The room state whose RoomState.members dictionary
- * was updated.
- * @param {RoomMember} member The room member that was updated.
- * @example
- * matrixClient.on("RoomState.members", function(event, state, member){
- *   var newMembershipState = member.membership;
- * });
- */
-
-/**
- * Fires whenever a member is added to the members dictionary. The RoomMember
- * will not be fully populated yet (e.g. no membership state) but will already
- * be available in the members dictionary.
- * @event module:client~MatrixClient#"RoomState.newMember"
- * @param {MatrixEvent} event The matrix event which caused this event to fire.
- * @param {RoomState} state The room state whose RoomState.members dictionary
- * was updated with a new entry.
- * @param {RoomMember} member The room member that was added.
- * @example
- * matrixClient.on("RoomState.newMember", function(event, state, member){
- *   // add event listeners on 'member'
- * });
- */
-
-
 exports.RoomState = RoomState;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/room-summary.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/room-summary.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/room-summary.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/room-summary.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,7 +4,6 @@
   value: true
 });
 exports.RoomSummary = void 0;
-
 /*
 Copyright 2015 - 2021 The Matrix.org Foundation C.I.C.
 
@@ -22,27 +21,14 @@
 */
 
 /**
- * @module models/room-summary
- */
-
-/**
  * Construct a new Room Summary. A summary can be used for display on a recent
  * list, without having to load the entire room list into memory.
- * @constructor
- * @param {string} roomId Required. The ID of this room.
- * @param {Object} info Optional. The summary info. Additional keys are supported.
- * @param {string} info.title The title of the room (e.g. <code>m.room.name</code>)
- * @param {string} info.desc The description of the room (e.g.
- * <code>m.room.topic</code>)
- * @param {Number} info.numMembers The number of joined users.
- * @param {string[]} info.aliases The list of aliases for this room.
- * @param {Number} info.timestamp The timestamp for this room.
+ * @param roomId - Required. The ID of this room.
+ * @param info - Optional. The summary info. Additional keys are supported.
  */
 class RoomSummary {
   constructor(roomId, info) {
     this.roomId = roomId;
   }
-
 }
-
 exports.RoomSummary = RoomSummary;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/search-result.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/search-result.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/search-result.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/search-result.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,9 +4,7 @@
   value: true
 });
 exports.SearchResult = void 0;
-
 var _eventContext = require("./event-context");
-
 /*
 Copyright 2015 - 2021 The Matrix.org Foundation C.I.C.
 
@@ -23,23 +21,18 @@
 limitations under the License.
 */
 
-/**
- * @module models/search-result
- */
 class SearchResult {
   /**
    * Create a SearchResponse from the response to /search
-   * @static
-   * @param {Object} jsonObj
-   * @param {function} eventMapper
-   * @return {SearchResult}
    */
+
   static fromJson(jsonObj, eventMapper) {
     const jsonContext = jsonObj.context || {};
     let eventsBefore = (jsonContext.events_before || []).map(eventMapper);
     let eventsAfter = (jsonContext.events_after || []).map(eventMapper);
-    const context = new _eventContext.EventContext(eventMapper(jsonObj.result)); // Filter out any contextual events which do not correspond to the same timeline (thread or room)
+    const context = new _eventContext.EventContext(eventMapper(jsonObj.result));
 
+    // Filter out any contextual events which do not correspond to the same timeline (thread or room)
     const threadRootId = context.ourEvent.threadRootId;
     eventsBefore = eventsBefore.filter(e => e.threadRootId === threadRootId);
     eventsAfter = eventsAfter.filter(e => e.threadRootId === threadRootId);
@@ -49,22 +42,17 @@
     context.setPaginateToken(jsonContext.end, false);
     return new SearchResult(jsonObj.rank, context);
   }
+
   /**
    * Construct a new SearchResult
    *
-   * @param {number} rank   where this SearchResult ranks in the results
-   * @param {event-context.EventContext} context  the matching event and its
+   * @param rank -   where this SearchResult ranks in the results
+   * @param context -  the matching event and its
    *    context
-   *
-   * @constructor
    */
-
-
   constructor(rank, context) {
     this.rank = rank;
     this.context = context;
   }
-
 }
-
 exports.SearchResult = SearchResult;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/thread.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/thread.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/thread.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/thread.js	2023-04-11 06:11:52.000000000 +0000
@@ -3,173 +3,172 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.ThreadFilterType = exports.ThreadEvent = exports.Thread = exports.THREAD_RELATION_TYPE = exports.FILTER_RELATED_BY_SENDERS = exports.FILTER_RELATED_BY_REL_TYPES = void 0;
-
-var _matrix = require("../matrix");
-
+exports.ThreadFilterType = exports.ThreadEvent = exports.Thread = exports.THREAD_RELATION_TYPE = exports.FeatureSupport = exports.FILTER_RELATED_BY_SENDERS = exports.FILTER_RELATED_BY_REL_TYPES = void 0;
+exports.determineFeatureSupport = determineFeatureSupport;
+exports.threadFilterTypeToFilter = threadFilterTypeToFilter;
+var _client = require("../client");
 var _ReEmitter = require("../ReEmitter");
-
-var _event = require("./event");
-
+var _event = require("../@types/event");
+var _event2 = require("./event");
 var _eventTimeline = require("./event-timeline");
-
 var _eventTimelineSet = require("./event-timeline-set");
-
-var _typedEventEmitter = require("./typed-event-emitter");
-
+var _room = require("./room");
 var _NamespacedValue = require("../NamespacedValue");
-
 var _logger = require("../logger");
-
+var _readReceipt = require("./read-receipt");
+var _read_receipts = require("../@types/read_receipts");
 function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
-
 function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 let ThreadEvent;
 exports.ThreadEvent = ThreadEvent;
-
 (function (ThreadEvent) {
   ThreadEvent["New"] = "Thread.new";
   ThreadEvent["Update"] = "Thread.update";
   ThreadEvent["NewReply"] = "Thread.newReply";
   ThreadEvent["ViewThread"] = "Thread.viewThread";
+  ThreadEvent["Delete"] = "Thread.delete";
 })(ThreadEvent || (exports.ThreadEvent = ThreadEvent = {}));
-
-/**
- * @experimental
- */
-class Thread extends _typedEventEmitter.TypedEventEmitter {
+let FeatureSupport;
+exports.FeatureSupport = FeatureSupport;
+(function (FeatureSupport) {
+  FeatureSupport[FeatureSupport["None"] = 0] = "None";
+  FeatureSupport[FeatureSupport["Experimental"] = 1] = "Experimental";
+  FeatureSupport[FeatureSupport["Stable"] = 2] = "Stable";
+})(FeatureSupport || (exports.FeatureSupport = FeatureSupport = {}));
+function determineFeatureSupport(stable, unstable) {
+  if (stable) {
+    return FeatureSupport.Stable;
+  } else if (unstable) {
+    return FeatureSupport.Experimental;
+  } else {
+    return FeatureSupport.None;
+  }
+}
+class Thread extends _readReceipt.ReadReceipt {
   /**
    * A reference to all the events ID at the bottom of the threads
    */
+
+  /**
+   * An array of events to add to the timeline once the thread has been initialised
+   * with server suppport.
+   */
+
   constructor(id, rootEvent, opts) {
     super();
     this.id = id;
     this.rootEvent = rootEvent;
-
     _defineProperty(this, "timelineSet", void 0);
-
+    _defineProperty(this, "timeline", []);
     _defineProperty(this, "_currentUserParticipated", false);
-
     _defineProperty(this, "reEmitter", void 0);
-
     _defineProperty(this, "lastEvent", void 0);
-
     _defineProperty(this, "replyCount", 0);
-
+    _defineProperty(this, "lastPendingEvent", void 0);
+    _defineProperty(this, "pendingReplyCount", 0);
     _defineProperty(this, "room", void 0);
-
     _defineProperty(this, "client", void 0);
-
+    _defineProperty(this, "pendingEventOrdering", void 0);
     _defineProperty(this, "initialEventsFetched", !Thread.hasServerSideSupport);
-
+    _defineProperty(this, "replayEvents", []);
     _defineProperty(this, "onBeforeRedaction", (event, redaction) => {
-      if (event?.isRelation(THREAD_RELATION_TYPE.name) && this.room.eventShouldLiveIn(event).threadId === this.id && event.getId() !== this.id && // the root event isn't counted in the length so ignore this redaction
+      if (event?.isRelation(THREAD_RELATION_TYPE.name) && this.room.eventShouldLiveIn(event).threadId === this.id && event.getId() !== this.id &&
+      // the root event isn't counted in the length so ignore this redaction
       !redaction.status // only respect it when it succeeds
       ) {
         this.replyCount--;
+        this.updatePendingReplyCount();
         this.emit(ThreadEvent.Update, this);
       }
     });
-
-    _defineProperty(this, "onRedaction", event => {
+    _defineProperty(this, "onRedaction", async event => {
       if (event.threadRootId !== this.id) return; // ignore redactions for other timelines
-
-      const events = [...this.timelineSet.getLiveTimeline().getEvents()].reverse();
-      this.lastEvent = events.find(e => !e.isRedacted() && e.isRelation(THREAD_RELATION_TYPE.name)) ?? this.rootEvent;
-      this.emit(ThreadEvent.Update, this);
-    });
-
-    _defineProperty(this, "onEcho", event => {
-      if (event.threadRootId !== this.id) return; // ignore echoes for other timelines
-
-      if (this.lastEvent === event) return;
-      if (!event.isRelation(THREAD_RELATION_TYPE.name)) return; // There is a risk that the `localTimestamp` approximation will not be accurate
-      // when threads are used over federation. That could result in the reply
-      // count value drifting away from the value returned by the server
-
-      const isThreadReply = event.isRelation(THREAD_RELATION_TYPE.name);
-
-      if (!this.lastEvent || this.lastEvent.isRedacted() || isThreadReply && event.getId() !== this.lastEvent.getId() && event.localTimestamp > this.lastEvent.localTimestamp) {
-        this.lastEvent = event;
-
-        if (this.lastEvent.getId() !== this.id) {
-          // This counting only works when server side support is enabled as we started the counting
-          // from the value returned within the bundled relationship
-          if (Thread.hasServerSideSupport) {
-            this.replyCount++;
-          }
-
-          this.emit(ThreadEvent.NewReply, this, event);
+      if (this.replyCount <= 0) {
+        for (const threadEvent of this.timeline) {
+          this.clearEventMetadata(threadEvent);
         }
+        this.lastEvent = this.rootEvent;
+        this._currentUserParticipated = false;
+        this.emit(ThreadEvent.Delete, this);
+      } else {
+        await this.updateThreadMetadata();
       }
-
-      this.emit(ThreadEvent.Update, this);
     });
-
+    _defineProperty(this, "onTimelineEvent", (event, room, toStartOfTimeline) => {
+      // Add a synthesized receipt when paginating forward in the timeline
+      if (!toStartOfTimeline) {
+        room.addLocalEchoReceipt(event.getSender(), event, _read_receipts.ReceiptType.Read);
+      }
+      this.onEcho(event, toStartOfTimeline ?? false);
+    });
+    _defineProperty(this, "onLocalEcho", event => {
+      this.onEcho(event, false);
+    });
+    _defineProperty(this, "onEcho", async (event, toStartOfTimeline) => {
+      if (event.threadRootId !== this.id) return; // ignore echoes for other timelines
+      if (this.lastEvent === event) return; // ignore duplicate events
+      await this.updateThreadMetadata();
+      if (!event.isRelation(THREAD_RELATION_TYPE.name)) return; // don't send a new reply event for reactions or edits
+      if (toStartOfTimeline) return; // ignore messages added to the start of the timeline
+      this.emit(ThreadEvent.NewReply, this, event);
+    });
     if (!opts?.room) {
       // Logging/debugging for https://github.com/vector-im/element-web/issues/22141
       // Hope is that we end up with a more obvious stack trace.
       throw new Error("element-web#22141: A thread requires a room in order to function");
     }
-
     this.room = opts.room;
     this.client = opts.client;
+    this.pendingEventOrdering = opts.pendingEventOrdering ?? _client.PendingEventOrdering.Chronological;
     this.timelineSet = new _eventTimelineSet.EventTimelineSet(this.room, {
       timelineSupport: true,
       pendingEvents: true
     }, this.client, this);
     this.reEmitter = new _ReEmitter.TypedReEmitter(this);
-    this.reEmitter.reEmit(this.timelineSet, [_matrix.RoomEvent.Timeline, _matrix.RoomEvent.TimelineReset]);
-    this.room.on(_matrix.MatrixEventEvent.BeforeRedaction, this.onBeforeRedaction);
-    this.room.on(_matrix.RoomEvent.Redaction, this.onRedaction);
-    this.room.on(_matrix.RoomEvent.LocalEchoUpdated, this.onEcho);
-    this.timelineSet.on(_matrix.RoomEvent.Timeline, this.onEcho);
-
-    if (opts.initialEvents) {
-      this.addEvents(opts.initialEvents, false);
-    } // even if this thread is thought to be originating from this client, we initialise it as we may be in a
-    // gappy sync and a thread around this event may already exist.
+    this.reEmitter.reEmit(this.timelineSet, [_room.RoomEvent.Timeline, _room.RoomEvent.TimelineReset]);
+    this.room.on(_event2.MatrixEventEvent.BeforeRedaction, this.onBeforeRedaction);
+    this.room.on(_room.RoomEvent.Redaction, this.onRedaction);
+    this.room.on(_room.RoomEvent.LocalEchoUpdated, this.onLocalEcho);
+    this.timelineSet.on(_room.RoomEvent.Timeline, this.onTimelineEvent);
+    this.processReceipts(opts.receipts);
 
-
-    this.initialiseThread();
-    this.rootEvent?.setThread(this);
+    // even if this thread is thought to be originating from this client, we initialise it as we may be in a
+    // gappy sync and a thread around this event may already exist.
+    this.updateThreadMetadata();
+    this.setEventMetadata(this.rootEvent);
   }
-
   async fetchRootEvent() {
-    this.rootEvent = this.room.findEventById(this.id); // If the rootEvent does not exist in the local stores, then fetch it from the server.
-
+    this.rootEvent = this.room.findEventById(this.id);
+    // If the rootEvent does not exist in the local stores, then fetch it from the server.
     try {
       const eventData = await this.client.fetchRoomEvent(this.roomId, this.id);
       const mapper = this.client.getEventMapper();
       this.rootEvent = mapper(eventData); // will merge with existing event object if such is known
     } catch (e) {
       _logger.logger.error("Failed to fetch thread root to construct thread with", e);
-    } // The root event might be not be visible to the person requesting it.
-    // If it wasn't fetched successfully the thread will work in "limited" mode and won't
-    // benefit from all the APIs a homeserver can provide to enhance the thread experience
-
-
-    this.rootEvent?.setThread(this);
-    this.emit(ThreadEvent.Update, this);
+    }
+    await this.processEvent(this.rootEvent);
   }
-
-  static setServerSideSupport(hasServerSideSupport, useStable) {
-    Thread.hasServerSideSupport = hasServerSideSupport;
-
-    if (!useStable) {
+  static setServerSideSupport(status) {
+    Thread.hasServerSideSupport = status;
+    if (status !== FeatureSupport.Stable) {
       FILTER_RELATED_BY_SENDERS.setPreferUnstable(true);
       FILTER_RELATED_BY_REL_TYPES.setPreferUnstable(true);
       THREAD_RELATION_TYPE.setPreferUnstable(true);
     }
   }
-
+  static setServerSideListSupport(status) {
+    Thread.hasServerSideListSupport = status;
+  }
+  static setServerSideFwdPaginationSupport(status) {
+    Thread.hasServerSideFwdPaginationSupport = status;
+  }
   get roomState() {
     return this.room.getLiveTimeline().getState(_eventTimeline.EventTimeline.FORWARDS);
   }
-
   addEventToTimeline(event, toStartOfTimeline) {
     if (!this.findEventById(event.getId())) {
       this.timelineSet.addEventToTimeline(event, this.liveTimeline, {
@@ -177,32 +176,29 @@
         fromCache: false,
         roomState: this.roomState
       });
+      this.timeline = this.events;
     }
   }
-
   addEvents(events, toStartOfTimeline) {
     events.forEach(ev => this.addEvent(ev, toStartOfTimeline, false));
-    this.emit(ThreadEvent.Update, this);
+    this.updateThreadMetadata();
   }
+
   /**
    * Add an event to the thread and updates
    * the tail/root references if needed
    * Will fire "Thread.update"
-   * @param event The event to add
-   * @param {boolean} toStartOfTimeline whether the event is being added
+   * @param event - The event to add
+   * @param toStartOfTimeline - whether the event is being added
    * to the start (and not the end) of the timeline.
-   * @param {boolean} emit whether to emit the Update event if the thread was updated or not.
+   * @param emit - whether to emit the Update event if the thread was updated or not.
    */
+  async addEvent(event, toStartOfTimeline, emit = true) {
+    this.setEventMetadata(event);
+    const lastReply = this.lastReply();
+    const isNewestReply = !lastReply || event.localTimestamp >= lastReply.localTimestamp;
 
-
-  addEvent(event, toStartOfTimeline, emit = true) {
-    event.setThread(this);
-
-    if (!this._currentUserParticipated && event.getSender() === this.client.getUserId()) {
-      this._currentUserParticipated = true;
-    } // Add all incoming events to the thread's timeline set when there's  no server support
-
-
+    // Add all incoming events to the thread's timeline set when there's  no server support
     if (!Thread.hasServerSideSupport) {
       // all the relevant membership info to hydrate events with a sender
       // is held in the main room timeline
@@ -210,60 +206,183 @@
       // timeline set to let it reconcile an event with its relevant RoomMember
       this.addEventToTimeline(event, toStartOfTimeline);
       this.client.decryptEventIfNeeded(event, {});
-    } else if (!toStartOfTimeline && this.initialEventsFetched && event.localTimestamp > this.lastReply()?.localTimestamp) {
-      this.fetchEditsWhereNeeded(event);
+    } else if (!toStartOfTimeline && this.initialEventsFetched && isNewestReply) {
       this.addEventToTimeline(event, false);
-    } else if (event.isRelation(_matrix.RelationType.Annotation) || event.isRelation(_matrix.RelationType.Replace)) {
+      this.fetchEditsWhereNeeded(event);
+    } else if (event.isRelation(_event.RelationType.Annotation) || event.isRelation(_event.RelationType.Replace)) {
+      if (!this.initialEventsFetched) {
+        /**
+         * A thread can be fully discovered via a single sync response
+         * And when that's the case we still ask the server to do an initialisation
+         * as it's the safest to ensure we have everything.
+         * However when we are in that scenario we might loose annotation or edits
+         *
+         * This fix keeps a reference to those events and replay them once the thread
+         * has been initialised properly.
+         */
+        this.replayEvents?.push(event);
+      } else {
+        this.addEventToTimeline(event, toStartOfTimeline);
+      }
       // Apply annotations and replace relations to the relations of the timeline only
-      this.timelineSet.relations.aggregateParentEvent(event);
-      this.timelineSet.relations.aggregateChildEvent(event, this.timelineSet);
+      this.timelineSet.relations?.aggregateParentEvent(event);
+      this.timelineSet.relations?.aggregateChildEvent(event, this.timelineSet);
       return;
-    } // If no thread support exists we want to count all thread relation
-    // added as a reply. We can't rely on the bundled relationships count
-
+    }
 
+    // If no thread support exists we want to count all thread relation
+    // added as a reply. We can't rely on the bundled relationships count
     if ((!Thread.hasServerSideSupport || !this.rootEvent) && event.isRelation(THREAD_RELATION_TYPE.name)) {
       this.replyCount++;
     }
-
     if (emit) {
-      this.emit(ThreadEvent.Update, this);
+      this.emit(ThreadEvent.NewReply, this, event);
+      this.updateThreadMetadata();
+    }
+  }
+  async processEvent(event) {
+    if (event) {
+      this.setEventMetadata(event);
+      await this.fetchEditsWhereNeeded(event);
     }
+    this.timeline = this.events;
   }
 
+  /**
+   * Processes the receipts that were caught during initial sync
+   * When clients become aware of a thread, they try to retrieve those read receipts
+   * and apply them to the current thread
+   * @param receipts - A collection of the receipts cached from initial sync
+   */
+  processReceipts(receipts = []) {
+    for (const {
+      eventId,
+      receiptType,
+      userId,
+      receipt,
+      synthetic
+    } of receipts) {
+      this.addReceiptToStructure(eventId, receiptType, userId, receipt, synthetic);
+    }
+  }
   getRootEventBundledRelationship(rootEvent = this.rootEvent) {
     return rootEvent?.getServerAggregatedRelation(THREAD_RELATION_TYPE.name);
   }
-
-  async initialiseThread() {
-    let bundledRelationship = this.getRootEventBundledRelationship();
-
-    if (Thread.hasServerSideSupport && !bundledRelationship) {
-      await this.fetchRootEvent();
-      bundledRelationship = this.getRootEventBundledRelationship();
-    }
-
+  async processRootEvent() {
+    const bundledRelationship = this.getRootEventBundledRelationship();
     if (Thread.hasServerSideSupport && bundledRelationship) {
       this.replyCount = bundledRelationship.count;
-      this._currentUserParticipated = bundledRelationship.current_user_participated;
-      const event = new _event.MatrixEvent(_objectSpread({
-        room_id: this.rootEvent.getRoomId()
-      }, bundledRelationship.latest_event));
-      this.setEventMetadata(event);
-      event.setThread(this);
-      this.lastEvent = event;
-      this.fetchEditsWhereNeeded(event);
+      this._currentUserParticipated = !!bundledRelationship.current_user_participated;
+      const mapper = this.client.getEventMapper();
+      // re-insert roomId
+      this.lastEvent = mapper(_objectSpread(_objectSpread({}, bundledRelationship.latest_event), {}, {
+        room_id: this.roomId
+      }));
+      this.updatePendingReplyCount();
+      await this.processEvent(this.lastEvent);
     }
+  }
+  updatePendingReplyCount() {
+    const unfilteredPendingEvents = this.pendingEventOrdering === _client.PendingEventOrdering.Detached ? this.room.getPendingEvents() : this.events;
+    const pendingEvents = unfilteredPendingEvents.filter(ev => ev.threadRootId === this.id && ev.isRelation(THREAD_RELATION_TYPE.name) && ev.status !== null && ev.getId() !== this.lastEvent?.getId());
+    this.lastPendingEvent = pendingEvents.length ? pendingEvents[pendingEvents.length - 1] : undefined;
+    this.pendingReplyCount = pendingEvents.length;
+  }
 
+  /**
+   * Reset the live timeline of all timelineSets, and start new ones.
+   *
+   * <p>This is used when /sync returns a 'limited' timeline. 'Limited' means that there's a gap between the messages
+   * /sync returned, and the last known message in our timeline. In such a case, our live timeline isn't live anymore
+   * and has to be replaced by a new one. To make sure we can continue paginating our timelines correctly, we have to
+   * set new pagination tokens on the old and the new timeline.
+   *
+   * @param backPaginationToken -   token for back-paginating the new timeline
+   * @param forwardPaginationToken - token for forward-paginating the old live timeline,
+   * if absent or null, all timelines are reset, removing old ones (including the previous live
+   * timeline which would otherwise be unable to paginate forwards without this token).
+   * Removing just the old live timeline whilst preserving previous ones is not supported.
+   */
+  async resetLiveTimeline(backPaginationToken, forwardPaginationToken) {
+    const oldLive = this.liveTimeline;
+    this.timelineSet.resetLiveTimeline(backPaginationToken ?? undefined, forwardPaginationToken ?? undefined);
+    const newLive = this.liveTimeline;
+
+    // FIXME: Remove the following as soon as https://github.com/matrix-org/synapse/issues/14830 is resolved.
+    //
+    // The pagination API for thread timelines currently can't handle the type of pagination tokens returned by sync
+    //
+    // To make this work anyway, we'll have to transform them into one of the types that the API can handle.
+    // One option is passing the tokens to /messages, which can handle sync tokens, and returns the right format.
+    // /messages does not return new tokens on requests with a limit of 0.
+    // This means our timelines might overlap a slight bit, but that's not an issue, as we deduplicate messages
+    // anyway.
+
+    let newBackward;
+    let oldForward;
+    if (backPaginationToken) {
+      const res = await this.client.createMessagesRequest(this.roomId, backPaginationToken, 1, _eventTimeline.Direction.Forward);
+      newBackward = res.end;
+    }
+    if (forwardPaginationToken) {
+      const res = await this.client.createMessagesRequest(this.roomId, forwardPaginationToken, 1, _eventTimeline.Direction.Backward);
+      oldForward = res.start;
+    }
+    // Only replace the token if we don't have paginated away from this position already. This situation doesn't
+    // occur today, but if the above issue is resolved, we'd have to go down this path.
+    if (forwardPaginationToken && oldLive.getPaginationToken(_eventTimeline.Direction.Forward) === forwardPaginationToken) {
+      oldLive.setPaginationToken(oldForward ?? null, _eventTimeline.Direction.Forward);
+    }
+    if (backPaginationToken && newLive.getPaginationToken(_eventTimeline.Direction.Backward) === backPaginationToken) {
+      newLive.setPaginationToken(newBackward ?? null, _eventTimeline.Direction.Backward);
+    }
+  }
+  async updateThreadMetadata() {
+    this.updatePendingReplyCount();
+    if (Thread.hasServerSideSupport) {
+      // Ensure we show *something* as soon as possible, we'll update it as soon as we get better data, but we
+      // don't want the thread preview to be empty if we can avoid it
+      if (!this.initialEventsFetched) {
+        await this.processRootEvent();
+      }
+      await this.fetchRootEvent();
+    }
+    await this.processRootEvent();
+    if (!this.initialEventsFetched) {
+      this.initialEventsFetched = true;
+      // fetch initial event to allow proper pagination
+      try {
+        // if the thread has regular events, this will just load the last reply.
+        // if the thread is newly created, this will load the root event.
+        if (this.replyCount === 0 && this.rootEvent) {
+          this.timelineSet.addEventsToTimeline([this.rootEvent], true, this.liveTimeline, null);
+          this.liveTimeline.setPaginationToken(null, _eventTimeline.Direction.Backward);
+        } else {
+          await this.client.paginateEventTimeline(this.liveTimeline, {
+            backwards: true,
+            limit: Math.max(1, this.length)
+          });
+        }
+        for (const event of this.replayEvents) {
+          this.addEvent(event, false);
+        }
+        this.replayEvents = null;
+        // just to make sure that, if we've created a timeline window for this thread before the thread itself
+        // existed (e.g. when creating a new thread), we'll make sure the panel is force refreshed correctly.
+        this.emit(_room.RoomEvent.TimelineReset, this.room, this.timelineSet, true);
+      } catch (e) {
+        _logger.logger.error("Failed to load start of newly created thread: ", e);
+        this.initialEventsFetched = false;
+      }
+    }
     this.emit(ThreadEvent.Update, this);
-  } // XXX: Workaround for https://github.com/matrix-org/matrix-spec-proposals/pull/2676/files#r827240084
-
+  }
 
+  // XXX: Workaround for https://github.com/matrix-org/matrix-spec-proposals/pull/2676/files#r827240084
   async fetchEditsWhereNeeded(...events) {
     return Promise.all(events.filter(e => e.isEncrypted()).map(event => {
       if (event.isRelation()) return; // skip - relations don't get edits
-
-      return this.client.relations(this.roomId, event.getId(), _matrix.RelationType.Replace, event.getType(), {
+      return this.client.relations(this.roomId, event.getId(), _event.RelationType.Replace, event.getType(), {
         limit: 1
       }).then(relations => {
         if (relations.events.length) {
@@ -274,123 +393,160 @@
       });
     }));
   }
-
-  async fetchInitialEvents() {
-    if (this.initialEventsFetched) return;
-    await this.fetchEvents();
-    this.initialEventsFetched = true;
-  }
-
   setEventMetadata(event) {
-    _eventTimeline.EventTimeline.setEventMetadata(event, this.roomState, false);
-
-    event.setThread(this);
+    if (event) {
+      _eventTimeline.EventTimeline.setEventMetadata(event, this.roomState, false);
+      event.setThread(this);
+    }
   }
+  clearEventMetadata(event) {
+    if (event) {
+      event.setThread(undefined);
+      delete event.event?.unsigned?.["m.relations"]?.[THREAD_RELATION_TYPE.name];
+    }
+  }
+
   /**
    * Finds an event by ID in the current thread
    */
-
-
   findEventById(eventId) {
-    // Check the lastEvent as it may have been created based on a bundled relationship and not in a timeline
-    if (this.lastEvent?.getId() === eventId) {
-      return this.lastEvent;
-    }
-
     return this.timelineSet.findEventById(eventId);
   }
+
   /**
    * Return last reply to the thread, if known.
    */
-
-
   lastReply(matches = () => true) {
-    for (let i = this.events.length - 1; i >= 0; i--) {
-      const event = this.events[i];
-
+    for (let i = this.timeline.length - 1; i >= 0; i--) {
+      const event = this.timeline[i];
       if (matches(event)) {
         return event;
       }
     }
-
     return null;
   }
-
   get roomId() {
     return this.room.roomId;
   }
+
   /**
    * The number of messages in the thread
    * Only count rel_type=m.thread as we want to
    * exclude annotations from that number
    */
-
-
   get length() {
-    return this.replyCount;
+    return this.replyCount + this.pendingReplyCount;
   }
+
   /**
-   * A getter for the last event added to the thread, if known.
+   * A getter for the last event of the thread.
+   * This might be a synthesized event, if so, it will not emit any events to listeners.
    */
-
-
   get replyToEvent() {
-    return this.lastEvent ?? this.lastReply();
+    return this.lastPendingEvent ?? this.lastEvent ?? this.lastReply();
   }
-
   get events() {
     return this.liveTimeline.getEvents();
   }
-
   has(eventId) {
-    return this.timelineSet.findEventById(eventId) instanceof _event.MatrixEvent;
+    return this.timelineSet.findEventById(eventId) instanceof _event2.MatrixEvent;
   }
-
   get hasCurrentUserParticipated() {
     return this._currentUserParticipated;
   }
-
   get liveTimeline() {
     return this.timelineSet.getLiveTimeline();
   }
+  getUnfilteredTimelineSet() {
+    return this.timelineSet;
+  }
+  addReceipt(event, synthetic) {
+    throw new Error("Unsupported function on the thread model");
+  }
 
-  async fetchEvents(opts = {
-    limit: 20,
-    direction: _eventTimeline.Direction.Backward
-  }) {
-    let {
-      originalEvent,
-      events,
-      prevBatch,
-      nextBatch
-    } = await this.client.relations(this.room.roomId, this.id, THREAD_RELATION_TYPE.name, null, opts); // When there's no nextBatch returned with a `from` request we have reached
-    // the end of the thread, and therefore want to return an empty one
-
-    if (!opts.to && !nextBatch) {
-      events = [...events, originalEvent];
+  /**
+   * Get the ID of the event that a given user has read up to within this thread,
+   * or null if we have received no read receipt (at all) from them.
+   * @param userId - The user ID to get read receipt event ID for
+   * @param ignoreSynthesized - If true, return only receipts that have been
+   *                            sent by the server, not implicit ones generated
+   *                            by the JS SDK.
+   * @returns ID of the latest event that the given user has read, or null.
+   */
+  getEventReadUpTo(userId, ignoreSynthesized) {
+    const isCurrentUser = userId === this.client.getUserId();
+    const lastReply = this.timeline[this.timeline.length - 1];
+    if (isCurrentUser && lastReply) {
+      // If the last activity in a thread is prior to the first threaded read receipt
+      // sent in the room (suggesting that it was sent before the user started
+      // using a client that supported threaded read receipts), we want to
+      // consider this thread as read.
+      const beforeFirstThreadedReceipt = lastReply.getTs() < this.room.getOldestThreadedReceiptTs();
+      const lastReplyId = lastReply.getId();
+      // Some unsent events do not have an ID, we do not want to consider them read
+      if (beforeFirstThreadedReceipt && lastReplyId) {
+        return lastReplyId;
+      }
     }
+    const readUpToId = super.getEventReadUpTo(userId, ignoreSynthesized);
 
-    await this.fetchEditsWhereNeeded(...events);
-    await Promise.all(events.map(event => {
-      this.setEventMetadata(event);
-      return this.client.decryptEventIfNeeded(event);
-    }));
-    const prependEvents = (opts.direction ?? _eventTimeline.Direction.Backward) === _eventTimeline.Direction.Backward;
-    this.timelineSet.addEventsToTimeline(events, prependEvents, this.liveTimeline, prependEvents ? nextBatch : prevBatch);
-    return {
-      originalEvent,
-      events,
-      prevBatch,
-      nextBatch
-    };
+    // Check whether the unthreaded read receipt for that user is more recent
+    // than the read receipt inside that thread.
+    if (lastReply) {
+      const unthreadedReceipt = this.room.getLastUnthreadedReceiptFor(userId);
+      if (!unthreadedReceipt) {
+        return readUpToId;
+      }
+      for (let i = this.timeline?.length - 1; i >= 0; --i) {
+        const ev = this.timeline[i];
+        // If we encounter the `readUpToId` we do not need to look further
+        // there is no "more recent" unthreaded read receipt
+        if (ev.getId() === readUpToId) return readUpToId;
+
+        // Inspecting events from most recent to oldest, we're checking
+        // whether an unthreaded read receipt is more recent that the current event.
+        // We usually prefer relying on the order of the DAG but in this scenario
+        // it is not possible and we have to rely on timestamp
+        if (ev.getTs() < unthreadedReceipt.ts) return ev.getId() ?? readUpToId;
+      }
+    }
+    return readUpToId;
   }
 
+  /**
+   * Determine if the given user has read a particular event.
+   *
+   * It is invalid to call this method with an event that is not part of this thread.
+   *
+   * This is not a definitive check as it only checks the events that have been
+   * loaded client-side at the time of execution.
+   * @param userId - The user ID to check the read state of.
+   * @param eventId - The event ID to check if the user read.
+   * @returns True if the user has read the event, false otherwise.
+   */
+  hasUserReadEvent(userId, eventId) {
+    if (userId === this.client.getUserId()) {
+      // Consider an event read if it's part of a thread that is before the
+      // first threaded receipt sent in that room. It is likely that it is
+      // part of a thread that was created before MSC3771 was implemented.
+      // Or before the last unthreaded receipt for the logged in user
+      const beforeFirstThreadedReceipt = (this.lastReply()?.getTs() ?? 0) < this.room.getOldestThreadedReceiptTs();
+      const unthreadedReceiptTs = this.room.getLastUnthreadedReceiptFor(userId)?.ts ?? 0;
+      const beforeLastUnthreadedReceipt = (this?.lastReply()?.getTs() ?? 0) < unthreadedReceiptTs;
+      if (beforeFirstThreadedReceipt || beforeLastUnthreadedReceipt) {
+        return true;
+      }
+    }
+    return super.hasUserReadEvent(userId, eventId);
+  }
+  setUnread(type, count) {
+    return this.room.setThreadUnreadNotificationCount(this.id, type, count);
+  }
 }
-
 exports.Thread = Thread;
-
-_defineProperty(Thread, "hasServerSideSupport", void 0);
-
+_defineProperty(Thread, "hasServerSideSupport", FeatureSupport.None);
+_defineProperty(Thread, "hasServerSideListSupport", FeatureSupport.None);
+_defineProperty(Thread, "hasServerSideFwdPaginationSupport", FeatureSupport.None);
 const FILTER_RELATED_BY_SENDERS = new _NamespacedValue.ServerControlledNamespacedValue("related_by_senders", "io.element.relation_senders");
 exports.FILTER_RELATED_BY_SENDERS = FILTER_RELATED_BY_SENDERS;
 const FILTER_RELATED_BY_REL_TYPES = new _NamespacedValue.ServerControlledNamespacedValue("related_by_rel_types", "io.element.relation_types");
@@ -399,8 +555,15 @@
 exports.THREAD_RELATION_TYPE = THREAD_RELATION_TYPE;
 let ThreadFilterType;
 exports.ThreadFilterType = ThreadFilterType;
-
 (function (ThreadFilterType) {
   ThreadFilterType[ThreadFilterType["My"] = 0] = "My";
   ThreadFilterType[ThreadFilterType["All"] = 1] = "All";
-})(ThreadFilterType || (exports.ThreadFilterType = ThreadFilterType = {}));
\ No newline at end of file
+})(ThreadFilterType || (exports.ThreadFilterType = ThreadFilterType = {}));
+function threadFilterTypeToFilter(type) {
+  switch (type) {
+    case ThreadFilterType.My:
+      return "participated";
+    default:
+      return "all";
+  }
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/typed-event-emitter.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/typed-event-emitter.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/typed-event-emitter.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/typed-event-emitter.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,9 +4,7 @@
   value: true
 });
 exports.TypedEventEmitter = exports.EventEmitterEvents = void 0;
-
 var _events = require("events");
-
 /*
 Copyright 2021 The Matrix.org Foundation C.I.C.
 
@@ -25,13 +23,11 @@
 // eslint-disable-next-line no-restricted-imports
 let EventEmitterEvents;
 exports.EventEmitterEvents = EventEmitterEvents;
-
 (function (EventEmitterEvents) {
   EventEmitterEvents["NewListener"] = "newListener";
   EventEmitterEvents["RemoveListener"] = "removeListener";
   EventEmitterEvents["Error"] = "error";
 })(EventEmitterEvents || (exports.EventEmitterEvents = EventEmitterEvents = {}));
-
 /**
  * Typed Event Emitter class which can act as a Base Model for all our model
  * and communication events.
@@ -43,55 +39,41 @@
   addListener(event, listener) {
     return super.addListener(event, listener);
   }
-
   emit(event, ...args) {
     return super.emit(event, ...args);
   }
-
   eventNames() {
     return super.eventNames();
   }
-
   listenerCount(event) {
     return super.listenerCount(event);
   }
-
   listeners(event) {
     return super.listeners(event);
   }
-
   off(event, listener) {
     return super.off(event, listener);
   }
-
   on(event, listener) {
     return super.on(event, listener);
   }
-
   once(event, listener) {
     return super.once(event, listener);
   }
-
   prependListener(event, listener) {
     return super.prependListener(event, listener);
   }
-
   prependOnceListener(event, listener) {
     return super.prependOnceListener(event, listener);
   }
-
   removeAllListeners(event) {
     return super.removeAllListeners(event);
   }
-
   removeListener(event, listener) {
     return super.removeListener(event, listener);
   }
-
   rawListeners(event) {
     return super.rawListeners(event);
   }
-
 }
-
 exports.TypedEventEmitter = TypedEventEmitter;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/user.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/user.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/models/user.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/models/user.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,14 +4,12 @@
   value: true
 });
 exports.UserEvent = exports.User = void 0;
-
 var _typedEventEmitter = require("./typed-event-emitter");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 let UserEvent;
 exports.UserEvent = UserEvent;
-
 (function (UserEvent) {
   UserEvent["DisplayName"] = "User.displayName";
   UserEvent["AvatarUrl"] = "User.avatarUrl";
@@ -19,259 +17,189 @@
   UserEvent["CurrentlyActive"] = "User.currentlyActive";
   UserEvent["LastPresenceTs"] = "User.lastPresenceTs";
 })(UserEvent || (exports.UserEvent = UserEvent = {}));
-
 class User extends _typedEventEmitter.TypedEventEmitter {
-  // XXX these should be read-only
+  /**
+   * The 'displayname' of the user if known.
+   * @privateRemarks
+   * Should be read-only
+   */
 
   /**
-   * Construct a new User. A User must have an ID and can optionally have extra
-   * information associated with it.
-   * @constructor
-   * @param {string} userId Required. The ID of this user.
-   * @prop {string} userId The ID of the user.
-   * @prop {Object} info The info object supplied in the constructor.
-   * @prop {string} displayName The 'displayname' of the user if known.
-   * @prop {string} avatarUrl The 'avatar_url' of the user if known.
-   * @prop {string} presence The presence enum if known.
-   * @prop {string} presenceStatusMsg The presence status message if known.
-   * @prop {Number} lastActiveAgo The time elapsed in ms since the user interacted
-   *                proactively with the server, or we saw a message from the user
-   * @prop {Number} lastPresenceTs Timestamp (ms since the epoch) for when we last
-   *                received presence data for this user.  We can subtract
-   *                lastActiveAgo from this to approximate an absolute value for
-   *                when a user was last active.
-   * @prop {Boolean} currentlyActive Whether we should consider lastActiveAgo to be
-   *               an approximation and that the user should be seen as active 'now'
-   * @prop {Object} events The events describing this user.
-   * @prop {MatrixEvent} events.presence The m.presence event for this user.
+   * The 'avatar_url' of the user if known.
+   * @privateRemarks
+   * Should be read-only
    */
-  constructor(userId) {
-    super();
-    this.userId = userId;
 
-    _defineProperty(this, "modified", void 0);
+  /**
+   * The presence status message if known.
+   * @privateRemarks
+   * Should be read-only
+   */
 
-    _defineProperty(this, "displayName", void 0);
+  /**
+   * The presence enum if known.
+   * @privateRemarks
+   * Should be read-only
+   */
 
-    _defineProperty(this, "rawDisplayName", void 0);
+  /**
+   * Timestamp (ms since the epoch) for when we last received presence data for this user.
+   * We can subtract lastActiveAgo from this to approximate an absolute value for when a user was last active.
+   * @privateRemarks
+   * Should be read-only
+   */
 
-    _defineProperty(this, "avatarUrl", void 0);
+  /**
+   * The time elapsed in ms since the user interacted proactively with the server,
+   * or we saw a message from the user
+   * @privateRemarks
+   * Should be read-only
+   */
 
-    _defineProperty(this, "presenceStatusMsg", null);
+  /**
+   * Whether we should consider lastActiveAgo to be an approximation
+   * and that the user should be seen as active 'now'
+   * @privateRemarks
+   * Should be read-only
+   */
 
-    _defineProperty(this, "presence", "offline");
+  /**
+   * The events describing this user.
+   * @privateRemarks
+   * Should be read-only
+   */
 
+  /**
+   * Construct a new User. A User must have an ID and can optionally have extra information associated with it.
+   * @param userId - Required. The ID of this user.
+   */
+  constructor(userId) {
+    super();
+    this.userId = userId;
+    _defineProperty(this, "modified", -1);
+    _defineProperty(this, "displayName", void 0);
+    _defineProperty(this, "rawDisplayName", void 0);
+    _defineProperty(this, "avatarUrl", void 0);
+    _defineProperty(this, "presenceStatusMsg", void 0);
+    _defineProperty(this, "presence", "offline");
     _defineProperty(this, "lastActiveAgo", 0);
-
     _defineProperty(this, "lastPresenceTs", 0);
-
     _defineProperty(this, "currentlyActive", false);
-
-    _defineProperty(this, "events", {
-      presence: null,
-      profile: null
-    });
-
+    _defineProperty(this, "events", {});
     this.displayName = userId;
     this.rawDisplayName = userId;
-    this.avatarUrl = null;
     this.updateModifiedTime();
   }
+
   /**
    * Update this User with the given presence event. May fire "User.presence",
    * "User.avatarUrl" and/or "User.displayName" if this event updates this user's
    * properties.
-   * @param {MatrixEvent} event The <code>m.presence</code> event.
-   * @fires module:client~MatrixClient#event:"User.presence"
-   * @fires module:client~MatrixClient#event:"User.displayName"
-   * @fires module:client~MatrixClient#event:"User.avatarUrl"
+   * @param event - The `m.presence` event.
+   *
+   * @remarks
+   * Fires {@link UserEvent.Presence}
+   * Fires {@link UserEvent.DisplayName}
+   * Fires {@link UserEvent.AvatarUrl}
    */
-
-
   setPresenceEvent(event) {
     if (event.getType() !== "m.presence") {
       return;
     }
-
     const firstFire = this.events.presence === null;
     this.events.presence = event;
     const eventsToFire = [];
-
     if (event.getContent().presence !== this.presence || firstFire) {
       eventsToFire.push(UserEvent.Presence);
     }
-
     if (event.getContent().avatar_url && event.getContent().avatar_url !== this.avatarUrl) {
       eventsToFire.push(UserEvent.AvatarUrl);
     }
-
     if (event.getContent().displayname && event.getContent().displayname !== this.displayName) {
       eventsToFire.push(UserEvent.DisplayName);
     }
-
     if (event.getContent().currently_active !== undefined && event.getContent().currently_active !== this.currentlyActive) {
       eventsToFire.push(UserEvent.CurrentlyActive);
     }
-
     this.presence = event.getContent().presence;
     eventsToFire.push(UserEvent.LastPresenceTs);
-
     if (event.getContent().status_msg) {
       this.presenceStatusMsg = event.getContent().status_msg;
     }
-
     if (event.getContent().displayname) {
       this.displayName = event.getContent().displayname;
     }
-
     if (event.getContent().avatar_url) {
       this.avatarUrl = event.getContent().avatar_url;
     }
-
     this.lastActiveAgo = event.getContent().last_active_ago;
     this.lastPresenceTs = Date.now();
     this.currentlyActive = event.getContent().currently_active;
     this.updateModifiedTime();
-
-    for (let i = 0; i < eventsToFire.length; i++) {
-      this.emit(eventsToFire[i], event, this);
+    for (const eventToFire of eventsToFire) {
+      this.emit(eventToFire, event, this);
     }
   }
+
   /**
    * Manually set this user's display name. No event is emitted in response to this
    * as there is no underlying MatrixEvent to emit with.
-   * @param {string} name The new display name.
+   * @param name - The new display name.
    */
-
-
   setDisplayName(name) {
     const oldName = this.displayName;
-
-    if (typeof name === "string") {
-      this.displayName = name;
-    } else {
-      this.displayName = undefined;
-    }
-
+    this.displayName = name;
     if (name !== oldName) {
       this.updateModifiedTime();
     }
   }
+
   /**
    * Manually set this user's non-disambiguated display name. No event is emitted
    * in response to this as there is no underlying MatrixEvent to emit with.
-   * @param {string} name The new display name.
+   * @param name - The new display name.
    */
-
-
   setRawDisplayName(name) {
-    if (typeof name === "string") {
-      this.rawDisplayName = name;
-    } else {
-      this.rawDisplayName = undefined;
-    }
+    this.rawDisplayName = name;
   }
+
   /**
    * Manually set this user's avatar URL. No event is emitted in response to this
    * as there is no underlying MatrixEvent to emit with.
-   * @param {string} url The new avatar URL.
+   * @param url - The new avatar URL.
    */
-
-
   setAvatarUrl(url) {
     const oldUrl = this.avatarUrl;
     this.avatarUrl = url;
-
     if (url !== oldUrl) {
       this.updateModifiedTime();
     }
   }
+
   /**
    * Update the last modified time to the current time.
    */
-
-
   updateModifiedTime() {
     this.modified = Date.now();
   }
+
   /**
    * Get the timestamp when this User was last updated. This timestamp is
    * updated when this User receives a new Presence event which has updated a
    * property on this object. It is updated <i>before</i> firing events.
-   * @return {number} The timestamp
+   * @returns The timestamp
    */
-
-
   getLastModifiedTime() {
     return this.modified;
   }
+
   /**
    * Get the absolute timestamp when this User was last known active on the server.
    * It is *NOT* accurate if this.currentlyActive is true.
-   * @return {number} The timestamp
+   * @returns The timestamp
    */
-
-
   getLastActiveTs() {
     return this.lastPresenceTs - this.lastActiveAgo;
   }
-
 }
-/**
- * Fires whenever any user's lastPresenceTs changes,
- * ie. whenever any presence event is received for a user.
- * @event module:client~MatrixClient#"User.lastPresenceTs"
- * @param {MatrixEvent} event The matrix event which caused this event to fire.
- * @param {User} user The user whose User.lastPresenceTs changed.
- * @example
- * matrixClient.on("User.lastPresenceTs", function(event, user){
- *   var newlastPresenceTs = user.lastPresenceTs;
- * });
- */
-
-/**
- * Fires whenever any user's presence changes.
- * @event module:client~MatrixClient#"User.presence"
- * @param {MatrixEvent} event The matrix event which caused this event to fire.
- * @param {User} user The user whose User.presence changed.
- * @example
- * matrixClient.on("User.presence", function(event, user){
- *   var newPresence = user.presence;
- * });
- */
-
-/**
- * Fires whenever any user's currentlyActive changes.
- * @event module:client~MatrixClient#"User.currentlyActive"
- * @param {MatrixEvent} event The matrix event which caused this event to fire.
- * @param {User} user The user whose User.currentlyActive changed.
- * @example
- * matrixClient.on("User.currentlyActive", function(event, user){
- *   var newCurrentlyActive = user.currentlyActive;
- * });
- */
-
-/**
- * Fires whenever any user's display name changes.
- * @event module:client~MatrixClient#"User.displayName"
- * @param {MatrixEvent} event The matrix event which caused this event to fire.
- * @param {User} user The user whose User.displayName changed.
- * @example
- * matrixClient.on("User.displayName", function(event, user){
- *   var newName = user.displayName;
- * });
- */
-
-/**
- * Fires whenever any user's avatar URL changes.
- * @event module:client~MatrixClient#"User.avatarUrl"
- * @param {MatrixEvent} event The matrix event which caused this event to fire.
- * @param {User} user The user whose User.avatarUrl changed.
- * @example
- * matrixClient.on("User.avatarUrl", function(event, user){
- *   var newUrl = user.avatarUrl;
- * });
- */
-
-
 exports.User = User;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/NamespacedValue.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/NamespacedValue.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/NamespacedValue.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/NamespacedValue.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,9 +4,9 @@
   value: true
 });
 exports.UnstableValue = exports.ServerControlledNamespacedValue = exports.NamespacedValue = void 0;
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /*
 Copyright 2021 - 2022 The Matrix.org Foundation C.I.C.
 
@@ -30,122 +30,94 @@
 class NamespacedValue {
   // Stable is optional, but one of the two parameters is required, hence the weird-looking types.
   // Goal is to to have developers explicitly say there is no stable value (if applicable).
+
   constructor(stable, unstable) {
     this.stable = stable;
     this.unstable = unstable;
-
     if (!this.unstable && !this.stable) {
       throw new Error("One of stable or unstable values must be supplied");
     }
   }
-
   get name() {
     if (this.stable) {
       return this.stable;
     }
-
     return this.unstable;
   }
-
   get altName() {
     if (!this.stable) {
       return null;
     }
-
     return this.unstable;
   }
-
   get names() {
     const names = [this.name];
     const altName = this.altName;
     if (altName) names.push(altName);
     return names;
   }
-
   matches(val) {
     return this.name === val || this.altName === val;
-  } // this desperately wants https://github.com/microsoft/TypeScript/pull/26349 at the top level of the class
-  // so we can instantiate `NamespacedValue<string, _, _>` as a default type for that namespace.
-
+  }
 
+  // this desperately wants https://github.com/microsoft/TypeScript/pull/26349 at the top level of the class
+  // so we can instantiate `NamespacedValue<string, _, _>` as a default type for that namespace.
   findIn(obj) {
-    let val;
-
+    let val = undefined;
     if (this.name) {
       val = obj?.[this.name];
     }
-
     if (!val && this.altName) {
       val = obj?.[this.altName];
     }
-
     return val;
   }
-
   includedIn(arr) {
     let included = false;
-
     if (this.name) {
       included = arr.includes(this.name);
     }
-
     if (!included && this.altName) {
       included = arr.includes(this.altName);
     }
-
     return included;
   }
-
 }
-
 exports.NamespacedValue = NamespacedValue;
-
 class ServerControlledNamespacedValue extends NamespacedValue {
   constructor(...args) {
     super(...args);
-
     _defineProperty(this, "preferUnstable", false);
   }
-
   setPreferUnstable(preferUnstable) {
     this.preferUnstable = preferUnstable;
   }
-
   get name() {
     if (this.stable && !this.preferUnstable) {
       return this.stable;
     }
-
     return this.unstable;
   }
-
 }
+
 /**
  * Represents a namespaced value which prioritizes the unstable value over the stable
  * value.
  */
-
-
 exports.ServerControlledNamespacedValue = ServerControlledNamespacedValue;
-
 class UnstableValue extends NamespacedValue {
   // Note: Constructor difference is that `unstable` is *required*.
   constructor(stable, unstable) {
     super(stable, unstable);
-
     if (!this.unstable) {
       throw new Error("Unstable value must be supplied");
     }
   }
-
   get name() {
     return this.unstable;
   }
-
   get altName() {
     return this.stable;
   }
-
 }
-
 exports.UnstableValue = UnstableValue;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/pushprocessor.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/pushprocessor.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/pushprocessor.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/pushprocessor.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,32 +4,24 @@
   value: true
 });
 exports.PushProcessor = void 0;
-
 var _utils = require("./utils");
-
 var _logger = require("./logger");
-
 var _PushRules = require("./@types/PushRules");
-
 var _event = require("./@types/event");
-
 function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
-
 function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+const RULEKINDS_IN_ORDER = [_PushRules.PushRuleKind.Override, _PushRules.PushRuleKind.ContentSpecific, _PushRules.PushRuleKind.RoomSpecific, _PushRules.PushRuleKind.SenderSpecific, _PushRules.PushRuleKind.Underride];
 
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
-/**
- * @module pushprocessor
- */
-const RULEKINDS_IN_ORDER = [_PushRules.PushRuleKind.Override, _PushRules.PushRuleKind.ContentSpecific, _PushRules.PushRuleKind.RoomSpecific, _PushRules.PushRuleKind.SenderSpecific, _PushRules.PushRuleKind.Underride]; // The default override rules to apply to the push rules that arrive from the server.
+// The default override rules to apply to the push rules that arrive from the server.
 // We do this for two reasons:
 //   1. Synapse is unlikely to send us the push rule in an incremental sync - see
 //      https://github.com/matrix-org/synapse/pull/4867#issuecomment-481446072 for
 //      more details.
 //   2. We often want to start using push rules ahead of the server supporting them,
 //      and so we can put them here.
-
 const DEFAULT_OVERRIDE_RULES = [{
   // For homeservers which don't support MSC2153 yet
   rule_id: ".m.rule.reaction",
@@ -57,71 +49,86 @@
   }],
   actions: []
 }];
-
+const DEFAULT_UNDERRIDE_RULES = [{
+  // For homeservers which don't support MSC3914 yet
+  rule_id: ".org.matrix.msc3914.rule.room.call",
+  default: true,
+  enabled: true,
+  conditions: [{
+    kind: _PushRules.ConditionKind.EventMatch,
+    key: "type",
+    pattern: "org.matrix.msc3401.call"
+  }, {
+    kind: _PushRules.ConditionKind.CallStarted
+  }],
+  actions: [_PushRules.PushRuleActionName.Notify, {
+    set_tweak: _PushRules.TweakName.Sound,
+    value: "default"
+  }]
+}];
 class PushProcessor {
   /**
    * Construct a Push Processor.
-   * @constructor
-   * @param {Object} client The Matrix client object to use
+   * @param client - The Matrix client object to use
    */
   constructor(client) {
     this.client = client;
+    _defineProperty(this, "parsedKeys", new Map());
   }
+
+  /**
+   * Maps the original key from the push rules to a list of property names
+   * after unescaping.
+   */
+
   /**
    * Convert a list of actions into a object with the actions as keys and their values
-   * eg. [ 'notify', { set_tweak: 'sound', value: 'default' } ]
-   *     becomes { notify: true, tweaks: { sound: 'default' } }
-   * @param {array} actionList The actions list
+   * @example
+   * eg. `[ 'notify', { set_tweak: 'sound', value: 'default' } ]`
+   *     becomes `{ notify: true, tweaks: { sound: 'default' } }`
+   * @param actionList - The actions list
    *
-   * @return {object} A object with key 'notify' (true or false) and an object of actions
+   * @returns A object with key 'notify' (true or false) and an object of actions
    */
-
-
   static actionListToActionsObject(actionList) {
     const actionObj = {
       notify: false,
       tweaks: {}
     };
-
-    for (let i = 0; i < actionList.length; ++i) {
-      const action = actionList[i];
-
+    for (const action of actionList) {
       if (action === _PushRules.PushRuleActionName.Notify) {
         actionObj.notify = true;
-      } else if (typeof action === 'object') {
+      } else if (typeof action === "object") {
         if (action.value === undefined) {
           action.value = true;
         }
-
         actionObj.tweaks[action.set_tweak] = action.value;
       }
     }
-
     return actionObj;
   }
+
   /**
    * Rewrites conditions on a client's push rules to match the defaults
    * where applicable. Useful for upgrading push rules to more strict
    * conditions when the server is falling behind on defaults.
-   * @param {object} incomingRules The client's existing push rules
-   * @returns {object} The rewritten rules
+   * @param incomingRules - The client's existing push rules
+   * @returns The rewritten rules
    */
-
-
   static rewriteDefaultRules(incomingRules) {
     let newRules = JSON.parse(JSON.stringify(incomingRules)); // deep clone
+
     // These lines are mostly to make the tests happy. We shouldn't run into these
     // properties missing in practice.
-
     if (!newRules) newRules = {};
     if (!newRules.global) newRules.global = {};
-    if (!newRules.global.override) newRules.global.override = []; // Merge the client-level defaults with the ones from the server
+    if (!newRules.global.override) newRules.global.override = [];
+    if (!newRules.global.underride) newRules.global.underride = [];
 
+    // Merge the client-level defaults with the ones from the server
     const globalOverrides = newRules.global.override;
-
     for (const override of DEFAULT_OVERRIDE_RULES) {
       const existingRule = globalOverrides.find(r => r.rule_id === override.rule_id);
-
       if (existingRule) {
         // Copy over the actions, default, and conditions. Don't touch the user's preference.
         existingRule.default = override.default;
@@ -130,39 +137,84 @@
       } else {
         // Add the rule
         const ruleId = override.rule_id;
-
         _logger.logger.warn(`Adding default global override for ${ruleId}`);
-
         globalOverrides.push(override);
       }
     }
-
+    const globalUnderrides = newRules.global.underride ?? [];
+    for (const underride of DEFAULT_UNDERRIDE_RULES) {
+      const existingRule = globalUnderrides.find(r => r.rule_id === underride.rule_id);
+      if (existingRule) {
+        // Copy over the actions, default, and conditions. Don't touch the user's preference.
+        existingRule.default = underride.default;
+        existingRule.conditions = underride.conditions;
+        existingRule.actions = underride.actions;
+      } else {
+        // Add the rule
+        const ruleId = underride.rule_id;
+        _logger.logger.warn(`Adding default global underride for ${ruleId}`);
+        globalUnderrides.push(underride);
+      }
+    }
     return newRules;
   }
 
+  /**
+   * Pre-caches the parsed keys for push rules and cleans out any obsolete cache
+   * entries. Should be called after push rules are updated.
+   * @param newRules - The new push rules.
+   */
+  updateCachedPushRuleKeys(newRules) {
+    // These lines are mostly to make the tests happy. We shouldn't run into these
+    // properties missing in practice.
+    if (!newRules) newRules = {};
+    if (!newRules.global) newRules.global = {};
+    if (!newRules.global.override) newRules.global.override = [];
+    if (!newRules.global.room) newRules.global.room = [];
+    if (!newRules.global.sender) newRules.global.sender = [];
+    if (!newRules.global.underride) newRules.global.underride = [];
+
+    // Process the 'key' property on event_match conditions pre-cache the
+    // values and clean-out any unused values.
+    const toRemoveKeys = new Set(this.parsedKeys.keys());
+    for (const ruleset of [newRules.global.override, newRules.global.room, newRules.global.sender, newRules.global.underride]) {
+      for (const rule of ruleset) {
+        if (!rule.conditions) {
+          continue;
+        }
+        for (const condition of rule.conditions) {
+          if (condition.kind !== _PushRules.ConditionKind.EventMatch) {
+            continue;
+          }
+
+          // Ensure we keep this key.
+          toRemoveKeys.delete(condition.key);
+
+          // Pre-process the key.
+          this.parsedKeys.set(condition.key, PushProcessor.partsForDottedKey(condition.key));
+        }
+      }
+    }
+    // Any keys that were previously cached, but are no longer needed should
+    // be removed.
+    toRemoveKeys.forEach(k => this.parsedKeys.delete(k));
+  }
   // $glob: RegExp
+
   matchingRuleFromKindSet(ev, kindset) {
-    for (let ruleKindIndex = 0; ruleKindIndex < RULEKINDS_IN_ORDER.length; ++ruleKindIndex) {
-      const kind = RULEKINDS_IN_ORDER[ruleKindIndex];
+    for (const kind of RULEKINDS_IN_ORDER) {
       const ruleset = kindset[kind];
-
       if (!ruleset) {
         continue;
       }
-
-      for (let ruleIndex = 0; ruleIndex < ruleset.length; ++ruleIndex) {
-        const rule = ruleset[ruleIndex];
-
+      for (const rule of ruleset) {
         if (!rule.enabled) {
           continue;
         }
-
         const rawrule = this.templateRuleToRaw(kind, rule);
-
         if (!rawrule) {
           continue;
         }
-
         if (this.ruleMatchesEvent(rawrule, ev)) {
           return _objectSpread(_objectSpread({}, rule), {}, {
             kind
@@ -170,328 +222,368 @@
         }
       }
     }
-
     return null;
   }
-
   templateRuleToRaw(kind, tprule) {
     const rawrule = {
-      'rule_id': tprule.rule_id,
-      'actions': tprule.actions,
-      'conditions': []
+      rule_id: tprule.rule_id,
+      actions: tprule.actions,
+      conditions: []
     };
-
     switch (kind) {
       case _PushRules.PushRuleKind.Underride:
       case _PushRules.PushRuleKind.Override:
         rawrule.conditions = tprule.conditions;
         break;
-
       case _PushRules.PushRuleKind.RoomSpecific:
         if (!tprule.rule_id) {
           return null;
         }
-
         rawrule.conditions.push({
-          'kind': _PushRules.ConditionKind.EventMatch,
-          'key': 'room_id',
-          'value': tprule.rule_id
+          kind: _PushRules.ConditionKind.EventMatch,
+          key: "room_id",
+          value: tprule.rule_id
         });
         break;
-
       case _PushRules.PushRuleKind.SenderSpecific:
         if (!tprule.rule_id) {
           return null;
         }
-
         rawrule.conditions.push({
-          'kind': _PushRules.ConditionKind.EventMatch,
-          'key': 'user_id',
-          'value': tprule.rule_id
+          kind: _PushRules.ConditionKind.EventMatch,
+          key: "user_id",
+          value: tprule.rule_id
         });
         break;
-
       case _PushRules.PushRuleKind.ContentSpecific:
         if (!tprule.pattern) {
           return null;
         }
-
         rawrule.conditions.push({
-          'kind': _PushRules.ConditionKind.EventMatch,
-          'key': 'content.body',
-          'pattern': tprule.pattern
+          kind: _PushRules.ConditionKind.EventMatch,
+          key: "content.body",
+          pattern: tprule.pattern
         });
         break;
     }
-
     return rawrule;
   }
-
   eventFulfillsCondition(cond, ev) {
     switch (cond.kind) {
       case _PushRules.ConditionKind.EventMatch:
         return this.eventFulfillsEventMatchCondition(cond, ev);
-
+      case _PushRules.ConditionKind.EventPropertyIs:
+        return this.eventFulfillsEventPropertyIsCondition(cond, ev);
       case _PushRules.ConditionKind.ContainsDisplayName:
         return this.eventFulfillsDisplayNameCondition(cond, ev);
-
       case _PushRules.ConditionKind.RoomMemberCount:
         return this.eventFulfillsRoomMemberCountCondition(cond, ev);
-
       case _PushRules.ConditionKind.SenderNotificationPermission:
         return this.eventFulfillsSenderNotifPermCondition(cond, ev);
-    } // unknown conditions: we previously matched all unknown conditions,
+      case _PushRules.ConditionKind.CallStarted:
+      case _PushRules.ConditionKind.CallStartedPrefix:
+        return this.eventFulfillsCallStartedCondition(cond, ev);
+    }
+
+    // unknown conditions: we previously matched all unknown conditions,
     // but given that rules can be added to the base rules on a server,
     // it's probably better to not match unknown conditions.
-
-
     return false;
   }
-
   eventFulfillsSenderNotifPermCondition(cond, ev) {
-    const notifLevelKey = cond['key'];
-
+    const notifLevelKey = cond["key"];
     if (!notifLevelKey) {
       return false;
     }
-
     const room = this.client.getRoom(ev.getRoomId());
-
     if (!room?.currentState) {
       return false;
-    } // Note that this should not be the current state of the room but the state at
+    }
+
+    // Note that this should not be the current state of the room but the state at
     // the point the event is in the DAG. Unfortunately the js-sdk does not store
     // this.
-
-
     return room.currentState.mayTriggerNotifOfType(notifLevelKey, ev.getSender());
   }
-
   eventFulfillsRoomMemberCountCondition(cond, ev) {
     if (!cond.is) {
       return false;
     }
-
     const room = this.client.getRoom(ev.getRoomId());
-
     if (!room || !room.currentState || !room.currentState.members) {
       return false;
     }
-
     const memberCount = room.currentState.getJoinedMemberCount();
     const m = cond.is.match(/^([=<>]*)(\d*)$/);
-
     if (!m) {
       return false;
     }
-
     const ineq = m[1];
     const rhs = parseInt(m[2]);
-
     if (isNaN(rhs)) {
       return false;
     }
-
     switch (ineq) {
-      case '':
-      case '==':
+      case "":
+      case "==":
         return memberCount == rhs;
-
-      case '<':
+      case "<":
         return memberCount < rhs;
-
-      case '>':
+      case ">":
         return memberCount > rhs;
-
-      case '<=':
+      case "<=":
         return memberCount <= rhs;
-
-      case '>=':
+      case ">=":
         return memberCount >= rhs;
-
       default:
         return false;
     }
   }
-
   eventFulfillsDisplayNameCondition(cond, ev) {
     let content = ev.getContent();
-
     if (ev.isEncrypted() && ev.getClearContent()) {
       content = ev.getClearContent();
     }
-
-    if (!content || !content.body || typeof content.body != 'string') {
+    if (!content || !content.body || typeof content.body != "string") {
       return false;
     }
-
     const room = this.client.getRoom(ev.getRoomId());
-
-    if (!room || !room.currentState || !room.currentState.members || !room.currentState.getMember(this.client.credentials.userId)) {
+    const member = room?.currentState?.getMember(this.client.credentials.userId);
+    if (!member) {
       return false;
     }
+    const displayName = member.name;
 
-    const displayName = room.currentState.getMember(this.client.credentials.userId).name; // N.B. we can't use \b as it chokes on unicode. however \W seems to be okay
+    // N.B. we can't use \b as it chokes on unicode. however \W seems to be okay
     // as shorthand for [^0-9A-Za-z_].
-
-    const pat = new RegExp("(^|\\W)" + (0, _utils.escapeRegExp)(displayName) + "(\\W|$)", 'i');
+    const pat = new RegExp("(^|\\W)" + (0, _utils.escapeRegExp)(displayName) + "(\\W|$)", "i");
     return content.body.search(pat) > -1;
   }
 
+  /**
+   * Check whether the given event matches the push rule condition by fetching
+   * the property from the event and comparing against the condition's glob-based
+   * pattern.
+   * @param cond - The push rule condition to check for a match.
+   * @param ev - The event to check for a match.
+   */
   eventFulfillsEventMatchCondition(cond, ev) {
     if (!cond.key) {
       return false;
     }
-
     const val = this.valueForDottedKey(cond.key, ev);
-
-    if (typeof val !== 'string') {
+    if (typeof val !== "string") {
       return false;
     }
 
+    // XXX This does not match in a case-insensitive manner.
+    //
+    // See https://spec.matrix.org/v1.5/client-server-api/#conditions-1
     if (cond.value) {
       return cond.value === val;
     }
-
-    if (typeof cond.pattern !== 'string') {
+    if (typeof cond.pattern !== "string") {
       return false;
     }
-
-    const regex = cond.key === 'content.body' ? this.createCachedRegex('(^|\\W)', cond.pattern, '(\\W|$)') : this.createCachedRegex('^', cond.pattern, '$');
+    const regex = cond.key === "content.body" ? this.createCachedRegex("(^|\\W)", cond.pattern, "(\\W|$)") : this.createCachedRegex("^", cond.pattern, "$");
     return !!val.match(regex);
   }
 
+  /**
+   * Check whether the given event matches the push rule condition by fetching
+   * the property from the event and comparing exactly against the condition's
+   * value.
+   * @param cond - The push rule condition to check for a match.
+   * @param ev - The event to check for a match.
+   */
+  eventFulfillsEventPropertyIsCondition(cond, ev) {
+    if (!cond.key || cond.value === undefined) {
+      return false;
+    }
+    return cond.value === this.valueForDottedKey(cond.key, ev);
+  }
+  eventFulfillsCallStartedCondition(_cond, ev) {
+    // Since servers don't support properly sending push notification
+    // about MSC3401 call events, we do the handling ourselves
+    return ["m.ring", "m.prompt"].includes(ev.getContent()["m.intent"]) && !("m.terminated" in ev.getContent()) && (ev.getPrevContent()["m.terminated"] !== ev.getContent()["m.terminated"] || (0, _utils.deepCompare)(ev.getPrevContent(), {}));
+  }
   createCachedRegex(prefix, glob, suffix) {
     if (PushProcessor.cachedGlobToRegex[glob]) {
       return PushProcessor.cachedGlobToRegex[glob];
     }
+    PushProcessor.cachedGlobToRegex[glob] = new RegExp(prefix + (0, _utils.globToRegexp)(glob) + suffix, "i") // Case insensitive
+    ;
 
-    PushProcessor.cachedGlobToRegex[glob] = new RegExp(prefix + (0, _utils.globToRegexp)(glob) + suffix, 'i');
     return PushProcessor.cachedGlobToRegex[glob];
   }
 
+  /**
+   * Parse the key into the separate fields to search by splitting on
+   * unescaped ".", and then removing any escape characters.
+   *
+   * @param str - The key of the push rule condition: a dotted field.
+   * @returns The unescaped parts to fetch.
+   * @internal
+   */
+  static partsForDottedKey(str) {
+    const result = [];
+
+    // The current field and whether the previous character was the escape
+    // character (a backslash).
+    let part = "";
+    let escaped = false;
+
+    // Iterate over each character, and decide whether to append to the current
+    // part (following the escape rules) or to start a new part (based on the
+    // field separator).
+    for (const c of str) {
+      // If the previous character was the escape character (a backslash)
+      // then decide what to append to the current part.
+      if (escaped) {
+        if (c === "\\" || c === ".") {
+          // An escaped backslash or dot just gets added.
+          part += c;
+        } else {
+          // A character that shouldn't be escaped gets the backslash prepended.
+          part += "\\" + c;
+        }
+        // This always resets being escaped.
+        escaped = false;
+        continue;
+      }
+      if (c == ".") {
+        // The field separator creates a new part.
+        result.push(part);
+        part = "";
+      } else if (c == "\\") {
+        // A backslash adds no characters, but starts an escape sequence.
+        escaped = true;
+      } else {
+        // Otherwise, just add the current character.
+        part += c;
+      }
+    }
+
+    // Ensure the final part is included. If there's an open escape sequence
+    // it should be included.
+    if (escaped) {
+      part += "\\";
+    }
+    result.push(part);
+    return result;
+  }
+
+  /**
+   * For a dotted field and event, fetch the value at that position, if one
+   * exists.
+   *
+   * @param key - The key of the push rule condition: a dotted field to fetch.
+   * @param ev - The matrix event to fetch the field from.
+   * @returns The value at the dotted path given by key.
+   */
   valueForDottedKey(key, ev) {
-    const parts = key.split('.');
-    let val; // special-case the first component to deal with encrypted messages
+    // The key should already have been parsed via updateCachedPushRuleKeys,
+    // but if it hasn't (maybe via an old consumer of the SDK which hasn't
+    // been updated?) then lazily calculate it here.
+    let parts = this.parsedKeys.get(key);
+    if (parts === undefined) {
+      parts = PushProcessor.partsForDottedKey(key);
+      this.parsedKeys.set(key, parts);
+    }
+    let val;
 
+    // special-case the first component to deal with encrypted messages
     const firstPart = parts[0];
-
-    if (firstPart === 'content') {
+    let currentIndex = 0;
+    if (firstPart === "content") {
       val = ev.getContent();
-      parts.shift();
-    } else if (firstPart === 'type') {
+      ++currentIndex;
+    } else if (firstPart === "type") {
       val = ev.getType();
-      parts.shift();
+      ++currentIndex;
     } else {
       // use the raw event for any other fields
       val = ev.event;
     }
-
-    while (parts.length > 0) {
-      const thisPart = parts.shift();
-
-      if ((0, _utils.isNullOrUndefined)(val[thisPart])) {
-        return null;
+    for (; currentIndex < parts.length; ++currentIndex) {
+      // The previous iteration resulted in null or undefined, bail (and
+      // avoid the type error of attempting to retrieve a property).
+      if ((0, _utils.isNullOrUndefined)(val)) {
+        return undefined;
       }
-
+      const thisPart = parts[currentIndex];
       val = val[thisPart];
     }
-
     return val;
   }
-
   matchingRuleForEventWithRulesets(ev, rulesets) {
     if (!rulesets) {
       return null;
     }
-
     if (ev.getSender() === this.client.credentials.userId) {
       return null;
     }
-
     return this.matchingRuleFromKindSet(ev, rulesets.global);
   }
-
   pushActionsForEventAndRulesets(ev, rulesets) {
     const rule = this.matchingRuleForEventWithRulesets(ev, rulesets);
-
     if (!rule) {
       return {};
     }
+    const actionObj = PushProcessor.actionListToActionsObject(rule.actions);
 
-    const actionObj = PushProcessor.actionListToActionsObject(rule.actions); // Some actions are implicit in some situations: we add those here
-
+    // Some actions are implicit in some situations: we add those here
     if (actionObj.tweaks.highlight === undefined) {
       // if it isn't specified, highlight if it's a content
       // rule but otherwise not
       actionObj.tweaks.highlight = rule.kind == _PushRules.PushRuleKind.ContentSpecific;
     }
-
     return actionObj;
   }
-
   ruleMatchesEvent(rule, ev) {
-    if (!rule.conditions?.length) return true;
-    let ret = true;
-
-    for (let i = 0; i < rule.conditions.length; ++i) {
-      const cond = rule.conditions[i]; // @ts-ignore
-
-      ret &= this.eventFulfillsCondition(cond, ev);
-    } //console.log("Rule "+rule.rule_id+(ret ? " matches" : " doesn't match"));
-
-
-    return ret;
+    return !rule.conditions?.some(cond => !this.eventFulfillsCondition(cond, ev));
   }
+
   /**
    * Get the user's push actions for the given event
-   *
-   * @param {module:models/event.MatrixEvent} ev
-   *
-   * @return {PushAction}
    */
-
-
   actionsForEvent(ev) {
     return this.pushActionsForEventAndRulesets(ev, this.client.pushRules);
   }
+
   /**
    * Get one of the users push rules by its ID
    *
-   * @param {string} ruleId The ID of the rule to search for
-   * @return {object} The push rule, or null if no such rule was found
+   * @param ruleId - The ID of the rule to search for
+   * @returns The push rule, or null if no such rule was found
    */
-
-
   getPushRuleById(ruleId) {
-    for (const scope of ['global']) {
-      if (this.client.pushRules[scope] === undefined) continue;
+    const result = this.getPushRuleAndKindById(ruleId);
+    return result?.rule ?? null;
+  }
 
+  /**
+   * Get one of the users push rules by its ID
+   *
+   * @param ruleId - The ID of the rule to search for
+   * @returns rule The push rule, or null if no such rule was found
+   * @returns kind - The PushRuleKind of the rule to search for
+   */
+  getPushRuleAndKindById(ruleId) {
+    for (const scope of ["global"]) {
+      if (this.client.pushRules?.[scope] === undefined) continue;
       for (const kind of RULEKINDS_IN_ORDER) {
         if (this.client.pushRules[scope][kind] === undefined) continue;
-
         for (const rule of this.client.pushRules[scope][kind]) {
-          if (rule.rule_id === ruleId) return rule;
+          if (rule.rule_id === ruleId) return {
+            rule,
+            kind
+          };
         }
       }
     }
-
     return null;
   }
-
 }
-/**
- * @typedef {Object} PushAction
- * @type {Object}
- * @property {boolean} notify Whether this event should notify the user or not.
- * @property {Object} tweaks How this event should be notified.
- * @property {boolean} tweaks.highlight Whether this event should be highlighted
- * on the UI.
- * @property {boolean} tweaks.sound Whether this notification should produce a
- * noise.
- */
-
-
 exports.PushProcessor = PushProcessor;
-
 _defineProperty(PushProcessor, "cachedGlobToRegex", {});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/randomstring.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/randomstring.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/randomstring.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/randomstring.js	2023-04-11 06:11:52.000000000 +0000
@@ -6,7 +6,6 @@
 exports.randomLowercaseString = randomLowercaseString;
 exports.randomString = randomString;
 exports.randomUppercaseString = randomUppercaseString;
-
 /*
 Copyright 2018 New Vector Ltd
 Copyright 2019 The Matrix.org Foundation C.I.C.
@@ -23,28 +22,23 @@
 See the License for the specific language governing permissions and
 limitations under the License.
 */
+
 const LOWERCASE = "abcdefghijklmnopqrstuvwxyz";
 const UPPERCASE = "ABCDEFGHIJKLMNOPQRSTUVWXYZ";
 const DIGITS = "0123456789";
-
 function randomString(len) {
   return randomStringFrom(len, UPPERCASE + LOWERCASE + DIGITS);
 }
-
 function randomLowercaseString(len) {
   return randomStringFrom(len, LOWERCASE);
 }
-
 function randomUppercaseString(len) {
   return randomStringFrom(len, UPPERCASE);
 }
-
 function randomStringFrom(len, chars) {
   let ret = "";
-
   for (let i = 0; i < len; ++i) {
     ret += chars.charAt(Math.floor(Math.random() * chars.length));
   }
-
   return ret;
 }
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/realtime-callbacks.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/realtime-callbacks.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/realtime-callbacks.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/realtime-callbacks.js	2023-04-11 06:11:52.000000000 +0000
@@ -5,9 +5,7 @@
 });
 exports.clearTimeout = clearTimeout;
 exports.setTimeout = setTimeout;
-
 var _logger = require("./logger");
-
 /*
 Copyright 2016 OpenMarket Ltd
 Copyright 2019 The Matrix.org Foundation C.I.C.
@@ -33,37 +31,39 @@
  * In particular, if a timeout would have fired while the system was suspended,
  * it will instead fire as soon as possible after resume.
  */
+
 // we schedule a callback at least this often, to check if we've missed out on
 // some wall-clock time due to being suspended.
-const TIMER_CHECK_PERIOD_MS = 1000; // counter, for making up ids to return from setTimeout
+const TIMER_CHECK_PERIOD_MS = 1000;
 
-let count = 0; // the key for our callback with the real global.setTimeout
+// counter, for making up ids to return from setTimeout
+let count = 0;
 
-let realCallbackKey; // a sorted list of the callbacks to be run.
+// the key for our callback with the real global.setTimeout
+let realCallbackKey;
+// a sorted list of the callbacks to be run.
 // each is an object with keys [runAt, func, params, key].
+const callbackList = [];
 
-const callbackList = []; // var debuglog = logger.log.bind(logger);
-
+// var debuglog = logger.log.bind(logger);
+/* istanbul ignore next */
 const debuglog = function (...params) {};
+
 /**
  * reimplementation of window.setTimeout, which will call the callback if
  * the wallclock time goes past the deadline.
  *
- * @param {function} func   callback to be called after a delay
- * @param {Number} delayMs  number of milliseconds to delay by
+ * @param func -   callback to be called after a delay
+ * @param delayMs -  number of milliseconds to delay by
  *
- * @return {Number} an identifier for this callback, which may be passed into
+ * @returns an identifier for this callback, which may be passed into
  *                   clearTimeout later.
  */
-
-
 function setTimeout(func, delayMs, ...params) {
   delayMs = delayMs || 0;
-
   if (delayMs < 0) {
     delayMs = 0;
   }
-
   const runAt = Date.now() + delayMs;
   const key = count++;
   debuglog("setTimeout: scheduling cb", key, "at", runAt, "(delay", delayMs, ")");
@@ -72,8 +72,9 @@
     func: func,
     params: params,
     key: key
-  }; // figure out where it goes in the list
+  };
 
+  // figure out where it goes in the list
   const idx = binarySearch(callbackList, function (el) {
     return el.runAt - runAt;
   });
@@ -81,105 +82,90 @@
   scheduleRealCallback();
   return key;
 }
+
 /**
  * reimplementation of window.clearTimeout, which mirrors setTimeout
  *
- * @param {Number} key   result from an earlier setTimeout call
+ * @param key -   result from an earlier setTimeout call
  */
-
-
 function clearTimeout(key) {
   if (callbackList.length === 0) {
     return;
-  } // remove the element from the list
-
+  }
 
+  // remove the element from the list
   let i;
-
   for (i = 0; i < callbackList.length; i++) {
     const cb = callbackList[i];
-
     if (cb.key == key) {
       callbackList.splice(i, 1);
       break;
     }
-  } // iff it was the first one in the list, reschedule our callback.
-
+  }
 
+  // iff it was the first one in the list, reschedule our callback.
   if (i === 0) {
     scheduleRealCallback();
   }
-} // use the real global.setTimeout to schedule a callback to runCallbacks.
-
+}
 
+// use the real global.setTimeout to schedule a callback to runCallbacks.
 function scheduleRealCallback() {
   if (realCallbackKey) {
     global.clearTimeout(realCallbackKey);
   }
-
   const first = callbackList[0];
-
   if (!first) {
     debuglog("scheduleRealCallback: no more callbacks, not rescheduling");
     return;
   }
-
   const timestamp = Date.now();
   const delayMs = Math.min(first.runAt - timestamp, TIMER_CHECK_PERIOD_MS);
   debuglog("scheduleRealCallback: now:", timestamp, "delay:", delayMs);
   realCallbackKey = global.setTimeout(runCallbacks, delayMs);
 }
-
 function runCallbacks() {
-  let cb;
   const timestamp = Date.now();
-  debuglog("runCallbacks: now:", timestamp); // get the list of things to call
-
-  const callbacksToRun = []; // eslint-disable-next-line
+  debuglog("runCallbacks: now:", timestamp);
 
+  // get the list of things to call
+  const callbacksToRun = [];
+  // eslint-disable-next-line
   while (true) {
     const first = callbackList[0];
-
     if (!first || first.runAt > timestamp) {
       break;
     }
-
-    cb = callbackList.shift();
+    const cb = callbackList.shift();
     debuglog("runCallbacks: popping", cb.key);
     callbacksToRun.push(cb);
-  } // reschedule the real callback before running our functions, to
+  }
+
+  // reschedule the real callback before running our functions, to
   // keep the codepaths the same whether or not our functions
   // register their own setTimeouts.
-
-
   scheduleRealCallback();
-
-  for (let i = 0; i < callbacksToRun.length; i++) {
-    cb = callbacksToRun[i];
-
+  for (const cb of callbacksToRun) {
     try {
       cb.func.apply(global, cb.params);
     } catch (e) {
-      _logger.logger.error("Uncaught exception in callback function", e.stack || e);
+      _logger.logger.error("Uncaught exception in callback function", e);
     }
   }
 }
+
 /* search in a sorted array.
  *
  * returns the index of the last element for which func returns
  * greater than zero, or array.length if no such element exists.
  */
-
-
 function binarySearch(array, func) {
   // min is inclusive, max exclusive.
   let min = 0;
   let max = array.length;
-
   while (min < max) {
     const mid = min + max >> 1;
     const res = func(array[mid]);
-
     if (res > 0) {
       // the element at 'mid' is too big; set it as the new max.
       max = mid;
@@ -187,8 +173,7 @@
       // the element at 'mid' is too small. 'min' is inclusive, so +1.
       min = mid + 1;
     }
-  } // presumably, min==max now.
-
-
+  }
+  // presumably, min==max now.
   return min;
 }
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/ReEmitter.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/ReEmitter.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/ReEmitter.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/ReEmitter.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,9 +4,9 @@
   value: true
 });
 exports.TypedReEmitter = exports.ReEmitter = void 0;
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /*
 Copyright 2015, 2016 OpenMarket Ltd
 Copyright 2017 Vector Creations Ltd
@@ -24,23 +24,23 @@
 See the License for the specific language governing permissions and
 limitations under the License.
 */
+
 // eslint-disable-next-line no-restricted-imports
+
 class ReEmitter {
   constructor(target) {
     this.target = target;
-
     _defineProperty(this, "reEmitters", new Map());
-  } // Map from emitter to event name to re-emitter
+  }
 
+  // Map from emitter to event name to re-emitter
 
   reEmit(source, eventNames) {
     let reEmittersByEvent = this.reEmitters.get(source);
-
     if (!reEmittersByEvent) {
       reEmittersByEvent = new Map();
       this.reEmitters.set(source, reEmittersByEvent);
     }
-
     for (const eventName of eventNames) {
       // We include the source as the last argument for event handlers which may need it,
       // such as read receipt listeners on the client class which won't have the context
@@ -56,15 +56,13 @@
         // later by a different part of the code where 'emit' throwing because the app hasn't
         // added an error handler isn't terribly helpful. (A better fix in retrospect may
         // have been to just avoid using the event name 'error', but backwards compat...)
-        if (eventName === 'error' && this.target.listenerCount('error') === 0) return;
+        if (eventName === "error" && this.target.listenerCount("error") === 0) return;
         this.target.emit(eventName, ...args, source);
       };
-
       source.on(eventName, forSource);
       reEmittersByEvent.set(eventName, forSource);
     }
   }
-
   stopReEmitting(source, eventNames) {
     const reEmittersByEvent = this.reEmitters.get(source);
     if (!reEmittersByEvent) return; // We were never re-emitting these events in the first place
@@ -73,27 +71,19 @@
       source.off(eventName, reEmittersByEvent.get(eventName));
       reEmittersByEvent.delete(eventName);
     }
-
     if (reEmittersByEvent.size === 0) this.reEmitters.delete(source);
   }
-
 }
-
 exports.ReEmitter = ReEmitter;
-
 class TypedReEmitter extends ReEmitter {
   constructor(target) {
     super(target);
   }
-
   reEmit(source, eventNames) {
     super.reEmit(source, eventNames);
   }
-
   stopReEmitting(source, eventNames) {
     super.stopReEmitting(source, eventNames);
   }
-
 }
-
 exports.TypedReEmitter = TypedReEmitter;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/channels/index.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/channels/index.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/channels/index.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/channels/index.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,16 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+var _MSC3903ECDHv2RendezvousChannel = require("./MSC3903ECDHv2RendezvousChannel");
+Object.keys(_MSC3903ECDHv2RendezvousChannel).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _MSC3903ECDHv2RendezvousChannel[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _MSC3903ECDHv2RendezvousChannel[key];
+    }
+  });
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/channels/MSC3903ECDHv2RendezvousChannel.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/channels/MSC3903ECDHv2RendezvousChannel.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/channels/MSC3903ECDHv2RendezvousChannel.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/channels/MSC3903ECDHv2RendezvousChannel.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,180 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.MSC3903ECDHv2RendezvousChannel = void 0;
+var _ = require("..");
+var _olmlib = require("../../crypto/olmlib");
+var _crypto = require("../../crypto/crypto");
+var _SASDecimal = require("../../crypto/verification/SASDecimal");
+var _NamespacedValue = require("../../NamespacedValue");
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+const ECDH_V2 = new _NamespacedValue.UnstableValue("m.rendezvous.v2.curve25519-aes-sha256", "org.matrix.msc3903.rendezvous.v2.curve25519-aes-sha256");
+async function importKey(key) {
+  if (!_crypto.subtleCrypto) {
+    throw new Error("Web Crypto is not available");
+  }
+  const imported = _crypto.subtleCrypto.importKey("raw", key, {
+    name: "AES-GCM"
+  }, false, ["encrypt", "decrypt"]);
+  return imported;
+}
+
+/**
+ * Implementation of the unstable [MSC3903](https://github.com/matrix-org/matrix-spec-proposals/pull/3903)
+ * X25519/ECDH key agreement based secure rendezvous channel.
+ * Note that this is UNSTABLE and may have breaking changes without notice.
+ */
+class MSC3903ECDHv2RendezvousChannel {
+  constructor(transport, theirPublicKey, onFailure) {
+    this.transport = transport;
+    this.theirPublicKey = theirPublicKey;
+    this.onFailure = onFailure;
+    _defineProperty(this, "olmSAS", void 0);
+    _defineProperty(this, "ourPublicKey", void 0);
+    _defineProperty(this, "aesKey", void 0);
+    _defineProperty(this, "connected", false);
+    this.olmSAS = new global.Olm.SAS();
+    this.ourPublicKey = (0, _olmlib.decodeBase64)(this.olmSAS.get_pubkey());
+  }
+  async generateCode(intent) {
+    if (this.transport.ready) {
+      throw new Error("Code already generated");
+    }
+    await this.transport.send({
+      algorithm: ECDH_V2.name
+    });
+    const rendezvous = {
+      rendezvous: {
+        algorithm: ECDH_V2.name,
+        key: (0, _olmlib.encodeUnpaddedBase64)(this.ourPublicKey),
+        transport: await this.transport.details()
+      },
+      intent
+    };
+    return rendezvous;
+  }
+  async connect() {
+    if (this.connected) {
+      throw new Error("Channel already connected");
+    }
+    if (!this.olmSAS) {
+      throw new Error("Channel closed");
+    }
+    const isInitiator = !this.theirPublicKey;
+    if (isInitiator) {
+      // wait for the other side to send us their public key
+      const rawRes = await this.transport.receive();
+      if (!rawRes) {
+        throw new Error("No response from other device");
+      }
+      const res = rawRes;
+      const {
+        key,
+        algorithm
+      } = res;
+      if (!algorithm || !ECDH_V2.matches(algorithm) || !key) {
+        throw new _.RendezvousError("Unsupported algorithm: " + algorithm, _.RendezvousFailureReason.UnsupportedAlgorithm);
+      }
+      this.theirPublicKey = (0, _olmlib.decodeBase64)(key);
+    } else {
+      // send our public key unencrypted
+      await this.transport.send({
+        algorithm: ECDH_V2.name,
+        key: (0, _olmlib.encodeUnpaddedBase64)(this.ourPublicKey)
+      });
+    }
+    this.connected = true;
+    this.olmSAS.set_their_key((0, _olmlib.encodeUnpaddedBase64)(this.theirPublicKey));
+    const initiatorKey = isInitiator ? this.ourPublicKey : this.theirPublicKey;
+    const recipientKey = isInitiator ? this.theirPublicKey : this.ourPublicKey;
+    let aesInfo = ECDH_V2.name;
+    aesInfo += `|${(0, _olmlib.encodeUnpaddedBase64)(initiatorKey)}`;
+    aesInfo += `|${(0, _olmlib.encodeUnpaddedBase64)(recipientKey)}`;
+    const aesKeyBytes = this.olmSAS.generate_bytes(aesInfo, 32);
+    this.aesKey = await importKey(aesKeyBytes);
+
+    // blank the bytes out to make sure not kept in memory
+    aesKeyBytes.fill(0);
+    const rawChecksum = this.olmSAS.generate_bytes(aesInfo, 5);
+    return (0, _SASDecimal.generateDecimalSas)(Array.from(rawChecksum)).join("-");
+  }
+  async encrypt(data) {
+    if (!_crypto.subtleCrypto) {
+      throw new Error("Web Crypto is not available");
+    }
+    const iv = new Uint8Array(32);
+    _crypto.crypto.getRandomValues(iv);
+    const encodedData = new _crypto.TextEncoder().encode(JSON.stringify(data));
+    const ciphertext = await _crypto.subtleCrypto.encrypt({
+      name: "AES-GCM",
+      iv,
+      tagLength: 128
+    }, this.aesKey, encodedData);
+    return {
+      iv: (0, _olmlib.encodeUnpaddedBase64)(iv),
+      ciphertext: (0, _olmlib.encodeUnpaddedBase64)(ciphertext)
+    };
+  }
+  async send(payload) {
+    if (!this.olmSAS) {
+      throw new Error("Channel closed");
+    }
+    if (!this.aesKey) {
+      throw new Error("Shared secret not set up");
+    }
+    return this.transport.send(await this.encrypt(payload));
+  }
+  async decrypt({
+    iv,
+    ciphertext
+  }) {
+    if (!ciphertext || !iv) {
+      throw new Error("Missing ciphertext and/or iv");
+    }
+    const ciphertextBytes = (0, _olmlib.decodeBase64)(ciphertext);
+    if (!_crypto.subtleCrypto) {
+      throw new Error("Web Crypto is not available");
+    }
+    const plaintext = await _crypto.subtleCrypto.decrypt({
+      name: "AES-GCM",
+      iv: (0, _olmlib.decodeBase64)(iv),
+      tagLength: 128
+    }, this.aesKey, ciphertextBytes);
+    return JSON.parse(new TextDecoder().decode(new Uint8Array(plaintext)));
+  }
+  async receive() {
+    if (!this.olmSAS) {
+      throw new Error("Channel closed");
+    }
+    if (!this.aesKey) {
+      throw new Error("Shared secret not set up");
+    }
+    const rawData = await this.transport.receive();
+    if (!rawData) {
+      return undefined;
+    }
+    const data = rawData;
+    if (data.ciphertext && data.iv) {
+      return this.decrypt(data);
+    }
+    throw new Error("Data received but no ciphertext");
+  }
+  async close() {
+    if (this.olmSAS) {
+      this.olmSAS.free();
+      this.olmSAS = undefined;
+    }
+  }
+  async cancel(reason) {
+    try {
+      await this.transport.cancel(reason);
+    } finally {
+      await this.close();
+    }
+  }
+}
+exports.MSC3903ECDHv2RendezvousChannel = MSC3903ECDHv2RendezvousChannel;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/index.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/index.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/index.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/index.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,82 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+var _MSC3906Rendezvous = require("./MSC3906Rendezvous");
+Object.keys(_MSC3906Rendezvous).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _MSC3906Rendezvous[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _MSC3906Rendezvous[key];
+    }
+  });
+});
+var _RendezvousChannel = require("./RendezvousChannel");
+Object.keys(_RendezvousChannel).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _RendezvousChannel[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _RendezvousChannel[key];
+    }
+  });
+});
+var _RendezvousCode = require("./RendezvousCode");
+Object.keys(_RendezvousCode).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _RendezvousCode[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _RendezvousCode[key];
+    }
+  });
+});
+var _RendezvousError = require("./RendezvousError");
+Object.keys(_RendezvousError).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _RendezvousError[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _RendezvousError[key];
+    }
+  });
+});
+var _RendezvousFailureReason = require("./RendezvousFailureReason");
+Object.keys(_RendezvousFailureReason).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _RendezvousFailureReason[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _RendezvousFailureReason[key];
+    }
+  });
+});
+var _RendezvousIntent = require("./RendezvousIntent");
+Object.keys(_RendezvousIntent).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _RendezvousIntent[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _RendezvousIntent[key];
+    }
+  });
+});
+var _RendezvousTransport = require("./RendezvousTransport");
+Object.keys(_RendezvousTransport).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _RendezvousTransport[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _RendezvousTransport[key];
+    }
+  });
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/MSC3906Rendezvous.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/MSC3906Rendezvous.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/MSC3906Rendezvous.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/MSC3906Rendezvous.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,219 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.MSC3906Rendezvous = void 0;
+var _matrixEventsSdk = require("matrix-events-sdk");
+var _ = require(".");
+var _feature = require("../feature");
+var _logger = require("../logger");
+var _utils = require("../utils");
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+var PayloadType;
+(function (PayloadType) {
+  PayloadType["Start"] = "m.login.start";
+  PayloadType["Finish"] = "m.login.finish";
+  PayloadType["Progress"] = "m.login.progress";
+})(PayloadType || (PayloadType = {}));
+var Outcome;
+(function (Outcome) {
+  Outcome["Success"] = "success";
+  Outcome["Failure"] = "failure";
+  Outcome["Verified"] = "verified";
+  Outcome["Declined"] = "declined";
+  Outcome["Unsupported"] = "unsupported";
+})(Outcome || (Outcome = {}));
+const LOGIN_TOKEN_PROTOCOL = new _matrixEventsSdk.UnstableValue("login_token", "org.matrix.msc3906.login_token");
+
+/**
+ * Implements MSC3906 to allow a user to sign in on a new device using QR code.
+ * This implementation only supports generating a QR code on a device that is already signed in.
+ * Note that this is UNSTABLE and may have breaking changes without notice.
+ */
+class MSC3906Rendezvous {
+  /**
+   * @param channel - The secure channel used for communication
+   * @param client - The Matrix client in used on the device already logged in
+   * @param onFailure - Callback for when the rendezvous fails
+   */
+  constructor(channel, client, onFailure) {
+    this.channel = channel;
+    this.client = client;
+    this.onFailure = onFailure;
+    _defineProperty(this, "newDeviceId", void 0);
+    _defineProperty(this, "newDeviceKey", void 0);
+    _defineProperty(this, "ourIntent", _.RendezvousIntent.RECIPROCATE_LOGIN_ON_EXISTING_DEVICE);
+    _defineProperty(this, "_code", void 0);
+  }
+
+  /**
+   * Returns the code representing the rendezvous suitable for rendering in a QR code or undefined if not generated yet.
+   */
+  get code() {
+    return this._code;
+  }
+
+  /**
+   * Generate the code including doing partial set up of the channel where required.
+   */
+  async generateCode() {
+    if (this._code) {
+      return;
+    }
+    this._code = JSON.stringify(await this.channel.generateCode(this.ourIntent));
+  }
+  async startAfterShowingCode() {
+    const checksum = await this.channel.connect();
+    _logger.logger.info(`Connected to secure channel with checksum: ${checksum} our intent is ${this.ourIntent}`);
+    const features = await (0, _feature.buildFeatureSupportMap)(await this.client.getVersions());
+    // determine available protocols
+    if (features.get(_feature.Feature.LoginTokenRequest) === _feature.ServerSupport.Unsupported) {
+      _logger.logger.info("Server doesn't support MSC3882");
+      await this.send({
+        type: PayloadType.Finish,
+        outcome: Outcome.Unsupported
+      });
+      await this.cancel(_.RendezvousFailureReason.HomeserverLacksSupport);
+      return undefined;
+    }
+    await this.send({
+      type: PayloadType.Progress,
+      protocols: [LOGIN_TOKEN_PROTOCOL.name]
+    });
+    _logger.logger.info("Waiting for other device to chose protocol");
+    const {
+      type,
+      protocol,
+      outcome
+    } = await this.receive();
+    if (type === PayloadType.Finish) {
+      // new device decided not to complete
+      switch (outcome ?? "") {
+        case "unsupported":
+          await this.cancel(_.RendezvousFailureReason.UnsupportedAlgorithm);
+          break;
+        default:
+          await this.cancel(_.RendezvousFailureReason.Unknown);
+      }
+      return undefined;
+    }
+    if (type !== PayloadType.Progress) {
+      await this.cancel(_.RendezvousFailureReason.Unknown);
+      return undefined;
+    }
+    if (!protocol || !LOGIN_TOKEN_PROTOCOL.matches(protocol)) {
+      await this.cancel(_.RendezvousFailureReason.UnsupportedAlgorithm);
+      return undefined;
+    }
+    return checksum;
+  }
+  async receive() {
+    return await this.channel.receive();
+  }
+  async send(payload) {
+    await this.channel.send(payload);
+  }
+  async declineLoginOnExistingDevice() {
+    _logger.logger.info("User declined sign in");
+    await this.send({
+      type: PayloadType.Finish,
+      outcome: Outcome.Declined
+    });
+  }
+  async approveLoginOnExistingDevice(loginToken) {
+    // eslint-disable-next-line camelcase
+    await this.send({
+      type: PayloadType.Progress,
+      login_token: loginToken,
+      homeserver: this.client.baseUrl
+    });
+    _logger.logger.info("Waiting for outcome");
+    const res = await this.receive();
+    if (!res) {
+      return undefined;
+    }
+    const {
+      outcome,
+      device_id: deviceId,
+      device_key: deviceKey
+    } = res;
+    if (outcome !== "success") {
+      throw new Error("Linking failed");
+    }
+    this.newDeviceId = deviceId;
+    this.newDeviceKey = deviceKey;
+    return deviceId;
+  }
+  async verifyAndCrossSignDevice(deviceInfo) {
+    if (!this.client.crypto) {
+      throw new Error("Crypto not available on client");
+    }
+    if (!this.newDeviceId) {
+      throw new Error("No new device ID set");
+    }
+
+    // check that keys received from the server for the new device match those received from the device itself
+    if (deviceInfo.getFingerprint() !== this.newDeviceKey) {
+      throw new Error(`New device has different keys than expected: ${this.newDeviceKey} vs ${deviceInfo.getFingerprint()}`);
+    }
+    const userId = this.client.getUserId();
+    if (!userId) {
+      throw new Error("No user ID set");
+    }
+    // mark the device as verified locally + cross sign
+    _logger.logger.info(`Marking device ${this.newDeviceId} as verified`);
+    const info = await this.client.crypto.setDeviceVerification(userId, this.newDeviceId, true, false, true);
+    const masterPublicKey = this.client.crypto.crossSigningInfo.getId("master");
+    await this.send({
+      type: PayloadType.Finish,
+      outcome: Outcome.Verified,
+      verifying_device_id: this.client.getDeviceId(),
+      verifying_device_key: this.client.getDeviceEd25519Key(),
+      master_key: masterPublicKey
+    });
+    return info;
+  }
+
+  /**
+   * Verify the device and cross-sign it.
+   * @param timeout - time in milliseconds to wait for device to come online
+   * @returns the new device info if the device was verified
+   */
+  async verifyNewDeviceOnExistingDevice(timeout = 10 * 1000) {
+    if (!this.newDeviceId) {
+      throw new Error("No new device to sign");
+    }
+    if (!this.newDeviceKey) {
+      _logger.logger.info("No new device key to sign");
+      return undefined;
+    }
+    if (!this.client.crypto) {
+      throw new Error("Crypto not available on client");
+    }
+    const userId = this.client.getUserId();
+    if (!userId) {
+      throw new Error("No user ID set");
+    }
+    let deviceInfo = this.client.crypto.getStoredDevice(userId, this.newDeviceId);
+    if (!deviceInfo) {
+      _logger.logger.info("Going to wait for new device to be online");
+      await (0, _utils.sleep)(timeout);
+      deviceInfo = this.client.crypto.getStoredDevice(userId, this.newDeviceId);
+    }
+    if (deviceInfo) {
+      return await this.verifyAndCrossSignDevice(deviceInfo);
+    }
+    throw new Error("Device not online within timeout");
+  }
+  async cancel(reason) {
+    this.onFailure?.(reason);
+    await this.channel.cancel(reason);
+  }
+  async close() {
+    await this.channel.close();
+  }
+}
+exports.MSC3906Rendezvous = MSC3906Rendezvous;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousChannel.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousChannel.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousChannel.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousChannel.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousCode.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousCode.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousCode.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousCode.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousError.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousError.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousError.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousError.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,29 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.RendezvousError = void 0;
+/*
+Copyright 2022 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+class RendezvousError extends Error {
+  constructor(message, code) {
+    super(message);
+    this.code = code;
+  }
+}
+exports.RendezvousError = RendezvousError;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousFailureReason.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousFailureReason.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousFailureReason.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousFailureReason.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,36 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.RendezvousFailureReason = void 0;
+/*
+Copyright 2022 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+let RendezvousFailureReason;
+exports.RendezvousFailureReason = RendezvousFailureReason;
+(function (RendezvousFailureReason) {
+  RendezvousFailureReason["UserDeclined"] = "user_declined";
+  RendezvousFailureReason["OtherDeviceNotSignedIn"] = "other_device_not_signed_in";
+  RendezvousFailureReason["OtherDeviceAlreadySignedIn"] = "other_device_already_signed_in";
+  RendezvousFailureReason["Unknown"] = "unknown";
+  RendezvousFailureReason["Expired"] = "expired";
+  RendezvousFailureReason["UserCancelled"] = "user_cancelled";
+  RendezvousFailureReason["InvalidCode"] = "invalid_code";
+  RendezvousFailureReason["UnsupportedAlgorithm"] = "unsupported_algorithm";
+  RendezvousFailureReason["DataMismatch"] = "data_mismatch";
+  RendezvousFailureReason["UnsupportedTransport"] = "unsupported_transport";
+  RendezvousFailureReason["HomeserverLacksSupport"] = "homeserver_lacks_support";
+})(RendezvousFailureReason || (exports.RendezvousFailureReason = RendezvousFailureReason = {}));
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousIntent.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousIntent.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousIntent.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousIntent.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,27 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.RendezvousIntent = void 0;
+/*
+Copyright 2022 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+let RendezvousIntent;
+exports.RendezvousIntent = RendezvousIntent;
+(function (RendezvousIntent) {
+  RendezvousIntent["LOGIN_ON_NEW_DEVICE"] = "login.start";
+  RendezvousIntent["RECIPROCATE_LOGIN_ON_EXISTING_DEVICE"] = "login.reciprocate";
+})(RendezvousIntent || (exports.RendezvousIntent = RendezvousIntent = {}));
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousTransport.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousTransport.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousTransport.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/RendezvousTransport.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/transports/index.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/transports/index.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/transports/index.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/transports/index.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,16 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+var _MSC3886SimpleHttpRendezvousTransport = require("./MSC3886SimpleHttpRendezvousTransport");
+Object.keys(_MSC3886SimpleHttpRendezvousTransport).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _MSC3886SimpleHttpRendezvousTransport[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _MSC3886SimpleHttpRendezvousTransport[key];
+    }
+  });
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/transports/MSC3886SimpleHttpRendezvousTransport.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/transports/MSC3886SimpleHttpRendezvousTransport.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/transports/MSC3886SimpleHttpRendezvousTransport.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rendezvous/transports/MSC3886SimpleHttpRendezvousTransport.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,162 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.MSC3886SimpleHttpRendezvousTransport = void 0;
+var _matrixEventsSdk = require("matrix-events-sdk");
+var _logger = require("../../logger");
+var _utils = require("../../utils");
+var _ = require("..");
+var _httpApi = require("../../http-api");
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+const TYPE = new _matrixEventsSdk.UnstableValue("http.v1", "org.matrix.msc3886.http.v1");
+/**
+ * Implementation of the unstable [MSC3886](https://github.com/matrix-org/matrix-spec-proposals/pull/3886)
+ * simple HTTP rendezvous protocol.
+ * Note that this is UNSTABLE and may have breaking changes without notice.
+ */
+class MSC3886SimpleHttpRendezvousTransport {
+  constructor({
+    onFailure,
+    client,
+    fallbackRzServer,
+    fetchFn
+  }) {
+    _defineProperty(this, "uri", void 0);
+    _defineProperty(this, "etag", void 0);
+    _defineProperty(this, "expiresAt", void 0);
+    _defineProperty(this, "client", void 0);
+    _defineProperty(this, "fallbackRzServer", void 0);
+    _defineProperty(this, "fetchFn", void 0);
+    _defineProperty(this, "cancelled", false);
+    _defineProperty(this, "_ready", false);
+    _defineProperty(this, "onFailure", void 0);
+    this.fetchFn = fetchFn;
+    this.onFailure = onFailure;
+    this.client = client;
+    this.fallbackRzServer = fallbackRzServer;
+  }
+  get ready() {
+    return this._ready;
+  }
+  async details() {
+    if (!this.uri) {
+      throw new Error("Rendezvous not set up");
+    }
+    return {
+      type: TYPE.name,
+      uri: this.uri
+    };
+  }
+  fetch(resource, options) {
+    if (this.fetchFn) {
+      return this.fetchFn(resource, options);
+    }
+    return global.fetch(resource, options);
+  }
+  async getPostEndpoint() {
+    try {
+      if (await this.client.doesServerSupportUnstableFeature("org.matrix.msc3886")) {
+        return `${this.client.baseUrl}${_httpApi.ClientPrefix.Unstable}/org.matrix.msc3886/rendezvous`;
+      }
+    } catch (err) {
+      _logger.logger.warn("Failed to get unstable features", err);
+    }
+    return this.fallbackRzServer;
+  }
+  async send(data) {
+    if (this.cancelled) {
+      return;
+    }
+    const method = this.uri ? "PUT" : "POST";
+    const uri = this.uri ?? (await this.getPostEndpoint());
+    if (!uri) {
+      throw new Error("Invalid rendezvous URI");
+    }
+    const headers = {
+      "content-type": "application/json"
+    };
+    if (this.etag) {
+      headers["if-match"] = this.etag;
+    }
+    const res = await this.fetch(uri, {
+      method,
+      headers,
+      body: JSON.stringify(data)
+    });
+    if (res.status === 404) {
+      return this.cancel(_.RendezvousFailureReason.Unknown);
+    }
+    this.etag = res.headers.get("etag") ?? undefined;
+    if (method === "POST") {
+      const location = res.headers.get("location");
+      if (!location) {
+        throw new Error("No rendezvous URI given");
+      }
+      const expires = res.headers.get("expires");
+      if (expires) {
+        this.expiresAt = new Date(expires);
+      }
+      // we would usually expect the final `url` to be set by a proper fetch implementation.
+      // however, if a polyfill based on XHR is used it won't be set, we we use existing URI as fallback
+      const baseUrl = res.url ?? uri;
+      // resolve location header which could be relative or absolute
+      this.uri = new URL(location, `${baseUrl}${baseUrl.endsWith("/") ? "" : "/"}`).href;
+      this._ready = true;
+    }
+  }
+  async receive() {
+    if (!this.uri) {
+      throw new Error("Rendezvous not set up");
+    }
+    // eslint-disable-next-line no-constant-condition
+    while (true) {
+      if (this.cancelled) {
+        return undefined;
+      }
+      const headers = {};
+      if (this.etag) {
+        headers["if-none-match"] = this.etag;
+      }
+      const poll = await this.fetch(this.uri, {
+        method: "GET",
+        headers
+      });
+      if (poll.status === 404) {
+        this.cancel(_.RendezvousFailureReason.Unknown);
+        return undefined;
+      }
+
+      // rely on server expiring the channel rather than checking ourselves
+
+      if (poll.headers.get("content-type") !== "application/json") {
+        this.etag = poll.headers.get("etag") ?? undefined;
+      } else if (poll.status === 200) {
+        this.etag = poll.headers.get("etag") ?? undefined;
+        return poll.json();
+      }
+      await (0, _utils.sleep)(1000);
+    }
+  }
+  async cancel(reason) {
+    if (reason === _.RendezvousFailureReason.Unknown && this.expiresAt && this.expiresAt.getTime() < Date.now()) {
+      reason = _.RendezvousFailureReason.Expired;
+    }
+    this.cancelled = true;
+    this._ready = false;
+    this.onFailure?.(reason);
+    if (this.uri && reason === _.RendezvousFailureReason.UserDeclined) {
+      try {
+        await this.fetch(this.uri, {
+          method: "DELETE"
+        });
+      } catch (e) {
+        _logger.logger.warn(e);
+      }
+    }
+  }
+}
+exports.MSC3886SimpleHttpRendezvousTransport = MSC3886SimpleHttpRendezvousTransport;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/room-hierarchy.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/room-hierarchy.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/room-hierarchy.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/room-hierarchy.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,14 +4,15 @@
   value: true
 });
 exports.RoomHierarchy = void 0;
-
 var _event = require("./@types/event");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 class RoomHierarchy {
   // Map from room id to list of servers which are listed as a via somewhere in the loaded hierarchy
+
   // Map from room id to list of rooms which claim this room as their child
+
   // Map from room id to object
 
   /**
@@ -19,54 +20,40 @@
    *
    * A RoomHierarchy instance allows you to easily make use of the /hierarchy API and paginate it.
    *
-   * @param {Room} root the root of this hierarchy
-   * @param {number} pageSize the maximum number of rooms to return per page, can be overridden per load request.
-   * @param {number} maxDepth the maximum depth to traverse the hierarchy to
-   * @param {boolean} suggestedOnly whether to only return rooms with suggested=true.
-   * @constructor
+   * @param root - the root of this hierarchy
+   * @param pageSize - the maximum number of rooms to return per page, can be overridden per load request.
+   * @param maxDepth - the maximum depth to traverse the hierarchy to
+   * @param suggestedOnly - whether to only return rooms with suggested=true.
    */
   constructor(root, pageSize, maxDepth, suggestedOnly = false) {
     this.root = root;
     this.pageSize = pageSize;
     this.maxDepth = maxDepth;
     this.suggestedOnly = suggestedOnly;
-
     _defineProperty(this, "viaMap", new Map());
-
     _defineProperty(this, "backRefs", new Map());
-
     _defineProperty(this, "roomMap", new Map());
-
     _defineProperty(this, "loadRequest", void 0);
-
     _defineProperty(this, "nextBatch", void 0);
-
     _defineProperty(this, "_rooms", void 0);
-
     _defineProperty(this, "serverSupportError", void 0);
   }
-
   get noSupport() {
     return !!this.serverSupportError;
   }
-
   get canLoadMore() {
     return !!this.serverSupportError || !!this.nextBatch || !this._rooms;
   }
-
   get loading() {
     return !!this.loadRequest;
   }
-
   get rooms() {
     return this._rooms;
   }
-
   async load(pageSize = this.pageSize) {
     if (this.loadRequest) return this.loadRequest.then(r => r.rooms);
     this.loadRequest = this.root.client.getRoomHierarchy(this.root.roomId, pageSize, this.maxDepth, this.suggestedOnly, this.nextBatch);
     let rooms;
-
     try {
       ({
         rooms,
@@ -78,35 +65,32 @@
       } else {
         throw e;
       }
-
       return [];
     } finally {
-      this.loadRequest = null;
+      this.loadRequest = undefined;
     }
-
     if (this._rooms) {
       this._rooms = this._rooms.concat(rooms);
     } else {
       this._rooms = rooms;
     }
-
     rooms.forEach(room => {
       this.roomMap.set(room.room_id, room);
       room.children_state.forEach(ev => {
         if (ev.type !== _event.EventType.SpaceChild) return;
-        const childRoomId = ev.state_key; // track backrefs for quicker hierarchy navigation
+        const childRoomId = ev.state_key;
 
+        // track backrefs for quicker hierarchy navigation
         if (!this.backRefs.has(childRoomId)) {
           this.backRefs.set(childRoomId, []);
         }
+        this.backRefs.get(childRoomId).push(room.room_id);
 
-        this.backRefs.get(childRoomId).push(room.room_id); // fill viaMap
-
+        // fill viaMap
         if (Array.isArray(ev.content.via)) {
           if (!this.viaMap.has(childRoomId)) {
             this.viaMap.set(childRoomId, new Set());
           }
-
           const vias = this.viaMap.get(childRoomId);
           ev.content.via.forEach(via => vias.add(via));
         }
@@ -114,32 +98,25 @@
     });
     return rooms;
   }
-
   getRelation(parentId, childId) {
     return this.roomMap.get(parentId)?.children_state.find(e => e.state_key === childId);
   }
-
   isSuggested(parentId, childId) {
     return this.getRelation(parentId, childId)?.content.suggested;
-  } // locally remove a relation as a form of local echo
-
+  }
 
+  // locally remove a relation as a form of local echo
   removeRelation(parentId, childId) {
     const backRefs = this.backRefs.get(childId);
-
     if (backRefs?.length === 1) {
       this.backRefs.delete(childId);
     } else if (backRefs?.length) {
       this.backRefs.set(childId, backRefs.filter(ref => ref !== parentId));
     }
-
     const room = this.roomMap.get(parentId);
-
     if (room) {
       room.children_state = room.children_state.filter(ev => ev.state_key !== childId);
     }
   }
-
 }
-
 exports.RoomHierarchy = RoomHierarchy;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/browserify-index.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/browserify-index.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/browserify-index.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/browserify-index.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,31 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.initRustCrypto = initRustCrypto;
+/*
+Copyright 2023 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+/* This file replaces rust-crypto/index.ts when the js-sdk is being built for browserify.
+ *
+ * It is a stub, so that we do not import the whole of the base64'ed wasm artifact into the browserify bundle.
+ * It deliberately does nothing except raise an exception.
+ */
+
+async function initRustCrypto(_http, _userId, _deviceId) {
+  throw new Error("Rust crypto is not supported under browserify.");
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/constants.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/constants.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/constants.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/constants.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,25 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.RUST_SDK_STORE_PREFIX = void 0;
+/*
+Copyright 2022 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+/** The prefix used on indexeddbs created by rust-crypto */
+const RUST_SDK_STORE_PREFIX = "matrix-js-sdk";
+exports.RUST_SDK_STORE_PREFIX = RUST_SDK_STORE_PREFIX;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/index.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/index.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/index.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/index.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,44 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.initRustCrypto = initRustCrypto;
+var RustSdkCryptoJs = _interopRequireWildcard(require("@matrix-org/matrix-sdk-crypto-js"));
+var _rustCrypto = require("./rust-crypto");
+var _logger = require("../logger");
+var _constants = require("./constants");
+function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
+function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
+/*
+Copyright 2022 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+async function initRustCrypto(http, userId, deviceId) {
+  // initialise the rust matrix-sdk-crypto-js, if it hasn't already been done
+  await RustSdkCryptoJs.initAsync();
+
+  // enable tracing in the rust-sdk
+  new RustSdkCryptoJs.Tracing(RustSdkCryptoJs.LoggerLevel.Debug).turnOn();
+  const u = new RustSdkCryptoJs.UserId(userId);
+  const d = new RustSdkCryptoJs.DeviceId(deviceId);
+  _logger.logger.info("Init OlmMachine");
+
+  // TODO: use the pickle key for the passphrase
+  const olmMachine = await RustSdkCryptoJs.OlmMachine.initialize(u, d, _constants.RUST_SDK_STORE_PREFIX, "test pass");
+  const rustCrypto = new _rustCrypto.RustCrypto(olmMachine, http, userId, deviceId);
+  _logger.logger.info("Completed rust crypto-sdk setup");
+  return rustCrypto;
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/KeyClaimManager.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/KeyClaimManager.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/KeyClaimManager.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/KeyClaimManager.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,75 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.KeyClaimManager = void 0;
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+/*
+Copyright 2023 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+/**
+ * KeyClaimManager: linearises calls to OlmMachine.getMissingSessions to avoid races
+ *
+ * We have one of these per `RustCrypto` (and hence per `MatrixClient`).
+ */
+class KeyClaimManager {
+  constructor(olmMachine, outgoingRequestProcessor) {
+    this.olmMachine = olmMachine;
+    this.outgoingRequestProcessor = outgoingRequestProcessor;
+    _defineProperty(this, "currentClaimPromise", void 0);
+    _defineProperty(this, "stopped", false);
+    this.currentClaimPromise = Promise.resolve();
+  }
+
+  /**
+   * Tell the KeyClaimManager to immediately stop processing requests.
+   *
+   * Any further calls, and any still in the queue, will fail with an error.
+   */
+  stop() {
+    this.stopped = true;
+  }
+
+  /**
+   * Given a list of users, attempt to ensure that we have Olm Sessions active with each of their devices
+   *
+   * If we don't have an active olm session, we will claim a one-time key and start one.
+   *
+   * @param userList - list of userIDs to claim
+   */
+  ensureSessionsForUsers(userList) {
+    // The Rust-SDK requires that we only have one getMissingSessions process in flight at once. This little dance
+    // ensures that, by only having one call to ensureSessionsForUsersInner active at once (and making them
+    // queue up in order).
+    const prom = this.currentClaimPromise.finally(() => this.ensureSessionsForUsersInner(userList));
+    this.currentClaimPromise = prom;
+    return prom;
+  }
+  async ensureSessionsForUsersInner(userList) {
+    // bail out quickly if we've been stopped.
+    if (this.stopped) {
+      throw new Error(`Cannot ensure Olm sessions: shutting down`);
+    }
+    const claimRequest = await this.olmMachine.getMissingSessions(userList);
+    if (claimRequest) {
+      await this.outgoingRequestProcessor.makeOutgoingRequest(claimRequest);
+    }
+  }
+}
+exports.KeyClaimManager = KeyClaimManager;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/OutgoingRequestProcessor.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/OutgoingRequestProcessor.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/OutgoingRequestProcessor.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/OutgoingRequestProcessor.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,93 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.OutgoingRequestProcessor = void 0;
+var _matrixSdkCryptoJs = require("@matrix-org/matrix-sdk-crypto-js");
+var _logger = require("../logger");
+var _httpApi = require("../http-api");
+/*
+Copyright 2023 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+/**
+ * OutgoingRequestManager: turns `OutgoingRequest`s from the rust sdk into HTTP requests
+ *
+ * We have one of these per `RustCrypto` (and hence per `MatrixClient`), not that it does anything terribly complicated.
+ * It's responsible for:
+ *
+ *   * holding the reference to the `MatrixHttpApi`
+ *   * turning `OutgoingRequest`s from the rust backend into HTTP requests, and sending them
+ *   * sending the results of such requests back to the rust backend.
+ */
+class OutgoingRequestProcessor {
+  constructor(olmMachine, http) {
+    this.olmMachine = olmMachine;
+    this.http = http;
+  }
+  async makeOutgoingRequest(msg) {
+    let resp;
+
+    /* refer https://docs.rs/matrix-sdk-crypto/0.6.0/matrix_sdk_crypto/requests/enum.OutgoingRequests.html
+     * for the complete list of request types
+     */
+    if (msg instanceof _matrixSdkCryptoJs.KeysUploadRequest) {
+      resp = await this.rawJsonRequest(_httpApi.Method.Post, "/_matrix/client/v3/keys/upload", {}, msg.body);
+    } else if (msg instanceof _matrixSdkCryptoJs.KeysQueryRequest) {
+      resp = await this.rawJsonRequest(_httpApi.Method.Post, "/_matrix/client/v3/keys/query", {}, msg.body);
+    } else if (msg instanceof _matrixSdkCryptoJs.KeysClaimRequest) {
+      resp = await this.rawJsonRequest(_httpApi.Method.Post, "/_matrix/client/v3/keys/claim", {}, msg.body);
+    } else if (msg instanceof _matrixSdkCryptoJs.SignatureUploadRequest) {
+      resp = await this.rawJsonRequest(_httpApi.Method.Post, "/_matrix/client/v3/keys/signatures/upload", {}, msg.body);
+    } else if (msg instanceof _matrixSdkCryptoJs.KeysBackupRequest) {
+      resp = await this.rawJsonRequest(_httpApi.Method.Put, "/_matrix/client/v3/room_keys/keys", {}, msg.body);
+    } else if (msg instanceof _matrixSdkCryptoJs.ToDeviceRequest) {
+      const path = `/_matrix/client/v3/sendToDevice/${encodeURIComponent(msg.event_type)}/` + encodeURIComponent(msg.txn_id);
+      resp = await this.rawJsonRequest(_httpApi.Method.Put, path, {}, msg.body);
+    } else if (msg instanceof _matrixSdkCryptoJs.RoomMessageRequest) {
+      const path = `/_matrix/client/v3/room/${encodeURIComponent(msg.room_id)}/send/` + `${encodeURIComponent(msg.event_type)}/${encodeURIComponent(msg.txn_id)}`;
+      resp = await this.rawJsonRequest(_httpApi.Method.Put, path, {}, msg.body);
+    } else {
+      _logger.logger.warn("Unsupported outgoing message", Object.getPrototypeOf(msg));
+      resp = "";
+    }
+    if (msg.id) {
+      await this.olmMachine.markRequestAsSent(msg.id, msg.type, resp);
+    }
+  }
+  async rawJsonRequest(method, path, queryParams, body) {
+    const opts = {
+      // inhibit the JSON stringification and parsing within HttpApi.
+      json: false,
+      // nevertheless, we are sending, and accept, JSON.
+      headers: {
+        "Content-Type": "application/json",
+        "Accept": "application/json"
+      },
+      // we use the full prefix
+      prefix: ""
+    };
+    try {
+      const response = await this.http.authedRequest(method, path, queryParams, body, opts);
+      _logger.logger.info(`rust-crypto: successfully made HTTP request: ${method} ${path}`);
+      return response;
+    } catch (e) {
+      _logger.logger.warn(`rust-crypto: error making HTTP request: ${method} ${path}: ${e}`);
+      throw e;
+    }
+  }
+}
+exports.OutgoingRequestProcessor = OutgoingRequestProcessor;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/RoomEncryptor.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/RoomEncryptor.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/RoomEncryptor.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/RoomEncryptor.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,93 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.RoomEncryptor = void 0;
+var _matrixSdkCryptoJs = require("@matrix-org/matrix-sdk-crypto-js");
+var _event = require("../@types/event");
+var _logger = require("../logger");
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+/**
+ * RoomEncryptor: responsible for encrypting messages to a given room
+ */
+class RoomEncryptor {
+  /**
+   * @param olmMachine - The rust-sdk's OlmMachine
+   * @param keyClaimManager - Our KeyClaimManager, which manages the queue of one-time-key claim requests
+   * @param room - The room we want to encrypt for
+   * @param encryptionSettings - body of the m.room.encryption event currently in force in this room
+   */
+  constructor(olmMachine, keyClaimManager, room, encryptionSettings) {
+    this.olmMachine = olmMachine;
+    this.keyClaimManager = keyClaimManager;
+    this.room = room;
+    this.encryptionSettings = encryptionSettings;
+    _defineProperty(this, "prefixedLogger", void 0);
+    this.prefixedLogger = _logger.logger.withPrefix(`[${room.roomId} encryption]`);
+  }
+
+  /**
+   * Handle a new `m.room.encryption` event in this room
+   *
+   * @param config - The content of the encryption event
+   */
+  onCryptoEvent(config) {
+    if (JSON.stringify(this.encryptionSettings) != JSON.stringify(config)) {
+      this.prefixedLogger.error(`Ignoring m.room.encryption event which requests a change of config`);
+    }
+  }
+
+  /**
+   * Handle a new `m.room.member` event in this room
+   *
+   * @param member - new membership state
+   */
+  onRoomMembership(member) {
+    this.prefixedLogger.debug(`${member.membership} event for ${member.userId}`);
+    if (member.membership == "join" || member.membership == "invite" && this.room.shouldEncryptForInvitedMembers()) {
+      // make sure we are tracking the deviceList for this user
+      this.prefixedLogger.debug(`starting to track devices for: ${member.userId}`);
+      this.olmMachine.updateTrackedUsers([new _matrixSdkCryptoJs.UserId(member.userId)]);
+    }
+
+    // TODO: handle leaves (including our own)
+  }
+
+  /**
+   * Prepare to encrypt events in this room.
+   *
+   * This ensures that we have a megolm session ready to use and that we have shared its key with all the devices
+   * in the room.
+   */
+  async ensureEncryptionSession() {
+    if (this.encryptionSettings.algorithm !== "m.megolm.v1.aes-sha2") {
+      throw new Error(`Cannot encrypt in ${this.room.roomId} for unsupported algorithm '${this.encryptionSettings.algorithm}'`);
+    }
+    const members = await this.room.getEncryptionTargetMembers();
+    this.prefixedLogger.debug(`Encrypting for users (shouldEncryptForInvitedMembers: ${this.room.shouldEncryptForInvitedMembers()}):`, members.map(u => `${u.userId} (${u.membership})`));
+    const userList = members.map(u => new _matrixSdkCryptoJs.UserId(u.userId));
+    await this.keyClaimManager.ensureSessionsForUsers(userList);
+    const rustEncryptionSettings = new _matrixSdkCryptoJs.EncryptionSettings();
+    /* FIXME historyVisibility, rotation, etc */
+
+    await this.olmMachine.shareRoomKey(new _matrixSdkCryptoJs.RoomId(this.room.roomId), userList, rustEncryptionSettings);
+  }
+
+  /**
+   * Encrypt an event for this room
+   *
+   * This will ensure that we have a megolm session for this room, share it with the devices in the room, and
+   * then encrypt the event using the session.
+   *
+   * @param event - Event to be encrypted.
+   */
+  async encryptEvent(event) {
+    await this.ensureEncryptionSession();
+    const encryptedContent = await this.olmMachine.encryptRoomEvent(new _matrixSdkCryptoJs.RoomId(this.room.roomId), event.getType(), JSON.stringify(event.getContent()));
+    event.makeEncrypted(_event.EventType.RoomMessageEncrypted, JSON.parse(encryptedContent), this.olmMachine.identityKeys.curve25519.toBase64(), this.olmMachine.identityKeys.ed25519.toBase64());
+  }
+}
+exports.RoomEncryptor = RoomEncryptor;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/rust-crypto.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/rust-crypto.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/rust-crypto.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/rust-crypto/rust-crypto.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,234 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.RustCrypto = void 0;
+var RustSdkCryptoJs = _interopRequireWildcard(require("@matrix-org/matrix-sdk-crypto-js"));
+var _logger = require("../logger");
+var _CrossSigning = require("../crypto/CrossSigning");
+var _RoomEncryptor = require("./RoomEncryptor");
+var _OutgoingRequestProcessor = require("./OutgoingRequestProcessor");
+var _KeyClaimManager = require("./KeyClaimManager");
+function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
+function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+/**
+ * An implementation of {@link CryptoBackend} using the Rust matrix-sdk-crypto.
+ */
+class RustCrypto {
+  /** whether {@link stop} has been called */
+
+  /** whether {@link outgoingRequestLoop} is currently running */
+
+  /** mapping of roomId → encryptor class */
+
+  constructor(olmMachine, http, _userId, _deviceId) {
+    this.olmMachine = olmMachine;
+    _defineProperty(this, "globalBlacklistUnverifiedDevices", false);
+    _defineProperty(this, "globalErrorOnUnknownDevices", false);
+    _defineProperty(this, "stopped", false);
+    _defineProperty(this, "outgoingRequestLoopRunning", false);
+    _defineProperty(this, "roomEncryptors", {});
+    _defineProperty(this, "keyClaimManager", void 0);
+    _defineProperty(this, "outgoingRequestProcessor", void 0);
+    this.outgoingRequestProcessor = new _OutgoingRequestProcessor.OutgoingRequestProcessor(olmMachine, http);
+    this.keyClaimManager = new _KeyClaimManager.KeyClaimManager(olmMachine, this.outgoingRequestProcessor);
+  }
+
+  ///////////////////////////////////////////////////////////////////////////////////////////////////////////////////
+  //
+  // CryptoBackend implementation
+  //
+  ///////////////////////////////////////////////////////////////////////////////////////////////////////////////////
+
+  stop() {
+    // stop() may be called multiple times, but attempting to close() the OlmMachine twice
+    // will cause an error.
+    if (this.stopped) {
+      return;
+    }
+    this.stopped = true;
+    this.keyClaimManager.stop();
+
+    // make sure we close() the OlmMachine; doing so means that all the Rust objects will be
+    // cleaned up; in particular, the indexeddb connections will be closed, which means they
+    // can then be deleted.
+    this.olmMachine.close();
+  }
+  prepareToEncrypt(room) {
+    const encryptor = this.roomEncryptors[room.roomId];
+    if (encryptor) {
+      encryptor.ensureEncryptionSession();
+    }
+  }
+  async encryptEvent(event, _room) {
+    const roomId = event.getRoomId();
+    const encryptor = this.roomEncryptors[roomId];
+    if (!encryptor) {
+      throw new Error(`Cannot encrypt event in unconfigured room ${roomId}`);
+    }
+    await encryptor.encryptEvent(event);
+  }
+  async decryptEvent(event) {
+    const roomId = event.getRoomId();
+    if (!roomId) {
+      // presumably, a to-device message. These are normally decrypted in preprocessToDeviceMessages
+      // so the fact it has come back here suggests that decryption failed.
+      //
+      // once we drop support for the libolm crypto implementation, we can stop passing to-device messages
+      // through decryptEvent and hence get rid of this case.
+      throw new Error("to-device event was not decrypted in preprocessToDeviceMessages");
+    }
+    const res = await this.olmMachine.decryptRoomEvent(JSON.stringify({
+      event_id: event.getId(),
+      type: event.getWireType(),
+      sender: event.getSender(),
+      state_key: event.getStateKey(),
+      content: event.getWireContent(),
+      origin_server_ts: event.getTs()
+    }), new RustSdkCryptoJs.RoomId(event.getRoomId()));
+    return {
+      clearEvent: JSON.parse(res.event),
+      claimedEd25519Key: res.senderClaimedEd25519Key,
+      senderCurve25519Key: res.senderCurve25519Key,
+      forwardingCurve25519KeyChain: res.forwardingCurve25519KeyChain
+    };
+  }
+  getEventEncryptionInfo(event) {
+    // TODO: make this work properly. Or better, replace it.
+
+    const ret = {};
+    ret.senderKey = event.getSenderKey() ?? undefined;
+    ret.algorithm = event.getWireContent().algorithm;
+    if (!ret.senderKey || !ret.algorithm) {
+      ret.encrypted = false;
+      return ret;
+    }
+    ret.encrypted = true;
+    ret.authenticated = true;
+    ret.mismatchedSender = true;
+    return ret;
+  }
+  async userHasCrossSigningKeys() {
+    // TODO
+    return false;
+  }
+  async exportRoomKeys() {
+    // TODO
+    return [];
+  }
+  checkUserTrust(userId) {
+    // TODO
+    return new _CrossSigning.UserTrustLevel(false, false, false);
+  }
+  checkDeviceTrust(userId, deviceId) {
+    // TODO
+    return new _CrossSigning.DeviceTrustLevel(false, false, false, false);
+  }
+
+  ///////////////////////////////////////////////////////////////////////////////////////////////////////////////////
+  //
+  // SyncCryptoCallbacks implementation
+  //
+  ///////////////////////////////////////////////////////////////////////////////////////////////////////////////////
+
+  /** called by the sync loop to preprocess incoming to-device messages
+   *
+   * @param events - the received to-device messages
+   * @returns A list of preprocessed to-device messages.
+   */
+  async preprocessToDeviceMessages(events) {
+    // send the received to-device messages into receiveSyncChanges. We have no info on device-list changes,
+    // one-time-keys, or fallback keys, so just pass empty data.
+    const result = await this.olmMachine.receiveSyncChanges(JSON.stringify(events), new RustSdkCryptoJs.DeviceLists(), new Map(), new Set());
+
+    // receiveSyncChanges returns a JSON-encoded list of decrypted to-device messages.
+    return JSON.parse(result);
+  }
+
+  /** called by the sync loop on m.room.encrypted events
+   *
+   * @param room - in which the event was received
+   * @param event - encryption event to be processed
+   */
+  async onCryptoEvent(room, event) {
+    const config = event.getContent();
+    const existingEncryptor = this.roomEncryptors[room.roomId];
+    if (existingEncryptor) {
+      existingEncryptor.onCryptoEvent(config);
+    } else {
+      this.roomEncryptors[room.roomId] = new _RoomEncryptor.RoomEncryptor(this.olmMachine, this.keyClaimManager, room, config);
+    }
+
+    // start tracking devices for any users already known to be in this room.
+    const members = await room.getEncryptionTargetMembers();
+    _logger.logger.debug(`[${room.roomId} encryption] starting to track devices for: `, members.map(u => `${u.userId} (${u.membership})`));
+    await this.olmMachine.updateTrackedUsers(members.map(u => new RustSdkCryptoJs.UserId(u.userId)));
+  }
+
+  /** called by the sync loop after processing each sync.
+   *
+   * TODO: figure out something equivalent for sliding sync.
+   *
+   * @param syncState - information on the completed sync.
+   */
+  onSyncCompleted(syncState) {
+    // Processing the /sync may have produced new outgoing requests which need sending, so kick off the outgoing
+    // request loop, if it's not already running.
+    this.outgoingRequestLoop();
+  }
+
+  ///////////////////////////////////////////////////////////////////////////////////////////////////////////////////
+  //
+  // Other public functions
+  //
+  ///////////////////////////////////////////////////////////////////////////////////////////////////////////////////
+
+  /** called by the MatrixClient on a room membership event
+   *
+   * @param event - The matrix event which caused this event to fire.
+   * @param member - The member whose RoomMember.membership changed.
+   * @param oldMembership - The previous membership state. Null if it's a new member.
+   */
+  onRoomMembership(event, member, oldMembership) {
+    const enc = this.roomEncryptors[event.getRoomId()];
+    if (!enc) {
+      // not encrypting in this room
+      return;
+    }
+    enc.onRoomMembership(member);
+  }
+
+  ///////////////////////////////////////////////////////////////////////////////////////////////////////////////////
+  //
+  // Outgoing requests
+  //
+  ///////////////////////////////////////////////////////////////////////////////////////////////////////////////////
+
+  async outgoingRequestLoop() {
+    if (this.outgoingRequestLoopRunning) {
+      return;
+    }
+    this.outgoingRequestLoopRunning = true;
+    try {
+      while (!this.stopped) {
+        const outgoingRequests = await this.olmMachine.outgoingRequests();
+        if (outgoingRequests.length == 0 || this.stopped) {
+          // no more messages to send (or we have been told to stop): exit the loop
+          return;
+        }
+        for (const msg of outgoingRequests) {
+          await this.outgoingRequestProcessor.makeOutgoingRequest(msg);
+        }
+      }
+    } catch (e) {
+      _logger.logger.error("Error processing outgoing-message requests from rust crypto-sdk", e);
+    } finally {
+      this.outgoingRequestLoopRunning = false;
+    }
+  }
+}
+exports.RustCrypto = RustCrypto;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/scheduler.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/scheduler.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/scheduler.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/scheduler.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,33 +4,17 @@
   value: true
 });
 exports.MatrixScheduler = void 0;
-
 var utils = _interopRequireWildcard(require("./utils"));
-
 var _logger = require("./logger");
-
 var _event = require("./@types/event");
-
+var _httpApi = require("./http-api");
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 const DEBUG = false; // set true to enable console logging.
 
-/**
- * Construct a scheduler for Matrix. Requires
- * {@link module:scheduler~MatrixScheduler#setProcessFunction} to be provided
- * with a way of processing events.
- * @constructor
- * @param {module:scheduler~retryAlgorithm} retryAlgorithm Optional. The retry
- * algorithm to apply when determining when to try to send an event again.
- * Defaults to {@link module:scheduler~MatrixScheduler.RETRY_BACKOFF_RATELIMIT}.
- * @param {module:scheduler~queueAlgorithm} queueAlgorithm Optional. The queuing
- * algorithm to apply when determining which events should be sent before the
- * given event. Defaults to {@link module:scheduler~MatrixScheduler.QUEUE_MESSAGES}.
- */
 // eslint-disable-next-line camelcase
 class MatrixScheduler {
   /**
@@ -38,169 +22,173 @@
    * times of 2, 4, 8, and 16 seconds (30s total) after which we give up. If the
    * failure was due to a rate limited request, the time specified in the error is
    * waited before being retried.
-   * @param {MatrixEvent} event
-   * @param {Number} attempts Number of attempts that have been made, including the one that just failed (ie. starting at 1)
-   * @param {MatrixError} err
-   * @return {Number}
-   * @see module:scheduler~retryAlgorithm
+   * @param attempts - Number of attempts that have been made, including the one that just failed (ie. starting at 1)
+   * @see retryAlgorithm
    */
   // eslint-disable-next-line @typescript-eslint/naming-convention
   static RETRY_BACKOFF_RATELIMIT(event, attempts, err) {
     if (err.httpStatus === 400 || err.httpStatus === 403 || err.httpStatus === 401) {
       // client error; no amount of retrying with save you now.
       return -1;
-    } // we ship with browser-request which returns { cors: rejected } when trying
-    // with no connection, so if we match that, give up since they have no conn.
-
-
-    if (err["cors"] === "rejected") {
+    }
+    if (err instanceof _httpApi.ConnectionError) {
       return -1;
-    } // if event that we are trying to send is too large in any way then retrying won't help
-
+    }
 
+    // if event that we are trying to send is too large in any way then retrying won't help
     if (err.name === "M_TOO_LARGE") {
       return -1;
     }
-
     if (err.name === "M_LIMIT_EXCEEDED") {
       const waitTime = err.data.retry_after_ms;
-
       if (waitTime > 0) {
         return waitTime;
       }
     }
-
     if (attempts > 4) {
       return -1; // give up
     }
 
     return 1000 * Math.pow(2, attempts);
   }
+
   /**
-   * Queues <code>m.room.message</code> events and lets other events continue
+   * Queues `m.room.message` events and lets other events continue
    * concurrently.
-   * @param {MatrixEvent} event
-   * @return {string}
-   * @see module:scheduler~queueAlgorithm
+   * @see queueAlgorithm
    */
   // eslint-disable-next-line @typescript-eslint/naming-convention
-
-
   static QUEUE_MESSAGES(event) {
     // enqueue messages or events that associate with another event (redactions and relations)
-    if (event.getType() === _event.EventType.RoomMessage || event.hasAssocation()) {
+    if (event.getType() === _event.EventType.RoomMessage || event.hasAssociation()) {
       // put these events in the 'message' queue.
       return "message";
-    } // allow all other events continue concurrently.
-
-
+    }
+    // allow all other events continue concurrently.
     return null;
-  } // queueName: [{
+  }
+
+  // queueName: [{
   //  event: MatrixEvent,  // event to send
   //  defer: Deferred,  // defer to resolve/reject at the END of the retries
   //  attempts: Number  // number of times we've called processFn
   // }, ...]
 
-
-  constructor(retryAlgorithm = MatrixScheduler.RETRY_BACKOFF_RATELIMIT, queueAlgorithm = MatrixScheduler.QUEUE_MESSAGES) {
+  /**
+   * Construct a scheduler for Matrix. Requires
+   * {@link MatrixScheduler#setProcessFunction} to be provided
+   * with a way of processing events.
+   * @param retryAlgorithm - Optional. The retry
+   * algorithm to apply when determining when to try to send an event again.
+   * Defaults to {@link MatrixScheduler.RETRY_BACKOFF_RATELIMIT}.
+   * @param queueAlgorithm - Optional. The queuing
+   * algorithm to apply when determining which events should be sent before the
+   * given event. Defaults to {@link MatrixScheduler.QUEUE_MESSAGES}.
+   */
+  constructor(
+  /**
+   * The retry algorithm to apply when retrying events. To stop retrying, return
+   * `-1`. If this event was part of a queue, it will be removed from
+   * the queue.
+   * @param event - The event being retried.
+   * @param attempts - The number of failed attempts. This will always be \>= 1.
+   * @param err - The most recent error message received when trying
+   * to send this event.
+   * @returns The number of milliseconds to wait before trying again. If
+   * this is 0, the request will be immediately retried. If this is
+   * `-1`, the event will be marked as
+   * {@link EventStatus.NOT_SENT} and will not be retried.
+   */
+  retryAlgorithm = MatrixScheduler.RETRY_BACKOFF_RATELIMIT,
+  /**
+   * The queuing algorithm to apply to events. This function must be idempotent as
+   * it may be called multiple times with the same event. All queues created are
+   * serviced in a FIFO manner. To send the event ASAP, return `null`
+   * which will not put this event in a queue. Events that fail to send that form
+   * part of a queue will be removed from the queue and the next event in the
+   * queue will be sent.
+   * @param event - The event to be sent.
+   * @returns The name of the queue to put the event into. If a queue with
+   * this name does not exist, it will be created. If this is `null`,
+   * the event is not put into a queue and will be sent concurrently.
+   */
+  queueAlgorithm = MatrixScheduler.QUEUE_MESSAGES) {
     this.retryAlgorithm = retryAlgorithm;
     this.queueAlgorithm = queueAlgorithm;
-
     _defineProperty(this, "queues", {});
-
     _defineProperty(this, "activeQueues", []);
-
     _defineProperty(this, "procFn", null);
-
     _defineProperty(this, "processQueue", queueName => {
       // get head of queue
       const obj = this.peekNextEvent(queueName);
-
       if (!obj) {
-        // queue is empty. Mark as inactive and stop recursing.
-        const index = this.activeQueues.indexOf(queueName);
-
-        if (index >= 0) {
-          this.activeQueues.splice(index, 1);
-        }
-
-        debuglog("Stopping queue '%s' as it is now empty", queueName);
+        this.disableQueue(queueName);
         return;
       }
-
-      debuglog("Queue '%s' has %s pending events", queueName, this.queues[queueName].length); // fire the process function and if it resolves, resolve the deferred. Else
+      debuglog("Queue '%s' has %s pending events", queueName, this.queues[queueName].length);
+      // fire the process function and if it resolves, resolve the deferred. Else
       // invoke the retry algorithm.
+
       // First wait for a resolved promise, so the resolve handlers for
       // the deferred of the previously sent event can run.
       // This way enqueued relations/redactions to enqueued events can receive
       // the remove id of their target before being sent.
-
       Promise.resolve().then(() => {
         return this.procFn(obj.event);
       }).then(res => {
         // remove this from the queue
         this.removeNextEvent(queueName);
         debuglog("Queue '%s' sent event %s", queueName, obj.event.getId());
-        obj.defer.resolve(res); // keep processing
-
+        obj.defer.resolve(res);
+        // keep processing
         this.processQueue(queueName);
       }, err => {
-        obj.attempts += 1; // ask the retry algorithm when/if we should try again
-
+        obj.attempts += 1;
+        // ask the retry algorithm when/if we should try again
         const waitTimeMs = this.retryAlgorithm(obj.event, obj.attempts, err);
         debuglog("retry(%s) err=%s event_id=%s waitTime=%s", obj.attempts, err, obj.event.getId(), waitTimeMs);
-
         if (waitTimeMs === -1) {
           // give up (you quitter!)
-          debuglog("Queue '%s' giving up on event %s", queueName, obj.event.getId()); // remove this from the queue
-
-          this.removeNextEvent(queueName);
-          obj.defer.reject(err); // process next event
-
-          this.processQueue(queueName);
+          debuglog("Queue '%s' giving up on event %s", queueName, obj.event.getId());
+          // remove this from the queue
+          this.clearQueue(queueName, err);
         } else {
           setTimeout(this.processQueue, waitTimeMs, queueName);
         }
       });
     });
   }
+
   /**
    * Retrieve a queue based on an event. The event provided does not need to be in
    * the queue.
-   * @param {MatrixEvent} event An event to get the queue for.
-   * @return {?Array<MatrixEvent>} A shallow copy of events in the queue or null.
+   * @param event - An event to get the queue for.
+   * @returns A shallow copy of events in the queue or null.
    * Modifying this array will not modify the list itself. Modifying events in
    * this array <i>will</i> modify the underlying event in the queue.
    * @see MatrixScheduler.removeEventFromQueue To remove an event from the queue.
    */
-
-
   getQueueForEvent(event) {
     const name = this.queueAlgorithm(event);
-
     if (!name || !this.queues[name]) {
       return null;
     }
-
     return this.queues[name].map(function (obj) {
       return obj.event;
     });
   }
+
   /**
    * Remove this event from the queue. The event is equal to another event if they
    * have the same ID returned from event.getId().
-   * @param {MatrixEvent} event The event to remove.
-   * @return {boolean} True if this event was removed.
+   * @param event - The event to remove.
+   * @returns True if this event was removed.
    */
-
-
   removeEventFromQueue(event) {
     const name = this.queueAlgorithm(event);
-
     if (!name || !this.queues[name]) {
       return false;
     }
-
     let removed = false;
     utils.removeElement(this.queues[name], element => {
       if (element.event.getId() === event.getId()) {
@@ -209,42 +197,38 @@
         removed = true;
         return true;
       }
+      return false;
     });
     return removed;
   }
+
   /**
    * Set the process function. Required for events in the queue to be processed.
    * If set after events have been added to the queue, this will immediately start
    * processing them.
-   * @param {module:scheduler~processFn} fn The function that can process events
+   * @param fn - The function that can process events
    * in the queue.
    */
-
-
   setProcessFunction(fn) {
     this.procFn = fn;
     this.startProcessingQueues();
   }
+
   /**
    * Queue an event if it is required and start processing queues.
-   * @param {MatrixEvent} event The event that may be queued.
-   * @return {?Promise} A promise if the event was queued, which will be
+   * @param event - The event that may be queued.
+   * @returns A promise if the event was queued, which will be
    * resolved or rejected in due time, else null.
    */
-
-
   queueEvent(event) {
     const queueName = this.queueAlgorithm(event);
-
     if (!queueName) {
       return null;
-    } // add the event to the queue and make a deferred for it.
-
-
+    }
+    // add the event to the queue and make a deferred for it.
     if (!this.queues[queueName]) {
       this.queues[queueName] = [];
     }
-
     const defer = utils.defer();
     this.queues[queueName].push({
       event: event,
@@ -255,83 +239,55 @@
     this.startProcessingQueues();
     return defer.promise;
   }
-
   startProcessingQueues() {
-    if (!this.procFn) return; // for each inactive queue with events in them
-
+    if (!this.procFn) return;
+    // for each inactive queue with events in them
     Object.keys(this.queues).filter(queueName => {
       return this.activeQueues.indexOf(queueName) === -1 && this.queues[queueName].length > 0;
     }).forEach(queueName => {
       // mark the queue as active
-      this.activeQueues.push(queueName); // begin processing the head of the queue
-
+      this.activeQueues.push(queueName);
+      // begin processing the head of the queue
       debuglog("Spinning up queue: '%s'", queueName);
       this.processQueue(queueName);
     });
   }
-
+  disableQueue(queueName) {
+    // queue is empty. Mark as inactive and stop recursing.
+    const index = this.activeQueues.indexOf(queueName);
+    if (index >= 0) {
+      this.activeQueues.splice(index, 1);
+    }
+    debuglog("Stopping queue '%s' as it is now empty", queueName);
+  }
+  clearQueue(queueName, err) {
+    debuglog("clearing queue '%s'", queueName);
+    let obj;
+    while (obj = this.removeNextEvent(queueName)) {
+      obj.defer.reject(err);
+    }
+    this.disableQueue(queueName);
+  }
   peekNextEvent(queueName) {
     const queue = this.queues[queueName];
-
     if (!Array.isArray(queue)) {
-      return null;
+      return undefined;
     }
-
     return queue[0];
   }
-
   removeNextEvent(queueName) {
     const queue = this.queues[queueName];
-
     if (!Array.isArray(queue)) {
-      return null;
+      return undefined;
     }
-
     return queue.shift();
   }
-
 }
 
+/* istanbul ignore next */
 exports.MatrixScheduler = MatrixScheduler;
-
 function debuglog(...args) {
   if (DEBUG) {
     _logger.logger.log(...args);
   }
-}
-/**
- * The retry algorithm to apply when retrying events. To stop retrying, return
- * <code>-1</code>. If this event was part of a queue, it will be removed from
- * the queue.
- * @callback retryAlgorithm
- * @param {MatrixEvent} event The event being retried.
- * @param {Number} attempts The number of failed attempts. This will always be
- * >= 1.
- * @param {MatrixError} err The most recent error message received when trying
- * to send this event.
- * @return {Number} The number of milliseconds to wait before trying again. If
- * this is 0, the request will be immediately retried. If this is
- * <code>-1</code>, the event will be marked as
- * {@link module:models/event.EventStatus.NOT_SENT} and will not be retried.
- */
-
-/**
- * The queuing algorithm to apply to events. This function must be idempotent as
- * it may be called multiple times with the same event. All queues created are
- * serviced in a FIFO manner. To send the event ASAP, return <code>null</code>
- * which will not put this event in a queue. Events that fail to send that form
- * part of a queue will be removed from the queue and the next event in the
- * queue will be sent.
- * @callback queueAlgorithm
- * @param {MatrixEvent} event The event to be sent.
- * @return {string} The name of the queue to put the event into. If a queue with
- * this name does not exist, it will be created. If this is <code>null</code>,
- * the event is not put into a queue and will be sent concurrently.
- */
-
-/**
- * The function to invoke to process (send) events in the queue.
- * @callback processFn
- * @param {MatrixEvent} event The event to send.
- * @return {Promise} Resolved/rejected depending on the outcome of the request.
- */
\ No newline at end of file
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/service-types.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/service-types.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/service-types.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/service-types.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,7 +4,6 @@
   value: true
 });
 exports.SERVICE_TYPES = void 0;
-
 /*
 Copyright 2019 - 2021 The Matrix.org Foundation C.I.C.
 
@@ -20,9 +19,8 @@
 See the License for the specific language governing permissions and
 limitations under the License.
 */
-let SERVICE_TYPES;
+let SERVICE_TYPES; // An integration manager
 exports.SERVICE_TYPES = SERVICE_TYPES;
-
 (function (SERVICE_TYPES) {
   SERVICE_TYPES["IS"] = "SERVICE_TYPE_IS";
   SERVICE_TYPES["IM"] = "SERVICE_TYPE_IM";
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/sliding-sync.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/sliding-sync.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/sliding-sync.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/sliding-sync.js	2023-04-11 06:11:52.000000000 +0000
@@ -3,117 +3,108 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.SlidingSyncState = exports.SlidingSyncEvent = exports.SlidingSync = exports.ExtensionState = void 0;
-
+exports.SlidingSyncState = exports.SlidingSyncEvent = exports.SlidingSync = exports.MSC3575_WILDCARD = exports.MSC3575_STATE_KEY_ME = exports.MSC3575_STATE_KEY_LAZY = exports.ExtensionState = void 0;
 var _logger = require("./logger");
-
-var _typedEventEmitter = require("./models//typed-event-emitter");
-
+var _typedEventEmitter = require("./models/typed-event-emitter");
 var _utils = require("./utils");
-
 function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
-
 function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 // /sync requests allow you to set a timeout= but the request may continue
 // beyond that and wedge forever, so we need to track how long we are willing
 // to keep open the connection. This constant is *ADDED* to the timeout= value
 // to determine the max time we're willing to wait.
 const BUFFER_PERIOD_MS = 10 * 1000;
+const MSC3575_WILDCARD = "*";
+exports.MSC3575_WILDCARD = MSC3575_WILDCARD;
+const MSC3575_STATE_KEY_ME = "$ME";
+exports.MSC3575_STATE_KEY_ME = MSC3575_STATE_KEY_ME;
+const MSC3575_STATE_KEY_LAZY = "$LAZY";
+
 /**
  * Represents a subscription to a room or set of rooms. Controls which events are returned.
  */
-
+exports.MSC3575_STATE_KEY_LAZY = MSC3575_STATE_KEY_LAZY;
 let SlidingSyncState;
 /**
  * Internal Class. SlidingList represents a single list in sliding sync. The list can have filters,
- * multiple sliding windows, and maintains the index->room_id mapping.
+ * multiple sliding windows, and maintains the index-\>room_id mapping.
  */
-
 exports.SlidingSyncState = SlidingSyncState;
-
 (function (SlidingSyncState) {
   SlidingSyncState["RequestFinished"] = "FINISHED";
   SlidingSyncState["Complete"] = "COMPLETE";
 })(SlidingSyncState || (exports.SlidingSyncState = SlidingSyncState = {}));
-
 class SlidingList {
   // returned data
 
   /**
    * Construct a new sliding list.
-   * @param {MSC3575List} list The range, sort and filter values to use for this list.
+   * @param list - The range, sort and filter values to use for this list.
    */
   constructor(list) {
     _defineProperty(this, "list", void 0);
-
     _defineProperty(this, "isModified", void 0);
-
-    _defineProperty(this, "roomIndexToRoomId", void 0);
-
-    _defineProperty(this, "joinedCount", void 0);
-
+    _defineProperty(this, "roomIndexToRoomId", {});
+    _defineProperty(this, "joinedCount", 0);
     this.replaceList(list);
   }
+
   /**
    * Mark this list as modified or not. Modified lists will return sticky params with calls to getList.
    * This is useful for the first time the list is sent, or if the list has changed in some way.
-   * @param modified True to mark this list as modified so all sticky parameters will be re-sent.
+   * @param modified - True to mark this list as modified so all sticky parameters will be re-sent.
    */
-
-
   setModified(modified) {
     this.isModified = modified;
   }
+
   /**
    * Update the list range for this list. Does not affect modified status as list ranges are non-sticky.
-   * @param newRanges The new ranges for the list
+   * @param newRanges - The new ranges for the list
    */
-
-
   updateListRange(newRanges) {
     this.list.ranges = JSON.parse(JSON.stringify(newRanges));
   }
+
   /**
    * Replace list parameters. All fields will be replaced with the new list parameters.
-   * @param list The new list parameters
+   * @param list - The new list parameters
    */
-
-
   replaceList(list) {
     list.filters = list.filters || {};
     list.ranges = list.ranges || [];
     this.list = JSON.parse(JSON.stringify(list));
-    this.isModified = true; // reset values as the join count may be very different (if filters changed) including the rooms
+    this.isModified = true;
+
+    // reset values as the join count may be very different (if filters changed) including the rooms
     // (e.g. sort orders or sliding window ranges changed)
+
     // the constantly changing sliding window ranges. Not an array for performance reasons
     // E.g. tracking ranges 0-99, 500-599, we don't want to have a 600 element array
-
-    this.roomIndexToRoomId = {}; // the total number of joined rooms according to the server, always >= len(roomIndexToRoomId)
-
+    this.roomIndexToRoomId = {};
+    // the total number of joined rooms according to the server, always >= len(roomIndexToRoomId)
     this.joinedCount = 0;
   }
+
   /**
    * Return a copy of the list suitable for a request body.
-   * @param {boolean} forceIncludeAllParams True to forcibly include all params even if the list
+   * @param forceIncludeAllParams - True to forcibly include all params even if the list
    * hasn't been modified. Callers may want to do this if they are modifying the list prior to calling
    * updateList.
    */
-
-
   getList(forceIncludeAllParams) {
     let list = {
       ranges: JSON.parse(JSON.stringify(this.list.ranges))
     };
-
     if (this.isModified || forceIncludeAllParams) {
       list = JSON.parse(JSON.stringify(this.list));
     }
-
     return list;
   }
+
   /**
    * Check if a given index is within the list range. This is required even though the /sync API
    * provides explicit updates with index positions because of the following situation:
@@ -122,39 +113,31 @@
    *   a b c       d _ f   COMMAND: DELETE 7;
    *   e a b c       d f   COMMAND: INSERT 0 e;
    *   c=3 is wrong as we are not tracking it, ergo we need to see if `i` is in range else drop it
-   * @param i The index to check
+   * @param i - The index to check
    * @returns True if the index is within a sliding window
    */
-
-
   isIndexInRange(i) {
     for (const r of this.list.ranges) {
       if (r[0] <= i && i <= r[1]) {
         return true;
       }
     }
-
     return false;
   }
-
 }
+
 /**
  * When onResponse extensions should be invoked: before or after processing the main response.
  */
-
-
 let ExtensionState;
 /**
  * An interface that must be satisfied to register extensions
  */
-
 exports.ExtensionState = ExtensionState;
-
 (function (ExtensionState) {
   ExtensionState["PreProcess"] = "ExtState.PreProcess";
   ExtensionState["PostProcess"] = "ExtState.PostProcess";
 })(ExtensionState || (exports.ExtensionState = ExtensionState = {}));
-
 /**
  * Events which can be fired by the SlidingSync class. These are designed to provide different levels
  * of information when processing sync responses.
@@ -169,13 +152,11 @@
  */
 let SlidingSyncEvent;
 exports.SlidingSyncEvent = SlidingSyncEvent;
-
 (function (SlidingSyncEvent) {
   SlidingSyncEvent["RoomData"] = "SlidingSync.RoomData";
   SlidingSyncEvent["Lifecycle"] = "SlidingSync.Lifecycle";
   SlidingSyncEvent["List"] = "SlidingSync.List";
 })(SlidingSyncEvent || (exports.SlidingSyncEvent = SlidingSyncEvent = {}));
-
 /**
  * SlidingSync is a high-level data structure which controls the majority of sliding sync.
  * It has no hooks into JS SDK except for needing a MatrixClient to perform the HTTP request.
@@ -184,19 +165,27 @@
  */
 class SlidingSync extends _typedEventEmitter.TypedEventEmitter {
   // flag set when resend() is called because we cannot rely on detecting AbortError in JS SDK :(
+
   // the txn_id to send with the next request.
+
   // a list (in chronological order of when they were sent) of objects containing the txn ID and
   // a defer to resolve/reject depending on whether they were successfully sent or not.
+
   // map of extension name to req/resp handler
+
   // the *desired* room subscriptions
 
+  // map of custom subscription name to the subscription
+
+  // map of room ID to custom subscription name
+
   /**
    * Create a new sliding sync instance
-   * @param {string} proxyBaseUrl The base URL of the sliding sync proxy
-   * @param {MSC3575List[]} lists The lists to use for sliding sync.
-   * @param {MSC3575RoomSubscription} roomSubscriptionInfo The params to use for room subscriptions.
-   * @param {MatrixClient} client The client to use for /sync calls.
-   * @param {number} timeoutMS The number of milliseconds to wait for a response.
+   * @param proxyBaseUrl - The base URL of the sliding sync proxy
+   * @param lists - The lists to use for sliding sync.
+   * @param roomSubscriptionInfo - The params to use for room subscriptions.
+   * @param client - The client to use for /sync calls.
+   * @param timeoutMS - The number of milliseconds to wait for a response.
    */
   constructor(proxyBaseUrl, lists, roomSubscriptionInfo, client, timeoutMS) {
     super();
@@ -204,160 +193,174 @@
     this.roomSubscriptionInfo = roomSubscriptionInfo;
     this.client = client;
     this.timeoutMS = timeoutMS;
-
     _defineProperty(this, "lists", void 0);
-
     _defineProperty(this, "listModifiedCount", 0);
-
     _defineProperty(this, "terminated", false);
-
     _defineProperty(this, "needsResend", false);
-
     _defineProperty(this, "txnId", null);
-
     _defineProperty(this, "txnIdDefers", []);
-
     _defineProperty(this, "extensions", {});
-
     _defineProperty(this, "desiredRoomSubscriptions", new Set());
-
     _defineProperty(this, "confirmedRoomSubscriptions", new Set());
-
+    _defineProperty(this, "customSubscriptions", new Map());
+    _defineProperty(this, "roomIdToCustomSubscription", new Map());
     _defineProperty(this, "pendingReq", void 0);
+    _defineProperty(this, "abortController", void 0);
+    this.lists = new Map();
+    lists.forEach((list, key) => {
+      this.lists.set(key, new SlidingList(list));
+    });
+  }
 
-    this.lists = lists.map(l => new SlidingList(l));
+  /**
+   * Add a custom room subscription, referred to by an arbitrary name. If a subscription with this
+   * name already exists, it is replaced. No requests are sent by calling this method.
+   * @param name - The name of the subscription. Only used to reference this subscription in
+   * useCustomSubscription.
+   * @param sub - The subscription information.
+   */
+  addCustomSubscription(name, sub) {
+    if (this.customSubscriptions.has(name)) {
+      _logger.logger.warn(`addCustomSubscription: ${name} already exists as a custom subscription, ignoring.`);
+      return;
+    }
+    this.customSubscriptions.set(name, sub);
   }
+
   /**
-   * Get the length of the sliding lists.
-   * @returns The number of lists in the sync request
+   * Use a custom subscription previously added via addCustomSubscription. No requests are sent
+   * by calling this method. Use modifyRoomSubscriptions to resend subscription information.
+   * @param roomId - The room to use the subscription in.
+   * @param name - The name of the subscription. If this name is unknown, the default subscription
+   * will be used.
    */
-
-
-  listLength() {
-    return this.lists.length;
+  useCustomSubscription(roomId, name) {
+    // We already know about this custom subscription, as it is immutable,
+    // we don't need to unconfirm the subscription.
+    if (this.roomIdToCustomSubscription.get(roomId) === name) {
+      return;
+    }
+    this.roomIdToCustomSubscription.set(roomId, name);
+    // unconfirm this subscription so a resend() will send it up afresh.
+    this.confirmedRoomSubscriptions.delete(roomId);
   }
+
   /**
-   * Get the room data for a list.
-   * @param index The list index
+   * Get the room index data for a list.
+   * @param key - The list key
    * @returns The list data which contains the rooms in this list
    */
-
-
-  getListData(index) {
-    if (!this.lists[index]) {
+  getListData(key) {
+    const data = this.lists.get(key);
+    if (!data) {
       return null;
     }
-
     return {
-      joinedCount: this.lists[index].joinedCount,
-      roomIndexToRoomId: Object.assign({}, this.lists[index].roomIndexToRoomId)
+      joinedCount: data.joinedCount,
+      roomIndexToRoomId: Object.assign({}, data.roomIndexToRoomId)
     };
   }
+
   /**
-   * Get the full list parameters for a list index. This function is provided for callers to use
+   * Get the full request list parameters for a list index. This function is provided for callers to use
    * in conjunction with setList to update fields on an existing list.
-   * @param index The list index to get the list for.
-   * @returns A copy of the list or undefined.
+   * @param key - The list key to get the params for.
+   * @returns A copy of the list params or undefined.
    */
-
-
-  getList(index) {
-    if (!this.lists[index]) {
+  getListParams(key) {
+    const params = this.lists.get(key);
+    if (!params) {
       return null;
     }
-
-    return this.lists[index].getList(true);
+    return params.getList(true);
   }
+
   /**
    * Set new ranges for an existing list. Calling this function when _only_ the ranges have changed
    * is more efficient than calling setList(index,list) as this function won't resend sticky params,
    * whereas setList always will.
-   * @param index The list index to modify
-   * @param ranges The new ranges to apply.
-   * @return A promise which resolves to the transaction ID when it has been received down sync
+   * @param key - The list key to modify
+   * @param ranges - The new ranges to apply.
+   * @returns A promise which resolves to the transaction ID when it has been received down sync
    * (or rejects with the transaction ID if the action was not applied e.g the request was cancelled
    * immediately after sending, in which case the action will be applied in the subsequent request)
    */
-
-
-  setListRanges(index, ranges) {
-    this.lists[index].updateListRange(ranges);
+  setListRanges(key, ranges) {
+    const list = this.lists.get(key);
+    if (!list) {
+      return Promise.reject(new Error("no list with key " + key));
+    }
+    list.updateListRange(ranges);
     return this.resend();
   }
+
   /**
    * Add or replace a list. Calling this function will interrupt the /sync request to resend new
    * lists.
-   * @param index The index to modify
-   * @param list The new list parameters.
-   * @return A promise which resolves to the transaction ID when it has been received down sync
+   * @param key - The key to modify
+   * @param list - The new list parameters.
+   * @returns A promise which resolves to the transaction ID when it has been received down sync
    * (or rejects with the transaction ID if the action was not applied e.g the request was cancelled
    * immediately after sending, in which case the action will be applied in the subsequent request)
    */
-
-
-  setList(index, list) {
-    if (this.lists[index]) {
-      this.lists[index].replaceList(list);
+  setList(key, list) {
+    const existingList = this.lists.get(key);
+    if (existingList) {
+      existingList.replaceList(list);
+      this.lists.set(key, existingList);
     } else {
-      this.lists[index] = new SlidingList(list);
+      this.lists.set(key, new SlidingList(list));
     }
-
     this.listModifiedCount += 1;
     return this.resend();
   }
+
   /**
    * Get the room subscriptions for the sync API.
    * @returns A copy of the desired room subscriptions.
    */
-
-
   getRoomSubscriptions() {
     return new Set(Array.from(this.desiredRoomSubscriptions));
   }
+
   /**
    * Modify the room subscriptions for the sync API. Calling this function will interrupt the
    * /sync request to resend new subscriptions. If the /sync stream has not started, this will
    * prepare the room subscriptions for when start() is called.
-   * @param s The new desired room subscriptions.
-   * @return A promise which resolves to the transaction ID when it has been received down sync
+   * @param s - The new desired room subscriptions.
+   * @returns A promise which resolves to the transaction ID when it has been received down sync
    * (or rejects with the transaction ID if the action was not applied e.g the request was cancelled
    * immediately after sending, in which case the action will be applied in the subsequent request)
    */
-
-
   modifyRoomSubscriptions(s) {
     this.desiredRoomSubscriptions = s;
     return this.resend();
   }
+
   /**
    * Modify which events to retrieve for room subscriptions. Invalidates all room subscriptions
    * such that they will be sent up afresh.
-   * @param rs The new room subscription fields to fetch.
-   * @return A promise which resolves to the transaction ID when it has been received down sync
+   * @param rs - The new room subscription fields to fetch.
+   * @returns A promise which resolves to the transaction ID when it has been received down sync
    * (or rejects with the transaction ID if the action was not applied e.g the request was cancelled
    * immediately after sending, in which case the action will be applied in the subsequent request)
    */
-
-
   modifyRoomSubscriptionInfo(rs) {
     this.roomSubscriptionInfo = rs;
     this.confirmedRoomSubscriptions = new Set();
     return this.resend();
   }
+
   /**
    * Register an extension to send with the /sync request.
-   * @param ext The extension to register.
+   * @param ext - The extension to register.
    */
-
-
   registerExtension(ext) {
     if (this.extensions[ext.name()]) {
       throw new Error(`registerExtension: ${ext.name()} already exists as an extension`);
     }
-
     this.extensions[ext.name()] = ext;
   }
-
   getExtensionRequest(isInitial) {
     const ext = {};
     Object.keys(this.extensions).forEach(extName => {
@@ -365,7 +368,6 @@
     });
     return ext;
   }
-
   onPreExtensionsResponse(ext) {
     Object.keys(ext).forEach(extName => {
       if (this.extensions[extName].when() == ExtensionState.PreProcess) {
@@ -373,7 +375,6 @@
       }
     });
   }
-
   onPostExtensionsResponse(ext) {
     Object.keys(ext).forEach(extName => {
       if (this.extensions[extName].when() == ExtensionState.PostProcess) {
@@ -381,123 +382,126 @@
       }
     });
   }
+
   /**
    * Invoke all attached room data listeners.
-   * @param {string} roomId The room which received some data.
-   * @param {object} roomData The raw sliding sync response JSON.
+   * @param roomId - The room which received some data.
+   * @param roomData - The raw sliding sync response JSON.
    */
-
-
   invokeRoomDataListeners(roomId, roomData) {
     if (!roomData.required_state) {
       roomData.required_state = [];
     }
-
     if (!roomData.timeline) {
       roomData.timeline = [];
     }
-
     this.emit(SlidingSyncEvent.RoomData, roomId, roomData);
   }
+
   /**
    * Invoke all attached lifecycle listeners.
-   * @param {SlidingSyncState} state The Lifecycle state
-   * @param {object} resp The raw sync response JSON
-   * @param {Error?} err Any error that occurred when making the request e.g. network errors.
+   * @param state - The Lifecycle state
+   * @param resp - The raw sync response JSON
+   * @param err - Any error that occurred when making the request e.g. network errors.
    */
-
-
   invokeLifecycleListeners(state, resp, err) {
     this.emit(SlidingSyncEvent.Lifecycle, state, resp, err);
   }
-
-  shiftRight(listIndex, hi, low) {
+  shiftRight(listKey, hi, low) {
+    const list = this.lists.get(listKey);
+    if (!list) {
+      return;
+    }
     //     l   h
     // 0,1,2,3,4 <- before
     // 0,1,2,2,3 <- after, hi is deleted and low is duplicated
     for (let i = hi; i > low; i--) {
-      if (this.lists[listIndex].isIndexInRange(i)) {
-        this.lists[listIndex].roomIndexToRoomId[i] = this.lists[listIndex].roomIndexToRoomId[i - 1];
+      if (list.isIndexInRange(i)) {
+        list.roomIndexToRoomId[i] = list.roomIndexToRoomId[i - 1];
       }
     }
   }
-
-  shiftLeft(listIndex, hi, low) {
+  shiftLeft(listKey, hi, low) {
+    const list = this.lists.get(listKey);
+    if (!list) {
+      return;
+    }
     //     l   h
     // 0,1,2,3,4 <- before
     // 0,1,3,4,4 <- after, low is deleted and hi is duplicated
     for (let i = low; i < hi; i++) {
-      if (this.lists[listIndex].isIndexInRange(i)) {
-        this.lists[listIndex].roomIndexToRoomId[i] = this.lists[listIndex].roomIndexToRoomId[i + 1];
+      if (list.isIndexInRange(i)) {
+        list.roomIndexToRoomId[i] = list.roomIndexToRoomId[i + 1];
       }
     }
   }
-
-  removeEntry(listIndex, index) {
+  removeEntry(listKey, index) {
+    const list = this.lists.get(listKey);
+    if (!list) {
+      return;
+    }
     // work out the max index
     let max = -1;
-
-    for (const n in this.lists[listIndex].roomIndexToRoomId) {
+    for (const n in list.roomIndexToRoomId) {
       if (Number(n) > max) {
         max = Number(n);
       }
     }
-
     if (max < 0 || index > max) {
       return;
-    } // Everything higher than the gap needs to be shifted left.
-
-
-    this.shiftLeft(listIndex, max, index);
-    delete this.lists[listIndex].roomIndexToRoomId[max];
-  }
-
-  addEntry(listIndex, index) {
+    }
+    // Everything higher than the gap needs to be shifted left.
+    this.shiftLeft(listKey, max, index);
+    delete list.roomIndexToRoomId[max];
+  }
+  addEntry(listKey, index) {
+    const list = this.lists.get(listKey);
+    if (!list) {
+      return;
+    }
     // work out the max index
     let max = -1;
-
-    for (const n in this.lists[listIndex].roomIndexToRoomId) {
+    for (const n in list.roomIndexToRoomId) {
       if (Number(n) > max) {
         max = Number(n);
       }
     }
-
     if (max < 0 || index > max) {
       return;
-    } // Everything higher than the gap needs to be shifted right, +1 so we don't delete the highest element
-
-
-    this.shiftRight(listIndex, max + 1, index);
+    }
+    // Everything higher than the gap needs to be shifted right, +1 so we don't delete the highest element
+    this.shiftRight(listKey, max + 1, index);
   }
-
-  processListOps(list, listIndex) {
+  processListOps(list, listKey) {
     let gapIndex = -1;
+    const listData = this.lists.get(listKey);
+    if (!listData) {
+      return;
+    }
     list.ops.forEach(op => {
+      if (!listData) {
+        return;
+      }
       switch (op.op) {
         case "DELETE":
           {
-            _logger.logger.debug("DELETE", listIndex, op.index, ";");
-
-            delete this.lists[listIndex].roomIndexToRoomId[op.index];
-
+            _logger.logger.debug("DELETE", listKey, op.index, ";");
+            delete listData.roomIndexToRoomId[op.index];
             if (gapIndex !== -1) {
               // we already have a DELETE operation to process, so process it.
-              this.removeEntry(listIndex, gapIndex);
+              this.removeEntry(listKey, gapIndex);
             }
-
             gapIndex = op.index;
             break;
           }
-
         case "INSERT":
           {
-            _logger.logger.debug("INSERT", listIndex, op.index, op.room_id, ";");
-
-            if (this.lists[listIndex].roomIndexToRoomId[op.index]) {
+            _logger.logger.debug("INSERT", listKey, op.index, op.room_id, ";");
+            if (listData.roomIndexToRoomId[op.index]) {
               // something is in this space, shift items out of the way
               if (gapIndex < 0) {
                 // we haven't been told where to shift from, so make way for a new room entry.
-                this.addEntry(listIndex, op.index);
+                this.addEntry(listKey, op.index);
               } else if (gapIndex > op.index) {
                 // the gap is further down the list, shift every element to the right
                 // starting at the gap so we can just shift each element in turn:
@@ -506,267 +510,264 @@
                 // [A,B,B,C] i=2
                 // [A,A,B,C] i=1
                 // Terminate. We'll assign into op.index next.
-                this.shiftRight(listIndex, gapIndex, op.index);
+                this.shiftRight(listKey, gapIndex, op.index);
               } else if (gapIndex < op.index) {
                 // the gap is further up the list, shift every element to the left
                 // starting at the gap so we can just shift each element in turn
-                this.shiftLeft(listIndex, op.index, gapIndex);
+                this.shiftLeft(listKey, op.index, gapIndex);
               }
-
-              gapIndex = -1; // forget the gap, we don't need it anymore.
             }
-
-            this.lists[listIndex].roomIndexToRoomId[op.index] = op.room_id;
+            // forget the gap, we don't need it anymore. This is outside the check for
+            // a room being present in this index position because INSERTs always universally
+            // forget the gap, not conditionally based on the presence of a room in the INSERT
+            // position. Without this, DELETE 0; INSERT 0; would do the wrong thing.
+            gapIndex = -1;
+            listData.roomIndexToRoomId[op.index] = op.room_id;
             break;
           }
-
         case "INVALIDATE":
           {
             const startIndex = op.range[0];
-
             for (let i = startIndex; i <= op.range[1]; i++) {
-              delete this.lists[listIndex].roomIndexToRoomId[i];
+              delete listData.roomIndexToRoomId[i];
             }
-
-            _logger.logger.debug("INVALIDATE", listIndex, op.range[0], op.range[1], ";");
-
+            _logger.logger.debug("INVALIDATE", listKey, op.range[0], op.range[1], ";");
             break;
           }
-
         case "SYNC":
           {
             const startIndex = op.range[0];
-
             for (let i = startIndex; i <= op.range[1]; i++) {
               const roomId = op.room_ids[i - startIndex];
-
               if (!roomId) {
                 break; // we are at the end of list
               }
 
-              this.lists[listIndex].roomIndexToRoomId[i] = roomId;
+              listData.roomIndexToRoomId[i] = roomId;
             }
-
-            _logger.logger.debug("SYNC", listIndex, op.range[0], op.range[1], (op.room_ids || []).join(" "), ";");
-
+            _logger.logger.debug("SYNC", listKey, op.range[0], op.range[1], (op.room_ids || []).join(" "), ";");
             break;
           }
       }
     });
-
     if (gapIndex !== -1) {
       // we already have a DELETE operation to process, so process it
       // Everything higher than the gap needs to be shifted left.
-      this.removeEntry(listIndex, gapIndex);
+      this.removeEntry(listKey, gapIndex);
     }
   }
+
   /**
    * Resend a Sliding Sync request. Used when something has changed in the request. Resolves with
    * the transaction ID of this request on success. Rejects with the transaction ID of this request
    * on failure.
    */
-
-
   resend() {
     if (this.needsResend && this.txnIdDefers.length > 0) {
       // we already have a resend queued, so just return the same promise
       return this.txnIdDefers[this.txnIdDefers.length - 1].promise;
     }
-
     this.needsResend = true;
     this.txnId = this.client.makeTxnId();
     const d = (0, _utils.defer)();
     this.txnIdDefers.push(_objectSpread(_objectSpread({}, d), {}, {
       txnId: this.txnId
     }));
-    this.pendingReq?.abort();
+    this.abortController?.abort();
+    this.abortController = new AbortController();
     return d.promise;
   }
-
   resolveTransactionDefers(txnId) {
     if (!txnId) {
       return;
-    } // find the matching index
-
-
+    }
+    // find the matching index
     let txnIndex = -1;
-
     for (let i = 0; i < this.txnIdDefers.length; i++) {
       if (this.txnIdDefers[i].txnId === txnId) {
         txnIndex = i;
         break;
       }
     }
-
     if (txnIndex === -1) {
       // this shouldn't happen; we shouldn't be seeing txn_ids for things we don't know about,
       // whine about it.
       _logger.logger.warn(`resolveTransactionDefers: seen ${txnId} but it isn't a pending txn, ignoring.`);
-
       return;
-    } // This list is sorted in time, so if the input txnId ACKs in the middle of this array,
+    }
+    // This list is sorted in time, so if the input txnId ACKs in the middle of this array,
     // then everything before it that hasn't been ACKed yet never will and we should reject them.
-
-
     for (let i = 0; i < txnIndex; i++) {
       this.txnIdDefers[i].reject(this.txnIdDefers[i].txnId);
     }
-
-    this.txnIdDefers[txnIndex].resolve(txnId); // clear out settled promises, incuding the one we resolved.
-
+    this.txnIdDefers[txnIndex].resolve(txnId);
+    // clear out settled promises, including the one we resolved.
     this.txnIdDefers = this.txnIdDefers.slice(txnIndex + 1);
   }
+
   /**
    * Stop syncing with the server.
    */
-
-
   stop() {
     this.terminated = true;
-    this.pendingReq?.abort(); // remove all listeners so things can be GC'd
-
+    this.abortController?.abort();
+    // remove all listeners so things can be GC'd
     this.removeAllListeners(SlidingSyncEvent.Lifecycle);
     this.removeAllListeners(SlidingSyncEvent.List);
     this.removeAllListeners(SlidingSyncEvent.RoomData);
   }
+
   /**
-   * Start syncing with the server. Blocks until stopped.
+   * Re-setup this connection e.g in the event of an expired session.
    */
+  resetup() {
+    _logger.logger.warn("SlidingSync: resetting connection info");
+    // any pending txn ID defers will be forgotten already by the server, so clear them out
+    this.txnIdDefers.forEach(d => {
+      d.reject(d.txnId);
+    });
+    this.txnIdDefers = [];
+    // resend sticky params and de-confirm all subscriptions
+    this.lists.forEach(l => {
+      l.setModified(true);
+    });
+    this.confirmedRoomSubscriptions = new Set(); // leave desired ones alone though!
+    // reset the connection as we might be wedged
+    this.needsResend = true;
+    this.abortController?.abort();
+    this.abortController = new AbortController();
+  }
 
-
+  /**
+   * Start syncing with the server. Blocks until stopped.
+   */
   async start() {
+    this.abortController = new AbortController();
     let currentPos;
-
     while (!this.terminated) {
       this.needsResend = false;
       let doNotUpdateList = false;
       let resp;
-
       try {
         const listModifiedCount = this.listModifiedCount;
+        const reqLists = {};
+        this.lists.forEach((l, key) => {
+          reqLists[key] = l.getList(false);
+        });
         const reqBody = {
-          lists: this.lists.map(l => {
-            return l.getList(false);
-          }),
+          lists: reqLists,
           pos: currentPos,
           timeout: this.timeoutMS,
           clientTimeout: this.timeoutMS + BUFFER_PERIOD_MS,
           extensions: this.getExtensionRequest(currentPos === undefined)
-        }; // check if we are (un)subscribing to a room and modify request this one time for it
-
+        };
+        // check if we are (un)subscribing to a room and modify request this one time for it
         const newSubscriptions = difference(this.desiredRoomSubscriptions, this.confirmedRoomSubscriptions);
         const unsubscriptions = difference(this.confirmedRoomSubscriptions, this.desiredRoomSubscriptions);
-
         if (unsubscriptions.size > 0) {
           reqBody.unsubscribe_rooms = Array.from(unsubscriptions);
         }
-
         if (newSubscriptions.size > 0) {
           reqBody.room_subscriptions = {};
-
           for (const roomId of newSubscriptions) {
-            reqBody.room_subscriptions[roomId] = this.roomSubscriptionInfo;
+            const customSubName = this.roomIdToCustomSubscription.get(roomId);
+            let sub = this.roomSubscriptionInfo;
+            if (customSubName && this.customSubscriptions.has(customSubName)) {
+              sub = this.customSubscriptions.get(customSubName);
+            }
+            reqBody.room_subscriptions[roomId] = sub;
           }
         }
-
         if (this.txnId) {
           reqBody.txn_id = this.txnId;
           this.txnId = null;
         }
-
-        this.pendingReq = this.client.slidingSync(reqBody, this.proxyBaseUrl);
+        this.pendingReq = this.client.slidingSync(reqBody, this.proxyBaseUrl, this.abortController.signal);
         resp = await this.pendingReq;
-
-        _logger.logger.debug(resp);
-
-        currentPos = resp.pos; // update what we think we're subscribed to.
-
+        currentPos = resp.pos;
+        // update what we think we're subscribed to.
         for (const roomId of newSubscriptions) {
           this.confirmedRoomSubscriptions.add(roomId);
         }
-
         for (const roomId of unsubscriptions) {
           this.confirmedRoomSubscriptions.delete(roomId);
         }
-
         if (listModifiedCount !== this.listModifiedCount) {
           // the lists have been modified whilst we were waiting for 'await' to return, but the abort()
           // call did nothing. It is NOT SAFE to modify the list array now. We'll process the response but
           // not update list pointers.
           _logger.logger.debug("list modified during await call, not updating list");
-
           doNotUpdateList = true;
-        } // mark all these lists as having been sent as sticky so we don't keep sending sticky params
-
-
+        }
+        // mark all these lists as having been sent as sticky so we don't keep sending sticky params
         this.lists.forEach(l => {
           l.setModified(false);
-        }); // set default empty values so we don't need to null check
-
-        resp.lists = resp.lists || [];
+        });
+        // set default empty values so we don't need to null check
+        resp.lists = resp.lists || {};
         resp.rooms = resp.rooms || {};
         resp.extensions = resp.extensions || {};
-        resp.lists.forEach((val, i) => {
-          this.lists[i].joinedCount = val.count;
+        Object.keys(resp.lists).forEach(key => {
+          const list = this.lists.get(key);
+          if (!list || !resp) {
+            return;
+          }
+          list.joinedCount = resp.lists[key].count;
         });
         this.invokeLifecycleListeners(SlidingSyncState.RequestFinished, resp);
       } catch (err) {
         if (err.httpStatus) {
           this.invokeLifecycleListeners(SlidingSyncState.RequestFinished, null, err);
-          await (0, _utils.sleep)(3000);
-        } else if (this.needsResend || err === "aborted") {
-          // don't sleep as we caused this error by abort()ing the request.
-          // we check for 'aborted' because that's the error Jest returns and without it
-          // we get warnings about not exiting fast enough.
-          continue;
-        } else {
-          _logger.logger.error(err);
-
-          await (0, _utils.sleep)(3000);
+          if (err.httpStatus === 400) {
+            // session probably expired TODO: assign an errcode
+            // so drop state and re-request
+            this.resetup();
+            currentPos = undefined;
+            await (0, _utils.sleep)(50); // in case the 400 was for something else; don't tightloop
+            continue;
+          } // else fallthrough to generic error handling
+        } else if (this.needsResend || err.name === "AbortError") {
+          continue; // don't sleep as we caused this error by abort()ing the request.
         }
-      }
 
+        _logger.logger.error(err);
+        await (0, _utils.sleep)(5000);
+      }
       if (!resp) {
         continue;
       }
-
       this.onPreExtensionsResponse(resp.extensions);
       Object.keys(resp.rooms).forEach(roomId => {
         this.invokeRoomDataListeners(roomId, resp.rooms[roomId]);
       });
-      const listIndexesWithUpdates = new Set();
-
+      const listKeysWithUpdates = new Set();
       if (!doNotUpdateList) {
-        resp.lists.forEach((list, listIndex) => {
+        for (const [key, list] of Object.entries(resp.lists)) {
           list.ops = list.ops || [];
-
           if (list.ops.length > 0) {
-            listIndexesWithUpdates.add(listIndex);
+            listKeysWithUpdates.add(key);
           }
-
-          this.processListOps(list, listIndex);
-        });
+          this.processListOps(list, key);
+        }
       }
-
       this.invokeLifecycleListeners(SlidingSyncState.Complete, resp);
       this.onPostExtensionsResponse(resp.extensions);
-      listIndexesWithUpdates.forEach(i => {
-        this.emit(SlidingSyncEvent.List, i, this.lists[i].joinedCount, Object.assign({}, this.lists[i].roomIndexToRoomId));
+      listKeysWithUpdates.forEach(listKey => {
+        const list = this.lists.get(listKey);
+        if (!list) {
+          return;
+        }
+        this.emit(SlidingSyncEvent.List, listKey, list.joinedCount, Object.assign({}, list.roomIndexToRoomId));
       });
       this.resolveTransactionDefers(resp.txn_id);
     }
   }
-
 }
-
 exports.SlidingSync = SlidingSync;
-
 const difference = (setA, setB) => {
   const diff = new Set(setA);
-
   for (const elem of setB) {
     diff.delete(elem);
   }
-
   return diff;
 };
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/sliding-sync-sdk.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/sliding-sync-sdk.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/sliding-sync-sdk.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/sliding-sync-sdk.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,59 +4,42 @@
   value: true
 });
 exports.SlidingSyncSdk = void 0;
-
 var _room = require("./models/room");
-
 var _logger = require("./logger");
-
 var utils = _interopRequireWildcard(require("./utils"));
-
 var _eventTimeline = require("./models/event-timeline");
-
 var _client = require("./client");
-
 var _sync = require("./sync");
-
 var _httpApi = require("./http-api");
-
 var _slidingSync = require("./sliding-sync");
-
-var _matrix = require("./matrix");
-
-var _pushprocessor = require("./pushprocessor");
-
+var _event = require("./@types/event");
+var _roomState = require("./models/room-state");
+var _roomMember = require("./models/room-member");
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 // Number of consecutive failed syncs that will lead to a syncState of ERROR as opposed
 // to RECONNECTING. This is needed to inform the client of server issues when the
 // keepAlive is successful but the server /sync fails.
 const FAILED_SYNC_ERROR_THRESHOLD = 3;
-
 class ExtensionE2EE {
   constructor(crypto) {
     this.crypto = crypto;
   }
-
   name() {
     return "e2ee";
   }
-
   when() {
     return _slidingSync.ExtensionState.PreProcess;
   }
-
   onRequest(isInitial) {
     if (!isInitial) {
       return undefined;
     }
-
     return {
       enabled: true // this is sticky so only send it on the initial request
-
     };
   }
 
@@ -65,59 +48,53 @@
     if (data["device_lists"]) {
       await this.crypto.handleDeviceListChanges({
         oldSyncToken: "yep" // XXX need to do this so the device list changes get processed :(
-
       }, data["device_lists"]);
-    } // Handle one_time_keys_count
-
+    }
 
+    // Handle one_time_keys_count
     if (data["device_one_time_keys_count"]) {
       const currentCount = data["device_one_time_keys_count"].signed_curve25519 || 0;
       this.crypto.updateOneTimeKeyCount(currentCount);
     }
-
     if (data["device_unused_fallback_key_types"] || data["org.matrix.msc2732.device_unused_fallback_key_types"]) {
       // The presence of device_unused_fallback_key_types indicates that the
       // server supports fallback keys. If there's no unused
       // signed_curve25519 fallback key we need a new one.
       const unusedFallbackKeys = data["device_unused_fallback_key_types"] || data["org.matrix.msc2732.device_unused_fallback_key_types"];
-      this.crypto.setNeedsNewFallback(unusedFallbackKeys instanceof Array && !unusedFallbackKeys.includes("signed_curve25519"));
+      this.crypto.setNeedsNewFallback(Array.isArray(unusedFallbackKeys) && !unusedFallbackKeys.includes("signed_curve25519"));
     }
+    this.crypto.onSyncCompleted({});
   }
-
 }
-
 class ExtensionToDevice {
-  constructor(client) {
+  constructor(client, cryptoCallbacks) {
     this.client = client;
-
+    this.cryptoCallbacks = cryptoCallbacks;
     _defineProperty(this, "nextBatch", null);
   }
-
   name() {
     return "to_device";
   }
-
   when() {
     return _slidingSync.ExtensionState.PreProcess;
   }
-
   onRequest(isInitial) {
     const extReq = {
       since: this.nextBatch !== null ? this.nextBatch : undefined
     };
-
     if (isInitial) {
       extReq["limit"] = 100;
       extReq["enabled"] = true;
     }
-
     return extReq;
   }
-
   async onResponse(data) {
     const cancelledKeyVerificationTxns = [];
-    data["events"] = data["events"] || [];
-    data["events"].map(this.client.getEventMapper()).map(toDeviceEvent => {
+    let events = data["events"] || [];
+    if (events.length > 0 && this.cryptoCallbacks) {
+      events = await this.cryptoCallbacks.preprocessToDeviceMessages(events);
+    }
+    events.map(this.client.getEventMapper()).map(toDeviceEvent => {
       // map is a cheap inline forEach
       // We want to flag m.key.verification.start events as cancelled
       // if there's an accompanying m.key.verification.cancel event, so
@@ -125,90 +102,72 @@
       // so we can flag the verification events as cancelled in the loop
       // below.
       if (toDeviceEvent.getType() === "m.key.verification.cancel") {
-        const txnId = toDeviceEvent.getContent()['transaction_id'];
-
+        const txnId = toDeviceEvent.getContent()["transaction_id"];
         if (txnId) {
           cancelledKeyVerificationTxns.push(txnId);
         }
-      } // as mentioned above, .map is a cheap inline forEach, so return
-      // the unmodified event.
-
+      }
 
+      // as mentioned above, .map is a cheap inline forEach, so return
+      // the unmodified event.
       return toDeviceEvent;
     }).forEach(toDeviceEvent => {
       const content = toDeviceEvent.getContent();
-
       if (toDeviceEvent.getType() == "m.room.message" && content.msgtype == "m.bad.encrypted") {
         // the mapper already logged a warning.
-        _logger.logger.log('Ignoring undecryptable to-device event from ' + toDeviceEvent.getSender());
-
+        _logger.logger.log("Ignoring undecryptable to-device event from " + toDeviceEvent.getSender());
         return;
       }
-
       if (toDeviceEvent.getType() === "m.key.verification.start" || toDeviceEvent.getType() === "m.key.verification.request") {
-        const txnId = content['transaction_id'];
-
+        const txnId = content["transaction_id"];
         if (cancelledKeyVerificationTxns.includes(txnId)) {
           toDeviceEvent.flagCancelled();
         }
       }
-
       this.client.emit(_client.ClientEvent.ToDeviceEvent, toDeviceEvent);
     });
-    this.nextBatch = data["next_batch"];
+    this.nextBatch = data.next_batch;
   }
-
 }
-
 class ExtensionAccountData {
   constructor(client) {
     this.client = client;
   }
-
   name() {
     return "account_data";
   }
-
   when() {
     return _slidingSync.ExtensionState.PostProcess;
   }
-
   onRequest(isInitial) {
     if (!isInitial) {
       return undefined;
     }
-
     return {
       enabled: true
     };
   }
-
   onResponse(data) {
     if (data.global && data.global.length > 0) {
       this.processGlobalAccountData(data.global);
     }
-
     for (const roomId in data.rooms) {
       const accountDataEvents = mapEvents(this.client, roomId, data.rooms[roomId]);
       const room = this.client.getRoom(roomId);
-
       if (!room) {
         _logger.logger.warn("got account data for room but room doesn't exist on client:", roomId);
-
         continue;
       }
-
       room.addAccountData(accountDataEvents);
       accountDataEvents.forEach(e => {
         this.client.emit(_client.ClientEvent.Event, e);
       });
     }
   }
-
   processGlobalAccountData(globalAccountData) {
     const events = mapEvents(this.client, undefined, globalAccountData);
     const prevEventsMap = events.reduce((m, c) => {
-      m[c.getId()] = this.client.store.getAccountData(c.getType());
+      m[c.getType()] = this.client.store.getAccountData(c.getType());
       return m;
     }, {});
     this.client.store.storeAccountDataEvents(events);
@@ -217,111 +176,137 @@
       // honour push rules that were previously cached. Base rules
       // will be updated when we receive push rules via getPushRules
       // (see sync) before syncing over the network.
-      if (accountDataEvent.getType() === _matrix.EventType.PushRules) {
+      if (accountDataEvent.getType() === _event.EventType.PushRules) {
         const rules = accountDataEvent.getContent();
-        this.client.pushRules = _pushprocessor.PushProcessor.rewriteDefaultRules(rules);
+        this.client.setPushRules(rules);
       }
-
-      const prevEvent = prevEventsMap[accountDataEvent.getId()];
+      const prevEvent = prevEventsMap[accountDataEvent.getType()];
       this.client.emit(_client.ClientEvent.AccountData, accountDataEvent, prevEvent);
       return accountDataEvent;
     });
   }
+}
+class ExtensionTyping {
+  constructor(client) {
+    this.client = client;
+  }
+  name() {
+    return "typing";
+  }
+  when() {
+    return _slidingSync.ExtensionState.PostProcess;
+  }
+  onRequest(isInitial) {
+    if (!isInitial) {
+      return undefined; // don't send a JSON object for subsequent requests, we don't need to.
+    }
 
+    return {
+      enabled: true
+    };
+  }
+  onResponse(data) {
+    if (!data?.rooms) {
+      return;
+    }
+    for (const roomId in data.rooms) {
+      processEphemeralEvents(this.client, roomId, [data.rooms[roomId]]);
+    }
+  }
 }
+class ExtensionReceipts {
+  constructor(client) {
+    this.client = client;
+  }
+  name() {
+    return "receipts";
+  }
+  when() {
+    return _slidingSync.ExtensionState.PostProcess;
+  }
+  onRequest(isInitial) {
+    if (isInitial) {
+      return {
+        enabled: true
+      };
+    }
+    return undefined; // don't send a JSON object for subsequent requests, we don't need to.
+  }
+
+  onResponse(data) {
+    if (!data?.rooms) {
+      return;
+    }
+    for (const roomId in data.rooms) {
+      processEphemeralEvents(this.client, roomId, [data.rooms[roomId]]);
+    }
+  }
+}
+
 /**
  * A copy of SyncApi such that it can be used as a drop-in replacement for sync v2. For the actual
  * sliding sync API, see sliding-sync.ts or the class SlidingSync.
  */
-
-
 class SlidingSyncSdk {
   // accumulator of sync events in the current sync response
-  constructor(slidingSync, client, opts = {}) {
+
+  constructor(slidingSync, client, opts, syncOpts) {
     this.slidingSync = slidingSync;
     this.client = client;
-    this.opts = opts;
-
+    _defineProperty(this, "opts", void 0);
+    _defineProperty(this, "syncOpts", void 0);
     _defineProperty(this, "syncState", null);
-
     _defineProperty(this, "syncStateData", void 0);
-
     _defineProperty(this, "lastPos", null);
-
     _defineProperty(this, "failCount", 0);
-
     _defineProperty(this, "notifEvents", []);
-
-    this.opts.initialSyncLimit = this.opts.initialSyncLimit ?? 8;
-    this.opts.resolveInvitesToProfiles = this.opts.resolveInvitesToProfiles || false;
-    this.opts.pollTimeout = this.opts.pollTimeout || 30 * 1000;
-    this.opts.pendingEventOrdering = this.opts.pendingEventOrdering || _client.PendingEventOrdering.Chronological;
-    this.opts.experimentalThreadSupport = this.opts.experimentalThreadSupport === true;
-
-    if (!opts.canResetEntireTimeline) {
-      opts.canResetEntireTimeline = _roomId => {
-        return false;
-      };
-    }
-
+    this.opts = (0, _sync.defaultClientOpts)(opts);
+    this.syncOpts = (0, _sync.defaultSyncApiOpts)(syncOpts);
     if (client.getNotifTimelineSet()) {
       client.reEmitter.reEmit(client.getNotifTimelineSet(), [_room.RoomEvent.Timeline, _room.RoomEvent.TimelineReset]);
     }
-
     this.slidingSync.on(_slidingSync.SlidingSyncEvent.Lifecycle, this.onLifecycle.bind(this));
     this.slidingSync.on(_slidingSync.SlidingSyncEvent.RoomData, this.onRoomData.bind(this));
-    const extensions = [new ExtensionToDevice(this.client), new ExtensionAccountData(this.client)];
-
-    if (this.opts.crypto) {
-      extensions.push(new ExtensionE2EE(this.opts.crypto));
+    const extensions = [new ExtensionToDevice(this.client, this.syncOpts.cryptoCallbacks), new ExtensionAccountData(this.client), new ExtensionTyping(this.client), new ExtensionReceipts(this.client)];
+    if (this.syncOpts.crypto) {
+      extensions.push(new ExtensionE2EE(this.syncOpts.crypto));
     }
-
     extensions.forEach(ext => {
       this.slidingSync.registerExtension(ext);
     });
   }
-
   onRoomData(roomId, roomData) {
     let room = this.client.store.getRoom(roomId);
-
     if (!room) {
       if (!roomData.initial) {
         _logger.logger.debug("initial flag not set but no stored room exists for room ", roomId, roomData);
-
         return;
       }
-
       room = (0, _sync._createAndReEmitRoom)(this.client, roomId, this.opts);
     }
-
     this.processRoomData(this.client, room, roomData);
   }
-
   onLifecycle(state, resp, err) {
     if (err) {
       _logger.logger.debug("onLifecycle", state, err);
     }
-
     switch (state) {
       case _slidingSync.SlidingSyncState.Complete:
         this.purgeNotifications();
-
         if (!resp) {
           break;
-        } // Element won't stop showing the initial loading spinner unless we fire SyncState.Prepared
-
-
+        }
+        // Element won't stop showing the initial loading spinner unless we fire SyncState.Prepared
         if (!this.lastPos) {
           this.updateSyncState(_sync.SyncState.Prepared, {
-            oldSyncToken: this.lastPos,
+            oldSyncToken: undefined,
             nextSyncToken: resp.pos,
             catchingUp: false,
             fromCache: false
           });
-        } // Conversely, Element won't show the room list unless there is at least 1x SyncState.Syncing
+        }
+        // Conversely, Element won't show the room list unless there is at least 1x SyncState.Syncing
         // so hence for the very first sync we will fire prepared then immediately syncing.
-
-
         this.updateSyncState(_sync.SyncState.Syncing, {
           oldSyncToken: this.lastPos,
           nextSyncToken: resp.pos,
@@ -330,101 +315,126 @@
         });
         this.lastPos = resp.pos;
         break;
-
       case _slidingSync.SlidingSyncState.RequestFinished:
         if (err) {
           this.failCount += 1;
           this.updateSyncState(this.failCount > FAILED_SYNC_ERROR_THRESHOLD ? _sync.SyncState.Error : _sync.SyncState.Reconnecting, {
             error: new _httpApi.MatrixError(err)
           });
-
           if (this.shouldAbortSync(new _httpApi.MatrixError(err))) {
             return; // shouldAbortSync actually stops syncing too so we don't need to do anything.
           }
         } else {
           this.failCount = 0;
         }
-
         break;
     }
   }
+
   /**
    * Sync rooms the user has left.
-   * @return {Promise} Resolved when they've been added to the store.
+   * @returns Resolved when they've been added to the store.
    */
-
-
   async syncLeftRooms() {
     return []; // TODO
   }
+
   /**
    * Peek into a room. This will result in the room in question being synced so it
    * is accessible via getRooms(). Live updates for the room will be provided.
-   * @param {string} roomId The room ID to peek into.
-   * @return {Promise} A promise which resolves once the room has been added to the
+   * @param roomId - The room ID to peek into.
+   * @returns A promise which resolves once the room has been added to the
    * store.
    */
-
-
   async peek(_roomId) {
     return null; // TODO
   }
+
   /**
    * Stop polling for updates in the peeked room. NOPs if there is no room being
    * peeked.
    */
-
-
-  stopPeeking() {// TODO
+  stopPeeking() {
+    // TODO
   }
+
   /**
    * Returns the current state of this sync object
-   * @see module:client~MatrixClient#event:"sync"
-   * @return {?String}
+   * @see MatrixClient#event:"sync"
    */
-
-
   getSyncState() {
     return this.syncState;
   }
+
   /**
    * Returns the additional data object associated with
    * the current sync state, or null if there is no
    * such data.
    * Sync errors, if available, are put in the 'error' key of
    * this object.
-   * @return {?Object}
    */
+  getSyncStateData() {
+    return this.syncStateData ?? null;
+  }
 
+  // Helper functions which set up JS SDK structs are below and are identical to the sync v2 counterparts
 
-  getSyncStateData() {
-    return this.syncStateData;
+  createRoom(roomId) {
+    // XXX cargoculted from sync.ts
+    const {
+      timelineSupport
+    } = this.client;
+    const room = new _room.Room(roomId, this.client, this.client.getUserId(), {
+      lazyLoadMembers: this.opts.lazyLoadMembers,
+      pendingEventOrdering: this.opts.pendingEventOrdering,
+      timelineSupport
+    });
+    this.client.reEmitter.reEmit(room, [_room.RoomEvent.Name, _room.RoomEvent.Redaction, _room.RoomEvent.RedactionCancelled, _room.RoomEvent.Receipt, _room.RoomEvent.Tags, _room.RoomEvent.LocalEchoUpdated, _room.RoomEvent.AccountData, _room.RoomEvent.MyMembership, _room.RoomEvent.Timeline, _room.RoomEvent.TimelineReset]);
+    this.registerStateListeners(room);
+    return room;
+  }
+  registerStateListeners(room) {
+    // XXX cargoculted from sync.ts
+    // we need to also re-emit room state and room member events, so hook it up
+    // to the client now. We need to add a listener for RoomState.members in
+    // order to hook them correctly.
+    this.client.reEmitter.reEmit(room.currentState, [_roomState.RoomStateEvent.Events, _roomState.RoomStateEvent.Members, _roomState.RoomStateEvent.NewMember, _roomState.RoomStateEvent.Update]);
+    room.currentState.on(_roomState.RoomStateEvent.NewMember, (event, state, member) => {
+      member.user = this.client.getUser(member.userId) ?? undefined;
+      this.client.reEmitter.reEmit(member, [_roomMember.RoomMemberEvent.Name, _roomMember.RoomMemberEvent.Typing, _roomMember.RoomMemberEvent.PowerLevel, _roomMember.RoomMemberEvent.Membership]);
+    });
   }
 
+  /*
+  private deregisterStateListeners(room: Room): void { // XXX cargoculted from sync.ts
+      // could do with a better way of achieving this.
+      room.currentState.removeAllListeners(RoomStateEvent.Events);
+      room.currentState.removeAllListeners(RoomStateEvent.Members);
+      room.currentState.removeAllListeners(RoomStateEvent.NewMember);
+  } */
+
   shouldAbortSync(error) {
     if (error.errcode === "M_UNKNOWN_TOKEN") {
       // The logout already happened, we just need to stop.
       _logger.logger.warn("Token no longer valid - assuming logout");
-
       this.stop();
       this.updateSyncState(_sync.SyncState.Error, {
         error
       });
       return true;
     }
-
     return false;
   }
-
   async processRoomData(client, room, roomData) {
     roomData = ensureNameEvent(client, room.roomId, roomData);
-    const stateEvents = mapEvents(this.client, room.roomId, roomData.required_state); // Prevent events from being decrypted ahead of time
+    const stateEvents = mapEvents(this.client, room.roomId, roomData.required_state);
+    // Prevent events from being decrypted ahead of time
     // this helps large account to speed up faster
     // room::decryptCriticalEvent is in charge of decrypting all the events
     // required for a client to function properly
-
     let timelineEvents = mapEvents(this.client, room.roomId, roomData.timeline, false);
     const ephemeralEvents = []; // TODO this.mapSyncEventsFormat(joinObj.ephemeral);
+
     // TODO: handle threaded / beacon events
 
     if (roomData.initial) {
@@ -434,7 +444,8 @@
       const knownEvents = new Set();
       room.getLiveTimeline().getEvents().forEach(e => {
         knownEvents.add(e.getId());
-      }); // all unknown events BEFORE a known event must be scrollback e.g:
+      });
+      // all unknown events BEFORE a known event must be scrollback e.g:
       //       D E   <-- what we know
       // A B C D E F <-- what we just received
       // means:
@@ -442,14 +453,11 @@
       //       D E   <-- dupes
       //           F <-- new event
       // We bucket events based on if we have seen a known event yet.
-
       const oldEvents = [];
       const newEvents = [];
       let seenKnownEvent = false;
-
       for (let i = timelineEvents.length - 1; i >= 0; i--) {
         const recvEvent = timelineEvents[i];
-
         if (knownEvents.has(recvEvent.getId())) {
           seenKnownEvent = true;
           continue; // don't include this event, it's a dupe
@@ -463,21 +471,17 @@
           newEvents.unshift(recvEvent);
         }
       }
-
       timelineEvents = newEvents;
-
       if (oldEvents.length > 0) {
         // old events are scrollback, insert them now
         room.addEventsToTimeline(oldEvents, true, room.getLiveTimeline(), roomData.prev_batch);
       }
     }
-
-    const encrypted = this.client.isRoomEncrypted(room.roomId); // we do this first so it's correct when any of the events fire
-
+    const encrypted = this.client.isRoomEncrypted(room.roomId);
+    // we do this first so it's correct when any of the events fire
     if (roomData.notification_count != null) {
       room.setUnreadNotificationCount(_room.NotificationCountType.Total, roomData.notification_count);
     }
-
     if (roomData.highlight_count != null) {
       // We track unread notifications ourselves in encrypted rooms, so don't
       // bother setting it here. We trust our calculations better than the
@@ -487,37 +491,32 @@
         room.setUnreadNotificationCount(_room.NotificationCountType.Highlight, roomData.highlight_count);
       }
     }
-
     if (Number.isInteger(roomData.invited_count)) {
       room.currentState.setInvitedMemberCount(roomData.invited_count);
     }
-
     if (Number.isInteger(roomData.joined_count)) {
       room.currentState.setJoinedMemberCount(roomData.joined_count);
     }
-
     if (roomData.invite_state) {
       const inviteStateEvents = mapEvents(this.client, room.roomId, roomData.invite_state);
-      this.processRoomEvents(room, inviteStateEvents);
-
+      this.injectRoomEvents(room, inviteStateEvents);
       if (roomData.initial) {
         room.recalculate();
         this.client.store.storeRoom(room);
         this.client.emit(_client.ClientEvent.Room, room);
       }
-
       inviteStateEvents.forEach(e => {
         this.client.emit(_client.ClientEvent.Event, e);
       });
       room.updateMyMembership("invite");
       return;
     }
-
     if (roomData.initial) {
       // set the back-pagination token. Do this *before* adding any
       // events so that clients can start back-paginating.
-      room.getLiveTimeline().setPaginationToken(roomData.prev_batch, _eventTimeline.EventTimeline.BACKWARDS);
+      room.getLiveTimeline().setPaginationToken(roomData.prev_batch ?? null, _eventTimeline.EventTimeline.BACKWARDS);
     }
+
     /* TODO
     else if (roomData.limited) {
          let limited = true;
@@ -555,69 +554,69 @@
          if (limited) {
             room.resetLiveTimeline(
                 roomData.prev_batch,
-                null, // TODO this.opts.canResetEntireTimeline(room.roomId) ? null : syncEventData.oldSyncToken,
+                null, // TODO this.syncOpts.canResetEntireTimeline(room.roomId) ? null : syncEventData.oldSyncToken,
             );
              // We have to assume any gap in any timeline is
             // reason to stop incrementally tracking notifications and
             // reset the timeline.
             this.client.resetNotifTimelineSet();
+            this.registerStateListeners(room);
         }
     } */
 
+    this.injectRoomEvents(room, stateEvents, timelineEvents, roomData.num_live);
 
-    this.processRoomEvents(room, stateEvents, timelineEvents, false); // we deliberately don't add ephemeral events to the timeline
+    // we deliberately don't add ephemeral events to the timeline
+    room.addEphemeralEvents(ephemeralEvents);
 
-    room.addEphemeralEvents(ephemeralEvents); // local fields must be set before any async calls because call site assumes
+    // local fields must be set before any async calls because call site assumes
     // synchronous execution prior to emitting SlidingSyncState.Complete
-
     room.updateMyMembership("join");
     room.recalculate();
-
     if (roomData.initial) {
       client.store.storeRoom(room);
       client.emit(_client.ClientEvent.Room, room);
-    } // check if any timeline events should bing and add them to the notifEvents array:
-    // we'll purge this once we've fully processed the sync response
-
+    }
 
+    // check if any timeline events should bing and add them to the notifEvents array:
+    // we'll purge this once we've fully processed the sync response
     this.addNotifications(timelineEvents);
-
     const processRoomEvent = async e => {
       client.emit(_client.ClientEvent.Event, e);
-
-      if (e.isState() && e.getType() == _matrix.EventType.RoomEncryption && this.opts.crypto) {
-        await this.opts.crypto.onCryptoEvent(e);
+      if (e.isState() && e.getType() == _event.EventType.RoomEncryption && this.syncOpts.cryptoCallbacks) {
+        await this.syncOpts.cryptoCallbacks.onCryptoEvent(room, e);
       }
     };
-
     await utils.promiseMapSeries(stateEvents, processRoomEvent);
     await utils.promiseMapSeries(timelineEvents, processRoomEvent);
     ephemeralEvents.forEach(function (e) {
       client.emit(_client.ClientEvent.Event, e);
-    }); // Decrypt only the last message in all rooms to make sure we can generate a preview
+    });
+
+    // Decrypt only the last message in all rooms to make sure we can generate a preview
     // And decrypt all events after the recorded read receipt to ensure an accurate
     // notification count
-
     room.decryptCriticalEvents();
   }
+
   /**
-   * @param {Room} room
-   * @param {MatrixEvent[]} stateEventList A list of state events. This is the state
+   * Injects events into a room's model.
+   * @param stateEventList - A list of state events. This is the state
    * at the *START* of the timeline list if it is supplied.
-   * @param {MatrixEvent[]} [timelineEventList] A list of timeline events. Lower index
-   * @param {boolean} fromCache whether the sync response came from cache
+   * @param timelineEventList - A list of timeline events. Lower index
    * is earlier in time. Higher index is later.
+   * @param numLive - the number of events in timelineEventList which just happened,
+   * supplied from the server.
    */
-
-
-  processRoomEvents(room, stateEventList, timelineEventList, fromCache = false) {
+  injectRoomEvents(room, stateEventList, timelineEventList, numLive) {
     timelineEventList = timelineEventList || [];
-    stateEventList = stateEventList || []; // If there are no events in the timeline yet, initialise it with
-    // the given state events
+    stateEventList = stateEventList || [];
+    numLive = numLive || 0;
 
+    // If there are no events in the timeline yet, initialise it with
+    // the given state events
     const liveTimeline = room.getLiveTimeline();
     const timelineWasEmpty = liveTimeline.getEvents().length == 0;
-
     if (timelineWasEmpty) {
       // Passing these events into initialiseState will freeze them, so we need
       // to compute and cache the push actions for them now, otherwise sync dies
@@ -630,9 +629,10 @@
       for (const ev of stateEventList) {
         this.client.getPushActionsForEvent(ev);
       }
-
       liveTimeline.initialiseState(stateEventList);
-    } // If the timeline wasn't empty, we process the state events here: they're
+    }
+
+    // If the timeline wasn't empty, we process the state events here: they're
     // defined as updates to the state before the start of the timeline, so this
     // starts to roll the state forward.
     // XXX: That's what we *should* do, but this can happen if we were previously
@@ -642,43 +642,57 @@
     // very wrong because there could be events in the timeline that diverge the
     // state, in which case this is going to leave things out of sync. However,
     // for now I think it;s best to behave the same as the code has done previously.
-
-
     if (!timelineWasEmpty) {
       // XXX: As above, don't do this...
       //room.addLiveEvents(stateEventList || []);
       // Do this instead...
       room.oldState.setStateEvents(stateEventList);
       room.currentState.setStateEvents(stateEventList);
-    } // execute the timeline events. This will continue to diverge the current state
+    }
+
+    // the timeline is broken into 'live' events which just happened and normal timeline events
+    // which are still to be appended to the end of the live timeline but happened a while ago.
+    // The live events are marked as fromCache=false to ensure that downstream components know
+    // this is a live event, not historical (from a remote server cache).
+
+    let liveTimelineEvents = [];
+    if (numLive > 0) {
+      // last numLive events are live
+      liveTimelineEvents = timelineEventList.slice(-1 * numLive);
+      // everything else is not live
+      timelineEventList = timelineEventList.slice(0, -1 * liveTimelineEvents.length);
+    }
+
+    // execute the timeline events. This will continue to diverge the current state
     // if the timeline has any state events in it.
     // This also needs to be done before running push rules on the events as they need
     // to be decorated with sender etc.
-
-
     room.addLiveEvents(timelineEventList, {
-      fromCache: fromCache
+      fromCache: true
     });
-    room.recalculate(); // resolve invites now we have set the latest state
+    if (liveTimelineEvents.length > 0) {
+      room.addLiveEvents(liveTimelineEvents, {
+        fromCache: false
+      });
+    }
+    room.recalculate();
 
+    // resolve invites now we have set the latest state
     this.resolveInvites(room);
   }
-
   resolveInvites(room) {
     if (!room || !this.opts.resolveInvitesToProfiles) {
       return;
     }
-
-    const client = this.client; // For each invited room member we want to give them a displayname/avatar url
+    const client = this.client;
+    // For each invited room member we want to give them a displayname/avatar url
     // if they have one (the m.room.member invites don't contain this).
-
     room.getMembersWithMembership("invite").forEach(function (member) {
-      if (member._requestedProfileInfo) return;
-      member._requestedProfileInfo = true; // try to get a cached copy first.
-
+      if (member.requestedProfileInfo) return;
+      member.requestedProfileInfo = true;
+      // try to get a cached copy first.
       const user = client.getUser(member.userId);
       let promise;
-
       if (user) {
         promise = Promise.resolve({
           avatar_url: user.avatarUrl,
@@ -687,109 +701,96 @@
       } else {
         promise = client.getProfileInfo(member.userId);
       }
-
       promise.then(function (info) {
         // slightly naughty by doctoring the invite event but this means all
         // the code paths remain the same between invite/join display name stuff
         // which is a worthy trade-off for some minor pollution.
         const inviteEvent = member.events.member;
-
         if (inviteEvent.getContent().membership !== "invite") {
           // between resolving and now they have since joined, so don't clobber
           return;
         }
-
         inviteEvent.getContent().avatar_url = info.avatar_url;
-        inviteEvent.getContent().displayname = info.displayname; // fire listeners
-
+        inviteEvent.getContent().displayname = info.displayname;
+        // fire listeners
         member.setMembershipEvent(inviteEvent, room.currentState);
-      }, function (_err) {// OH WELL.
+      }, function (_err) {
+        // OH WELL.
       });
     });
   }
-
   retryImmediately() {
     return true;
   }
+
   /**
    * Main entry point. Blocks until stop() is called.
    */
-
-
   async sync() {
-    _logger.logger.debug("Sliding sync init loop"); //   1) We need to get push rules so we can check if events should bing as we get
-    //      them from /sync.
-
+    _logger.logger.debug("Sliding sync init loop");
 
+    //   1) We need to get push rules so we can check if events should bing as we get
+    //      them from /sync.
     while (!this.client.isGuest()) {
       try {
         _logger.logger.debug("Getting push rules...");
-
         const result = await this.client.getPushRules();
-
         _logger.logger.debug("Got push rules");
-
         this.client.pushRules = result;
         break;
       } catch (err) {
         _logger.logger.error("Getting push rules failed", err);
-
         if (this.shouldAbortSync(err)) {
           return;
         }
       }
-    } // start syncing
-
+    }
 
+    // start syncing
     await this.slidingSync.start();
   }
+
   /**
    * Stops the sync object from syncing.
    */
-
-
   stop() {
     _logger.logger.debug("SyncApi.stop");
-
     this.slidingSync.stop();
   }
+
   /**
    * Sets the sync state and emits an event to say so
-   * @param {String} newState The new state string
-   * @param {Object} data Object of additional data to emit in the event
+   * @param newState - The new state string
+   * @param data - Object of additional data to emit in the event
    */
-
-
   updateSyncState(newState, data) {
     const old = this.syncState;
     this.syncState = newState;
     this.syncStateData = data;
     this.client.emit(_client.ClientEvent.Sync, this.syncState, old, data);
   }
+
   /**
    * Takes a list of timelineEvents and adds and adds to notifEvents
    * as appropriate.
    * This must be called after the room the events belong to has been stored.
    *
-   * @param {MatrixEvent[]} [timelineEventList] A list of timeline events. Lower index
+   * @param timelineEventList - A list of timeline events. Lower index
    * is earlier in time. Higher index is later.
    */
-
-
   addNotifications(timelineEventList) {
     // gather our notifications into this.notifEvents
     if (!this.client.getNotifTimelineSet()) {
       return;
     }
-
     for (const timelineEvent of timelineEventList) {
       const pushActions = this.client.getPushActionsForEvent(timelineEvent);
-
       if (pushActions && pushActions.notify && pushActions.tweaks && pushActions.tweaks.highlight) {
         this.notifEvents.push(timelineEvent);
       }
     }
   }
+
   /**
    * Purge any events in the notifEvents array. Used after a /sync has been complete.
    * This should not be called at a per-room scope (e.g in onRoomData) because otherwise the ordering
@@ -797,22 +798,17 @@
    * response. If we purge at a per-room scope then we could process room B before room A leading to
    * room B appearing earlier in the notifications timeline, even though it has the higher origin_server_ts.
    */
-
-
   purgeNotifications() {
     this.notifEvents.sort(function (a, b) {
       return a.getTs() - b.getTs();
     });
     this.notifEvents.forEach(event => {
-      this.client.getNotifTimelineSet().addLiveEvent(event);
+      this.client.getNotifTimelineSet()?.addLiveEvent(event);
     });
     this.notifEvents = [];
   }
-
 }
-
 exports.SlidingSyncSdk = SlidingSyncSdk;
-
 function ensureNameEvent(client, roomId, roomData) {
   // make sure m.room.name is in required_state if there is a name, replacing anything previously
   // there if need be. This ensures clients transparently 'calculate' the right room name. Native
@@ -820,20 +816,18 @@
   if (!roomData.name) {
     return roomData;
   }
-
   for (const stateEvent of roomData.required_state) {
-    if (stateEvent.type === _matrix.EventType.RoomName && stateEvent.state_key === "") {
+    if (stateEvent.type === _event.EventType.RoomName && stateEvent.state_key === "") {
       stateEvent.content = {
         name: roomData.name
       };
       return roomData;
     }
   }
-
   roomData.required_state.push({
     event_id: "$fake-sliding-sync-name-event-" + roomId,
     state_key: "",
-    type: _matrix.EventType.RoomName,
+    type: _event.EventType.RoomName,
     content: {
       name: roomData.name
     },
@@ -841,16 +835,27 @@
     origin_server_ts: new Date().getTime()
   });
   return roomData;
-} // Helper functions which set up JS SDK structs are below and are identical to the sync v2 counterparts,
+}
+// Helper functions which set up JS SDK structs are below and are identical to the sync v2 counterparts,
 // just outside the class.
-
-
 function mapEvents(client, roomId, events, decrypt = true) {
   const mapper = client.getEventMapper({
     decrypt
   });
   return events.map(function (e) {
-    e["room_id"] = roomId;
+    e.room_id = roomId;
     return mapper(e);
   });
+}
+function processEphemeralEvents(client, roomId, ephEvents) {
+  const ephemeralEvents = mapEvents(client, roomId, ephEvents);
+  const room = client.getRoom(roomId);
+  if (!room) {
+    _logger.logger.warn("got ephemeral events for room but room doesn't exist on client:", roomId);
+    return;
+  }
+  room.addEphemeralEvents(ephemeralEvents);
+  ephemeralEvents.forEach(e => {
+    client.emit(_client.ClientEvent.Event, e);
+  });
 }
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/store/indexeddb.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/store/indexeddb.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/store/indexeddb.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/store/indexeddb.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,27 +4,20 @@
   value: true
 });
 exports.IndexedDBStore = void 0;
-
 var _memory = require("./memory");
-
 var _indexeddbLocalBackend = require("./indexeddb-local-backend");
-
 var _indexeddbRemoteBackend = require("./indexeddb-remote-backend");
-
 var _user = require("../models/user");
-
 var _event = require("../models/event");
-
 var _logger = require("../logger");
-
 var _typedEventEmitter = require("../models/typed-event-emitter");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /**
  * This is an internal module. See {@link IndexedDBStore} for the public class.
- * @module store/indexeddb
  */
+
 // If this value is too small we'll be writing very often which will cause
 // noticeable stop-the-world pauses. If this value is too big we'll be writing
 // so infrequently that the /sync size gets bigger on reload. Writing more
@@ -38,16 +31,21 @@
   }
 
   /**
+   * The backend instance.
+   * Call through to this API if you need to perform specific indexeddb actions like deleting the database.
+   */
+
+  /**
    * Construct a new Indexed Database store, which extends MemoryStore.
    *
    * This store functions like a MemoryStore except it periodically persists
    * the contents of the store to an IndexedDB backend.
    *
    * All data is still kept in-memory but can be loaded from disk by calling
-   * <code>startup()</code>. This can make startup times quicker as a complete
+   * `startup()`. This can make startup times quicker as a complete
    * sync from the server is not required. This does not reduce memory usage as all
-   * the data is eagerly fetched when <code>startup()</code> is called.
-   * <pre>
+   * the data is eagerly fetched when `startup()` is called.
+   * ```
    * let opts = { indexedDB: window.indexedDB, localStorage: window.localStorage };
    * let store = new IndexedDBStore(opts);
    * await store.startup(); // load from indexed db
@@ -60,187 +58,140 @@
    *         console.log("Started up, now with go faster stripes!");
    *     }
    * });
-   * </pre>
+   * ```
    *
-   * @constructor
-   * @extends MemoryStore
-   * @param {Object} opts Options object.
-   * @param {Object} opts.indexedDB The Indexed DB interface e.g.
-   * <code>window.indexedDB</code>
-   * @param {string=} opts.dbName Optional database name. The same name must be used
-   * to open the same database.
-   * @param {string=} opts.workerScript Optional URL to a script to invoke a web
-   * worker with to run IndexedDB queries on the web worker. The IndexedDbStoreWorker
-   * class is provided for this purpose and requires the application to provide a
-   * trivial wrapper script around it.
-   * @param {Object=} opts.workerApi The webWorker API object. If omitted, the global Worker
-   * object will be used if it exists.
-   * @prop {IndexedDBStoreBackend} backend The backend instance. Call through to
-   * this API if you need to perform specific indexeddb actions like deleting the
-   * database.
+   * @param opts - Options object.
    */
   constructor(opts) {
     super(opts);
-
     _defineProperty(this, "backend", void 0);
-
     _defineProperty(this, "startedUp", false);
-
     _defineProperty(this, "syncTs", 0);
-
     _defineProperty(this, "userModifiedMap", {});
-
     _defineProperty(this, "emitter", new _typedEventEmitter.TypedEventEmitter());
-
     _defineProperty(this, "on", this.emitter.on.bind(this.emitter));
-
     _defineProperty(this, "getSavedSync", this.degradable(() => {
       return this.backend.getSavedSync();
     }, "getSavedSync"));
-
     _defineProperty(this, "isNewlyCreated", this.degradable(() => {
       return this.backend.isNewlyCreated();
     }, "isNewlyCreated"));
-
     _defineProperty(this, "getSavedSyncToken", this.degradable(() => {
       return this.backend.getNextBatchToken();
     }, "getSavedSyncToken"));
-
     _defineProperty(this, "deleteAllData", this.degradable(() => {
       super.deleteAllData();
       return this.backend.clearDatabase().then(() => {
         _logger.logger.log("Deleted indexeddb data.");
       }, err => {
         _logger.logger.error(`Failed to delete indexeddb data: ${err}`);
-
         throw err;
       });
     }));
-
     _defineProperty(this, "reallySave", this.degradable(() => {
       this.syncTs = Date.now(); // set now to guard against multi-writes
+
       // work out changed users (this doesn't handle deletions but you
       // can't 'delete' users as they are just presence events).
-
       const userTuples = [];
-
       for (const u of this.getUsers()) {
         if (this.userModifiedMap[u.userId] === u.getLastModifiedTime()) continue;
         if (!u.events.presence) continue;
-        userTuples.push([u.userId, u.events.presence.event]); // note that we've saved this version of the user
+        userTuples.push([u.userId, u.events.presence.event]);
 
+        // note that we've saved this version of the user
         this.userModifiedMap[u.userId] = u.getLastModifiedTime();
       }
-
       return this.backend.syncToDatabase(userTuples);
     }));
-
     _defineProperty(this, "setSyncData", this.degradable(syncData => {
       return this.backend.setSyncData(syncData);
     }, "setSyncData"));
-
     _defineProperty(this, "getOutOfBandMembers", this.degradable(roomId => {
       return this.backend.getOutOfBandMembers(roomId);
     }, "getOutOfBandMembers"));
-
     _defineProperty(this, "setOutOfBandMembers", this.degradable((roomId, membershipEvents) => {
       super.setOutOfBandMembers(roomId, membershipEvents);
       return this.backend.setOutOfBandMembers(roomId, membershipEvents);
     }, "setOutOfBandMembers"));
-
     _defineProperty(this, "clearOutOfBandMembers", this.degradable(roomId => {
       super.clearOutOfBandMembers(roomId);
       return this.backend.clearOutOfBandMembers(roomId);
     }, "clearOutOfBandMembers"));
-
     _defineProperty(this, "getClientOptions", this.degradable(() => {
       return this.backend.getClientOptions();
     }, "getClientOptions"));
-
     _defineProperty(this, "storeClientOptions", this.degradable(options => {
       super.storeClientOptions(options);
       return this.backend.storeClientOptions(options);
     }, "storeClientOptions"));
-
     if (!opts.indexedDB) {
-      throw new Error('Missing required option: indexedDB');
+      throw new Error("Missing required option: indexedDB");
     }
-
     if (opts.workerFactory) {
       this.backend = new _indexeddbRemoteBackend.RemoteIndexedDBStoreBackend(opts.workerFactory, opts.dbName);
     } else {
       this.backend = new _indexeddbLocalBackend.LocalIndexedDBStoreBackend(opts.indexedDB, opts.dbName);
     }
   }
-
   /**
-   * @return {Promise} Resolved when loaded from indexed db.
+   * @returns Resolved when loaded from indexed db.
    */
   startup() {
     if (this.startedUp) {
       _logger.logger.log(`IndexedDBStore.startup: already started`);
-
       return Promise.resolve();
     }
-
     _logger.logger.log(`IndexedDBStore.startup: connecting to backend`);
-
     return this.backend.connect().then(() => {
       _logger.logger.log(`IndexedDBStore.startup: loading presence events`);
-
       return this.backend.getUserPresenceEvents();
     }).then(userPresenceEvents => {
       _logger.logger.log(`IndexedDBStore.startup: processing presence events`);
-
       userPresenceEvents.forEach(([userId, rawEvent]) => {
         const u = new _user.User(userId);
-
         if (rawEvent) {
           u.setPresenceEvent(new _event.MatrixEvent(rawEvent));
         }
-
         this.userModifiedMap[u.userId] = u.getLastModifiedTime();
         this.storeUser(u);
       });
     });
   }
+
   /**
-   * @return {Promise} Resolves with a sync response to restore the
+   * @returns Promise which resolves with a sync response to restore the
    * client state to where it was at the last save, or null if there
    * is no saved sync data.
    */
 
-
   /**
    * Whether this store would like to save its data
    * Note that obviously whether the store wants to save or
    * not could change between calling this function and calling
    * save().
    *
-   * @return {boolean} True if calling save() will actually save
+   * @returns True if calling save() will actually save
    *     (at the time this function is called).
    */
   wantsSave() {
     const now = Date.now();
     return now - this.syncTs > WRITE_DELAY_MS;
   }
+
   /**
    * Possibly write data to the database.
    *
-   * @param {boolean} force True to force a save to happen
-   * @return {Promise} Promise resolves after the write completes
+   * @param force - True to force a save to happen
+   * @returns Promise resolves after the write completes
    *     (or immediately if no write is performed)
    */
-
-
   save(force = false) {
     if (force || this.wantsSave()) {
       return this.reallySave();
     }
-
     return Promise.resolve();
   }
-
   /**
    * All member functions of `IndexedDBStore` that access the backend use this wrapper to
    * watch for failures after initial store startup, including `QuotaExceededError` as
@@ -249,54 +200,48 @@
    * When IndexedDB fails via any of these paths, we degrade this back to a `MemoryStore`
    * in place so that the current operation and all future ones are in-memory only.
    *
-   * @param {Function} func The degradable work to do.
-   * @param {String} fallback The method name for fallback.
-   * @returns {Function} A wrapped member function.
+   * @param func - The degradable work to do.
+   * @param fallback - The method name for fallback.
+   * @returns A wrapped member function.
    */
   degradable(func, fallback) {
-    const fallbackFn = super[fallback];
+    const fallbackFn = fallback ? super[fallback] : null;
     return async (...args) => {
       try {
         return await func.call(this, ...args);
       } catch (e) {
         _logger.logger.error("IndexedDBStore failure, degrading to MemoryStore", e);
-
         this.emitter.emit("degraded", e);
-
         try {
           // We try to delete IndexedDB after degrading since this store is only a
           // cache (the app will still function correctly without the data).
           // It's possible that deleting repair IndexedDB for the next app load,
           // potentially by making a little more space available.
           _logger.logger.log("IndexedDBStore trying to delete degraded data");
-
           await this.backend.clearDatabase();
-
           _logger.logger.log("IndexedDBStore delete after degrading succeeded");
         } catch (e) {
           _logger.logger.warn("IndexedDBStore delete after degrading failed", e);
-        } // Degrade the store from being an instance of `IndexedDBStore` to instead be
+        }
+        // Degrade the store from being an instance of `IndexedDBStore` to instead be
         // an instance of `MemoryStore` so that future API calls use the memory path
         // directly and skip IndexedDB entirely. This should be safe as
         // `IndexedDBStore` already extends from `MemoryStore`, so we are making the
         // store become its parent type in a way. The mutator methods of
         // `IndexedDBStore` also maintain the state that `MemoryStore` uses (many are
         // not overridden at all).
-
-
         if (fallbackFn) {
           return fallbackFn.call(this, ...args);
         }
       }
     };
-  } // XXX: ideally these would be stored in indexeddb as part of the room but,
-  // we don't store rooms as such and instead accumulate entire sync responses atm.
-
+  }
 
+  // XXX: ideally these would be stored in indexeddb as part of the room but,
+  // we don't store rooms as such and instead accumulate entire sync responses atm.
   async getPendingEvents(roomId) {
     if (!this.localStorage) return super.getPendingEvents(roomId);
     const serialized = this.localStorage.getItem(pendingEventsKey(roomId));
-
     if (serialized) {
       try {
         return JSON.parse(serialized);
@@ -304,41 +249,32 @@
         _logger.logger.error("Could not parse persisted pending events", e);
       }
     }
-
     return [];
   }
-
   async setPendingEvents(roomId, events) {
     if (!this.localStorage) return super.setPendingEvents(roomId, events);
-
     if (events.length > 0) {
       this.localStorage.setItem(pendingEventsKey(roomId), JSON.stringify(events));
     } else {
       this.localStorage.removeItem(pendingEventsKey(roomId));
     }
   }
-
   saveToDeviceBatches(batches) {
     return this.backend.saveToDeviceBatches(batches);
   }
-
   getOldestToDeviceBatch() {
     return this.backend.getOldestToDeviceBatch();
   }
-
   removeToDeviceBatch(id) {
     return this.backend.removeToDeviceBatch(id);
   }
-
 }
+
 /**
- * @param {string} roomId ID of the current room
- * @returns {string} Storage key to retrieve pending events
+ * @param roomId - ID of the current room
+ * @returns Storage key to retrieve pending events
  */
-
-
 exports.IndexedDBStore = IndexedDBStore;
-
 function pendingEventsKey(roomId) {
   return `mx_pending_events_${roomId}`;
 }
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/store/indexeddb-local-backend.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/store/indexeddb-local-backend.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/store/indexeddb-local-backend.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/store/indexeddb-local-backend.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,82 +4,70 @@
   value: true
 });
 exports.LocalIndexedDBStoreBackend = void 0;
-
 var _syncAccumulator = require("../sync-accumulator");
-
 var utils = _interopRequireWildcard(require("../utils"));
-
 var IndexedDBHelpers = _interopRequireWildcard(require("../indexeddb-helpers"));
-
 var _logger = require("../logger");
-
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
-const VERSION = 4;
-
-function createDatabase(db) {
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+const DB_MIGRATIONS = [db => {
   // Make user store, clobber based on user ID. (userId property of User objects)
   db.createObjectStore("users", {
     keyPath: ["userId"]
-  }); // Make account data store, clobber based on event type.
-  // (event.type property of MatrixEvent objects)
+  });
 
+  // Make account data store, clobber based on event type.
+  // (event.type property of MatrixEvent objects)
   db.createObjectStore("accountData", {
     keyPath: ["type"]
-  }); // Make /sync store (sync tokens, room data, etc), always clobber (const key).
+  });
 
+  // Make /sync store (sync tokens, room data, etc), always clobber (const key).
   db.createObjectStore("sync", {
     keyPath: ["clobber"]
   });
-}
-
-function upgradeSchemaV2(db) {
+}, db => {
   const oobMembersStore = db.createObjectStore("oob_membership_events", {
     keyPath: ["room_id", "state_key"]
   });
   oobMembersStore.createIndex("room", "room_id");
-}
-
-function upgradeSchemaV3(db) {
+}, db => {
   db.createObjectStore("client_options", {
     keyPath: ["clobber"]
   });
-}
-
-function upgradeSchemaV4(db) {
+}, db => {
   db.createObjectStore("to_device_queue", {
     autoIncrement: true
   });
 }
+// Expand as needed.
+];
+
+const VERSION = DB_MIGRATIONS.length;
+
 /**
  * Helper method to collect results from a Cursor and promiseify it.
- * @param {ObjectStore|Index} store The store to perform openCursor on.
- * @param {IDBKeyRange=} keyRange Optional key range to apply on the cursor.
- * @param {Function} resultMapper A function which is repeatedly called with a
+ * @param store - The store to perform openCursor on.
+ * @param keyRange - Optional key range to apply on the cursor.
+ * @param resultMapper - A function which is repeatedly called with a
  * Cursor.
  * Return the data you want to keep.
- * @return {Promise<T[]>} Resolves to an array of whatever you returned from
+ * @returns Promise which resolves to an array of whatever you returned from
  * resultMapper.
  */
-
-
 function selectQuery(store, keyRange, resultMapper) {
   const query = store.openCursor(keyRange);
   return new Promise((resolve, reject) => {
     const results = [];
-
     query.onerror = () => {
       reject(new Error("Query failed: " + query.error));
-    }; // collect results
-
-
+    };
+    // collect results
     query.onsuccess = () => {
       const cursor = query.result;
-
       if (!cursor) {
         resolve(results);
         return; // end of results
@@ -90,161 +78,117 @@
     };
   });
 }
-
 function txnAsPromise(txn) {
   return new Promise((resolve, reject) => {
     txn.oncomplete = function (event) {
       resolve(event);
     };
-
     txn.onerror = function () {
       reject(txn.error);
     };
   });
 }
-
 function reqAsEventPromise(req) {
   return new Promise((resolve, reject) => {
     req.onsuccess = function (event) {
       resolve(event);
     };
-
     req.onerror = function () {
       reject(req.error);
     };
   });
 }
-
 function reqAsPromise(req) {
   return new Promise((resolve, reject) => {
     req.onsuccess = () => resolve(req);
-
     req.onerror = err => reject(err);
   });
 }
-
 function reqAsCursorPromise(req) {
   return reqAsEventPromise(req).then(event => req.result);
 }
-
 class LocalIndexedDBStoreBackend {
   static exists(indexedDB, dbName) {
     dbName = "matrix-js-sdk:" + (dbName || "default");
     return IndexedDBHelpers.exists(indexedDB, dbName);
   }
-
   /**
    * Does the actual reading from and writing to the indexeddb
    *
    * Construct a new Indexed Database store backend. This requires a call to
-   * <code>connect()</code> before this store can be used.
-   * @constructor
-   * @param {Object} indexedDB The Indexed DB interface e.g
-   * <code>window.indexedDB</code>
-   * @param {string=} dbName Optional database name. The same name must be used
+   * `connect()` before this store can be used.
+   * @param indexedDB - The Indexed DB interface e.g
+   * `window.indexedDB`
+   * @param dbName - Optional database name. The same name must be used
    * to open the same database.
    */
-  constructor(indexedDB, dbName) {
+  constructor(indexedDB, dbName = "default") {
     this.indexedDB = indexedDB;
-
     _defineProperty(this, "dbName", void 0);
-
     _defineProperty(this, "syncAccumulator", void 0);
-
-    _defineProperty(this, "db", null);
-
+    _defineProperty(this, "db", void 0);
     _defineProperty(this, "disconnected", true);
-
     _defineProperty(this, "_isNewlyCreated", false);
-
     _defineProperty(this, "isPersisting", false);
-
     _defineProperty(this, "pendingUserPresenceData", []);
-
-    this.dbName = "matrix-js-sdk:" + (dbName || "default");
+    this.dbName = "matrix-js-sdk:" + dbName;
     this.syncAccumulator = new _syncAccumulator.SyncAccumulator();
   }
+
   /**
    * Attempt to connect to the database. This can fail if the user does not
    * grant permission.
-   * @return {Promise} Resolves if successfully connected.
+   * @returns Promise which resolves if successfully connected.
    */
-
-
   connect() {
     if (!this.disconnected) {
       _logger.logger.log(`LocalIndexedDBStoreBackend.connect: already connected or connecting`);
-
       return Promise.resolve();
     }
-
     this.disconnected = false;
-
     _logger.logger.log(`LocalIndexedDBStoreBackend.connect: connecting...`);
-
     const req = this.indexedDB.open(this.dbName, VERSION);
-
     req.onupgradeneeded = ev => {
       const db = req.result;
       const oldVersion = ev.oldVersion;
-
       _logger.logger.log(`LocalIndexedDBStoreBackend.connect: upgrading from ${oldVersion}`);
-
       if (oldVersion < 1) {
-        // The database did not previously exist.
+        // The database did not previously exist
         this._isNewlyCreated = true;
-        createDatabase(db);
-      }
-
-      if (oldVersion < 2) {
-        upgradeSchemaV2(db);
       }
-
-      if (oldVersion < 3) {
-        upgradeSchemaV3(db);
-      }
-
-      if (oldVersion < 4) {
-        upgradeSchemaV4(db);
-      } // Expand as needed.
-
+      DB_MIGRATIONS.forEach((migration, index) => {
+        if (oldVersion <= index) migration(db);
+      });
     };
-
     req.onblocked = () => {
       _logger.logger.log(`can't yet open LocalIndexedDBStoreBackend because it is open elsewhere`);
     };
-
     _logger.logger.log(`LocalIndexedDBStoreBackend.connect: awaiting connection...`);
-
-    return reqAsEventPromise(req).then(() => {
+    return reqAsEventPromise(req).then(async () => {
       _logger.logger.log(`LocalIndexedDBStoreBackend.connect: connected`);
+      this.db = req.result;
 
-      this.db = req.result; // add a poorly-named listener for when deleteDatabase is called
+      // add a poorly-named listener for when deleteDatabase is called
       // so we can close our db connections.
-
       this.db.onversionchange = () => {
-        this.db.close();
+        this.db?.close();
       };
-
-      return this.init();
+      await this.init();
     });
   }
-  /** @return {boolean} whether or not the database was newly created in this session. */
-
 
+  /** @returns whether or not the database was newly created in this session. */
   isNewlyCreated() {
     return Promise.resolve(this._isNewlyCreated);
   }
+
   /**
    * Having connected, load initial data from the database and prepare for use
-   * @return {Promise} Resolves on success
+   * @returns Promise which resolves on success
    */
-
-
   init() {
     return Promise.all([this.loadAccountData(), this.loadSyncData()]).then(([accountData, syncData]) => {
       _logger.logger.log(`LocalIndexedDBStoreBackend: loaded initial data`);
-
       this.syncAccumulator.accumulate({
         next_batch: syncData.nextBatch,
         rooms: syncData.roomsData,
@@ -254,15 +198,13 @@
       }, true);
     });
   }
+
   /**
    * Returns the out-of-band membership events for this room that
    * were previously loaded.
-   * @param {string} roomId
-   * @returns {Promise<event[]>} the events, potentially an empty array if OOB loading didn't yield any new members
-   * @returns {null} in case the members for this room haven't been stored yet
+   * @returns the events, potentially an empty array if OOB loading didn't yield any new members
+   * @returns in case the members for this room haven't been stored yet
    */
-
-
   getOutOfBandMembers(roomId) {
     return new Promise((resolve, reject) => {
       const tx = this.db.transaction(["oob_membership_events"], "readonly");
@@ -270,68 +212,57 @@
       const roomIndex = store.index("room");
       const range = IDBKeyRange.only(roomId);
       const request = roomIndex.openCursor(range);
-      const membershipEvents = []; // did we encounter the oob_written marker object
+      const membershipEvents = [];
+      // did we encounter the oob_written marker object
       // amongst the results? That means OOB member
       // loading already happened for this room
       // but there were no members to persist as they
       // were all known already
-
       let oobWritten = false;
-
       request.onsuccess = () => {
         const cursor = request.result;
-
         if (!cursor) {
           // Unknown room
           if (!membershipEvents.length && !oobWritten) {
             return resolve(null);
           }
-
           return resolve(membershipEvents);
         }
-
         const record = cursor.value;
-
         if (record.oob_written) {
           oobWritten = true;
         } else {
           membershipEvents.push(record);
         }
-
         cursor.continue();
       };
-
       request.onerror = err => {
         reject(err);
       };
     }).then(events => {
       _logger.logger.log(`LL: got ${events?.length} membershipEvents from storage for room ${roomId} ...`);
-
       return events;
     });
   }
+
   /**
    * Stores the out-of-band membership events for this room. Note that
    * it still makes sense to store an empty array as the OOB status for the room is
    * marked as fetched, and getOutOfBandMembers will return an empty array instead of null
-   * @param {string} roomId
-   * @param {event[]} membershipEvents the membership events to store
+   * @param membershipEvents - the membership events to store
    */
-
-
   async setOutOfBandMembers(roomId, membershipEvents) {
     _logger.logger.log(`LL: backend about to store ${membershipEvents.length}` + ` members for ${roomId}`);
-
     const tx = this.db.transaction(["oob_membership_events"], "readwrite");
     const store = tx.objectStore("oob_membership_events");
     membershipEvents.forEach(e => {
       store.put(e);
-    }); // aside from all the events, we also write a marker object to the store
+    });
+    // aside from all the events, we also write a marker object to the store
     // to mark the fact that OOB members have been written for this room.
     // It's possible that 0 members need to be written as all where previously know
     // but we still need to know whether to return null or [] from getOutOfBandMembers
     // where null means out of band members haven't been stored yet for this room
-
     const markerObject = {
       room_id: roomId,
       oob_written: true,
@@ -339,10 +270,8 @@
     };
     store.put(markerObject);
     await txnAsPromise(tx);
-
     _logger.logger.log(`LL: backend done storing for ${roomId}!`);
   }
-
   async clearOutOfBandMembers(roomId) {
     // the approach to delete all members for a room
     // is to get the min and max state key from the index
@@ -354,65 +283,54 @@
     const store = readTx.objectStore("oob_membership_events");
     const roomIndex = store.index("room");
     const roomRange = IDBKeyRange.only(roomId);
-    const minStateKeyProm = reqAsCursorPromise(roomIndex.openKeyCursor(roomRange, "next")).then(cursor => cursor && cursor.primaryKey[1]);
-    const maxStateKeyProm = reqAsCursorPromise(roomIndex.openKeyCursor(roomRange, "prev")).then(cursor => cursor && cursor.primaryKey[1]);
+    const minStateKeyProm = reqAsCursorPromise(roomIndex.openKeyCursor(roomRange, "next")).then(cursor => (cursor?.primaryKey)[1]);
+    const maxStateKeyProm = reqAsCursorPromise(roomIndex.openKeyCursor(roomRange, "prev")).then(cursor => (cursor?.primaryKey)[1]);
     const [minStateKey, maxStateKey] = await Promise.all([minStateKeyProm, maxStateKeyProm]);
     const writeTx = this.db.transaction(["oob_membership_events"], "readwrite");
     const writeStore = writeTx.objectStore("oob_membership_events");
     const membersKeyRange = IDBKeyRange.bound([roomId, minStateKey], [roomId, maxStateKey]);
-
     _logger.logger.log(`LL: Deleting all users + marker in storage for room ${roomId}, with key range:`, [roomId, minStateKey], [roomId, maxStateKey]);
-
     await reqAsPromise(writeStore.delete(membersKeyRange));
   }
+
   /**
    * Clear the entire database. This should be used when logging out of a client
    * to prevent mixing data between accounts.
-   * @return {Promise} Resolved when the database is cleared.
+   * @returns Resolved when the database is cleared.
    */
-
-
   clearDatabase() {
     return new Promise(resolve => {
       _logger.logger.log(`Removing indexeddb instance: ${this.dbName}`);
-
       const req = this.indexedDB.deleteDatabase(this.dbName);
-
       req.onblocked = () => {
         _logger.logger.log(`can't yet delete indexeddb ${this.dbName} because it is open elsewhere`);
       };
-
       req.onerror = () => {
         // in firefox, with indexedDB disabled, this fails with a
         // DOMError. We treat this as non-fatal, so that we can still
         // use the app.
         _logger.logger.warn(`unable to delete js-sdk store indexeddb: ${req.error}`);
-
         resolve();
       };
-
       req.onsuccess = () => {
         _logger.logger.log(`Removed indexeddb instance: ${this.dbName}`);
-
         resolve();
       };
     });
   }
+
   /**
-   * @param {boolean=} copy If false, the data returned is from internal
+   * @param copy - If false, the data returned is from internal
    * buffers and must not be mutated. Otherwise, a copy is made before
    * returning such that the data can be safely mutated. Default: true.
    *
-   * @return {Promise} Resolves with a sync response to restore the
+   * @returns Promise which resolves with a sync response to restore the
    * client state to where it was at the last save, or null if there
    * is no saved sync data.
    */
-
-
   getSavedSync(copy = true) {
     const data = this.syncAccumulator.getJSON();
     if (!data.nextBatch) return Promise.resolve(null);
-
     if (copy) {
       // We must deep copy the stored data so that the /sync processing code doesn't
       // corrupt the internal state of the sync accumulator (it adds non-clonable keys)
@@ -421,28 +339,23 @@
       return Promise.resolve(data);
     }
   }
-
   getNextBatchToken() {
     return Promise.resolve(this.syncAccumulator.getNextBatchToken());
   }
-
   setSyncData(syncData) {
     return Promise.resolve().then(() => {
       this.syncAccumulator.accumulate(syncData);
     });
   }
-
   async syncToDatabase(userTuples) {
     if (this.isPersisting) {
       _logger.logger.warn("Skipping syncToDatabase() as persist already in flight");
-
       this.pendingUserPresenceData.push(...userTuples);
       return;
     } else {
       userTuples.unshift(...this.pendingUserPresenceData);
       this.isPersisting = true;
     }
-
     try {
       const syncData = this.syncAccumulator.getJSON(true);
       await Promise.all([this.persistUserPresenceEvents(userTuples), this.persistAccountData(syncData.accountData), this.persistSyncData(syncData.nextBatch, syncData.roomsData)]);
@@ -450,17 +363,15 @@
       this.isPersisting = false;
     }
   }
+
   /**
    * Persist rooms /sync data along with the next batch token.
-   * @param {string} nextBatch The next_batch /sync value.
-   * @param {Object} roomsData The 'rooms' /sync data from a SyncAccumulator
-   * @return {Promise} Resolves if the data was persisted.
+   * @param nextBatch - The next_batch /sync value.
+   * @param roomsData - The 'rooms' /sync data from a SyncAccumulator
+   * @returns Promise which resolves if the data was persisted.
    */
-
-
   persistSyncData(nextBatch, roomsData) {
     _logger.logger.log("Persisting sync data up to", nextBatch);
-
     return utils.promiseTry(() => {
       const txn = this.db.transaction(["sync"], "readwrite");
       const store = txn.objectStore("sync");
@@ -470,47 +381,42 @@
         nextBatch,
         roomsData
       }); // put == UPSERT
-
       return txnAsPromise(txn).then(() => {
         _logger.logger.log("Persisted sync data up to", nextBatch);
       });
     });
   }
+
   /**
    * Persist a list of account data events. Events with the same 'type' will
    * be replaced.
-   * @param {Object[]} accountData An array of raw user-scoped account data events
-   * @return {Promise} Resolves if the events were persisted.
+   * @param accountData - An array of raw user-scoped account data events
+   * @returns Promise which resolves if the events were persisted.
    */
-
-
   persistAccountData(accountData) {
     return utils.promiseTry(() => {
       const txn = this.db.transaction(["accountData"], "readwrite");
       const store = txn.objectStore("accountData");
-
-      for (let i = 0; i < accountData.length; i++) {
-        store.put(accountData[i]); // put == UPSERT
+      for (const event of accountData) {
+        store.put(event); // put == UPSERT
       }
 
       return txnAsPromise(txn).then();
     });
   }
+
   /**
    * Persist a list of [user id, presence event] they are for.
    * Users with the same 'userId' will be replaced.
    * Presence events should be the event in its raw form (not the Event
    * object)
-   * @param {Object[]} tuples An array of [userid, event] tuples
-   * @return {Promise} Resolves if the users were persisted.
+   * @param tuples - An array of [userid, event] tuples
+   * @returns Promise which resolves if the users were persisted.
    */
-
-
   persistUserPresenceEvents(tuples) {
     return utils.promiseTry(() => {
       const txn = this.db.transaction(["users"], "readwrite");
       const store = txn.objectStore("users");
-
       for (const tuple of tuples) {
         store.put({
           userId: tuple[0],
@@ -521,14 +427,13 @@
       return txnAsPromise(txn).then();
     });
   }
+
   /**
    * Load all user presence events from the database. This is not cached.
    * FIXME: It would probably be more sensible to store the events in the
    * sync.
-   * @return {Promise<Object[]>} A list of presence events in their raw form.
+   * @returns A list of presence events in their raw form.
    */
-
-
   getUserPresenceEvents() {
     return utils.promiseTry(() => {
       const txn = this.db.transaction(["users"], "readonly");
@@ -538,15 +443,13 @@
       });
     });
   }
+
   /**
    * Load all the account data events from the database. This is not cached.
-   * @return {Promise<Object[]>} A list of raw global account events.
+   * @returns A list of raw global account events.
    */
-
-
   loadAccountData() {
     _logger.logger.log(`LocalIndexedDBStoreBackend: loading account data...`);
-
     return utils.promiseTry(() => {
       const txn = this.db.transaction(["accountData"], "readonly");
       const store = txn.objectStore("accountData");
@@ -554,20 +457,17 @@
         return cursor.value;
       }).then(result => {
         _logger.logger.log(`LocalIndexedDBStoreBackend: loaded account data`);
-
         return result;
       });
     });
   }
+
   /**
    * Load the sync data from the database.
-   * @return {Promise<Object>} An object with "roomsData" and "nextBatch" keys.
+   * @returns An object with "roomsData" and "nextBatch" keys.
    */
-
-
   loadSyncData() {
     _logger.logger.log(`LocalIndexedDBStoreBackend: loading sync data...`);
-
     return utils.promiseTry(() => {
       const txn = this.db.transaction(["sync"], "readonly");
       const store = txn.objectStore("sync");
@@ -575,16 +475,13 @@
         return cursor.value;
       }).then(results => {
         _logger.logger.log(`LocalIndexedDBStoreBackend: loaded sync data`);
-
         if (results.length > 1) {
           _logger.logger.warn("loadSyncData: More than 1 sync row found.");
         }
-
         return results.length > 0 ? results[0] : {};
       });
     });
   }
-
   getClientOptions() {
     return Promise.resolve().then(() => {
       const txn = this.db.transaction(["client_options"], "readonly");
@@ -594,7 +491,6 @@
       }).then(results => results[0]);
     });
   }
-
   async storeClientOptions(options) {
     const txn = this.db.transaction(["client_options"], "readwrite");
     const store = txn.objectStore("client_options");
@@ -603,21 +499,16 @@
       // constant key so will always clobber
       options: options
     }); // put == UPSERT
-
     await txnAsPromise(txn);
   }
-
   async saveToDeviceBatches(batches) {
     const txn = this.db.transaction(["to_device_queue"], "readwrite");
     const store = txn.objectStore("to_device_queue");
-
     for (const batch of batches) {
       store.add(batch);
     }
-
     await txnAsPromise(txn);
   }
-
   async getOldestToDeviceBatch() {
     const txn = this.db.transaction(["to_device_queue"], "readonly");
     const store = txn.objectStore("to_device_queue");
@@ -631,14 +522,11 @@
       batch: resultBatch.batch
     };
   }
-
   async removeToDeviceBatch(id) {
     const txn = this.db.transaction(["to_device_queue"], "readwrite");
     const store = txn.objectStore("to_device_queue");
     store.delete(id);
     await txnAsPromise(txn);
   }
-
 }
-
 exports.LocalIndexedDBStoreBackend = LocalIndexedDBStoreBackend;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/store/indexeddb-remote-backend.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/store/indexeddb-remote-backend.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/store/indexeddb-remote-backend.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/store/indexeddb-remote-backend.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,13 +4,11 @@
   value: true
 });
 exports.RemoteIndexedDBStoreBackend = void 0;
-
 var _logger = require("../logger");
-
 var _utils = require("../utils");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 class RemoteIndexedDBStoreBackend {
   // The currently in-flight requests to the actual backend
   // seq: promise
@@ -22,45 +20,32 @@
    * worker.
    *
    * Construct a new Indexed Database store backend. This requires a call to
-   * <code>connect()</code> before this store can be used.
-   * @constructor
-   * @param {Function} workerFactory Factory which produces a Worker
-   * @param {string=} dbName Optional database name. The same name must be used
+   * `connect()` before this store can be used.
+   * @param workerFactory - Factory which produces a Worker
+   * @param dbName - Optional database name. The same name must be used
    * to open the same database.
    */
   constructor(workerFactory, dbName) {
     this.workerFactory = workerFactory;
     this.dbName = dbName;
-
     _defineProperty(this, "worker", void 0);
-
     _defineProperty(this, "nextSeq", 0);
-
     _defineProperty(this, "inFlight", {});
-
-    _defineProperty(this, "startPromise", null);
-
+    _defineProperty(this, "startPromise", void 0);
     _defineProperty(this, "onWorkerMessage", ev => {
       const msg = ev.data;
-
-      if (msg.command == 'cmd_success' || msg.command == 'cmd_fail') {
+      if (msg.command == "cmd_success" || msg.command == "cmd_fail") {
         if (msg.seq === undefined) {
           _logger.logger.error("Got reply from worker with no seq");
-
           return;
         }
-
         const def = this.inFlight[msg.seq];
-
         if (def === undefined) {
           _logger.logger.error("Got reply for unknown seq " + msg.seq);
-
           return;
         }
-
         delete this.inFlight[msg.seq];
-
-        if (msg.command == 'cmd_success') {
+        if (msg.command == "cmd_success") {
           def.resolve(msg.result);
         } else {
           const error = new Error(msg.error.message);
@@ -72,126 +57,106 @@
       }
     });
   }
+
   /**
    * Attempt to connect to the database. This can fail if the user does not
    * grant permission.
-   * @return {Promise} Resolves if successfully connected.
+   * @returns Promise which resolves if successfully connected.
    */
-
-
   connect() {
-    return this.ensureStarted().then(() => this.doCmd('connect'));
+    return this.ensureStarted().then(() => this.doCmd("connect"));
   }
+
   /**
    * Clear the entire database. This should be used when logging out of a client
    * to prevent mixing data between accounts.
-   * @return {Promise} Resolved when the database is cleared.
+   * @returns Resolved when the database is cleared.
    */
-
-
   clearDatabase() {
-    return this.ensureStarted().then(() => this.doCmd('clearDatabase'));
+    return this.ensureStarted().then(() => this.doCmd("clearDatabase"));
   }
-  /** @return {Promise<boolean>} whether or not the database was newly created in this session. */
-
 
+  /** @returns whether or not the database was newly created in this session. */
   isNewlyCreated() {
-    return this.doCmd('isNewlyCreated');
+    return this.doCmd("isNewlyCreated");
   }
+
   /**
-   * @return {Promise} Resolves with a sync response to restore the
+   * @returns Promise which resolves with a sync response to restore the
    * client state to where it was at the last save, or null if there
    * is no saved sync data.
    */
-
-
   getSavedSync() {
-    return this.doCmd('getSavedSync');
+    return this.doCmd("getSavedSync");
   }
-
   getNextBatchToken() {
-    return this.doCmd('getNextBatchToken');
+    return this.doCmd("getNextBatchToken");
   }
-
   setSyncData(syncData) {
-    return this.doCmd('setSyncData', [syncData]);
+    return this.doCmd("setSyncData", [syncData]);
   }
-
   syncToDatabase(userTuples) {
-    return this.doCmd('syncToDatabase', [userTuples]);
+    return this.doCmd("syncToDatabase", [userTuples]);
   }
+
   /**
    * Returns the out-of-band membership events for this room that
    * were previously loaded.
-   * @param {string} roomId
-   * @returns {event[]} the events, potentially an empty array if OOB loading didn't yield any new members
-   * @returns {null} in case the members for this room haven't been stored yet
+   * @returns the events, potentially an empty array if OOB loading didn't yield any new members
+   * @returns in case the members for this room haven't been stored yet
    */
-
-
   getOutOfBandMembers(roomId) {
-    return this.doCmd('getOutOfBandMembers', [roomId]);
+    return this.doCmd("getOutOfBandMembers", [roomId]);
   }
+
   /**
    * Stores the out-of-band membership events for this room. Note that
    * it still makes sense to store an empty array as the OOB status for the room is
    * marked as fetched, and getOutOfBandMembers will return an empty array instead of null
-   * @param {string} roomId
-   * @param {event[]} membershipEvents the membership events to store
-   * @returns {Promise} when all members have been stored
+   * @param membershipEvents - the membership events to store
+   * @returns when all members have been stored
    */
-
-
   setOutOfBandMembers(roomId, membershipEvents) {
-    return this.doCmd('setOutOfBandMembers', [roomId, membershipEvents]);
+    return this.doCmd("setOutOfBandMembers", [roomId, membershipEvents]);
   }
-
   clearOutOfBandMembers(roomId) {
-    return this.doCmd('clearOutOfBandMembers', [roomId]);
+    return this.doCmd("clearOutOfBandMembers", [roomId]);
   }
-
   getClientOptions() {
-    return this.doCmd('getClientOptions');
+    return this.doCmd("getClientOptions");
   }
-
   storeClientOptions(options) {
-    return this.doCmd('storeClientOptions', [options]);
+    return this.doCmd("storeClientOptions", [options]);
   }
+
   /**
    * Load all user presence events from the database. This is not cached.
-   * @return {Promise<Object[]>} A list of presence events in their raw form.
+   * @returns A list of presence events in their raw form.
    */
-
-
   getUserPresenceEvents() {
-    return this.doCmd('getUserPresenceEvents');
+    return this.doCmd("getUserPresenceEvents");
   }
-
   async saveToDeviceBatches(batches) {
-    return this.doCmd('saveToDeviceBatches', [batches]);
+    return this.doCmd("saveToDeviceBatches", [batches]);
   }
-
   async getOldestToDeviceBatch() {
-    return this.doCmd('getOldestToDeviceBatch');
+    return this.doCmd("getOldestToDeviceBatch");
   }
-
   async removeToDeviceBatch(id) {
-    return this.doCmd('removeToDeviceBatch', [id]);
+    return this.doCmd("removeToDeviceBatch", [id]);
   }
-
   ensureStarted() {
-    if (this.startPromise === null) {
+    if (!this.startPromise) {
       this.worker = this.workerFactory();
-      this.worker.onmessage = this.onWorkerMessage; // tell the worker the db name.
+      this.worker.onmessage = this.onWorkerMessage;
 
-      this.startPromise = this.doCmd('_setupWorker', [this.dbName]).then(() => {
+      // tell the worker the db name.
+      this.startPromise = this.doCmd("setupWorker", [this.dbName]).then(() => {
         _logger.logger.log("IndexedDB worker is ready");
       });
     }
-
     return this.startPromise;
   }
-
   doCmd(command, args) {
     // wrap in a q so if the postMessage throws,
     // the promise automatically gets rejected
@@ -199,7 +164,7 @@
       const seq = this.nextSeq++;
       const def = (0, _utils.defer)();
       this.inFlight[seq] = def;
-      this.worker.postMessage({
+      this.worker?.postMessage({
         command,
         seq,
         args
@@ -207,7 +172,5 @@
       return def.promise;
     });
   }
-
 }
-
 exports.RemoteIndexedDBStoreBackend = RemoteIndexedDBStoreBackend;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/store/indexeddb-store-worker.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/store/indexeddb-store-worker.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/store/indexeddb-store-worker.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/store/indexeddb-store-worker.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,23 +4,23 @@
   value: true
 });
 exports.IndexedDBStoreWorker = void 0;
-
 var _indexeddbLocalBackend = require("./indexeddb-local-backend");
-
 var _logger = require("../logger");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /**
  * This class lives in the webworker and drives a LocalIndexedDBStoreBackend
  * controlled by messages from the main process.
  *
+ * @example
  * It should be instantiated by a web worker script provided by the application
  * in a script, for example:
- *
+ * ```
  * import {IndexedDBStoreWorker} from 'matrix-js-sdk/lib/indexeddb-worker.js';
  * const remoteWorker = new IndexedDBStoreWorker(postMessage);
  * onmessage = remoteWorker.onMessage;
+ * ```
  *
  * Note that it is advisable to import this class by referencing the file directly to
  * avoid a dependency on the whole js-sdk.
@@ -28,112 +28,90 @@
  */
 class IndexedDBStoreWorker {
   /**
-   * @param {function} postMessage The web worker postMessage function that
+   * @param postMessage - The web worker postMessage function that
    * should be used to communicate back to the main script.
    */
   constructor(postMessage) {
     this.postMessage = postMessage;
-
-    _defineProperty(this, "backend", null);
-
+    _defineProperty(this, "backend", void 0);
     _defineProperty(this, "onMessage", ev => {
       const msg = ev.data;
       let prom;
-
       switch (msg.command) {
-        case '_setupWorker':
+        case "setupWorker":
           // this is the 'indexedDB' global (where global != window
           // because it's a web worker and there is no window).
           this.backend = new _indexeddbLocalBackend.LocalIndexedDBStoreBackend(indexedDB, msg.args[0]);
           prom = Promise.resolve();
           break;
-
-        case 'connect':
-          prom = this.backend.connect();
+        case "connect":
+          prom = this.backend?.connect();
           break;
-
-        case 'isNewlyCreated':
-          prom = this.backend.isNewlyCreated();
+        case "isNewlyCreated":
+          prom = this.backend?.isNewlyCreated();
           break;
-
-        case 'clearDatabase':
-          prom = this.backend.clearDatabase();
+        case "clearDatabase":
+          prom = this.backend?.clearDatabase();
           break;
-
-        case 'getSavedSync':
-          prom = this.backend.getSavedSync(false);
+        case "getSavedSync":
+          prom = this.backend?.getSavedSync(false);
           break;
-
-        case 'setSyncData':
-          prom = this.backend.setSyncData(msg.args[0]);
+        case "setSyncData":
+          prom = this.backend?.setSyncData(msg.args[0]);
           break;
-
-        case 'syncToDatabase':
-          prom = this.backend.syncToDatabase(msg.args[0]);
+        case "syncToDatabase":
+          prom = this.backend?.syncToDatabase(msg.args[0]);
           break;
-
-        case 'getUserPresenceEvents':
-          prom = this.backend.getUserPresenceEvents();
+        case "getUserPresenceEvents":
+          prom = this.backend?.getUserPresenceEvents();
           break;
-
-        case 'getNextBatchToken':
-          prom = this.backend.getNextBatchToken();
+        case "getNextBatchToken":
+          prom = this.backend?.getNextBatchToken();
           break;
-
-        case 'getOutOfBandMembers':
-          prom = this.backend.getOutOfBandMembers(msg.args[0]);
+        case "getOutOfBandMembers":
+          prom = this.backend?.getOutOfBandMembers(msg.args[0]);
           break;
-
-        case 'clearOutOfBandMembers':
-          prom = this.backend.clearOutOfBandMembers(msg.args[0]);
+        case "clearOutOfBandMembers":
+          prom = this.backend?.clearOutOfBandMembers(msg.args[0]);
           break;
-
-        case 'setOutOfBandMembers':
-          prom = this.backend.setOutOfBandMembers(msg.args[0], msg.args[1]);
+        case "setOutOfBandMembers":
+          prom = this.backend?.setOutOfBandMembers(msg.args[0], msg.args[1]);
           break;
-
-        case 'getClientOptions':
-          prom = this.backend.getClientOptions();
+        case "getClientOptions":
+          prom = this.backend?.getClientOptions();
           break;
-
-        case 'storeClientOptions':
-          prom = this.backend.storeClientOptions(msg.args[0]);
+        case "storeClientOptions":
+          prom = this.backend?.storeClientOptions(msg.args[0]);
           break;
-
-        case 'saveToDeviceBatches':
-          prom = this.backend.saveToDeviceBatches(msg.args[0]);
+        case "saveToDeviceBatches":
+          prom = this.backend?.saveToDeviceBatches(msg.args[0]);
           break;
-
-        case 'getOldestToDeviceBatch':
-          prom = this.backend.getOldestToDeviceBatch();
+        case "getOldestToDeviceBatch":
+          prom = this.backend?.getOldestToDeviceBatch();
           break;
-
-        case 'removeToDeviceBatch':
-          prom = this.backend.removeToDeviceBatch(msg.args[0]);
+        case "removeToDeviceBatch":
+          prom = this.backend?.removeToDeviceBatch(msg.args[0]);
           break;
       }
-
       if (prom === undefined) {
         this.postMessage({
-          command: 'cmd_fail',
+          command: "cmd_fail",
           seq: msg.seq,
           // Can't be an Error because they're not structured cloneable
           error: "Unrecognised command"
         });
         return;
       }
-
       prom.then(ret => {
         this.postMessage.call(null, {
-          command: 'cmd_success',
+          command: "cmd_success",
           seq: msg.seq,
           result: ret
         });
       }, err => {
         _logger.logger.error("Error running command: " + msg.command, err);
-
         this.postMessage.call(null, {
-          command: 'cmd_fail',
+          command: "cmd_fail",
           seq: msg.seq,
           // Just send a string because Error objects aren't cloneable
           error: {
@@ -144,14 +122,12 @@
       });
     });
   }
+
   /**
    * Passes a message event from the main script into the class. This method
    * can be directly assigned to the web worker `onmessage` variable.
    *
-   * @param {Object} ev The message event
+   * @param ev - The message event
    */
-
-
 }
-
 exports.IndexedDBStoreWorker = IndexedDBStoreWorker;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/store/local-storage-events-emitter.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/store/local-storage-events-emitter.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/store/local-storage-events-emitter.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/store/local-storage-events-emitter.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,9 +4,7 @@
   value: true
 });
 exports.localStorageErrorsEventsEmitter = exports.LocalStorageErrors = void 0;
-
 var _typedEventEmitter = require("../models/typed-event-emitter");
-
 /*
 Copyright 2021 The Matrix.org Foundation C.I.C.
 
@@ -24,7 +22,6 @@
 */
 let LocalStorageErrors;
 exports.LocalStorageErrors = LocalStorageErrors;
-
 (function (LocalStorageErrors) {
   LocalStorageErrors["Global"] = "Global";
   LocalStorageErrors["SetItemError"] = "setItem";
@@ -33,7 +30,6 @@
   LocalStorageErrors["ClearError"] = "clear";
   LocalStorageErrors["QuotaExceededError"] = "QuotaExceededError";
 })(LocalStorageErrors || (exports.LocalStorageErrors = LocalStorageErrors = {}));
-
 /**
  * Used in element-web as a temporary hack to handle all the localStorage errors on the highest level possible
  * As of 15.11.2021 (DD/MM/YYYY) we're not properly handling local storage exceptions anywhere.
@@ -43,6 +39,5 @@
  * See: https://github.com/vector-im/element-web/issues/18423
  */
 class LocalStorageErrorsEventsEmitter extends _typedEventEmitter.TypedEventEmitter {}
-
 const localStorageErrorsEventsEmitter = new LocalStorageErrorsEventsEmitter();
 exports.localStorageErrorsEventsEmitter = localStorageErrorsEventsEmitter;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/store/memory.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/store/memory.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/store/memory.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/store/memory.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,298 +4,240 @@
   value: true
 });
 exports.MemoryStore = void 0;
-
 var _user = require("../models/user");
-
 var _roomState = require("../models/room-state");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+var _utils = require("../utils");
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 function isValidFilterId(filterId) {
-  const isValidStr = typeof filterId === "string" && !!filterId && filterId !== "undefined" && // exclude these as we've serialized undefined in localStorage before
+  const isValidStr = typeof filterId === "string" && !!filterId && filterId !== "undefined" &&
+  // exclude these as we've serialized undefined in localStorage before
   filterId !== "null";
   return isValidStr || typeof filterId === "number";
 }
-
-/**
- * Construct a new in-memory data store for the Matrix Client.
- * @constructor
- * @param {Object=} opts Config options
- * @param {Storage} opts.localStorage The local storage instance to persist
- * some forms of data such as tokens. Rooms will NOT be stored.
- */
 class MemoryStore {
   // roomId: Room
   // userId: User
+
   // userId: {
   //    filterId: Filter
   // }
-  // type : content
+
+  // type: content
+
   // roomId: [member events]
+
+  /**
+   * Construct a new in-memory data store for the Matrix Client.
+   * @param opts - Config options
+   */
   constructor(opts = {}) {
     _defineProperty(this, "rooms", {});
-
     _defineProperty(this, "users", {});
-
     _defineProperty(this, "syncToken", null);
-
-    _defineProperty(this, "filters", {});
-
-    _defineProperty(this, "accountData", {});
-
+    _defineProperty(this, "filters", new _utils.MapWithDefault(() => new Map()));
+    _defineProperty(this, "accountData", new Map());
     _defineProperty(this, "localStorage", void 0);
-
-    _defineProperty(this, "oobMembers", {});
-
+    _defineProperty(this, "oobMembers", new Map());
     _defineProperty(this, "pendingEvents", {});
-
-    _defineProperty(this, "clientOptions", {});
-
+    _defineProperty(this, "clientOptions", void 0);
     _defineProperty(this, "pendingToDeviceBatches", []);
-
     _defineProperty(this, "nextToDeviceBatchId", 0);
-
     _defineProperty(this, "onRoomMember", (event, state, member) => {
       if (member.membership === "invite") {
         // We do NOT add invited members because people love to typo user IDs
         // which would then show up in these lists (!)
         return;
       }
-
       const user = this.users[member.userId] || new _user.User(member.userId);
-
       if (member.name) {
         user.setDisplayName(member.name);
-
         if (member.events.member) {
           user.setRawDisplayName(member.events.member.getDirectionalContent().displayname);
         }
       }
-
       if (member.events.member && member.events.member.getContent().avatar_url) {
         user.setAvatarUrl(member.events.member.getContent().avatar_url);
       }
-
       this.users[user.userId] = user;
     });
-
     this.localStorage = opts.localStorage;
   }
+
   /**
    * Retrieve the token to stream from.
-   * @return {string} The token or null.
+   * @returns The token or null.
    */
-
-
   getSyncToken() {
     return this.syncToken;
   }
-  /** @return {Promise<boolean>} whether or not the database was newly created in this session. */
-
 
+  /** @returns whether or not the database was newly created in this session. */
   isNewlyCreated() {
     return Promise.resolve(true);
   }
+
   /**
    * Set the token to stream from.
-   * @param {string} token The token to stream from.
+   * @param token - The token to stream from.
    */
-
-
   setSyncToken(token) {
     this.syncToken = token;
   }
+
   /**
    * Store the given room.
-   * @param {Room} room The room to be stored. All properties must be stored.
+   * @param room - The room to be stored. All properties must be stored.
    */
-
-
   storeRoom(room) {
-    this.rooms[room.roomId] = room; // add listeners for room member changes so we can keep the room member
+    this.rooms[room.roomId] = room;
+    // add listeners for room member changes so we can keep the room member
     // map up-to-date.
-
-    room.currentState.on(_roomState.RoomStateEvent.Members, this.onRoomMember); // add existing members
-
+    room.currentState.on(_roomState.RoomStateEvent.Members, this.onRoomMember);
+    // add existing members
     room.currentState.getMembers().forEach(m => {
       this.onRoomMember(null, room.currentState, m);
     });
   }
+
   /**
    * Called when a room member in a room being tracked by this store has been
    * updated.
-   * @param {MatrixEvent} event
-   * @param {RoomState} state
-   * @param {RoomMember} member
    */
 
-
   /**
    * Retrieve a room by its' room ID.
-   * @param {string} roomId The room ID.
-   * @return {Room} The room or null.
+   * @param roomId - The room ID.
+   * @returns The room or null.
    */
   getRoom(roomId) {
     return this.rooms[roomId] || null;
   }
+
   /**
    * Retrieve all known rooms.
-   * @return {Room[]} A list of rooms, which may be empty.
+   * @returns A list of rooms, which may be empty.
    */
-
-
   getRooms() {
     return Object.values(this.rooms);
   }
+
   /**
    * Permanently delete a room.
-   * @param {string} roomId
    */
-
-
   removeRoom(roomId) {
     if (this.rooms[roomId]) {
       this.rooms[roomId].currentState.removeListener(_roomState.RoomStateEvent.Members, this.onRoomMember);
     }
-
     delete this.rooms[roomId];
   }
+
   /**
    * Retrieve a summary of all the rooms.
-   * @return {RoomSummary[]} A summary of each room.
+   * @returns A summary of each room.
    */
-
-
   getRoomSummaries() {
     return Object.values(this.rooms).map(function (room) {
       return room.summary;
     });
   }
+
   /**
    * Store a User.
-   * @param {User} user The user to store.
+   * @param user - The user to store.
    */
-
-
   storeUser(user) {
     this.users[user.userId] = user;
   }
+
   /**
    * Retrieve a User by its' user ID.
-   * @param {string} userId The user ID.
-   * @return {User} The user or null.
+   * @param userId - The user ID.
+   * @returns The user or null.
    */
-
-
   getUser(userId) {
     return this.users[userId] || null;
   }
+
   /**
    * Retrieve all known users.
-   * @return {User[]} A list of users, which may be empty.
+   * @returns A list of users, which may be empty.
    */
-
-
   getUsers() {
     return Object.values(this.users);
   }
+
   /**
    * Retrieve scrollback for this room.
-   * @param {Room} room The matrix room
-   * @param {number} limit The max number of old events to retrieve.
-   * @return {Array<Object>} An array of objects which will be at most 'limit'
+   * @param room - The matrix room
+   * @param limit - The max number of old events to retrieve.
+   * @returns An array of objects which will be at most 'limit'
    * length and at least 0. The objects are the raw event JSON.
    */
-
-
   scrollback(room, limit) {
     return [];
   }
+
   /**
    * Store events for a room. The events have already been added to the timeline
-   * @param {Room} room The room to store events for.
-   * @param {Array<MatrixEvent>} events The events to store.
-   * @param {string} token The token associated with these events.
-   * @param {boolean} toStart True if these are paginated results.
+   * @param room - The room to store events for.
+   * @param events - The events to store.
+   * @param token - The token associated with these events.
+   * @param toStart - True if these are paginated results.
    */
-
-
-  storeEvents(room, events, token, toStart) {// no-op because they've already been added to the room instance.
+  storeEvents(room, events, token, toStart) {
+    // no-op because they've already been added to the room instance.
   }
+
   /**
    * Store a filter.
-   * @param {Filter} filter
    */
-
-
   storeFilter(filter) {
-    if (!filter) {
-      return;
-    }
-
-    if (!this.filters[filter.userId]) {
-      this.filters[filter.userId] = {};
-    }
-
-    this.filters[filter.userId][filter.filterId] = filter;
+    if (!filter?.userId || !filter?.filterId) return;
+    this.filters.getOrCreate(filter.userId).set(filter.filterId, filter);
   }
+
   /**
    * Retrieve a filter.
-   * @param {string} userId
-   * @param {string} filterId
-   * @return {?Filter} A filter or null.
+   * @returns A filter or null.
    */
-
-
   getFilter(userId, filterId) {
-    if (!this.filters[userId] || !this.filters[userId][filterId]) {
-      return null;
-    }
-
-    return this.filters[userId][filterId];
+    return this.filters.get(userId)?.get(filterId) || null;
   }
+
   /**
    * Retrieve a filter ID with the given name.
-   * @param {string} filterName The filter name.
-   * @return {?string} The filter ID or null.
+   * @param filterName - The filter name.
+   * @returns The filter ID or null.
    */
-
-
   getFilterIdByName(filterName) {
     if (!this.localStorage) {
       return null;
     }
-
-    const key = "mxjssdk_memory_filter_" + filterName; // XXX Storage.getItem doesn't throw ...
+    const key = "mxjssdk_memory_filter_" + filterName;
+    // XXX Storage.getItem doesn't throw ...
     // or are we using something different
     // than window.localStorage in some cases
     // that does throw?
     // that would be very naughty
-
     try {
       const value = this.localStorage.getItem(key);
-
       if (isValidFilterId(value)) {
         return value;
       }
     } catch (e) {}
-
     return null;
   }
+
   /**
    * Set a filter name to ID mapping.
-   * @param {string} filterName
-   * @param {string} filterId
    */
-
-
   setFilterIdByName(filterName, filterId) {
     if (!this.localStorage) {
       return;
     }
-
     const key = "mxjssdk_memory_filter_" + filterName;
-
     try {
       if (isValidFilterId(filterId)) {
         this.localStorage.setItem(key, filterId);
@@ -304,155 +246,140 @@
       }
     } catch (e) {}
   }
+
   /**
    * Store user-scoped account data events.
    * N.B. that account data only allows a single event per type, so multiple
    * events with the same type will replace each other.
-   * @param {Array<MatrixEvent>} events The events to store.
+   * @param events - The events to store.
    */
-
-
   storeAccountDataEvents(events) {
     events.forEach(event => {
-      this.accountData[event.getType()] = event;
+      // MSC3391: an event with content of {} should be interpreted as deleted
+      const isDeleted = !Object.keys(event.getContent()).length;
+      if (isDeleted) {
+        this.accountData.delete(event.getType());
+      } else {
+        this.accountData.set(event.getType(), event);
+      }
     });
   }
+
   /**
    * Get account data event by event type
-   * @param {string} eventType The event type being queried
-   * @return {?MatrixEvent} the user account_data event of given type, if any
+   * @param eventType - The event type being queried
+   * @returns the user account_data event of given type, if any
    */
-
-
   getAccountData(eventType) {
-    return this.accountData[eventType];
+    return this.accountData.get(eventType);
   }
+
   /**
    * setSyncData does nothing as there is no backing data store.
    *
-   * @param {Object} syncData The sync data
-   * @return {Promise} An immediately resolved promise.
+   * @param syncData - The sync data
+   * @returns An immediately resolved promise.
    */
-
-
   setSyncData(syncData) {
     return Promise.resolve();
   }
+
   /**
    * We never want to save becase we have nothing to save to.
    *
-   * @return {boolean} If the store wants to save
+   * @returns If the store wants to save
    */
-
-
   wantsSave() {
     return false;
   }
+
   /**
    * Save does nothing as there is no backing data store.
-   * @param {bool} force True to force a save (but the memory
+   * @param force - True to force a save (but the memory
    *     store still can't save anything)
    */
-
-
   save(force) {}
+
   /**
    * Startup does nothing as this store doesn't require starting up.
-   * @return {Promise} An immediately resolved promise.
+   * @returns An immediately resolved promise.
    */
-
-
   startup() {
     return Promise.resolve();
   }
+
   /**
-   * @return {Promise} Resolves with a sync response to restore the
+   * @returns Promise which resolves with a sync response to restore the
    * client state to where it was at the last save, or null if there
    * is no saved sync data.
    */
-
-
   getSavedSync() {
     return Promise.resolve(null);
   }
+
   /**
-   * @return {Promise} If there is a saved sync, the nextBatch token
+   * @returns If there is a saved sync, the nextBatch token
    * for this sync, otherwise null.
    */
-
-
   getSavedSyncToken() {
     return Promise.resolve(null);
   }
+
   /**
    * Delete all data from this store.
-   * @return {Promise} An immediately resolved promise.
+   * @returns An immediately resolved promise.
    */
-
-
   deleteAllData() {
-    this.rooms = {// roomId: Room
+    this.rooms = {
+      // roomId: Room
     };
-    this.users = {// userId: User
+    this.users = {
+      // userId: User
     };
     this.syncToken = null;
-    this.filters = {// userId: {
-      //    filterId: Filter
-      // }
-    };
-    this.accountData = {// type : content
-    };
+    this.filters = new _utils.MapWithDefault(() => new Map());
+    this.accountData = new Map(); // type : content
     return Promise.resolve();
   }
+
   /**
    * Returns the out-of-band membership events for this room that
    * were previously loaded.
-   * @param {string} roomId
-   * @returns {event[]} the events, potentially an empty array if OOB loading didn't yield any new members
-   * @returns {null} in case the members for this room haven't been stored yet
+   * @returns the events, potentially an empty array if OOB loading didn't yield any new members
+   * @returns in case the members for this room haven't been stored yet
    */
-
-
   getOutOfBandMembers(roomId) {
-    return Promise.resolve(this.oobMembers[roomId] || null);
+    return Promise.resolve(this.oobMembers.get(roomId) || null);
   }
+
   /**
    * Stores the out-of-band membership events for this room. Note that
    * it still makes sense to store an empty array as the OOB status for the room is
    * marked as fetched, and getOutOfBandMembers will return an empty array instead of null
-   * @param {string} roomId
-   * @param {event[]} membershipEvents the membership events to store
-   * @returns {Promise} when all members have been stored
+   * @param membershipEvents - the membership events to store
+   * @returns when all members have been stored
    */
-
-
   setOutOfBandMembers(roomId, membershipEvents) {
-    this.oobMembers[roomId] = membershipEvents;
+    this.oobMembers.set(roomId, membershipEvents);
     return Promise.resolve();
   }
-
   clearOutOfBandMembers(roomId) {
-    this.oobMembers = {};
+    this.oobMembers.delete(roomId);
     return Promise.resolve();
   }
-
   getClientOptions() {
     return Promise.resolve(this.clientOptions);
   }
-
   storeClientOptions(options) {
     this.clientOptions = Object.assign({}, options);
     return Promise.resolve();
   }
-
   async getPendingEvents(roomId) {
     return this.pendingEvents[roomId] ?? [];
   }
-
   async setPendingEvents(roomId, events) {
     this.pendingEvents[roomId] = events;
   }
-
   saveToDeviceBatches(batches) {
     for (const batch of batches) {
       this.pendingToDeviceBatches.push({
@@ -462,20 +389,15 @@
         batch: batch.batch
       });
     }
-
     return Promise.resolve();
   }
-
   async getOldestToDeviceBatch() {
     if (this.pendingToDeviceBatches.length === 0) return null;
     return this.pendingToDeviceBatches[0];
   }
-
   removeToDeviceBatch(id) {
     this.pendingToDeviceBatches = this.pendingToDeviceBatches.filter(batch => batch.id !== id);
     return Promise.resolve();
   }
-
 }
-
 exports.MemoryStore = MemoryStore;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/store/stub.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/store/stub.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/store/stub.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/store/stub.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,9 +4,9 @@
   value: true
 });
 exports.StubStore = void 0;
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /*
 Copyright 2015 - 2021 The Matrix.org Foundation C.I.C.
 
@@ -25,291 +25,232 @@
 
 /**
  * This is an internal module.
- * @module store/stub
  */
 
 /**
  * Construct a stub store. This does no-ops on most store methods.
- * @constructor
  */
 class StubStore {
   constructor() {
-    _defineProperty(this, "accountData", {});
-
+    _defineProperty(this, "accountData", new Map());
     _defineProperty(this, "fromToken", null);
   }
-
-  /** @return {Promise<boolean>} whether or not the database was newly created in this session. */
+  /** @returns whether or not the database was newly created in this session. */
   isNewlyCreated() {
     return Promise.resolve(true);
   }
+
   /**
    * Get the sync token.
-   * @return {string}
    */
-
-
   getSyncToken() {
     return this.fromToken;
   }
+
   /**
    * Set the sync token.
-   * @param {string} token
    */
-
-
   setSyncToken(token) {
     this.fromToken = token;
   }
+
   /**
    * No-op.
-   * @param {Room} room
    */
-
-
   storeRoom(room) {}
+
   /**
    * No-op.
-   * @param {string} roomId
-   * @return {null}
    */
-
-
   getRoom(roomId) {
     return null;
   }
+
   /**
    * No-op.
-   * @return {Array} An empty array.
+   * @returns An empty array.
    */
-
-
   getRooms() {
     return [];
   }
+
   /**
    * Permanently delete a room.
-   * @param {string} roomId
    */
-
-
   removeRoom(roomId) {
     return;
   }
+
   /**
    * No-op.
-   * @return {Array} An empty array.
+   * @returns An empty array.
    */
-
-
   getRoomSummaries() {
     return [];
   }
+
   /**
    * No-op.
-   * @param {User} user
    */
-
-
   storeUser(user) {}
+
   /**
    * No-op.
-   * @param {string} userId
-   * @return {null}
    */
-
-
   getUser(userId) {
     return null;
   }
+
   /**
    * No-op.
-   * @return {User[]}
    */
-
-
   getUsers() {
     return [];
   }
+
   /**
    * No-op.
-   * @param {Room} room
-   * @param {number} limit
-   * @return {Array}
    */
-
-
   scrollback(room, limit) {
     return [];
   }
+
   /**
    * Store events for a room.
-   * @param {Room} room The room to store events for.
-   * @param {Array<MatrixEvent>} events The events to store.
-   * @param {string} token The token associated with these events.
-   * @param {boolean} toStart True if these are paginated results.
+   * @param room - The room to store events for.
+   * @param events - The events to store.
+   * @param token - The token associated with these events.
+   * @param toStart - True if these are paginated results.
    */
-
-
   storeEvents(room, events, token, toStart) {}
+
   /**
    * Store a filter.
-   * @param {Filter} filter
    */
-
-
   storeFilter(filter) {}
+
   /**
    * Retrieve a filter.
-   * @param {string} userId
-   * @param {string} filterId
-   * @return {?Filter} A filter or null.
+   * @returns A filter or null.
    */
-
-
   getFilter(userId, filterId) {
     return null;
   }
+
   /**
    * Retrieve a filter ID with the given name.
-   * @param {string} filterName The filter name.
-   * @return {?string} The filter ID or null.
+   * @param filterName - The filter name.
+   * @returns The filter ID or null.
    */
-
-
   getFilterIdByName(filterName) {
     return null;
   }
+
   /**
    * Set a filter name to ID mapping.
-   * @param {string} filterName
-   * @param {string} filterId
    */
-
-
   setFilterIdByName(filterName, filterId) {}
+
   /**
    * Store user-scoped account data events
-   * @param {Array<MatrixEvent>} events The events to store.
+   * @param events - The events to store.
    */
-
-
   storeAccountDataEvents(events) {}
+
   /**
    * Get account data event by event type
-   * @param {string} eventType The event type being queried
+   * @param eventType - The event type being queried
    */
-
-
   getAccountData(eventType) {
     return undefined;
   }
+
   /**
    * setSyncData does nothing as there is no backing data store.
    *
-   * @param {Object} syncData The sync data
-   * @return {Promise} An immediately resolved promise.
+   * @param syncData - The sync data
+   * @returns An immediately resolved promise.
    */
-
-
   setSyncData(syncData) {
     return Promise.resolve();
   }
+
   /**
    * We never want to save because we have nothing to save to.
    *
-   * @return {boolean} If the store wants to save
+   * @returns If the store wants to save
    */
-
-
   wantsSave() {
     return false;
   }
+
   /**
    * Save does nothing as there is no backing data store.
    */
-
-
   save() {}
+
   /**
    * Startup does nothing.
-   * @return {Promise} An immediately resolved promise.
+   * @returns An immediately resolved promise.
    */
-
-
   startup() {
     return Promise.resolve();
   }
+
   /**
-   * @return {Promise} Resolves with a sync response to restore the
+   * @returns Promise which resolves with a sync response to restore the
    * client state to where it was at the last save, or null if there
    * is no saved sync data.
    */
-
-
   getSavedSync() {
     return Promise.resolve(null);
   }
+
   /**
-   * @return {Promise} If there is a saved sync, the nextBatch token
+   * @returns If there is a saved sync, the nextBatch token
    * for this sync, otherwise null.
    */
-
-
   getSavedSyncToken() {
     return Promise.resolve(null);
   }
+
   /**
    * Delete all data from this store. Does nothing since this store
    * doesn't store anything.
-   * @return {Promise} An immediately resolved promise.
+   * @returns An immediately resolved promise.
    */
-
-
   deleteAllData() {
     return Promise.resolve();
   }
-
   getOutOfBandMembers() {
     return Promise.resolve(null);
   }
-
   setOutOfBandMembers(roomId, membershipEvents) {
     return Promise.resolve();
   }
-
   clearOutOfBandMembers() {
     return Promise.resolve();
   }
-
   getClientOptions() {
-    return Promise.resolve({});
+    return Promise.resolve(undefined);
   }
-
   storeClientOptions(options) {
     return Promise.resolve();
   }
-
   async getPendingEvents(roomId) {
     return [];
   }
-
   setPendingEvents(roomId, events) {
     return Promise.resolve();
   }
-
   async saveToDeviceBatches(batch) {
     return Promise.resolve();
   }
-
   getOldestToDeviceBatch() {
     return Promise.resolve(null);
   }
-
   async removeToDeviceBatch(id) {
     return Promise.resolve();
   }
-
 }
-
 exports.StubStore = StubStore;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/sync-accumulator.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/sync-accumulator.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/sync-accumulator.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/sync-accumulator.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,22 +4,27 @@
   value: true
 });
 exports.SyncAccumulator = exports.Category = void 0;
-
 var _logger = require("./logger");
-
 var _utils = require("./utils");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+var _event = require("./@types/event");
+var _read_receipts = require("./@types/read_receipts");
+var _sync = require("./@types/sync");
+function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
+function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /* eslint-enable camelcase */
 let Category;
 exports.Category = Category;
-
 (function (Category) {
   Category["Invite"] = "invite";
   Category["Leave"] = "leave";
   Category["Join"] = "join";
 })(Category || (exports.Category = Category = {}));
+function isTaggedEvent(event) {
+  return "_localTs" in event && event["_localTs"] !== undefined;
+}
 
 /**
  * The purpose of this class is to accumulate /sync responses such that a
@@ -34,81 +39,60 @@
 class SyncAccumulator {
   // $event_type: Object
   // $roomId: { ... sync 'invite' json data ... }
+
   // the /sync token which corresponds to the last time rooms were
   // accumulated. We remember this so that any caller can obtain a
   // coherent /sync response and know at what point they should be
   // streaming from without losing events.
 
-  /**
-   * @param {Object} opts
-   * @param {Number=} opts.maxTimelineEntries The ideal maximum number of
-   * timeline entries to keep in the sync response. This is best-effort, as
-   * clients do not always have a back-pagination token for each event, so
-   * it's possible there may be slightly *less* than this value. There will
-   * never be more. This cannot be 0 or else it makes it impossible to scroll
-   * back in a room. Default: 50.
-   */
   constructor(opts = {}) {
     this.opts = opts;
-
     _defineProperty(this, "accountData", {});
-
     _defineProperty(this, "inviteRooms", {});
-
     _defineProperty(this, "joinRooms", {});
-
     _defineProperty(this, "nextBatch", null);
-
     this.opts.maxTimelineEntries = this.opts.maxTimelineEntries || 50;
   }
-
   accumulate(syncResponse, fromDatabase = false) {
     this.accumulateRooms(syncResponse, fromDatabase);
     this.accumulateAccountData(syncResponse);
     this.nextBatch = syncResponse.next_batch;
   }
-
   accumulateAccountData(syncResponse) {
     if (!syncResponse.account_data || !syncResponse.account_data.events) {
       return;
-    } // Clobbers based on event type.
-
-
+    }
+    // Clobbers based on event type.
     syncResponse.account_data.events.forEach(e => {
       this.accountData[e.type] = e;
     });
   }
+
   /**
    * Accumulate incremental /sync room data.
-   * @param {Object} syncResponse the complete /sync JSON
-   * @param {boolean} fromDatabase True if the sync response is one saved to the database
+   * @param syncResponse - the complete /sync JSON
+   * @param fromDatabase - True if the sync response is one saved to the database
    */
-
-
   accumulateRooms(syncResponse, fromDatabase = false) {
     if (!syncResponse.rooms) {
       return;
     }
-
     if (syncResponse.rooms.invite) {
       Object.keys(syncResponse.rooms.invite).forEach(roomId => {
         this.accumulateRoom(roomId, Category.Invite, syncResponse.rooms.invite[roomId], fromDatabase);
       });
     }
-
     if (syncResponse.rooms.join) {
       Object.keys(syncResponse.rooms.join).forEach(roomId => {
         this.accumulateRoom(roomId, Category.Join, syncResponse.rooms.join[roomId], fromDatabase);
       });
     }
-
     if (syncResponse.rooms.leave) {
       Object.keys(syncResponse.rooms.leave).forEach(roomId => {
         this.accumulateRoom(roomId, Category.Leave, syncResponse.rooms.leave[roomId], fromDatabase);
       });
     }
   }
-
   accumulateRoom(roomId, category, data, fromDatabase = false) {
     // Valid /sync state transitions
     //       +--------+ <======+            1: Accept an invite
@@ -126,7 +110,6 @@
         // (5)
         this.accumulateInviteState(roomId, data);
         break;
-
       case Category.Join:
         if (this.inviteRooms[roomId]) {
           // (1)
@@ -134,12 +117,10 @@
           // the entire state and timeline on 'join', so delete previous
           // invite state
           delete this.inviteRooms[roomId];
-        } // (3)
-
-
+        }
+        // (3)
         this.accumulateJoinState(roomId, data, fromDatabase);
         break;
-
       case Category.Leave:
         if (this.inviteRooms[roomId]) {
           // (4)
@@ -148,52 +129,42 @@
           // (2)
           delete this.joinRooms[roomId];
         }
-
         break;
-
       default:
         _logger.logger.error("Unknown cateogory: ", category);
-
     }
   }
-
   accumulateInviteState(roomId, data) {
     if (!data.invite_state || !data.invite_state.events) {
       // no new data
       return;
     }
-
     if (!this.inviteRooms[roomId]) {
       this.inviteRooms[roomId] = {
         invite_state: data.invite_state
       };
       return;
-    } // accumulate extra keys for invite->invite transitions
+    }
+    // accumulate extra keys for invite->invite transitions
     // clobber based on event type / state key
     // We expect invite_state to be small, so just loop over the events
-
-
     const currentData = this.inviteRooms[roomId];
     data.invite_state.events.forEach(e => {
       let hasAdded = false;
-
       for (let i = 0; i < currentData.invite_state.events.length; i++) {
         const current = currentData.invite_state.events[i];
-
         if (current.type === e.type && current.state_key == e.state_key) {
           currentData.invite_state.events[i] = e; // update
-
           hasAdded = true;
         }
       }
-
       if (!hasAdded) {
         currentData.invite_state.events.push(e);
       }
     });
-  } // Accumulate timeline and state events in a room.
-
+  }
 
+  // Accumulate timeline and state events in a room.
   accumulateJoinState(roomId, data, fromDatabase = false) {
     // We expect this function to be called a lot (every /sync) so we want
     // this to be fast. /sync stores events in an array but we often want
@@ -201,6 +172,7 @@
     // maps all the time, just keep private maps which contain
     // the actual current accumulated sync state, and array-ify it when
     // getJSON() is called.
+
     // State resolution:
     // The 'state' key is the delta from the previous sync (or start of time
     // if no token was supplied), to the START of the timeline. To obtain
@@ -214,6 +186,7 @@
     //
     // When getJSON() is called, we 'roll back' the current state by the
     // number of entries in the timeline to work out what 'state' should be.
+
     // Back-pagination:
     // On an initial /sync, the server provides a back-pagination token for
     // the start of the timeline. When /sync deltas come down, they also
@@ -227,6 +200,7 @@
     // opts.maxTimelineEntries, and we may have a few less. We should never
     // have more though, provided that the /sync limit is less than or equal
     // to opts.maxTimelineEntries.
+
     if (!this.joinRooms[roomId]) {
       // Create truly empty objects so event types of 'hasOwnProperty' and co
       // don't cause this code to break.
@@ -235,25 +209,25 @@
         _timeline: [],
         _accountData: Object.create(null),
         _unreadNotifications: {},
+        _unreadThreadNotifications: {},
         _summary: {},
-        _readReceipts: {}
+        _readReceipts: {},
+        _threadReadReceipts: {}
       };
     }
-
     const currentData = this.joinRooms[roomId];
-
     if (data.account_data && data.account_data.events) {
       // clobber based on type
       data.account_data.events.forEach(e => {
         currentData._accountData[e.type] = e;
       });
-    } // these probably clobber, spec is unclear.
-
+    }
 
+    // these probably clobber, spec is unclear.
     if (data.unread_notifications) {
       currentData._unreadNotifications = data.unread_notifications;
     }
-
+    currentData._unreadThreadNotifications = data[_sync.UNREAD_THREAD_NOTIFICATIONS.stable] ?? data[_sync.UNREAD_THREAD_NOTIFICATIONS.unstable] ?? undefined;
     if (data.summary) {
       const HEROES_KEY = "m.heroes";
       const INVITED_COUNT_KEY = "m.invited_member_count";
@@ -264,98 +238,93 @@
       acc[JOINED_COUNT_KEY] = sum[JOINED_COUNT_KEY] || acc[JOINED_COUNT_KEY];
       acc[INVITED_COUNT_KEY] = sum[INVITED_COUNT_KEY] || acc[INVITED_COUNT_KEY];
     }
-
-    if (data.ephemeral && data.ephemeral.events) {
-      data.ephemeral.events.forEach(e => {
-        // We purposefully do not persist m.typing events.
-        // Technically you could refresh a browser before the timer on a
-        // typing event is up, so it'll look like you aren't typing when
-        // you really still are. However, the alternative is worse. If
-        // we do persist typing events, it will look like people are
-        // typing forever until someone really does start typing (which
-        // will prompt Synapse to send down an actual m.typing event to
-        // clobber the one we persisted).
-        if (e.type !== "m.receipt" || !e.content) {
-          // This means we'll drop unknown ephemeral events but that
-          // seems okay.
-          return;
-        } // Handle m.receipt events. They clobber based on:
-        //   (user_id, receipt_type)
-        // but they are keyed in the event as:
-        //   content:{ $event_id: { $receipt_type: { $user_id: {json} }}}
-        // so store them in the former so we can accumulate receipt deltas
-        // quickly and efficiently (we expect a lot of them). Fold the
-        // receipt type into the key name since we only have 1 at the
-        // moment (m.read) and nested JSON objects are slower and more
-        // of a hassle to work with. We'll inflate this back out when
-        // getJSON() is called.
-
-
-        Object.keys(e.content).forEach(eventId => {
-          Object.entries(e.content[eventId]).forEach(([key, value]) => {
-            if (!(0, _utils.isSupportedReceiptType)(key)) return;
-            Object.keys(value).forEach(userId => {
-              // clobber on user ID
-              currentData._readReceipts[userId] = {
-                data: e.content[eventId][key][userId],
-                type: key,
-                eventId: eventId
-              };
-            });
-          });
+    data.ephemeral?.events?.forEach(e => {
+      // We purposefully do not persist m.typing events.
+      // Technically you could refresh a browser before the timer on a
+      // typing event is up, so it'll look like you aren't typing when
+      // you really still are. However, the alternative is worse. If
+      // we do persist typing events, it will look like people are
+      // typing forever until someone really does start typing (which
+      // will prompt Synapse to send down an actual m.typing event to
+      // clobber the one we persisted).
+      if (e.type !== _event.EventType.Receipt || !e.content) {
+        // This means we'll drop unknown ephemeral events but that
+        // seems okay.
+        return;
+      }
+      // Handle m.receipt events. They clobber based on:
+      //   (user_id, receipt_type)
+      // but they are keyed in the event as:
+      //   content:{ $event_id: { $receipt_type: { $user_id: {json} }}}
+      // so store them in the former so we can accumulate receipt deltas
+      // quickly and efficiently (we expect a lot of them). Fold the
+      // receipt type into the key name since we only have 1 at the
+      // moment (m.read) and nested JSON objects are slower and more
+      // of a hassle to work with. We'll inflate this back out when
+      // getJSON() is called.
+      Object.keys(e.content).forEach(eventId => {
+        Object.entries(e.content[eventId]).forEach(([key, value]) => {
+          if (!(0, _utils.isSupportedReceiptType)(key)) return;
+          for (const userId of Object.keys(value)) {
+            const data = e.content[eventId][key][userId];
+            const receipt = {
+              data: e.content[eventId][key][userId],
+              type: key,
+              eventId: eventId
+            };
+            if (!data.thread_id || data.thread_id === _read_receipts.MAIN_ROOM_TIMELINE) {
+              currentData._readReceipts[userId] = receipt;
+            } else {
+              currentData._threadReadReceipts = _objectSpread(_objectSpread({}, currentData._threadReadReceipts), {}, {
+                [data.thread_id]: _objectSpread(_objectSpread({}, currentData._threadReadReceipts[data.thread_id] ?? {}), {}, {
+                  [userId]: receipt
+                })
+              });
+            }
+          }
         });
       });
-    } // if we got a limited sync, we need to remove all timeline entries or else
-    // we will have gaps in the timeline.
-
+    });
 
+    // if we got a limited sync, we need to remove all timeline entries or else
+    // we will have gaps in the timeline.
     if (data.timeline && data.timeline.limited) {
       currentData._timeline = [];
-    } // Work out the current state. The deltas need to be applied in the order:
+    }
+
+    // Work out the current state. The deltas need to be applied in the order:
     // - existing state which didn't come down /sync.
     // - State events under the 'state' key.
     // - State events in the 'timeline'.
-
-
-    if (data.state && data.state.events) {
-      data.state.events.forEach(e => {
-        setState(currentData._currentState, e);
-      });
-    }
-
-    if (data.timeline && data.timeline.events) {
-      data.timeline.events.forEach((e, index) => {
-        // this nops if 'e' isn't a state event
-        setState(currentData._currentState, e); // append the event to the timeline. The back-pagination token
-        // corresponds to the first event in the timeline
-
-        let transformedEvent;
-
-        if (!fromDatabase) {
-          transformedEvent = Object.assign({}, e);
-
-          if (transformedEvent.unsigned !== undefined) {
-            transformedEvent.unsigned = Object.assign({}, transformedEvent.unsigned);
-          }
-
-          const age = e.unsigned ? e.unsigned.age : e.age;
-          if (age !== undefined) transformedEvent._localTs = Date.now() - age;
-        } else {
-          transformedEvent = e;
+    data.state?.events?.forEach(e => {
+      setState(currentData._currentState, e);
+    });
+    data.timeline?.events?.forEach((e, index) => {
+      // this nops if 'e' isn't a state event
+      setState(currentData._currentState, e);
+      // append the event to the timeline. The back-pagination token
+      // corresponds to the first event in the timeline
+      let transformedEvent;
+      if (!fromDatabase) {
+        transformedEvent = Object.assign({}, e);
+        if (transformedEvent.unsigned !== undefined) {
+          transformedEvent.unsigned = Object.assign({}, transformedEvent.unsigned);
         }
-
-        currentData._timeline.push({
-          event: transformedEvent,
-          token: index === 0 ? data.timeline.prev_batch : null
-        });
+        const age = e.unsigned ? e.unsigned.age : e.age;
+        if (age !== undefined) transformedEvent._localTs = Date.now() - age;
+      } else {
+        transformedEvent = e;
+      }
+      currentData._timeline.push({
+        event: transformedEvent,
+        token: index === 0 ? data.timeline.prev_batch ?? null : null
       });
-    } // attempt to prune the timeline by jumping between events which have
-    // pagination tokens.
-
+    });
 
+    // attempt to prune the timeline by jumping between events which have
+    // pagination tokens.
     if (currentData._timeline.length > this.opts.maxTimelineEntries) {
       const startIndex = currentData._timeline.length - this.opts.maxTimelineEntries;
-
       for (let i = startIndex; i < currentData._timeline.length; i++) {
         if (currentData._timeline[i].token) {
           // keep all events after this, including this one
@@ -365,13 +334,14 @@
       }
     }
   }
+
   /**
    * Return everything under the 'rooms' key from a /sync response which
    * represents all room data that should be stored. This should be paired
    * with the sync token which represents the most recent /sync response
    * provided to accumulate().
-   * @param {boolean} forDatabase True to generate a sync to be saved to storage
-   * @return {Object} An object with a "nextBatch", "roomsData" and "accountData"
+   * @param forDatabase - True to generate a sync to be saved to storage
+   * @returns An object with a "nextBatch", "roomsData" and "accountData"
    * keys.
    * The "nextBatch" key is a string which represents at what point in the
    * /sync stream the accumulator reached. This token should be used when
@@ -380,8 +350,6 @@
    * /sync response from the 'rooms' key onwards. The "accountData" key is
    * a list of raw events which represent global account data.
    */
-
-
   getJSON(forDatabase = false) {
     const data = {
       join: {},
@@ -419,38 +387,39 @@
           prev_batch: null
         },
         unread_notifications: roomData._unreadNotifications,
+        unread_thread_notifications: roomData._unreadThreadNotifications,
         summary: roomData._summary
-      }; // Add account data
-
+      };
+      // Add account data
       Object.keys(roomData._accountData).forEach(evType => {
         roomJson.account_data.events.push(roomData._accountData[evType]);
-      }); // Add receipt data
+      });
 
+      // Add receipt data
       const receiptEvent = {
-        type: "m.receipt",
+        type: _event.EventType.Receipt,
         room_id: roomId,
-        content: {// $event_id: { "m.read": { $user_id: $json } }
+        content: {
+          // $event_id: { "m.read": { $user_id: $json } }
         }
       };
-      Object.keys(roomData._readReceipts).forEach(userId => {
-        const receiptData = roomData._readReceipts[userId];
-
-        if (!receiptEvent.content[receiptData.eventId]) {
-          receiptEvent.content[receiptData.eventId] = {};
-        }
-
-        if (!receiptEvent.content[receiptData.eventId][receiptData.type]) {
-          receiptEvent.content[receiptData.eventId][receiptData.type] = {};
+      const receiptEventContent = new _utils.MapWithDefault(() => new _utils.MapWithDefault(() => new Map()));
+      for (const [userId, receiptData] of Object.entries(roomData._readReceipts)) {
+        receiptEventContent.getOrCreate(receiptData.eventId).getOrCreate(receiptData.type).set(userId, receiptData.data);
+      }
+      for (const threadReceipts of Object.values(roomData._threadReadReceipts)) {
+        for (const [userId, receiptData] of Object.entries(threadReceipts)) {
+          receiptEventContent.getOrCreate(receiptData.eventId).getOrCreate(receiptData.type).set(userId, receiptData.data);
         }
+      }
+      receiptEvent.content = (0, _utils.recursiveMapToObject)(receiptEventContent);
 
-        receiptEvent.content[receiptData.eventId][receiptData.type][userId] = receiptData.data;
-      }); // add only if we have some receipt data
-
-      if (Object.keys(receiptEvent.content).length > 0) {
+      // add only if we have some receipt data
+      if (receiptEventContent.size > 0) {
         roomJson.ephemeral.events.push(receiptEvent);
-      } // Add timeline data
-
+      }
 
+      // Add timeline data
       roomData._timeline.forEach(msgData => {
         if (!roomJson.timeline.prev_batch) {
           // the first event we add to the timeline MUST match up to
@@ -461,11 +430,9 @@
 
           roomJson.timeline.prev_batch = msgData.token;
         }
-
         let transformedEvent;
-
-        if (!forDatabase && msgData.event["_localTs"]) {
-          // This means we have to copy each event so we can fix it up to
+        if (!forDatabase && isTaggedEvent(msgData.event)) {
+          // This means we have to copy each event, so we can fix it up to
           // set a correct 'age' parameter whilst keeping the local timestamp
           // on our stored event. If this turns out to be a bottleneck, it could
           // be optimised either by doing this in the main process after the data
@@ -474,66 +441,55 @@
           // directly rather than turning it into age to then immediately be
           // transformed back again into a local timestamp.
           transformedEvent = Object.assign({}, msgData.event);
-
           if (transformedEvent.unsigned !== undefined) {
             transformedEvent.unsigned = Object.assign({}, transformedEvent.unsigned);
           }
-
           delete transformedEvent._localTs;
           transformedEvent.unsigned = transformedEvent.unsigned || {};
-          transformedEvent.unsigned.age = Date.now() - msgData.event["_localTs"];
+          transformedEvent.unsigned.age = Date.now() - msgData.event._localTs;
         } else {
           transformedEvent = msgData.event;
         }
-
         roomJson.timeline.events.push(transformedEvent);
-      }); // Add state data: roll back current state to the start of timeline,
+      });
+
+      // Add state data: roll back current state to the start of timeline,
       // by "reverse clobbering" from the end of the timeline to the start.
       // Convert maps back into arrays.
-
-
       const rollBackState = Object.create(null);
-
       for (let i = roomJson.timeline.events.length - 1; i >= 0; i--) {
         const timelineEvent = roomJson.timeline.events[i];
-
         if (timelineEvent.state_key === null || timelineEvent.state_key === undefined) {
           continue; // not a state event
-        } // since we're going back in time, we need to use the previous
+        }
+        // since we're going back in time, we need to use the previous
         // state value else we'll break causality. We don't have the
         // complete previous state event, so we need to create one.
-
-
         const prevStateEvent = (0, _utils.deepCopy)(timelineEvent);
-
         if (prevStateEvent.unsigned) {
           if (prevStateEvent.unsigned.prev_content) {
             prevStateEvent.content = prevStateEvent.unsigned.prev_content;
           }
-
           if (prevStateEvent.unsigned.prev_sender) {
             prevStateEvent.sender = prevStateEvent.unsigned.prev_sender;
           }
         }
-
         setState(rollBackState, prevStateEvent);
       }
-
       Object.keys(roomData._currentState).forEach(evType => {
         Object.keys(roomData._currentState[evType]).forEach(stateKey => {
           let ev = roomData._currentState[evType][stateKey];
-
           if (rollBackState[evType] && rollBackState[evType][stateKey]) {
             // use the reverse clobbered event instead.
             ev = rollBackState[evType][stateKey];
           }
-
           roomJson.state.events.push(ev);
         });
       });
       data.join[roomId] = roomJson;
-    }); // Add account data
+    });
 
+    // Add account data
     const accData = [];
     Object.keys(this.accountData).forEach(evType => {
       accData.push(this.accountData[evType]);
@@ -544,23 +500,17 @@
       accountData: accData
     };
   }
-
   getNextBatchToken() {
     return this.nextBatch;
   }
-
 }
-
 exports.SyncAccumulator = SyncAccumulator;
-
 function setState(eventMap, event) {
   if (event.state_key === null || event.state_key === undefined || !event.type) {
     return;
   }
-
   if (!eventMap[event.type]) {
     eventMap[event.type] = Object.create(null);
   }
-
   eventMap[event.type][event.state_key] = event;
 }
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/sync.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/sync.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/sync.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/sync.js	2023-04-11 06:11:52.000000000 +0000
@@ -5,57 +5,46 @@
 });
 exports.SyncState = exports.SyncApi = void 0;
 exports._createAndReEmitRoom = _createAndReEmitRoom;
-
+exports.defaultClientOpts = defaultClientOpts;
+exports.defaultSyncApiOpts = defaultSyncApiOpts;
 var _user = require("./models/user");
-
 var _room = require("./models/room");
-
 var utils = _interopRequireWildcard(require("./utils"));
-
 var _filter = require("./filter");
-
 var _eventTimeline = require("./models/event-timeline");
-
-var _pushprocessor = require("./pushprocessor");
-
 var _logger = require("./logger");
-
 var _errors = require("./errors");
-
 var _client = require("./client");
-
 var _httpApi = require("./http-api");
-
 var _event = require("./@types/event");
-
 var _roomState = require("./models/room-state");
-
 var _roomMember = require("./models/room-member");
-
 var _beacon = require("./models/beacon");
-
+var _sync = require("./@types/sync");
+var _feature = require("./feature");
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
+function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
+function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+const DEBUG = true;
 
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
-const DEBUG = true; // /sync requests allow you to set a timeout= but the request may continue
+// /sync requests allow you to set a timeout= but the request may continue
 // beyond that and wedge forever, so we need to track how long we are willing
 // to keep open the connection. This constant is *ADDED* to the timeout= value
 // to determine the max time we're willing to wait.
+const BUFFER_PERIOD_MS = 80 * 1000;
 
-const BUFFER_PERIOD_MS = 80 * 1000; // Number of consecutive failed syncs that will lead to a syncState of ERROR as opposed
+// Number of consecutive failed syncs that will lead to a syncState of ERROR as opposed
 // to RECONNECTING. This is needed to inform the client of server issues when the
 // keepAlive is successful but the server /sync fails.
-
 const FAILED_SYNC_ERROR_THRESHOLD = 3;
 let SyncState; // Room versions where "insertion", "batch", and "marker" events are controlled
 // by power-levels. MSC2716 is supported in existing room versions but they
 // should only have special meaning when the room creator sends them.
-
 exports.SyncState = SyncState;
-
 (function (SyncState) {
   SyncState["Error"] = "ERROR";
   SyncState["Prepared"] = "PREPARED";
@@ -64,75 +53,73 @@
   SyncState["Catchup"] = "CATCHUP";
   SyncState["Reconnecting"] = "RECONNECTING";
 })(SyncState || (exports.SyncState = SyncState = {}));
-
-const MSC2716_ROOM_VERSIONS = ['org.matrix.msc2716v3'];
-
+const MSC2716_ROOM_VERSIONS = ["org.matrix.msc2716v3"];
 function getFilterName(userId, suffix) {
   // scope this on the user ID because people may login on many accounts
   // and they all need to be stored!
   return `FILTER_SYNC_${userId}` + (suffix ? "_" + suffix : "");
 }
 
+/* istanbul ignore next */
 function debuglog(...params) {
   if (!DEBUG) return;
-
   _logger.logger.log(...params);
 }
 
+/**
+ * Options passed into the constructor of SyncApi by MatrixClient
+ */
 var SetPresence;
-
 (function (SetPresence) {
   SetPresence["Offline"] = "offline";
   SetPresence["Online"] = "online";
   SetPresence["Unavailable"] = "unavailable";
 })(SetPresence || (SetPresence = {}));
-
-/**
- * <b>Internal class - unstable.</b>
- * Construct an entity which is able to sync with a homeserver.
- * @constructor
- * @param {MatrixClient} client The matrix client instance to use.
- * @param {Object} opts Config options
- * @param {module:crypto=} opts.crypto Crypto manager
- * @param {Function=} opts.canResetEntireTimeline A function which is called
- * with a room ID and returns a boolean. It should return 'true' if the SDK can
- * SAFELY remove events from this room. It may not be safe to remove events if
- * there are other references to the timelines for this room.
- * Default: returns false.
- * @param {Boolean=} opts.disablePresence True to perform syncing without automatically
- * updating presence.
- */
+/** add default settings to an IStoredClientOpts */
+function defaultClientOpts(opts) {
+  return _objectSpread({
+    initialSyncLimit: 8,
+    resolveInvitesToProfiles: false,
+    pollTimeout: 30 * 1000,
+    pendingEventOrdering: _client.PendingEventOrdering.Chronological,
+    threadSupport: false
+  }, opts);
+}
+function defaultSyncApiOpts(syncOpts) {
+  return _objectSpread({
+    canResetEntireTimeline: _roomId => false
+  }, syncOpts);
+}
 class SyncApi {
   // additional data (eg. error object for failed sync)
+
   // accumulator of sync events in the current sync response
   // Number of consecutive failed /sync requests
   // flag set if the store needs to be cleared before we can start
-  constructor(client, opts = {}) {
-    this.client = client;
-    this.opts = opts;
 
+  /**
+   * Construct an entity which is able to sync with a homeserver.
+   * @param client - The matrix client instance to use.
+   * @param opts - client config options
+   * @param syncOpts - sync-specific options passed by the client
+   * @internal
+   */
+  constructor(client, opts, syncOpts) {
+    this.client = client;
+    _defineProperty(this, "opts", void 0);
+    _defineProperty(this, "syncOpts", void 0);
     _defineProperty(this, "_peekRoom", null);
-
-    _defineProperty(this, "currentSyncRequest", null);
-
+    _defineProperty(this, "currentSyncRequest", void 0);
+    _defineProperty(this, "abortController", void 0);
     _defineProperty(this, "syncState", null);
-
-    _defineProperty(this, "syncStateData", null);
-
+    _defineProperty(this, "syncStateData", void 0);
     _defineProperty(this, "catchingUp", false);
-
     _defineProperty(this, "running", false);
-
-    _defineProperty(this, "keepAliveTimer", null);
-
-    _defineProperty(this, "connectionReturnedDefer", null);
-
+    _defineProperty(this, "keepAliveTimer", void 0);
+    _defineProperty(this, "connectionReturnedDefer", void 0);
     _defineProperty(this, "notifEvents", []);
-
     _defineProperty(this, "failedSyncCount", 0);
-
     _defineProperty(this, "storeIsInvalid", false);
-
     _defineProperty(this, "getPushRules", async () => {
       try {
         debuglog("Getting push rules...");
@@ -141,100 +128,84 @@
         this.client.pushRules = result;
       } catch (err) {
         _logger.logger.error("Getting push rules failed", err);
-
-        if (this.shouldAbortSync(err)) return; // wait for saved sync to complete before doing anything else,
+        if (this.shouldAbortSync(err)) return;
+        // wait for saved sync to complete before doing anything else,
         // otherwise the sync state will end up being incorrect
-
         debuglog("Waiting for saved sync before retrying push rules...");
         await this.recoverFromSyncStartupError(this.savedSyncPromise, err);
         return this.getPushRules(); // try again
       }
     });
-
     _defineProperty(this, "buildDefaultFilter", () => {
-      return new _filter.Filter(this.client.credentials.userId);
+      const filter = new _filter.Filter(this.client.credentials.userId);
+      if (this.client.canSupport.get(_feature.Feature.ThreadUnreadNotifications) !== _feature.ServerSupport.Unsupported) {
+        filter.setUnreadThreadNotifications(true);
+      }
+      return filter;
     });
-
     _defineProperty(this, "checkLazyLoadStatus", async () => {
       debuglog("Checking lazy load status...");
-
       if (this.opts.lazyLoadMembers && this.client.isGuest()) {
         this.opts.lazyLoadMembers = false;
       }
-
       if (this.opts.lazyLoadMembers) {
         debuglog("Checking server lazy load support...");
         const supported = await this.client.doesServerSupportLazyLoading();
-
         if (supported) {
           debuglog("Enabling lazy load on sync filter...");
-
           if (!this.opts.filter) {
             this.opts.filter = this.buildDefaultFilter();
           }
-
           this.opts.filter.setLazyLoadMembers(true);
         } else {
           debuglog("LL: lazy loading requested but not supported " + "by server, so disabling");
           this.opts.lazyLoadMembers = false;
         }
-      } // need to vape the store when enabling LL and wasn't enabled before
-
-
+      }
+      // need to vape the store when enabling LL and wasn't enabled before
       debuglog("Checking whether lazy loading has changed in store...");
       const shouldClear = await this.wasLazyLoadingToggled(this.opts.lazyLoadMembers);
-
       if (shouldClear) {
         this.storeIsInvalid = true;
-        const reason = _errors.InvalidStoreError.TOGGLED_LAZY_LOADING;
-        const error = new _errors.InvalidStoreError(reason, !!this.opts.lazyLoadMembers);
+        const error = new _errors.InvalidStoreError(_errors.InvalidStoreState.ToggledLazyLoading, !!this.opts.lazyLoadMembers);
         this.updateSyncState(SyncState.Error, {
           error
-        }); // bail out of the sync loop now: the app needs to respond to this error.
+        });
+        // bail out of the sync loop now: the app needs to respond to this error.
         // we leave the state as 'ERROR' which isn't great since this normally means
         // we're retrying. The client must be stopped before clearing the stores anyway
         // so the app should stop the client, clear the store and start it again.
-
         _logger.logger.warn("InvalidStoreError: store is not usable: stopping sync.");
-
         return;
       }
-
       if (this.opts.lazyLoadMembers) {
-        this.opts.crypto?.enableLazyLoading();
+        this.syncOpts.crypto?.enableLazyLoading();
       }
-
       try {
         debuglog("Storing client options...");
         await this.client.storeClientOptions();
         debuglog("Stored client options");
       } catch (err) {
         _logger.logger.error("Storing client options failed", err);
-
         throw err;
       }
     });
-
     _defineProperty(this, "getFilter", async () => {
       debuglog("Getting filter...");
       let filter;
-
       if (this.opts.filter) {
         filter = this.opts.filter;
       } else {
         filter = this.buildDefaultFilter();
       }
-
       let filterId;
-
       try {
         filterId = await this.client.getOrCreateFilter(getFilterName(this.client.credentials.userId), filter);
       } catch (err) {
         _logger.logger.error("Getting filter failed", err);
-
-        if (this.shouldAbortSync(err)) return {}; // wait for saved sync to complete before doing anything else,
+        if (this.shouldAbortSync(err)) return {};
+        // wait for saved sync to complete before doing anything else,
         // otherwise the sync state will end up being incorrect
-
         debuglog("Waiting for saved sync before retrying filter...");
         await this.recoverFromSyncStartupError(this.savedSyncPromise, err);
         return this.getFilter(); // try again
@@ -245,55 +216,34 @@
         filterId
       };
     });
-
     _defineProperty(this, "savedSyncPromise", void 0);
-
     _defineProperty(this, "onOnline", () => {
       debuglog("Browser thinks we are back online");
       this.startKeepAlives(0);
     });
-
-    this.opts.initialSyncLimit = this.opts.initialSyncLimit ?? 8;
-    this.opts.resolveInvitesToProfiles = this.opts.resolveInvitesToProfiles || false;
-    this.opts.pollTimeout = this.opts.pollTimeout || 30 * 1000;
-    this.opts.pendingEventOrdering = this.opts.pendingEventOrdering || _client.PendingEventOrdering.Chronological;
-    this.opts.experimentalThreadSupport = this.opts.experimentalThreadSupport === true;
-
-    if (!opts.canResetEntireTimeline) {
-      opts.canResetEntireTimeline = roomId => {
-        return false;
-      };
-    }
-
+    this.opts = defaultClientOpts(opts);
+    this.syncOpts = defaultSyncApiOpts(syncOpts);
     if (client.getNotifTimelineSet()) {
       client.reEmitter.reEmit(client.getNotifTimelineSet(), [_room.RoomEvent.Timeline, _room.RoomEvent.TimelineReset]);
     }
   }
-  /**
-   * @param {string} roomId
-   * @return {Room}
-   */
-
-
   createRoom(roomId) {
     const room = _createAndReEmitRoom(this.client, roomId, this.opts);
-
     room.on(_roomState.RoomStateEvent.Marker, (markerEvent, markerFoundOptions) => {
       this.onMarkerStateEvent(room, markerEvent, markerFoundOptions);
     });
     return room;
   }
+
   /** When we see the marker state change in the room, we know there is some
    * new historical messages imported by MSC2716 `/batch_send` somewhere in
    * the room and we need to throw away the timeline to make sure the
    * historical messages are shown when we paginate `/messages` again.
-   * @param {Room} room The room where the marker event was sent
-   * @param {MatrixEvent} markerEvent The new marker event
-   * @param {IMarkerFoundOptions} setStateOptions When `timelineWasEmpty` is set
+   * @param room - The room where the marker event was sent
+   * @param markerEvent - The new marker event
+   * @param setStateOptions - When `timelineWasEmpty` is set
    * as `true`, the given marker event will be ignored
-  */
-
-
+   */
   onMarkerStateEvent(room, markerEvent, {
     timelineWasEmpty
   } = {}) {
@@ -304,17 +254,19 @@
     //  3. Or whether it's coming from `syncFromCache`
     if (timelineWasEmpty) {
       _logger.logger.debug(`MarkerState: Ignoring markerEventId=${markerEvent.getId()} in roomId=${room.roomId} ` + `because the timeline was empty before the marker arrived which means there is nothing to refresh.`);
-
       return;
     }
-
-    const isValidMsc2716Event = // Check whether the room version directly supports MSC2716, in
+    const isValidMsc2716Event =
+    // Check whether the room version directly supports MSC2716, in
     // which case, "marker" events are already auth'ed by
     // power_levels
-    MSC2716_ROOM_VERSIONS.includes(room.getVersion()) || // MSC2716 is also supported in all existing room versions but
+    MSC2716_ROOM_VERSIONS.includes(room.getVersion()) ||
+    // MSC2716 is also supported in all existing room versions but
     // special meaning should only be given to "insertion", "batch",
     // and "marker" events when they come from the room creator
-    markerEvent.getSender() === room.getCreator(); // It would be nice if we could also specifically tell whether the
+    markerEvent.getSender() === room.getCreator();
+
+    // It would be nice if we could also specifically tell whether the
     // historical messages actually affected the locally cached client
     // timeline or not. The problem is we can't see the prev_events of
     // the base insertion event that the marker was pointing to because
@@ -326,89 +278,86 @@
     // are likely to encounter the historical messages affecting their
     // current timeline (think someone signing up for Beeper and
     // importing their Whatsapp history).
-
     if (isValidMsc2716Event) {
       // Saw new marker event, let's let the clients know they should
       // refresh the timeline.
       _logger.logger.debug(`MarkerState: Timeline needs to be refreshed because ` + `a new markerEventId=${markerEvent.getId()} was sent in roomId=${room.roomId}`);
-
       room.setTimelineNeedsRefresh(true);
       room.emit(_room.RoomEvent.HistoryImportedWithinTimeline, markerEvent, room);
     } else {
       _logger.logger.debug(`MarkerState: Ignoring markerEventId=${markerEvent.getId()} in roomId=${room.roomId} because ` + `MSC2716 is not supported in the room version or for any room version, the marker wasn't sent ` + `by the room creator.`);
     }
   }
+
   /**
    * Sync rooms the user has left.
-   * @return {Promise} Resolved when they've been added to the store.
+   * @returns Resolved when they've been added to the store.
    */
+  async syncLeftRooms() {
+    const client = this.client;
 
-
-  syncLeftRooms() {
-    const client = this.client; // grab a filter with limit=1 and include_leave=true
-
+    // grab a filter with limit=1 and include_leave=true
     const filter = new _filter.Filter(this.client.credentials.userId);
     filter.setTimelineLimit(1);
     filter.setIncludeLeaveRooms(true);
     const localTimeoutMs = this.opts.pollTimeout + BUFFER_PERIOD_MS;
+    const filterId = await client.getOrCreateFilter(getFilterName(client.credentials.userId, "LEFT_ROOMS"), filter);
     const qps = {
-      timeout: 0 // don't want to block since this is a single isolated req
-
+      timeout: 0,
+      // don't want to block since this is a single isolated req
+      filter: filterId
     };
-    return client.getOrCreateFilter(getFilterName(client.credentials.userId, "LEFT_ROOMS"), filter).then(function (filterId) {
-      qps.filter = filterId;
-      return client.http.authedRequest(undefined, _httpApi.Method.Get, "/sync", qps, undefined, localTimeoutMs);
-    }).then(async data => {
-      let leaveRooms = [];
-
-      if (data.rooms?.leave) {
-        leaveRooms = this.mapSyncResponseToRoomArray(data.rooms.leave);
+    const data = await client.http.authedRequest(_httpApi.Method.Get, "/sync", qps, undefined, {
+      localTimeoutMs
+    });
+    let leaveRooms = [];
+    if (data.rooms?.leave) {
+      leaveRooms = this.mapSyncResponseToRoomArray(data.rooms.leave);
+    }
+    const rooms = await Promise.all(leaveRooms.map(async leaveObj => {
+      const room = leaveObj.room;
+      if (!leaveObj.isBrandNewRoom) {
+        // the intention behind syncLeftRooms is to add in rooms which were
+        // *omitted* from the initial /sync. Rooms the user were joined to
+        // but then left whilst the app is running will appear in this list
+        // and we do not want to bother with them since they will have the
+        // current state already (and may get dupe messages if we add
+        // yet more timeline events!), so skip them.
+        // NB: When we persist rooms to localStorage this will be more
+        //     complicated...
+        return;
       }
+      leaveObj.timeline = leaveObj.timeline || {
+        prev_batch: null,
+        events: []
+      };
+      const events = this.mapSyncEventsFormat(leaveObj.timeline, room);
+      const stateEvents = this.mapSyncEventsFormat(leaveObj.state, room);
 
-      return Promise.all(leaveRooms.map(async leaveObj => {
-        const room = leaveObj.room;
-
-        if (!leaveObj.isBrandNewRoom) {
-          // the intention behind syncLeftRooms is to add in rooms which were
-          // *omitted* from the initial /sync. Rooms the user were joined to
-          // but then left whilst the app is running will appear in this list
-          // and we do not want to bother with them since they will have the
-          // current state already (and may get dupe messages if we add
-          // yet more timeline events!), so skip them.
-          // NB: When we persist rooms to localStorage this will be more
-          //     complicated...
-          return;
-        }
-
-        leaveObj.timeline = leaveObj.timeline || {};
-        const events = this.mapSyncEventsFormat(leaveObj.timeline, room);
-        const stateEvents = this.mapSyncEventsFormat(leaveObj.state, room); // set the back-pagination token. Do this *before* adding any
-        // events so that clients can start back-paginating.
-
-        room.getLiveTimeline().setPaginationToken(leaveObj.timeline.prev_batch, _eventTimeline.EventTimeline.BACKWARDS);
-        await this.processRoomEvents(room, stateEvents, events);
-        room.recalculate();
-        client.store.storeRoom(room);
-        client.emit(_client.ClientEvent.Room, room);
-        this.processEventsForNotifs(room, events);
-        return room;
-      }));
-    });
+      // set the back-pagination token. Do this *before* adding any
+      // events so that clients can start back-paginating.
+      room.getLiveTimeline().setPaginationToken(leaveObj.timeline.prev_batch, _eventTimeline.EventTimeline.BACKWARDS);
+      await this.injectRoomEvents(room, stateEvents, events);
+      room.recalculate();
+      client.store.storeRoom(room);
+      client.emit(_client.ClientEvent.Room, room);
+      this.processEventsForNotifs(room, events);
+      return room;
+    }));
+    return rooms.filter(Boolean);
   }
+
   /**
    * Peek into a room. This will result in the room in question being synced so it
    * is accessible via getRooms(). Live updates for the room will be provided.
-   * @param {string} roomId The room ID to peek into.
-   * @return {Promise} A promise which resolves once the room has been added to the
+   * @param roomId - The room ID to peek into.
+   * @returns A promise which resolves once the room has been added to the
    * store.
    */
-
-
   peek(roomId) {
-    if (this._peekRoom && this._peekRoom.roomId === roomId) {
+    if (this._peekRoom?.roomId === roomId) {
       return Promise.resolve(this._peekRoom);
     }
-
     const client = this.client;
     this._peekRoom = this.createRoom(roomId);
     return this.client.roomInitialSync(roomId, 20).then(response => {
@@ -417,18 +366,19 @@
         chunk: []
       };
       response.messages.chunk = response.messages.chunk || [];
-      response.state = response.state || []; // FIXME: Mostly duplicated from processRoomEvents but not entirely
-      // because "state" in this API is at the BEGINNING of the chunk
+      response.state = response.state || [];
 
+      // FIXME: Mostly duplicated from injectRoomEvents but not entirely
+      // because "state" in this API is at the BEGINNING of the chunk
       const oldStateEvents = utils.deepCopy(response.state).map(client.getEventMapper());
       const stateEvents = response.state.map(client.getEventMapper());
-      const messages = response.messages.chunk.map(client.getEventMapper()); // XXX: copypasted from /sync until we kill off this minging v1 API stuff)
-      // handle presence events (User objects)
+      const messages = response.messages.chunk.map(client.getEventMapper());
 
+      // XXX: copypasted from /sync until we kill off this minging v1 API stuff)
+      // handle presence events (User objects)
       if (Array.isArray(response.presence)) {
         response.presence.map(client.getEventMapper()).forEach(function (presenceEvent) {
           let user = client.store.getUser(presenceEvent.getContent().user_id);
-
           if (user) {
             user.setPresenceEvent(presenceEvent);
           } else {
@@ -436,70 +386,66 @@
             user.setPresenceEvent(presenceEvent);
             client.store.storeUser(user);
           }
-
           client.emit(_client.ClientEvent.Event, presenceEvent);
         });
-      } // set the pagination token before adding the events in case people
+      }
+
+      // set the pagination token before adding the events in case people
       // fire off pagination requests in response to the Room.timeline
       // events.
-
-
       if (response.messages.start) {
         this._peekRoom.oldState.paginationToken = response.messages.start;
-      } // set the state of the room to as it was after the timeline executes
-
+      }
 
+      // set the state of the room to as it was after the timeline executes
       this._peekRoom.oldState.setStateEvents(oldStateEvents);
-
       this._peekRoom.currentState.setStateEvents(stateEvents);
-
       this.resolveInvites(this._peekRoom);
+      this._peekRoom.recalculate();
 
-      this._peekRoom.recalculate(); // roll backwards to diverge old state. addEventsToTimeline
+      // roll backwards to diverge old state. addEventsToTimeline
       // will overwrite the pagination token, so make sure it overwrites
       // it with the right thing.
-
-
       this._peekRoom.addEventsToTimeline(messages.reverse(), true, this._peekRoom.getLiveTimeline(), response.messages.start);
-
       client.store.storeRoom(this._peekRoom);
       client.emit(_client.ClientEvent.Room, this._peekRoom);
       this.peekPoll(this._peekRoom);
       return this._peekRoom;
     });
   }
+
   /**
    * Stop polling for updates in the peeked room. NOPs if there is no room being
    * peeked.
    */
-
-
   stopPeeking() {
     this._peekRoom = null;
   }
+
   /**
    * Do a peek room poll.
-   * @param {Room} peekRoom
-   * @param {string?} token from= token
+   * @param token - from= token
    */
-
-
   peekPoll(peekRoom, token) {
     if (this._peekRoom !== peekRoom) {
       debuglog("Stopped peeking in room %s", peekRoom.roomId);
       return;
-    } // FIXME: gut wrenching; hard-coded timeout values
-
+    }
 
-    this.client.http.authedRequest(undefined, _httpApi.Method.Get, "/events", {
+    // FIXME: gut wrenching; hard-coded timeout values
+    this.client.http.authedRequest(_httpApi.Method.Get, "/events", {
       room_id: peekRoom.roomId,
       timeout: String(30 * 1000),
       from: token
-    }, undefined, 50 * 1000).then(res => {
+    }, undefined, {
+      localTimeoutMs: 50 * 1000,
+      abortSignal: this.abortController?.signal
+    }).then(res => {
       if (this._peekRoom !== peekRoom) {
         debuglog("Stopped peeking in room %s", peekRoom.roomId);
         return;
-      } // We have a problem that we get presence both from /events and /sync
+      }
+      // We have a problem that we get presence both from /events and /sync
       // however, /sync only returns presence for users in rooms
       // you're actually joined to.
       // in order to be sure to get presence for all of the users in the
@@ -508,12 +454,10 @@
       // performance drain, but such is life.
       // XXX: copypasted from /sync until we can kill this minging v1 stuff.
 
-
       res.chunk.filter(function (e) {
         return e.type === "m.presence";
       }).map(this.client.getEventMapper()).forEach(presenceEvent => {
         let user = this.client.store.getUser(presenceEvent.getContent().user_id);
-
         if (user) {
           user.setPresenceEvent(presenceEvent);
         } else {
@@ -521,12 +465,12 @@
           user.setPresenceEvent(presenceEvent);
           this.client.store.storeUser(user);
         }
-
         this.client.emit(_client.ClientEvent.Event, presenceEvent);
-      }); // strip out events which aren't for the given room_id (e.g presence)
+      });
+
+      // strip out events which aren't for the given room_id (e.g presence)
       // and also ephemeral events (which we're assuming is anything without
       // and event ID because the /events API doesn't separate them).
-
       const events = res.chunk.filter(function (e) {
         return e.room_id === peekRoom.roomId && e.event_id;
       }).map(this.client.getEventMapper());
@@ -534,37 +478,31 @@
       this.peekPoll(peekRoom, res.end);
     }, err => {
       _logger.logger.error("[%s] Peek poll failed: %s", peekRoom.roomId, err);
-
       setTimeout(() => {
         this.peekPoll(peekRoom, token);
       }, 30 * 1000);
     });
   }
+
   /**
    * Returns the current state of this sync object
-   * @see module:client~MatrixClient#event:"sync"
-   * @return {?String}
+   * @see MatrixClient#event:"sync"
    */
-
-
   getSyncState() {
     return this.syncState;
   }
+
   /**
    * Returns the additional data object associated with
    * the current sync state, or null if there is no
    * such data.
    * Sync errors, if available, are put in the 'error' key of
    * this object.
-   * @return {?Object}
    */
-
-
   getSyncStateData() {
-    return this.syncStateData;
+    return this.syncStateData ?? null;
   }
-
-  async recoverFromSyncStartupError(savedSyncPromise, err) {
+  async recoverFromSyncStartupError(savedSyncPromise, error) {
     // Wait for the saved sync to complete - we send the pushrules and filter requests
     // before the saved sync has finished so they can run in parallel, but only process
     // the results after the saved sync is done. Equivalently, we wait for it to finish
@@ -572,65 +510,56 @@
     await savedSyncPromise;
     const keepaliveProm = this.startKeepAlives();
     this.updateSyncState(SyncState.Error, {
-      error: err
+      error
     });
     await keepaliveProm;
   }
+
   /**
    * Is the lazy loading option different than in previous session?
-   * @param {boolean} lazyLoadMembers current options for lazy loading
-   * @return {boolean} whether or not the option has changed compared to the previous session */
-
-
+   * @param lazyLoadMembers - current options for lazy loading
+   * @returns whether or not the option has changed compared to the previous session */
   async wasLazyLoadingToggled(lazyLoadMembers = false) {
     // assume it was turned off before
     // if we don't know any better
     let lazyLoadMembersBefore = false;
     const isStoreNewlyCreated = await this.client.store.isNewlyCreated();
-
     if (!isStoreNewlyCreated) {
       const prevClientOptions = await this.client.store.getClientOptions();
-
       if (prevClientOptions) {
         lazyLoadMembersBefore = !!prevClientOptions.lazyLoadMembers;
       }
-
       return lazyLoadMembersBefore !== lazyLoadMembers;
     }
-
     return false;
   }
-
   shouldAbortSync(error) {
     if (error.errcode === "M_UNKNOWN_TOKEN") {
       // The logout already happened, we just need to stop.
       _logger.logger.warn("Token no longer valid - assuming logout");
-
       this.stop();
       this.updateSyncState(SyncState.Error, {
         error
       });
       return true;
     }
-
     return false;
   }
-
   /**
    * Main entry point
    */
   async sync() {
     this.running = true;
+    this.abortController = new AbortController();
     global.window?.addEventListener?.("online", this.onOnline, false);
-
     if (this.client.isGuest()) {
       // no push rules for guests, no access to POST filter for guests.
       return this.doSync({});
-    } // Pull the saved sync token out first, before the worker starts sending
+    }
+
+    // Pull the saved sync token out first, before the worker starts sending
     // all the sync data which could take a while. This will let us send our
     // first incremental sync request before we've processed our saved data.
-
-
     debuglog("Getting saved sync token...");
     const savedSyncTokenPromise = this.client.store.getSavedSyncToken().then(tok => {
       debuglog("Got saved sync token");
@@ -638,23 +567,24 @@
     });
     this.savedSyncPromise = this.client.store.getSavedSync().then(savedSync => {
       debuglog(`Got reply from saved sync, exists? ${!!savedSync}`);
-
       if (savedSync) {
         return this.syncFromCache(savedSync);
       }
     }).catch(err => {
       _logger.logger.error("Getting saved sync failed", err);
-    }); // We need to do one-off checks before we can begin the /sync loop.
+    });
+
+    // We need to do one-off checks before we can begin the /sync loop.
     // These are:
     //   1) We need to get push rules so we can check if events should bing as we get
     //      them from /sync.
     //   2) We need to get/create a filter which we can use for /sync.
     //   3) We need to check the lazy loading option matches what was used in the
     //       stored sync. If it doesn't, we can't use the stored sync.
+
     // Now start the first incremental sync request: this can also
     // take a while so if we set it going now, we can wait for it
     // to finish while we process our saved sync data.
-
     await this.getPushRules();
     await this.checkLazyLoadStatus();
     const {
@@ -662,91 +592,85 @@
       filter
     } = await this.getFilter();
     if (!filter) return; // bail, getFilter failed
+
     // reset the notifications timeline to prepare it to paginate from
     // the current point in time.
     // The right solution would be to tie /sync pagination tokens into
     // /notifications API somehow.
-
     this.client.resetNotifTimelineSet();
-
-    if (this.currentSyncRequest === null) {
+    if (!this.currentSyncRequest) {
       let firstSyncFilter = filterId;
       const savedSyncToken = await savedSyncTokenPromise;
-
       if (savedSyncToken) {
         debuglog("Sending first sync request...");
       } else {
         debuglog("Sending initial sync request...");
         const initialFilter = this.buildDefaultFilter();
         initialFilter.setDefinition(filter.getDefinition());
-        initialFilter.setTimelineLimit(this.opts.initialSyncLimit); // Use an inline filter, no point uploading it for a single usage
-
+        initialFilter.setTimelineLimit(this.opts.initialSyncLimit);
+        // Use an inline filter, no point uploading it for a single usage
         firstSyncFilter = JSON.stringify(initialFilter.getDefinition());
-      } // Send this first sync request here so we can then wait for the saved
-      // sync data to finish processing before we process the results of this one.
-
+      }
 
+      // Send this first sync request here so we can then wait for the saved
+      // sync data to finish processing before we process the results of this one.
       this.currentSyncRequest = this.doSyncRequest({
         filter: firstSyncFilter
       }, savedSyncToken);
-    } // Now wait for the saved sync to finish...
-
+    }
 
+    // Now wait for the saved sync to finish...
     debuglog("Waiting for saved sync before starting sync processing...");
-    await this.savedSyncPromise; // process the first sync request and continue syncing with the normal filterId
-
+    await this.savedSyncPromise;
+    // process the first sync request and continue syncing with the normal filterId
     return this.doSync({
       filter: filterId
     });
   }
+
   /**
    * Stops the sync object from syncing.
    */
-
-
   stop() {
-    debuglog("SyncApi.stop"); // It is necessary to check for the existance of
+    debuglog("SyncApi.stop");
+    // It is necessary to check for the existance of
     // global.window AND global.window.removeEventListener.
     // Some platforms (e.g. React Native) register global.window,
     // but do not have global.window.removeEventListener.
-
     global.window?.removeEventListener?.("online", this.onOnline, false);
     this.running = false;
-    this.currentSyncRequest?.abort();
-
+    this.abortController?.abort();
     if (this.keepAliveTimer) {
       clearTimeout(this.keepAliveTimer);
-      this.keepAliveTimer = null;
+      this.keepAliveTimer = undefined;
     }
   }
+
   /**
    * Retry a backed off syncing request immediately. This should only be used when
    * the user <b>explicitly</b> attempts to retry their lost connection.
-   * @return {boolean} True if this resulted in a request being retried.
+   * @returns True if this resulted in a request being retried.
    */
-
-
   retryImmediately() {
     if (!this.connectionReturnedDefer) {
       return false;
     }
-
     this.startKeepAlives(0);
     return true;
   }
   /**
    * Process a single set of cached sync data.
-   * @param {Object} savedSync a saved sync that was persisted by a store. This
+   * @param savedSync - a saved sync that was persisted by a store. This
    * should have been acquired via client.store.getSavedSync().
    */
-
-
   async syncFromCache(savedSync) {
     debuglog("sync(): not doing HTTP hit, instead returning stored /sync data");
-    const nextSyncToken = savedSync.nextBatch; // Set sync token for future incremental syncing
+    const nextSyncToken = savedSync.nextBatch;
 
-    this.client.store.setSyncToken(nextSyncToken); // No previous sync, set old token to null
+    // Set sync token for future incremental syncing
+    this.client.store.setSyncToken(nextSyncToken);
 
+    // No previous sync, set old token to null
     const syncEventData = {
       nextSyncToken,
       catchingUp: false,
@@ -759,131 +683,118 @@
         events: savedSync.accountData
       }
     };
-
     try {
       await this.processSyncResponse(syncEventData, data);
     } catch (e) {
       _logger.logger.error("Error processing cached sync", e);
-    } // Don't emit a prepared if we've bailed because the store is invalid:
+    }
+
+    // Don't emit a prepared if we've bailed because the store is invalid:
     // in this case the client will not be usable until stopped & restarted
     // so this would be useless and misleading.
-
-
     if (!this.storeIsInvalid) {
       this.updateSyncState(SyncState.Prepared, syncEventData);
     }
   }
+
   /**
    * Invoke me to do /sync calls
-   * @param {Object} syncOptions
-   * @param {string} syncOptions.filterId
-   * @param {boolean} syncOptions.hasSyncedBefore
    */
-
-
   async doSync(syncOptions) {
     while (this.running) {
       const syncToken = this.client.store.getSyncToken();
       let data;
-
       try {
-        //debuglog('Starting sync since=' + syncToken);
-        if (this.currentSyncRequest === null) {
+        if (!this.currentSyncRequest) {
           this.currentSyncRequest = this.doSyncRequest(syncOptions, syncToken);
         }
-
         data = await this.currentSyncRequest;
       } catch (e) {
         const abort = await this.onSyncError(e);
         if (abort) return;
         continue;
       } finally {
-        this.currentSyncRequest = null;
-      } //debuglog('Completed sync, next_batch=' + data.next_batch);
+        this.currentSyncRequest = undefined;
+      }
+
       // set the sync token NOW *before* processing the events. We do this so
       // if something barfs on an event we can skip it rather than constantly
       // polling with the same token.
+      this.client.store.setSyncToken(data.next_batch);
 
-
-      this.client.store.setSyncToken(data.next_batch); // Reset after a successful sync
-
+      // Reset after a successful sync
       this.failedSyncCount = 0;
       await this.client.store.setSyncData(data);
       const syncEventData = {
-        oldSyncToken: syncToken,
+        oldSyncToken: syncToken ?? undefined,
         nextSyncToken: data.next_batch,
         catchingUp: this.catchingUp
       };
-
-      if (this.opts.crypto) {
+      if (this.syncOpts.crypto) {
         // tell the crypto module we're about to process a sync
         // response
-        await this.opts.crypto.onSyncWillProcess(syncEventData);
+        await this.syncOpts.crypto.onSyncWillProcess(syncEventData);
       }
-
       try {
         await this.processSyncResponse(syncEventData, data);
       } catch (e) {
         // log the exception with stack if we have it, else fall back
         // to the plain description
-        _logger.logger.error("Caught /sync error", e); // Emit the exception for client handling
-
+        _logger.logger.error("Caught /sync error", e);
 
+        // Emit the exception for client handling
         this.client.emit(_client.ClientEvent.SyncUnexpectedError, e);
-      } // update this as it may have changed
-
+      }
 
-      syncEventData.catchingUp = this.catchingUp; // emit synced events
+      // update this as it may have changed
+      syncEventData.catchingUp = this.catchingUp;
 
+      // emit synced events
       if (!syncOptions.hasSyncedBefore) {
         this.updateSyncState(SyncState.Prepared, syncEventData);
         syncOptions.hasSyncedBefore = true;
-      } // tell the crypto module to do its processing. It may block (to do a
-      // /keys/changes request).
-
-
-      if (this.opts.crypto) {
-        await this.opts.crypto.onSyncCompleted(syncEventData);
-      } // keep emitting SYNCING -> SYNCING for clients who want to do bulk updates
+      }
 
+      // tell the crypto module to do its processing. It may block (to do a
+      // /keys/changes request).
+      if (this.syncOpts.cryptoCallbacks) {
+        await this.syncOpts.cryptoCallbacks.onSyncCompleted(syncEventData);
+      }
 
+      // keep emitting SYNCING -> SYNCING for clients who want to do bulk updates
       this.updateSyncState(SyncState.Syncing, syncEventData);
-
       if (this.client.store.wantsSave()) {
         // We always save the device list (if it's dirty) before saving the sync data:
         // this means we know the saved device list data is at least as fresh as the
         // stored sync data which means we don't have to worry that we may have missed
         // device changes. We can also skip the delay since we're not calling this very
         // frequently (and we don't really want to delay the sync for it).
-        if (this.opts.crypto) {
-          await this.opts.crypto.saveDeviceList(0);
-        } // tell databases that everything is now in a consistent state and can be saved.
-
+        if (this.syncOpts.crypto) {
+          await this.syncOpts.crypto.saveDeviceList(0);
+        }
 
+        // tell databases that everything is now in a consistent state and can be saved.
         this.client.store.save();
       }
     }
-
     if (!this.running) {
       debuglog("Sync no longer running: exiting.");
-
       if (this.connectionReturnedDefer) {
         this.connectionReturnedDefer.reject();
-        this.connectionReturnedDefer = null;
+        this.connectionReturnedDefer = undefined;
       }
-
       this.updateSyncState(SyncState.Stopped);
     }
   }
-
   doSyncRequest(syncOptions, syncToken) {
     const qps = this.getSyncParams(syncOptions, syncToken);
-    return this.client.http.authedRequest(undefined, _httpApi.Method.Get, "/sync", qps, undefined, qps.timeout + BUFFER_PERIOD_MS);
+    return this.client.http.authedRequest(_httpApi.Method.Get, "/sync", qps, undefined, {
+      localTimeoutMs: qps.timeout + BUFFER_PERIOD_MS,
+      abortSignal: this.abortController?.signal
+    });
   }
-
   getSyncParams(syncOptions, syncToken) {
-    let pollTimeout = this.opts.pollTimeout;
-
+    let timeout = this.opts.pollTimeout;
     if (this.getSyncState() !== SyncState.Syncing || this.catchingUp) {
       // unless we are happily syncing already, we want the server to return
       // as quickly as possible, even if there are no events queued. This
@@ -897,24 +808,19 @@
       //   for us. We do that by calling it with a zero timeout until it
       //   doesn't give us any more to_device messages.
       this.catchingUp = true;
-      pollTimeout = 0;
+      timeout = 0;
     }
-
     let filter = syncOptions.filter;
-
     if (this.client.isGuest() && !filter) {
       filter = this.getGuestFilter();
     }
-
     const qps = {
       filter,
-      timeout: pollTimeout
+      timeout
     };
-
     if (this.opts.disablePresence) {
       qps.set_presence = SetPresence.Offline;
     }
-
     if (syncToken) {
       qps.since = syncToken;
     } else {
@@ -923,7 +829,6 @@
       // (https://github.com/vector-im/vector-web/issues/1354)
       qps._cacheBuster = Date.now();
     }
-
     if ([SyncState.Reconnecting, SyncState.Error].includes(this.getSyncState())) {
       // we think the connection is dead. If it comes back up, we won't know
       // about it till /sync returns. If the timeout= is high, this could
@@ -931,71 +836,65 @@
       // for an event or a timeout before emiting the SYNCING event.
       qps.timeout = 0;
     }
-
     return qps;
   }
-
   async onSyncError(err) {
     if (!this.running) {
       debuglog("Sync no longer running: exiting");
-
       if (this.connectionReturnedDefer) {
         this.connectionReturnedDefer.reject();
-        this.connectionReturnedDefer = null;
+        this.connectionReturnedDefer = undefined;
       }
-
       this.updateSyncState(SyncState.Stopped);
       return true; // abort
     }
 
     _logger.logger.error("/sync error %s", err);
-
     if (this.shouldAbortSync(err)) {
       return true; // abort
     }
 
     this.failedSyncCount++;
-
-    _logger.logger.log('Number of consecutive failed sync requests:', this.failedSyncCount);
-
-    debuglog("Starting keep-alive"); // Note that we do *not* mark the sync connection as
+    _logger.logger.log("Number of consecutive failed sync requests:", this.failedSyncCount);
+    debuglog("Starting keep-alive");
+    // Note that we do *not* mark the sync connection as
     // lost yet: we only do this if a keepalive poke
     // fails, since long lived HTTP connections will
     // go away sometimes and we shouldn't treat this as
     // erroneous. We set the state to 'reconnecting'
     // instead, so that clients can observe this state
     // if they wish.
-
     const keepAlivePromise = this.startKeepAlives();
-    this.currentSyncRequest = null; // Transition from RECONNECTING to ERROR after a given number of failed syncs
-
+    this.currentSyncRequest = undefined;
+    // Transition from RECONNECTING to ERROR after a given number of failed syncs
     this.updateSyncState(this.failedSyncCount >= FAILED_SYNC_ERROR_THRESHOLD ? SyncState.Error : SyncState.Reconnecting, {
       error: err
     });
-    const connDidFail = await keepAlivePromise; // Only emit CATCHUP if we detected a connectivity error: if we didn't,
+    const connDidFail = await keepAlivePromise;
+
+    // Only emit CATCHUP if we detected a connectivity error: if we didn't,
     // it's quite likely the sync will fail again for the same reason and we
     // want to stay in ERROR rather than keep flip-flopping between ERROR
     // and CATCHUP.
-
     if (connDidFail && this.getSyncState() === SyncState.Error) {
       this.updateSyncState(SyncState.Catchup, {
         catchingUp: true
       });
     }
-
     return false;
   }
+
   /**
    * Process data returned from a sync response and propagate it
    * into the model objects
    *
-   * @param {Object} syncEventData Object containing sync tokens associated with this sync
-   * @param {Object} data The response from /sync
+   * @param syncEventData - Object containing sync tokens associated with this sync
+   * @param data - The response from /sync
    */
-
-
   async processSyncResponse(syncEventData, data) {
-    const client = this.client; // data looks like:
+    const client = this.client;
+
+    // data looks like:
     // {
     //    next_batch: $token,
     //    presence: { events: [] },
@@ -1034,16 +933,16 @@
     //      }
     //    }
     // }
+
     // TODO-arch:
     // - Each event we pass through needs to be emitted via 'event', can we
     //   do this in one place?
     // - The isBrandNewRoom boilerplate is boilerplatey.
-    // handle presence events (User objects)
 
+    // handle presence events (User objects)
     if (Array.isArray(data.presence?.events)) {
-      data.presence.events.map(client.getEventMapper()).forEach(function (presenceEvent) {
+      data.presence.events.filter(utils.noUnsafeEventProps).map(client.getEventMapper()).forEach(function (presenceEvent) {
         let user = client.store.getUser(presenceEvent.getSender());
-
         if (user) {
           user.setPresenceEvent(presenceEvent);
         } else {
@@ -1051,16 +950,15 @@
           user.setPresenceEvent(presenceEvent);
           client.store.storeUser(user);
         }
-
         client.emit(_client.ClientEvent.Event, presenceEvent);
       });
-    } // handle non-room account_data
-
+    }
 
+    // handle non-room account_data
     if (Array.isArray(data.account_data?.events)) {
-      const events = data.account_data.events.map(client.getEventMapper());
+      const events = data.account_data.events.filter(utils.noUnsafeEventProps).map(client.getEventMapper());
       const prevEventsMap = events.reduce((m, c) => {
-        m[c.getId()] = client.store.getAccountData(c.getType());
+        m[c.getType()] = client.store.getAccountData(c.getType());
         return m;
       }, {});
       client.store.storeAccountDataEvents(events);
@@ -1071,27 +969,22 @@
         // (see sync) before syncing over the network.
         if (accountDataEvent.getType() === _event.EventType.PushRules) {
           const rules = accountDataEvent.getContent();
-          client.pushRules = _pushprocessor.PushProcessor.rewriteDefaultRules(rules);
+          client.setPushRules(rules);
         }
-
-        const prevEvent = prevEventsMap[accountDataEvent.getId()];
+        const prevEvent = prevEventsMap[accountDataEvent.getType()];
         client.emit(_client.ClientEvent.AccountData, accountDataEvent, prevEvent);
         return accountDataEvent;
       });
-    } // handle to-device events
-
+    }
 
-    if (Array.isArray(data.to_device?.events) && data.to_device.events.length > 0) {
+    // handle to-device events
+    if (data.to_device && Array.isArray(data.to_device.events) && data.to_device.events.length > 0) {
+      let toDeviceMessages = data.to_device.events.filter(utils.noUnsafeEventProps);
+      if (this.syncOpts.cryptoCallbacks) {
+        toDeviceMessages = await this.syncOpts.cryptoCallbacks.preprocessToDeviceMessages(toDeviceMessages);
+      }
       const cancelledKeyVerificationTxns = [];
-      data.to_device.events.filter(eventJSON => {
-        if (eventJSON.type === _event.EventType.RoomMessageEncrypted && !["m.olm.v1.curve25519-aes-sha2"].includes(eventJSON.content?.algorithm)) {
-          _logger.logger.log('Ignoring invalid encrypted to-device event from ' + eventJSON.sender);
-
-          return false;
-        }
-
-        return true;
-      }).map(client.getEventMapper({
+      toDeviceMessages.map(client.getEventMapper({
         toDevice: true
       })).map(toDeviceEvent => {
         // map is a cheap inline forEach
@@ -1101,80 +994,72 @@
         // so we can flag the verification events as cancelled in the loop
         // below.
         if (toDeviceEvent.getType() === "m.key.verification.cancel") {
-          const txnId = toDeviceEvent.getContent()['transaction_id'];
-
+          const txnId = toDeviceEvent.getContent()["transaction_id"];
           if (txnId) {
             cancelledKeyVerificationTxns.push(txnId);
           }
-        } // as mentioned above, .map is a cheap inline forEach, so return
-        // the unmodified event.
-
+        }
 
+        // as mentioned above, .map is a cheap inline forEach, so return
+        // the unmodified event.
         return toDeviceEvent;
       }).forEach(function (toDeviceEvent) {
         const content = toDeviceEvent.getContent();
-
         if (toDeviceEvent.getType() == "m.room.message" && content.msgtype == "m.bad.encrypted") {
           // the mapper already logged a warning.
-          _logger.logger.log('Ignoring undecryptable to-device event from ' + toDeviceEvent.getSender());
-
+          _logger.logger.log("Ignoring undecryptable to-device event from " + toDeviceEvent.getSender());
           return;
         }
-
         if (toDeviceEvent.getType() === "m.key.verification.start" || toDeviceEvent.getType() === "m.key.verification.request") {
-          const txnId = content['transaction_id'];
-
+          const txnId = content["transaction_id"];
           if (cancelledKeyVerificationTxns.includes(txnId)) {
             toDeviceEvent.flagCancelled();
           }
         }
-
         client.emit(_client.ClientEvent.ToDeviceEvent, toDeviceEvent);
       });
     } else {
       // no more to-device events: we can stop polling with a short timeout.
       this.catchingUp = false;
-    } // the returned json structure is a bit crap, so make it into a
+    }
+
+    // the returned json structure is a bit crap, so make it into a
     // nicer form (array) after applying sanity to make sure we don't fail
     // on missing keys (on the off chance)
-
-
     let inviteRooms = [];
     let joinRooms = [];
     let leaveRooms = [];
-
     if (data.rooms) {
       if (data.rooms.invite) {
         inviteRooms = this.mapSyncResponseToRoomArray(data.rooms.invite);
       }
-
       if (data.rooms.join) {
         joinRooms = this.mapSyncResponseToRoomArray(data.rooms.join);
       }
-
       if (data.rooms.leave) {
         leaveRooms = this.mapSyncResponseToRoomArray(data.rooms.leave);
       }
     }
+    this.notifEvents = [];
 
-    this.notifEvents = []; // Handle invites
-
+    // Handle invites
     await utils.promiseMapSeries(inviteRooms, async inviteObj => {
       const room = inviteObj.room;
       const stateEvents = this.mapSyncEventsFormat(inviteObj.invite_state, room);
-      await this.processRoomEvents(room, stateEvents);
+      await this.injectRoomEvents(room, stateEvents);
       const inviter = room.currentState.getStateEvents(_event.EventType.RoomMember, client.getUserId())?.getSender();
-      const parkedHistory = await client.crypto.cryptoStore.takeParkedSharedHistory(room.roomId);
-
-      for (const parked of parkedHistory) {
-        if (parked.senderId === inviter) {
-          await this.client.crypto.olmDevice.addInboundGroupSession(room.roomId, parked.senderKey, parked.forwardingCurve25519KeyChain, parked.sessionId, parked.sessionKey, parked.keysClaimed, true, {
-            sharedHistory: true,
-            untrusted: true
-          });
+      const crypto = client.crypto;
+      if (crypto) {
+        const parkedHistory = await crypto.cryptoStore.takeParkedSharedHistory(room.roomId);
+        for (const parked of parkedHistory) {
+          if (parked.senderId === inviter) {
+            await crypto.olmDevice.addInboundGroupSession(room.roomId, parked.senderKey, parked.forwardingCurve25519KeyChain, parked.sessionId, parked.sessionKey, parked.keysClaimed, true, {
+              sharedHistory: true,
+              untrusted: true
+            });
+          }
         }
       }
-
       if (inviteObj.isBrandNewRoom) {
         room.recalculate();
         client.store.storeRoom(room);
@@ -1183,43 +1068,75 @@
         // Update room state for invite->reject->invite cycles
         room.recalculate();
       }
-
       stateEvents.forEach(function (e) {
         client.emit(_client.ClientEvent.Event, e);
       });
-    }); // Handle joins
+    });
 
+    // Handle joins
     await utils.promiseMapSeries(joinRooms, async joinObj => {
       const room = joinObj.room;
-      const stateEvents = this.mapSyncEventsFormat(joinObj.state, room); // Prevent events from being decrypted ahead of time
+      const stateEvents = this.mapSyncEventsFormat(joinObj.state, room);
+      // Prevent events from being decrypted ahead of time
       // this helps large account to speed up faster
       // room::decryptCriticalEvent is in charge of decrypting all the events
       // required for a client to function properly
-
       const events = this.mapSyncEventsFormat(joinObj.timeline, room, false);
       const ephemeralEvents = this.mapSyncEventsFormat(joinObj.ephemeral);
       const accountDataEvents = this.mapSyncEventsFormat(joinObj.account_data);
-      const encrypted = client.isRoomEncrypted(room.roomId); // we do this first so it's correct when any of the events fire
-
+      const encrypted = client.isRoomEncrypted(room.roomId);
+      // We store the server-provided value first so it's correct when any of the events fire.
       if (joinObj.unread_notifications) {
-        room.setUnreadNotificationCount(_room.NotificationCountType.Total, joinObj.unread_notifications.notification_count); // We track unread notifications ourselves in encrypted rooms, so don't
-        // bother setting it here. We trust our calculations better than the
-        // server's for this case, and therefore will assume that our non-zero
-        // count is accurate.
-
+        /**
+         * We track unread notifications ourselves in encrypted rooms, so don't
+         * bother setting it here. We trust our calculations better than the
+         * server's for this case, and therefore will assume that our non-zero
+         * count is accurate.
+         *
+         * @see import("./client").fixNotificationCountOnDecryption
+         */
+        if (!encrypted || joinObj.unread_notifications.notification_count === 0) {
+          // In an encrypted room, if the room has notifications enabled then it's typical for
+          // the server to flag all new messages as notifying. However, some push rules calculate
+          // events as ignored based on their event contents (e.g. ignoring msgtype=m.notice messages)
+          // so we want to calculate this figure on the client in all cases.
+          room.setUnreadNotificationCount(_room.NotificationCountType.Total, joinObj.unread_notifications.notification_count ?? 0);
+        }
         if (!encrypted || room.getUnreadNotificationCount(_room.NotificationCountType.Highlight) <= 0) {
-          room.setUnreadNotificationCount(_room.NotificationCountType.Highlight, joinObj.unread_notifications.highlight_count);
+          // If the locally stored highlight count is zero, use the server provided value.
+          room.setUnreadNotificationCount(_room.NotificationCountType.Highlight, joinObj.unread_notifications.highlight_count ?? 0);
         }
       }
-
+      const unreadThreadNotifications = joinObj[_sync.UNREAD_THREAD_NOTIFICATIONS.name] ?? joinObj[_sync.UNREAD_THREAD_NOTIFICATIONS.altName];
+      if (unreadThreadNotifications) {
+        // Only partially reset unread notification
+        // We want to keep the client-generated count. Particularly important
+        // for encrypted room that refresh their notification count on event
+        // decryption
+        room.resetThreadUnreadNotificationCount(Object.keys(unreadThreadNotifications));
+        for (const [threadId, unreadNotification] of Object.entries(unreadThreadNotifications)) {
+          if (!encrypted || unreadNotification.notification_count === 0) {
+            room.setThreadUnreadNotificationCount(threadId, _room.NotificationCountType.Total, unreadNotification.notification_count ?? 0);
+          }
+          const hasNoNotifications = room.getThreadUnreadNotificationCount(threadId, _room.NotificationCountType.Highlight) <= 0;
+          if (!encrypted || encrypted && hasNoNotifications) {
+            room.setThreadUnreadNotificationCount(threadId, _room.NotificationCountType.Highlight, unreadNotification.highlight_count ?? 0);
+          }
+        }
+      } else {
+        room.resetThreadUnreadNotificationCount();
+      }
       joinObj.timeline = joinObj.timeline || {};
-
       if (joinObj.isBrandNewRoom) {
         // set the back-pagination token. Do this *before* adding any
         // events so that clients can start back-paginating.
-        room.getLiveTimeline().setPaginationToken(joinObj.timeline.prev_batch, _eventTimeline.EventTimeline.BACKWARDS);
+        if (joinObj.timeline.prev_batch !== null) {
+          room.getLiveTimeline().setPaginationToken(joinObj.timeline.prev_batch, _eventTimeline.EventTimeline.BACKWARDS);
+        }
       } else if (joinObj.timeline.limited) {
-        let limited = true; // we've got a limited sync, so we *probably* have a gap in the
+        let limited = true;
+
+        // we've got a limited sync, so we *probably* have a gap in the
         // timeline, so should reset. But we might have been peeking or
         // paginating and already have some of the events, in which
         // case we just want to append any subsequent events to the end
@@ -1231,17 +1148,18 @@
         // which we'll try to paginate but not get any new events (which
         // will stop us linking the empty timeline into the chain).
         //
-
         for (let i = events.length - 1; i >= 0; i--) {
           const eventId = events[i].getId();
-
           if (room.getTimelineForEvent(eventId)) {
-            debuglog("Already have event " + eventId + " in limited " + "sync - not resetting");
-            limited = false; // we might still be missing some of the events before i;
+            debuglog(`Already have event ${eventId} in limited sync - not resetting`);
+            limited = false;
+
+            // we might still be missing some of the events before i;
             // we don't want to be adding them to the end of the
             // timeline because that would put them out of order.
+            events.splice(0, i);
 
-            events.splice(0, i); // XXX: there's a problem here if the skipped part of the
+            // XXX: there's a problem here if the skipped part of the
             // timeline modifies the state set in stateEvents, because
             // we'll end up using the state from stateEvents rather
             // than the later state from timelineEvents. We probably
@@ -1251,78 +1169,76 @@
             break;
           }
         }
-
         if (limited) {
-          room.resetLiveTimeline(joinObj.timeline.prev_batch, this.opts.canResetEntireTimeline(room.roomId) ? null : syncEventData.oldSyncToken); // We have to assume any gap in any timeline is
+          room.resetLiveTimeline(joinObj.timeline.prev_batch, this.syncOpts.canResetEntireTimeline(room.roomId) ? null : syncEventData.oldSyncToken ?? null);
+
+          // We have to assume any gap in any timeline is
           // reason to stop incrementally tracking notifications and
           // reset the timeline.
-
           client.resetNotifTimelineSet();
         }
       }
 
+      // process any crypto events *before* emitting the RoomStateEvent events. This
+      // avoids a race condition if the application tries to send a message after the
+      // state event is processed, but before crypto is enabled, which then causes the
+      // crypto layer to complain.
+      if (this.syncOpts.cryptoCallbacks) {
+        for (const e of stateEvents.concat(events)) {
+          if (e.isState() && e.getType() === _event.EventType.RoomEncryption && e.getStateKey() === "") {
+            await this.syncOpts.cryptoCallbacks.onCryptoEvent(room, e);
+          }
+        }
+      }
       try {
-        await this.processRoomEvents(room, stateEvents, events, syncEventData.fromCache);
+        await this.injectRoomEvents(room, stateEvents, events, syncEventData.fromCache);
       } catch (e) {
         _logger.logger.error(`Failed to process events on room ${room.roomId}:`, e);
-      } // set summary after processing events,
+      }
+
+      // set summary after processing events,
       // because it will trigger a name calculation
       // which needs the room state to be up to date
-
-
       if (joinObj.summary) {
         room.setSummary(joinObj.summary);
-      } // we deliberately don't add ephemeral events to the timeline
-
+      }
 
-      room.addEphemeralEvents(ephemeralEvents); // we deliberately don't add accountData to the timeline
+      // we deliberately don't add ephemeral events to the timeline
+      room.addEphemeralEvents(ephemeralEvents);
 
+      // we deliberately don't add accountData to the timeline
       room.addAccountData(accountDataEvents);
       room.recalculate();
-
       if (joinObj.isBrandNewRoom) {
         client.store.storeRoom(room);
         client.emit(_client.ClientEvent.Room, room);
       }
-
       this.processEventsForNotifs(room, events);
+      const emitEvent = e => client.emit(_client.ClientEvent.Event, e);
+      stateEvents.forEach(emitEvent);
+      events.forEach(emitEvent);
+      ephemeralEvents.forEach(emitEvent);
+      accountDataEvents.forEach(emitEvent);
 
-      const processRoomEvent = async e => {
-        client.emit(_client.ClientEvent.Event, e);
-
-        if (e.isState() && e.getType() == "m.room.encryption" && this.opts.crypto) {
-          await this.opts.crypto.onCryptoEvent(e);
-        }
-      };
-
-      await utils.promiseMapSeries(stateEvents, processRoomEvent);
-      await utils.promiseMapSeries(events, processRoomEvent);
-      ephemeralEvents.forEach(function (e) {
-        client.emit(_client.ClientEvent.Event, e);
-      });
-      accountDataEvents.forEach(function (e) {
-        client.emit(_client.ClientEvent.Event, e);
-      }); // Decrypt only the last message in all rooms to make sure we can generate a preview
+      // Decrypt only the last message in all rooms to make sure we can generate a preview
       // And decrypt all events after the recorded read receipt to ensure an accurate
       // notification count
-
       room.decryptCriticalEvents();
-    }); // Handle leaves (e.g. kicked rooms)
+    });
 
+    // Handle leaves (e.g. kicked rooms)
     await utils.promiseMapSeries(leaveRooms, async leaveObj => {
       const room = leaveObj.room;
       const stateEvents = this.mapSyncEventsFormat(leaveObj.state, room);
       const events = this.mapSyncEventsFormat(leaveObj.timeline, room);
       const accountDataEvents = this.mapSyncEventsFormat(leaveObj.account_data);
-      await this.processRoomEvents(room, stateEvents, events);
+      await this.injectRoomEvents(room, stateEvents, events);
       room.addAccountData(accountDataEvents);
       room.recalculate();
-
       if (leaveObj.isBrandNewRoom) {
         client.store.storeRoom(room);
         client.emit(_client.ClientEvent.Room, room);
       }
-
       this.processEventsForNotifs(room, events);
       stateEvents.forEach(function (e) {
         client.emit(_client.ClientEvent.Event, e);
@@ -1333,75 +1249,72 @@
       accountDataEvents.forEach(function (e) {
         client.emit(_client.ClientEvent.Event, e);
       });
-    }); // update the notification timeline, if appropriate.
+    });
+
+    // update the notification timeline, if appropriate.
     // we only do this for live events, as otherwise we can't order them sanely
     // in the timeline relative to ones paginated in by /notifications.
     // XXX: we could fix this by making EventTimeline support chronological
     // ordering... but it doesn't, right now.
-
     if (syncEventData.oldSyncToken && this.notifEvents.length) {
       this.notifEvents.sort(function (a, b) {
         return a.getTs() - b.getTs();
       });
       this.notifEvents.forEach(function (event) {
-        client.getNotifTimelineSet().addLiveEvent(event);
+        client.getNotifTimelineSet()?.addLiveEvent(event);
       });
-    } // Handle device list updates
-
+    }
 
+    // Handle device list updates
     if (data.device_lists) {
-      if (this.opts.crypto) {
-        await this.opts.crypto.handleDeviceListChanges(syncEventData, data.device_lists);
-      } else {// FIXME if we *don't* have a crypto module, we still need to
+      if (this.syncOpts.crypto) {
+        await this.syncOpts.crypto.handleDeviceListChanges(syncEventData, data.device_lists);
+      } else {
+        // FIXME if we *don't* have a crypto module, we still need to
         // invalidate the device lists. But that would require a
         // substantial bit of rework :/.
       }
-    } // Handle one_time_keys_count
-
+    }
 
-    if (this.opts.crypto && data.device_one_time_keys_count) {
+    // Handle one_time_keys_count
+    if (this.syncOpts.crypto && data.device_one_time_keys_count) {
       const currentCount = data.device_one_time_keys_count.signed_curve25519 || 0;
-      this.opts.crypto.updateOneTimeKeyCount(currentCount);
+      this.syncOpts.crypto.updateOneTimeKeyCount(currentCount);
     }
-
-    if (this.opts.crypto && (data["device_unused_fallback_key_types"] || data["org.matrix.msc2732.device_unused_fallback_key_types"])) {
+    if (this.syncOpts.crypto && (data.device_unused_fallback_key_types || data["org.matrix.msc2732.device_unused_fallback_key_types"])) {
       // The presence of device_unused_fallback_key_types indicates that the
       // server supports fallback keys. If there's no unused
       // signed_curve25519 fallback key we need a new one.
-      const unusedFallbackKeys = data["device_unused_fallback_key_types"] || data["org.matrix.msc2732.device_unused_fallback_key_types"];
-      this.opts.crypto.setNeedsNewFallback(unusedFallbackKeys instanceof Array && !unusedFallbackKeys.includes("signed_curve25519"));
+      const unusedFallbackKeys = data.device_unused_fallback_key_types || data["org.matrix.msc2732.device_unused_fallback_key_types"];
+      this.syncOpts.crypto.setNeedsNewFallback(Array.isArray(unusedFallbackKeys) && !unusedFallbackKeys.includes("signed_curve25519"));
     }
   }
+
   /**
    * Starts polling the connectivity check endpoint
-   * @param {number} delay How long to delay until the first poll.
+   * @param delay - How long to delay until the first poll.
    *        defaults to a short, randomised interval (to prevent
    *        tight-looping if /versions succeeds but /sync etc. fail).
-   * @return {promise} which resolves once the connection returns
+   * @returns which resolves once the connection returns
    */
-
-
   startKeepAlives(delay) {
     if (delay === undefined) {
       delay = 2000 + Math.floor(Math.random() * 5000);
     }
-
     if (this.keepAliveTimer !== null) {
       clearTimeout(this.keepAliveTimer);
     }
-
     if (delay > 0) {
       this.keepAliveTimer = setTimeout(this.pokeKeepAlive.bind(this), delay);
     } else {
       this.pokeKeepAlive();
     }
-
     if (!this.connectionReturnedDefer) {
       this.connectionReturnedDefer = utils.defer();
     }
-
     return this.connectionReturnedDefer.promise;
   }
+
   /**
    * Make a dummy call to /_matrix/client/versions, to see if the HS is
    * reachable.
@@ -1409,26 +1322,24 @@
    * On failure, schedules a call back to itself. On success, resolves
    * this.connectionReturnedDefer.
    *
-   * @param {boolean} connDidFail True if a connectivity failure has been detected. Optional.
+   * @param connDidFail - True if a connectivity failure has been detected. Optional.
    */
-
-
   pokeKeepAlive(connDidFail = false) {
     const success = () => {
       clearTimeout(this.keepAliveTimer);
-
       if (this.connectionReturnedDefer) {
         this.connectionReturnedDefer.resolve(connDidFail);
-        this.connectionReturnedDefer = null;
+        this.connectionReturnedDefer = undefined;
       }
     };
-
-    this.client.http.request(undefined, // callback
-    _httpApi.Method.Get, "/_matrix/client/versions", undefined, // queryParams
-    undefined, // data
+    this.client.http.request(_httpApi.Method.Get, "/_matrix/client/versions", undefined,
+    // queryParams
+    undefined,
+    // data
     {
-      prefix: '',
-      localTimeoutMs: 15 * 1000
+      prefix: "",
+      localTimeoutMs: 15 * 1000,
+      abortSignal: this.abortController?.signal
     }).then(() => {
       success();
     }, err => {
@@ -1441,89 +1352,67 @@
         this.keepAliveTimer = setTimeout(success, 2000);
       } else {
         connDidFail = true;
-        this.keepAliveTimer = setTimeout(this.pokeKeepAlive.bind(this, connDidFail), 5000 + Math.floor(Math.random() * 5000)); // A keepalive has failed, so we emit the
+        this.keepAliveTimer = setTimeout(this.pokeKeepAlive.bind(this, connDidFail), 5000 + Math.floor(Math.random() * 5000));
+        // A keepalive has failed, so we emit the
         // error state (whether or not this is the
         // first failure).
         // Note we do this after setting the timer:
         // this lets the unit tests advance the mock
         // clock when they get the error.
-
         this.updateSyncState(SyncState.Error, {
           error: err
         });
       }
     });
   }
-  /**
-   * @param {Object} obj
-   * @return {Object[]}
-   */
-
-
   mapSyncResponseToRoomArray(obj) {
     // Maps { roomid: {stuff}, roomid: {stuff} }
     // to
     // [{stuff+Room+isBrandNewRoom}, {stuff+Room+isBrandNewRoom}]
     const client = this.client;
-    return Object.keys(obj).map(roomId => {
+    return Object.keys(obj).filter(k => !(0, utils.unsafeProp)(k)).map(roomId => {
       const arrObj = obj[roomId];
       let room = client.store.getRoom(roomId);
       let isBrandNewRoom = false;
-
       if (!room) {
         room = this.createRoom(roomId);
         isBrandNewRoom = true;
       }
-
       arrObj.room = room;
       arrObj.isBrandNewRoom = isBrandNewRoom;
       return arrObj;
     });
   }
-  /**
-   * @param {Object} obj
-   * @param {Room} room
-   * @param {boolean} decrypt
-   * @return {MatrixEvent[]}
-   */
-
-
   mapSyncEventsFormat(obj, room, decrypt = true) {
     if (!obj || !Array.isArray(obj.events)) {
       return [];
     }
-
     const mapper = this.client.getEventMapper({
       decrypt
     });
-    return obj.events.map(function (e) {
+    return obj.events.filter(utils.noUnsafeEventProps).map(function (e) {
       if (room) {
-        e["room_id"] = room.roomId;
+        e.room_id = room.roomId;
       }
-
       return mapper(e);
     });
   }
+
   /**
-   * @param {Room} room
    */
-
-
   resolveInvites(room) {
     if (!room || !this.opts.resolveInvitesToProfiles) {
       return;
     }
-
-    const client = this.client; // For each invited room member we want to give them a displayname/avatar url
+    const client = this.client;
+    // For each invited room member we want to give them a displayname/avatar url
     // if they have one (the m.room.member invites don't contain this).
-
     room.getMembersWithMembership("invite").forEach(function (member) {
-      if (member._requestedProfileInfo) return;
-      member._requestedProfileInfo = true; // try to get a cached copy first.
-
+      if (member.requestedProfileInfo) return;
+      member.requestedProfileInfo = true;
+      // try to get a cached copy first.
       const user = client.getUser(member.userId);
       let promise;
-
       if (user) {
         promise = Promise.resolve({
           avatar_url: user.avatarUrl,
@@ -1532,42 +1421,38 @@
       } else {
         promise = client.getProfileInfo(member.userId);
       }
-
       promise.then(function (info) {
         // slightly naughty by doctoring the invite event but this means all
         // the code paths remain the same between invite/join display name stuff
         // which is a worthy trade-off for some minor pollution.
         const inviteEvent = member.events.member;
-
-        if (inviteEvent.getContent().membership !== "invite") {
+        if (inviteEvent?.getContent().membership !== "invite") {
           // between resolving and now they have since joined, so don't clobber
           return;
         }
-
         inviteEvent.getContent().avatar_url = info.avatar_url;
-        inviteEvent.getContent().displayname = info.displayname; // fire listeners
-
+        inviteEvent.getContent().displayname = info.displayname;
+        // fire listeners
         member.setMembershipEvent(inviteEvent, room.currentState);
-      }, function (err) {// OH WELL.
+      }, function (err) {
+        // OH WELL.
       });
     });
   }
+
   /**
-   * @param {Room} room
-   * @param {MatrixEvent[]} stateEventList A list of state events. This is the state
+   * Injects events into a room's model.
+   * @param stateEventList - A list of state events. This is the state
    * at the *START* of the timeline list if it is supplied.
-   * @param {MatrixEvent[]} [timelineEventList] A list of timeline events, including threaded. Lower index
-   * @param {boolean} fromCache whether the sync response came from cache
+   * @param timelineEventList - A list of timeline events, including threaded. Lower index
    * is earlier in time. Higher index is later.
+   * @param fromCache - whether the sync response came from cache
    */
-
-
-  async processRoomEvents(room, stateEventList, timelineEventList, fromCache = false) {
+  async injectRoomEvents(room, stateEventList, timelineEventList, fromCache = false) {
     // If there are no events in the timeline yet, initialise it with
     // the given state events
     const liveTimeline = room.getLiveTimeline();
     const timelineWasEmpty = liveTimeline.getEvents().length == 0;
-
     if (timelineWasEmpty) {
       // Passing these events into initialiseState will freeze them, so we need
       // to compute and cache the push actions for them now, otherwise sync dies
@@ -1580,13 +1465,13 @@
       for (const ev of stateEventList) {
         this.client.getPushActionsForEvent(ev);
       }
-
       liveTimeline.initialiseState(stateEventList, {
         timelineWasEmpty
       });
     }
+    this.resolveInvites(room);
 
-    this.resolveInvites(room); // recalculate the room name at this point as adding events to the timeline
+    // recalculate the room name at this point as adding events to the timeline
     // may make notifications appear which should have the right name.
     // XXX: This looks suspect: we'll end up recalculating the room once here
     // and then again after adding events (processSyncResponse calls it after
@@ -1595,8 +1480,9 @@
     // a recalculation (like m.room.name) we won't recalculate until we've
     // finished adding all the events, which will cause the notification to have
     // the old room name rather than the new one.
+    room.recalculate();
 
-    room.recalculate(); // If the timeline wasn't empty, we process the state events here: they're
+    // If the timeline wasn't empty, we process the state events here: they're
     // defined as updates to the state before the start of the timeline, so this
     // starts to roll the state forward.
     // XXX: That's what we *should* do, but this can happen if we were previously
@@ -1606,91 +1492,78 @@
     // very wrong because there could be events in the timeline that diverge the
     // state, in which case this is going to leave things out of sync. However,
     // for now I think it;s best to behave the same as the code has done previously.
-
     if (!timelineWasEmpty) {
       // XXX: As above, don't do this...
       //room.addLiveEvents(stateEventList || []);
       // Do this instead...
       room.oldState.setStateEvents(stateEventList || []);
       room.currentState.setStateEvents(stateEventList || []);
-    } // Execute the timeline events. This will continue to diverge the current state
+    }
+
+    // Execute the timeline events. This will continue to diverge the current state
     // if the timeline has any state events in it.
     // This also needs to be done before running push rules on the events as they need
     // to be decorated with sender etc.
-
-
     room.addLiveEvents(timelineEventList || [], {
       fromCache,
       timelineWasEmpty
     });
     this.client.processBeaconEvents(room, timelineEventList);
   }
+
   /**
    * Takes a list of timelineEvents and adds and adds to notifEvents
    * as appropriate.
    * This must be called after the room the events belong to has been stored.
    *
-   * @param {Room} room
-   * @param {MatrixEvent[]} [timelineEventList] A list of timeline events. Lower index
+   * @param timelineEventList - A list of timeline events. Lower index
    * is earlier in time. Higher index is later.
    */
-
-
   processEventsForNotifs(room, timelineEventList) {
     // gather our notifications into this.notifEvents
     if (this.client.getNotifTimelineSet()) {
-      for (let i = 0; i < timelineEventList.length; i++) {
-        const pushActions = this.client.getPushActionsForEvent(timelineEventList[i]);
-
-        if (pushActions && pushActions.notify && pushActions.tweaks && pushActions.tweaks.highlight) {
-          this.notifEvents.push(timelineEventList[i]);
+      for (const event of timelineEventList) {
+        const pushActions = this.client.getPushActionsForEvent(event);
+        if (pushActions?.notify && pushActions.tweaks?.highlight) {
+          this.notifEvents.push(event);
         }
       }
     }
   }
-  /**
-   * @return {string}
-   */
-
-
   getGuestFilter() {
     // Dev note: This used to be conditional to return a filter of 20 events maximum, but
     // the condition never went to the other branch. This is now hardcoded.
     return "{}";
   }
+
   /**
    * Sets the sync state and emits an event to say so
-   * @param {String} newState The new state string
-   * @param {Object} data Object of additional data to emit in the event
+   * @param newState - The new state string
+   * @param data - Object of additional data to emit in the event
    */
-
-
   updateSyncState(newState, data) {
     const old = this.syncState;
     this.syncState = newState;
     this.syncStateData = data;
     this.client.emit(_client.ClientEvent.Sync, this.syncState, old, data);
   }
+
   /**
    * Event handler for the 'online' event
    * This event is generally unreliable and precise behaviour
    * varies between browsers, so we poll for connectivity too,
    * but this might help us reconnect a little faster.
    */
-
-
 }
-
 exports.SyncApi = SyncApi;
-
 function createNewUser(client, userId) {
   const user = new _user.User(userId);
   client.reEmitter.reEmit(user, [_user.UserEvent.AvatarUrl, _user.UserEvent.DisplayName, _user.UserEvent.Presence, _user.UserEvent.CurrentlyActive, _user.UserEvent.LastPresenceTs]);
   return user;
-} // /!\ This function is not intended for public use! It's only exported from
-// here in order to share some common logic with sliding-sync-sdk.ts.
-
+}
 
+// /!\ This function is not intended for public use! It's only exported from
+// here in order to share some common logic with sliding-sync-sdk.ts.
 function _createAndReEmitRoom(client, roomId, opts) {
   const {
     timelineSupport
@@ -1700,11 +1573,12 @@
     pendingEventOrdering: opts.pendingEventOrdering,
     timelineSupport
   });
-  client.reEmitter.reEmit(room, [_room.RoomEvent.Name, _room.RoomEvent.Redaction, _room.RoomEvent.RedactionCancelled, _room.RoomEvent.Receipt, _room.RoomEvent.Tags, _room.RoomEvent.LocalEchoUpdated, _room.RoomEvent.AccountData, _room.RoomEvent.MyMembership, _room.RoomEvent.Timeline, _room.RoomEvent.TimelineReset, _roomState.RoomStateEvent.Events, _roomState.RoomStateEvent.Members, _roomState.RoomStateEvent.NewMember, _roomState.RoomStateEvent.Update, _beacon.BeaconEvent.New, _beacon.BeaconEvent.Update, _beacon.BeaconEvent.Destroy, _beacon.BeaconEvent.LivenessChange]); // We need to add a listener for RoomState.members in order to hook them
-  // correctly.
+  client.reEmitter.reEmit(room, [_room.RoomEvent.Name, _room.RoomEvent.Redaction, _room.RoomEvent.RedactionCancelled, _room.RoomEvent.Receipt, _room.RoomEvent.Tags, _room.RoomEvent.LocalEchoUpdated, _room.RoomEvent.AccountData, _room.RoomEvent.MyMembership, _room.RoomEvent.Timeline, _room.RoomEvent.TimelineReset, _roomState.RoomStateEvent.Events, _roomState.RoomStateEvent.Members, _roomState.RoomStateEvent.NewMember, _roomState.RoomStateEvent.Update, _beacon.BeaconEvent.New, _beacon.BeaconEvent.Update, _beacon.BeaconEvent.Destroy, _beacon.BeaconEvent.LivenessChange]);
 
+  // We need to add a listener for RoomState.members in order to hook them
+  // correctly.
   room.on(_roomState.RoomStateEvent.NewMember, (event, state, member) => {
-    member.user = client.getUser(member.userId);
+    member.user = client.getUser(member.userId) ?? undefined;
     client.reEmitter.reEmit(member, [_roomMember.RoomMemberEvent.Name, _roomMember.RoomMemberEvent.Typing, _roomMember.RoomMemberEvent.PowerLevel, _roomMember.RoomMemberEvent.Membership]);
   });
   return room;
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/timeline-window.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/timeline-window.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/timeline-window.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/timeline-window.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,30 +4,28 @@
   value: true
 });
 exports.TimelineWindow = exports.TimelineIndex = void 0;
-
 var _eventTimeline = require("./models/event-timeline");
-
 var _logger = require("./logger");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 /**
- * @private
+ * @internal
  */
 const DEBUG = false;
+
 /**
- * @private
+ * @internal
  */
-
+/* istanbul ignore next */
 const debuglog = DEBUG ? _logger.logger.log.bind(_logger.logger) : function () {};
+
 /**
  * the number of times we ask the server for more events before giving up
  *
- * @private
+ * @internal
  */
-
 const DEFAULT_PAGINATE_LOOP_LIMIT = 5;
-
 class TimelineWindow {
   // these will be TimelineIndex objects; they delineate the 'start' and
   // 'end' of the window.
@@ -37,158 +35,128 @@
   /**
    * Construct a TimelineWindow.
    *
-   * <p>This abstracts the separate timelines in a Matrix {@link
-      * module:models/room|Room} into a single iterable thing. It keeps track of
-   * the start and endpoints of the window, which can be advanced with the help
+   * <p>This abstracts the separate timelines in a Matrix {@link Room} into a single iterable thing.
+   * It keeps track of the start and endpoints of the window, which can be advanced with the help
    * of pagination requests.
    *
-   * <p>Before the window is useful, it must be initialised by calling {@link
-      * module:timeline-window~TimelineWindow#load|load}.
+   * <p>Before the window is useful, it must be initialised by calling {@link TimelineWindow#load}.
    *
    * <p>Note that the window will not automatically extend itself when new events
-   * are received from /sync; you should arrange to call {@link
-      * module:timeline-window~TimelineWindow#paginate|paginate} on {@link
-      * module:client~MatrixClient.event:"Room.timeline"|Room.timeline} events.
+   * are received from /sync; you should arrange to call {@link TimelineWindow#paginate}
+   * on {@link RoomEvent.Timeline} events.
    *
-   * @param {MatrixClient} client   MatrixClient to be used for context/pagination
+   * @param client -   MatrixClient to be used for context/pagination
    *   requests.
    *
-   * @param {EventTimelineSet} timelineSet  The timelineSet to track
+   * @param timelineSet -  The timelineSet to track
    *
-   * @param {Object} [opts] Configuration options for this window
-   *
-   * @param {number} [opts.windowLimit = 1000] maximum number of events to keep
-   *    in the window. If more events are retrieved via pagination requests,
-   *    excess events will be dropped from the other end of the window.
-   *
-   * @constructor
+   * @param opts - Configuration options for this window
    */
   constructor(client, timelineSet, opts = {}) {
     this.client = client;
     this.timelineSet = timelineSet;
-
     _defineProperty(this, "windowLimit", void 0);
-
-    _defineProperty(this, "start", null);
-
-    _defineProperty(this, "end", null);
-
+    _defineProperty(this, "start", void 0);
+    _defineProperty(this, "end", void 0);
     _defineProperty(this, "eventCount", 0);
-
     this.windowLimit = opts.windowLimit || 1000;
   }
+
   /**
    * Initialise the window to point at a given event, or the live timeline
    *
-   * @param {string} [initialEventId]   If given, the window will contain the
+   * @param initialEventId -   If given, the window will contain the
    *    given event
-   * @param {number} [initialWindowSize = 20]   Size of the initial window
-   *
-   * @return {Promise}
+   * @param initialWindowSize -   Size of the initial window
    */
-
-
   load(initialEventId, initialWindowSize = 20) {
     // given an EventTimeline, find the event we were looking for, and initialise our
     // fields so that the event in question is in the middle of the window.
     const initFields = timeline => {
+      if (!timeline) {
+        throw new Error("No timeline given to initFields");
+      }
       let eventIndex;
       const events = timeline.getEvents();
-
       if (!initialEventId) {
         // we were looking for the live timeline: initialise to the end
         eventIndex = events.length;
       } else {
         eventIndex = events.findIndex(e => e.getId() === initialEventId);
-
         if (eventIndex < 0) {
           throw new Error("getEventTimeline result didn't include requested event");
         }
       }
-
       const endIndex = Math.min(events.length, eventIndex + Math.ceil(initialWindowSize / 2));
       const startIndex = Math.max(0, endIndex - initialWindowSize);
       this.start = new TimelineIndex(timeline, startIndex - timeline.getBaseIndex());
       this.end = new TimelineIndex(timeline, endIndex - timeline.getBaseIndex());
       this.eventCount = endIndex - startIndex;
-    }; // We avoid delaying the resolution of the promise by a reactor tick if we already have the data we need,
-    // which is important to keep room-switching feeling snappy.
-
-
-    if (initialEventId) {
-      const timeline = this.timelineSet.getTimelineForEvent(initialEventId);
-
-      if (timeline) {
-        // hot-path optimization to save a reactor tick by replicating the sync check getTimelineForEvent does.
-        initFields(timeline);
-        return Promise.resolve();
-      }
+    };
 
+    // We avoid delaying the resolution of the promise by a reactor tick if we already have the data we need,
+    // which is important to keep room-switching feeling snappy.
+    if (this.timelineSet.getTimelineForEvent(initialEventId)) {
+      initFields(this.timelineSet.getTimelineForEvent(initialEventId));
+      return Promise.resolve();
+    } else if (initialEventId) {
       return this.client.getEventTimeline(this.timelineSet, initialEventId).then(initFields);
     } else {
-      const tl = this.timelineSet.getLiveTimeline();
-      initFields(tl);
+      initFields(this.timelineSet.getLiveTimeline());
       return Promise.resolve();
     }
   }
+
   /**
    * Get the TimelineIndex of the window in the given direction.
    *
-   * @param {string} direction   EventTimeline.BACKWARDS to get the TimelineIndex
+   * @param direction -   EventTimeline.BACKWARDS to get the TimelineIndex
    * at the start of the window; EventTimeline.FORWARDS to get the TimelineIndex at
    * the end.
    *
-   * @return {TimelineIndex} The requested timeline index if one exists, null
+   * @returns The requested timeline index if one exists, null
    * otherwise.
    */
-
-
   getTimelineIndex(direction) {
     if (direction == _eventTimeline.EventTimeline.BACKWARDS) {
-      return this.start;
+      return this.start ?? null;
     } else if (direction == _eventTimeline.EventTimeline.FORWARDS) {
-      return this.end;
+      return this.end ?? null;
     } else {
       throw new Error("Invalid direction '" + direction + "'");
     }
   }
+
   /**
    * Try to extend the window using events that are already in the underlying
    * TimelineIndex.
    *
-   * @param {string} direction   EventTimeline.BACKWARDS to try extending it
+   * @param direction -   EventTimeline.BACKWARDS to try extending it
    *   backwards; EventTimeline.FORWARDS to try extending it forwards.
-   * @param {number} size   number of events to try to extend by.
+   * @param size -   number of events to try to extend by.
    *
-   * @return {boolean} true if the window was extended, false otherwise.
+   * @returns true if the window was extended, false otherwise.
    */
-
-
   extend(direction, size) {
     const tl = this.getTimelineIndex(direction);
-
     if (!tl) {
       debuglog("TimelineWindow: no timeline yet");
       return false;
     }
-
     const count = direction == _eventTimeline.EventTimeline.BACKWARDS ? tl.retreat(size) : tl.advance(size);
-
     if (count) {
       this.eventCount += count;
-      debuglog("TimelineWindow: increased cap by " + count + " (now " + this.eventCount + ")"); // remove some events from the other end, if necessary
-
+      debuglog("TimelineWindow: increased cap by " + count + " (now " + this.eventCount + ")");
+      // remove some events from the other end, if necessary
       const excess = this.eventCount - this.windowLimit;
-
       if (excess > 0) {
         this.unpaginate(excess, direction != _eventTimeline.EventTimeline.BACKWARDS);
       }
-
       return true;
     }
-
     return false;
   }
+
   /**
    * Check if this window can be extended
    *
@@ -197,21 +165,17 @@
    * necessarily mean that there are more events available in that direction at
    * this time.
    *
-   * @param {string} direction   EventTimeline.BACKWARDS to check if we can
+   * @param direction -   EventTimeline.BACKWARDS to check if we can
    *   paginate backwards; EventTimeline.FORWARDS to check if we can go forwards
    *
-   * @return {boolean} true if we can paginate in the given direction
+   * @returns true if we can paginate in the given direction
    */
-
-
   canPaginate(direction) {
     const tl = this.getTimelineIndex(direction);
-
     if (!tl) {
       debuglog("TimelineWindow: no timeline yet");
       return false;
     }
-
     if (direction == _eventTimeline.EventTimeline.BACKWARDS) {
       if (tl.index > tl.minIndex()) {
         return true;
@@ -221,79 +185,74 @@
         return true;
       }
     }
-
-    return Boolean(tl.timeline.getNeighbouringTimeline(direction) || tl.timeline.getPaginationToken(direction) !== null);
+    const hasNeighbouringTimeline = tl.timeline.getNeighbouringTimeline(direction);
+    const paginationToken = tl.timeline.getPaginationToken(direction);
+    return Boolean(hasNeighbouringTimeline) || Boolean(paginationToken);
   }
+
   /**
    * Attempt to extend the window
    *
-   * @param {string} direction   EventTimeline.BACKWARDS to extend the window
+   * @param direction -   EventTimeline.BACKWARDS to extend the window
    *    backwards (towards older events); EventTimeline.FORWARDS to go forwards.
    *
-   * @param {number} size   number of events to try to extend by. If fewer than this
+   * @param size -   number of events to try to extend by. If fewer than this
    *    number are immediately available, then we return immediately rather than
    *    making an API call.
    *
-   * @param {boolean} [makeRequest = true] whether we should make API calls to
+   * @param makeRequest - whether we should make API calls to
    *    fetch further events if we don't have any at all. (This has no effect if
    *    the room already knows about additional events in the relevant direction,
    *    even if there are fewer than 'size' of them, as we will just return those
    *    we already know about.)
    *
-   * @param {number} [requestLimit = 5] limit for the number of API requests we
+   * @param requestLimit - limit for the number of API requests we
    *    should make.
    *
-   * @return {Promise} Resolves to a boolean which is true if more events
+   * @returns Promise which resolves to a boolean which is true if more events
    *    were successfully retrieved.
    */
-
-
-  paginate(direction, size, makeRequest = true, requestLimit = DEFAULT_PAGINATE_LOOP_LIMIT) {
+  async paginate(direction, size, makeRequest = true, requestLimit = DEFAULT_PAGINATE_LOOP_LIMIT) {
     // Either wind back the message cap (if there are enough events in the
     // timeline to do so), or fire off a pagination request.
     const tl = this.getTimelineIndex(direction);
-
     if (!tl) {
       debuglog("TimelineWindow: no timeline yet");
-      return Promise.resolve(false);
+      return false;
     }
-
     if (tl.pendingPaginate) {
       return tl.pendingPaginate;
-    } // try moving the cap
-
+    }
 
+    // try moving the cap
     if (this.extend(direction, size)) {
-      return Promise.resolve(true);
+      return true;
     }
-
     if (!makeRequest || requestLimit === 0) {
       // todo: should we return something different to indicate that there
       // might be more events out there, but we haven't found them yet?
-      return Promise.resolve(false);
-    } // try making a pagination request
-
+      return false;
+    }
 
+    // try making a pagination request
     const token = tl.timeline.getPaginationToken(direction);
-
-    if (token === null) {
+    if (!token) {
       debuglog("TimelineWindow: no token");
-      return Promise.resolve(false);
+      return false;
     }
-
     debuglog("TimelineWindow: starting request");
     const prom = this.client.paginateEventTimeline(tl.timeline, {
       backwards: direction == _eventTimeline.EventTimeline.BACKWARDS,
       limit: size
     }).finally(function () {
-      tl.pendingPaginate = null;
+      tl.pendingPaginate = undefined;
     }).then(r => {
       debuglog("TimelineWindow: request completed with result " + r);
-
       if (!r) {
-        // end of timeline
-        return false;
-      } // recurse to advance the index into the results.
+        return this.paginate(direction, size, false, 0);
+      }
+
+      // recurse to advance the index into the results.
       //
       // If we don't get any new events, we want to make sure we keep asking
       // the server for events for as long as we have a valid pagination
@@ -305,62 +264,61 @@
       // server to make its mind up about whether there are other events,
       // because it gives a bad user experience
       // (https://github.com/vector-im/vector-web/issues/1204).
-
-
       return this.paginate(direction, size, true, requestLimit - 1);
     });
     tl.pendingPaginate = prom;
     return prom;
   }
+
   /**
    * Remove `delta` events from the start or end of the timeline.
    *
-   * @param {number}  delta           number of events to remove from the timeline
-   * @param {boolean} startOfTimeline if events should be removed from the start
+   * @param delta - number of events to remove from the timeline
+   * @param startOfTimeline - if events should be removed from the start
    *     of the timeline.
    */
-
-
   unpaginate(delta, startOfTimeline) {
-    const tl = startOfTimeline ? this.start : this.end; // sanity-check the delta
+    const tl = startOfTimeline ? this.start : this.end;
+    if (!tl) {
+      throw new Error(`Attempting to unpaginate startOfTimeline=${startOfTimeline} but don't have this direction`);
+    }
 
+    // sanity-check the delta
     if (delta > this.eventCount || delta < 0) {
-      throw new Error("Attemting to unpaginate " + delta + " events, but " + "only have " + this.eventCount + " in the timeline");
+      throw new Error(`Attemting to unpaginate ${delta} events, but only have ${this.eventCount} in the timeline`);
     }
-
     while (delta > 0) {
       const count = startOfTimeline ? tl.advance(delta) : tl.retreat(delta);
-
       if (count <= 0) {
         // sadness. This shouldn't be possible.
         throw new Error("Unable to unpaginate any further, but still have " + this.eventCount + " events");
       }
-
       delta -= count;
       this.eventCount -= count;
       debuglog("TimelineWindow.unpaginate: dropped " + count + " (now " + this.eventCount + ")");
     }
   }
+
   /**
    * Get a list of the events currently in the window
    *
-   * @return {MatrixEvent[]} the events in the window
+   * @returns the events in the window
    */
-
-
   getEvents() {
     if (!this.start) {
       // not yet loaded
       return [];
     }
+    const result = [];
 
-    const result = []; // iterate through each timeline between this.start and this.end
+    // iterate through each timeline between this.start and this.end
     // (inclusive).
-
-    let timeline = this.start.timeline; // eslint-disable-next-line no-constant-condition
-
+    let timeline = this.start.timeline;
+    // eslint-disable-next-line no-constant-condition
     while (true) {
-      const events = timeline.getEvents(); // For the first timeline in the chain, we want to start at
+      const events = timeline.getEvents();
+
+      // For the first timeline in the chain, we want to start at
       // this.start.index. For the last timeline in the chain, we want to
       // stop before this.end.index. Otherwise, we want to copy all of the
       // events in the timeline.
@@ -368,90 +326,73 @@
       // (Note that both this.start.index and this.end.index are relative
       // to their respective timelines' BaseIndex).
       //
-
       let startIndex = 0;
       let endIndex = events.length;
-
       if (timeline === this.start.timeline) {
         startIndex = this.start.index + timeline.getBaseIndex();
       }
-
-      if (timeline === this.end.timeline) {
+      if (timeline === this.end?.timeline) {
         endIndex = this.end.index + timeline.getBaseIndex();
       }
-
       for (let i = startIndex; i < endIndex; i++) {
         result.push(events[i]);
-      } // if we're not done, iterate to the next timeline.
-
+      }
 
-      if (timeline === this.end.timeline) {
+      // if we're not done, iterate to the next timeline.
+      if (timeline === this.end?.timeline) {
         break;
       } else {
         timeline = timeline.getNeighbouringTimeline(_eventTimeline.EventTimeline.FORWARDS);
       }
     }
-
     return result;
   }
-
 }
+
 /**
- * a thing which contains a timeline reference, and an index into it.
- *
- * @constructor
- * @param {EventTimeline} timeline
- * @param {number} index
- * @private
+ * A thing which contains a timeline reference, and an index into it.
+ * @internal
  */
-
-
 exports.TimelineWindow = TimelineWindow;
-
 class TimelineIndex {
   // index: the indexes are relative to BaseIndex, so could well be negative.
   constructor(timeline, index) {
     this.timeline = timeline;
     this.index = index;
-
     _defineProperty(this, "pendingPaginate", void 0);
   }
+
   /**
-   * @return {number} the minimum possible value for the index in the current
+   * @returns the minimum possible value for the index in the current
    *    timeline
    */
-
-
   minIndex() {
     return this.timeline.getBaseIndex() * -1;
   }
+
   /**
-   * @return {number} the maximum possible value for the index in the current
+   * @returns the maximum possible value for the index in the current
    *    timeline (exclusive - ie, it actually returns one more than the index
    *    of the last element).
    */
-
-
   maxIndex() {
     return this.timeline.getEvents().length - this.timeline.getBaseIndex();
   }
+
   /**
    * Try move the index forward, or into the neighbouring timeline
    *
-   * @param {number} delta  number of events to advance by
-   * @return {number} number of events successfully advanced by
+   * @param delta -  number of events to advance by
+   * @returns number of events successfully advanced by
    */
-
-
   advance(delta) {
     if (!delta) {
       return 0;
-    } // first try moving the index in the current timeline. See if there is room
-    // to do so.
-
+    }
 
+    // first try moving the index in the current timeline. See if there is room
+    // to do so.
     let cappedDelta;
-
     if (delta < 0) {
       // we want to wind the index backwards.
       //
@@ -459,7 +400,6 @@
       // is the amount of room we have to wind back the index in the current
       // timeline. We cap delta to this quantity.
       cappedDelta = Math.max(delta, this.minIndex() - this.index);
-
       if (cappedDelta < 0) {
         this.index += cappedDelta;
         return cappedDelta;
@@ -471,46 +411,39 @@
       // is the amount of room we have to wind forward the index in the current
       // timeline. We cap delta to this quantity.
       cappedDelta = Math.min(delta, this.maxIndex() - this.index);
-
       if (cappedDelta > 0) {
         this.index += cappedDelta;
         return cappedDelta;
       }
-    } // the index is already at the start/end of the current timeline.
+    }
+
+    // the index is already at the start/end of the current timeline.
     //
     // next see if there is a neighbouring timeline to switch to.
-
-
     const neighbour = this.timeline.getNeighbouringTimeline(delta < 0 ? _eventTimeline.EventTimeline.BACKWARDS : _eventTimeline.EventTimeline.FORWARDS);
-
     if (neighbour) {
       this.timeline = neighbour;
-
       if (delta < 0) {
         this.index = this.maxIndex();
       } else {
         this.index = this.minIndex();
       }
+      debuglog("paginate: switched to new neighbour");
 
-      debuglog("paginate: switched to new neighbour"); // recurse, using the next timeline
-
+      // recurse, using the next timeline
       return this.advance(delta);
     }
-
     return 0;
   }
+
   /**
    * Try move the index backwards, or into the neighbouring timeline
    *
-   * @param {number} delta  number of events to retreat by
-   * @return {number} number of events successfully retreated by
+   * @param delta -  number of events to retreat by
+   * @returns number of events successfully retreated by
    */
-
-
   retreat(delta) {
     return this.advance(delta * -1) * -1;
   }
-
 }
-
 exports.TimelineIndex = TimelineIndex;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/ToDeviceMessageQueue.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/ToDeviceMessageQueue.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/ToDeviceMessageQueue.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/ToDeviceMessageQueue.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,41 +4,35 @@
   value: true
 });
 exports.ToDeviceMessageQueue = void 0;
-
+var _event = require("./@types/event");
 var _logger = require("./logger");
-
+var _client = require("./client");
 var _scheduler = require("./scheduler");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+var _sync = require("./sync");
+var _utils = require("./utils");
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 const MAX_BATCH_SIZE = 20;
+
 /**
  * Maintains a queue of outgoing to-device messages, sending them
  * as soon as the homeserver is reachable.
  */
-
 class ToDeviceMessageQueue {
   constructor(client) {
     this.client = client;
-
     _defineProperty(this, "sending", false);
-
     _defineProperty(this, "running", true);
-
     _defineProperty(this, "retryTimeout", null);
-
     _defineProperty(this, "retryAttempts", 0);
-
     _defineProperty(this, "sendQueue", async () => {
       if (this.retryTimeout !== null) clearTimeout(this.retryTimeout);
       this.retryTimeout = null;
       if (this.sending || !this.running) return;
-
       _logger.logger.debug("Attempting to send queued to-device messages");
-
       this.sending = true;
       let headBatch;
-
       try {
         while (this.running) {
           headBatch = await this.client.store.getOldestToDeviceBatch();
@@ -46,86 +40,81 @@
           await this.sendBatch(headBatch);
           await this.client.store.removeToDeviceBatch(headBatch.id);
           this.retryAttempts = 0;
-        } // Make sure we're still running after the async tasks: if not, stop.
-
+        }
 
+        // Make sure we're still running after the async tasks: if not, stop.
         if (!this.running) return;
-
         _logger.logger.debug("All queued to-device messages sent");
       } catch (e) {
-        ++this.retryAttempts; // eslint-disable-next-line @typescript-eslint/naming-convention
+        ++this.retryAttempts;
+        // eslint-disable-next-line @typescript-eslint/naming-convention
         // eslint-disable-next-line new-cap
-
         const retryDelay = _scheduler.MatrixScheduler.RETRY_BACKOFF_RATELIMIT(null, this.retryAttempts, e);
-
         if (retryDelay === -1) {
           // the scheduler function doesn't differentiate between fatal errors and just getting
           // bored and giving up for now
           if (Math.floor(e.httpStatus / 100) === 4) {
             _logger.logger.error("Fatal error when sending to-device message - dropping to-device batch!", e);
-
             await this.client.store.removeToDeviceBatch(headBatch.id);
           } else {
             _logger.logger.info("Automatic retry limit reached for to-device messages.");
           }
-
           return;
         }
-
         _logger.logger.info(`Failed to send batch of to-device messages. Will retry in ${retryDelay}ms`, e);
-
         this.retryTimeout = setTimeout(this.sendQueue, retryDelay);
       } finally {
         this.sending = false;
       }
     });
+    _defineProperty(this, "onResumedSync", (state, oldState) => {
+      if (state === _sync.SyncState.Syncing && oldState !== _sync.SyncState.Syncing) {
+        _logger.logger.info(`Resuming queue after resumed sync`);
+        this.sendQueue();
+      }
+    });
   }
-
   start() {
     this.running = true;
     this.sendQueue();
+    this.client.on(_client.ClientEvent.Sync, this.onResumedSync);
   }
-
   stop() {
     this.running = false;
     if (this.retryTimeout !== null) clearTimeout(this.retryTimeout);
     this.retryTimeout = null;
+    this.client.removeListener(_client.ClientEvent.Sync, this.onResumedSync);
   }
-
   async queueBatch(batch) {
     const batches = [];
-
     for (let i = 0; i < batch.batch.length; i += MAX_BATCH_SIZE) {
-      batches.push({
+      const batchWithTxnId = {
         eventType: batch.eventType,
         batch: batch.batch.slice(i, i + MAX_BATCH_SIZE),
         txnId: this.client.makeTxnId()
-      });
+      };
+      batches.push(batchWithTxnId);
+      const msgmap = batchWithTxnId.batch.map(msg => `${msg.userId}/${msg.deviceId} (msgid ${msg.payload[_event.ToDeviceMessageId]})`);
+      _logger.logger.info(`Enqueuing batch of to-device messages. type=${batch.eventType} txnid=${batchWithTxnId.txnId}`, msgmap);
     }
-
     await this.client.store.saveToDeviceBatches(batches);
     this.sendQueue();
   }
-
   /**
    * Attempts to send a batch of to-device messages.
    */
   async sendBatch(batch) {
-    const contentMap = {};
-
+    const contentMap = new _utils.MapWithDefault(() => new Map());
     for (const item of batch.batch) {
-      if (!contentMap[item.userId]) {
-        contentMap[item.userId] = {};
-      }
-
-      contentMap[item.userId][item.deviceId] = item.payload;
+      contentMap.getOrCreate(item.userId).set(item.deviceId, item.payload);
     }
-
-    _logger.logger.info(`Sending batch of ${batch.batch.length} to-device messages with ID ${batch.id}`);
-
+    _logger.logger.info(`Sending batch of ${batch.batch.length} to-device messages with ID ${batch.id} and txnId ${batch.txnId}`);
     await this.client.sendToDevice(batch.eventType, contentMap, batch.txnId);
   }
 
+  /**
+   * Listen to sync state changes and automatically resend any pending events
+   * once syncing is resumed
+   */
 }
-
 exports.ToDeviceMessageQueue = ToDeviceMessageQueue;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/another-json.d.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/another-json.d.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/another-json.d.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/another-json.d.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1 @@
+"use strict";
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/another-json.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/another-json.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/another-json.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/another-json.js	1970-01-01 00:00:00.000000000 +0000
@@ -1 +0,0 @@
-"use strict";
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/auth.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/auth.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/auth.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/auth.js	2023-04-11 06:11:52.000000000 +0000
@@ -3,8 +3,8 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.SSOAction = exports.IdentityProviderBrand = void 0;
-
+exports.SSOAction = exports.IdentityProviderBrand = exports.DELEGATED_OIDC_COMPATIBILITY = void 0;
+var _NamespacedValue = require("../NamespacedValue");
 /*
 Copyright 2022 The Matrix.org Foundation C.I.C.
 
@@ -20,26 +20,15 @@
 See the License for the specific language governing permissions and
 limitations under the License.
 */
-// disable lint because these are wire responses
-
-/* eslint-disable camelcase */
-
-/**
- * Represents a response to the CSAPI `/refresh` endpoint.
- */
-
-/* eslint-enable camelcase */
 
-/**
- * Response to GET login flows as per https://spec.matrix.org/latest/client-server-api/#get_matrixclientv3login
- */
+const DELEGATED_OIDC_COMPATIBILITY = new _NamespacedValue.UnstableValue("delegated_oidc_compatibility", "org.matrix.msc3824.delegated_oidc_compatibility");
 
 /**
- * Representation of SSO flow as per https://spec.matrix.org/latest/client-server-api/#client-login-via-sso
+ * Representation of SSO flow as per https://spec.matrix.org/v1.3/client-server-api/#client-login-via-sso
  */
+exports.DELEGATED_OIDC_COMPATIBILITY = DELEGATED_OIDC_COMPATIBILITY;
 let IdentityProviderBrand;
 exports.IdentityProviderBrand = IdentityProviderBrand;
-
 (function (IdentityProviderBrand) {
   IdentityProviderBrand["Gitlab"] = "gitlab";
   IdentityProviderBrand["Github"] = "github";
@@ -48,11 +37,14 @@
   IdentityProviderBrand["Facebook"] = "facebook";
   IdentityProviderBrand["Twitter"] = "twitter";
 })(IdentityProviderBrand || (exports.IdentityProviderBrand = IdentityProviderBrand = {}));
-
 /* eslint-enable camelcase */
 let SSOAction;
+/**
+ * The result of a successful [MSC3882](https://github.com/matrix-org/matrix-spec-proposals/pull/3882)
+ * `m.login.token` issuance request.
+ * Note that this is UNSTABLE and subject to breaking changes without notice.
+ */
 exports.SSOAction = SSOAction;
-
 (function (SSOAction) {
   SSOAction["LOGIN"] = "login";
   SSOAction["REGISTER"] = "register";
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/beacon.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/beacon.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/beacon.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/beacon.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,9 +4,7 @@
   value: true
 });
 exports.M_BEACON_INFO = exports.M_BEACON = void 0;
-
 var _NamespacedValue = require("../NamespacedValue");
-
 /*
 Copyright 2022 The Matrix.org Foundation C.I.C.
 
@@ -39,7 +37,8 @@
  * To achieve an arbitrary number of only owner-writable state events
  * we introduce a variable suffix to the event type
  *
- * Eg
+ * @example
+ * ```
  * {
  *      "type": "m.beacon_info.@matthew:matrix.org.1",
  *      "state_key": "@matthew:matrix.org",
@@ -62,6 +61,7 @@
  *          // more content as described below
  *      }
  * }
+ * ```
  */
 
 /**
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/event.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/event.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/event.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/event.js	2023-04-11 06:11:52.000000000 +0000
@@ -3,10 +3,8 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.UNSTABLE_MSC3089_TREE_SUBTYPE = exports.UNSTABLE_MSC3089_LEAF = exports.UNSTABLE_MSC3089_BRANCH = exports.UNSTABLE_MSC3088_PURPOSE = exports.UNSTABLE_MSC3088_ENABLED = exports.UNSTABLE_MSC2716_MARKER = exports.UNSTABLE_ELEMENT_FUNCTIONAL_USERS = exports.RoomType = exports.RoomCreateTypeField = exports.RelationType = exports.MsgType = exports.EventType = exports.EVENT_VISIBILITY_CHANGE_TYPE = void 0;
-
+exports.UNSTABLE_MSC3089_TREE_SUBTYPE = exports.UNSTABLE_MSC3089_LEAF = exports.UNSTABLE_MSC3089_BRANCH = exports.UNSTABLE_MSC3088_PURPOSE = exports.UNSTABLE_MSC3088_ENABLED = exports.UNSTABLE_MSC2716_MARKER = exports.UNSTABLE_ELEMENT_FUNCTIONAL_USERS = exports.ToDeviceMessageId = exports.RoomType = exports.RoomCreateTypeField = exports.RelationType = exports.PUSHER_ENABLED = exports.PUSHER_DEVICE_ID = exports.MsgType = exports.MSC3912_RELATION_BASED_REDACTIONS_PROP = exports.LOCAL_NOTIFICATION_SETTINGS_PREFIX = exports.EventType = exports.EVENT_VISIBILITY_CHANGE_TYPE = void 0;
 var _NamespacedValue = require("../NamespacedValue");
-
 /*
 Copyright 2020 The Matrix.org Foundation C.I.C.
 
@@ -24,7 +22,6 @@
 */
 let EventType;
 exports.EventType = EventType;
-
 (function (EventType) {
   EventType["RoomCanonicalAlias"] = "m.room.canonical_alias";
   EventType["RoomCreate"] = "m.room.create";
@@ -41,7 +38,7 @@
   EventType["RoomGuestAccess"] = "m.room.guest_access";
   EventType["RoomServerAcl"] = "m.room.server_acl";
   EventType["RoomTombstone"] = "m.room.tombstone";
-  EventType["RoomAliases"] = "m.room.aliases";
+  EventType["RoomPredecessor"] = "org.matrix.msc3946.room_predecessor";
   EventType["SpaceChild"] = "m.space.child";
   EventType["SpaceParent"] = "m.space.parent";
   EventType["RoomRedaction"] = "m.room.redaction";
@@ -65,8 +62,12 @@
   EventType["KeyVerificationCancel"] = "m.key.verification.cancel";
   EventType["KeyVerificationMac"] = "m.key.verification.mac";
   EventType["KeyVerificationDone"] = "m.key.verification.done";
+  EventType["KeyVerificationKey"] = "m.key.verification.key";
+  EventType["KeyVerificationAccept"] = "m.key.verification.accept";
+  EventType["KeyVerificationReady"] = "m.key.verification.ready";
   EventType["RoomMessageFeedback"] = "m.room.message.feedback";
   EventType["Reaction"] = "m.reaction";
+  EventType["PollStart"] = "org.matrix.msc3381.poll.start";
   EventType["Typing"] = "m.typing";
   EventType["Receipt"] = "m.receipt";
   EventType["Presence"] = "m.presence";
@@ -80,21 +81,19 @@
   EventType["RoomKeyRequest"] = "m.room_key_request";
   EventType["ForwardedRoomKey"] = "m.forwarded_room_key";
   EventType["Dummy"] = "m.dummy";
+  EventType["GroupCallPrefix"] = "org.matrix.msc3401.call";
+  EventType["GroupCallMemberPrefix"] = "org.matrix.msc3401.call.member";
 })(EventType || (exports.EventType = EventType = {}));
-
 let RelationType;
 exports.RelationType = RelationType;
-
 (function (RelationType) {
   RelationType["Annotation"] = "m.annotation";
   RelationType["Replace"] = "m.replace";
   RelationType["Reference"] = "m.reference";
   RelationType["Thread"] = "m.thread";
 })(RelationType || (exports.RelationType = RelationType = {}));
-
 let MsgType;
 exports.MsgType = MsgType;
-
 (function (MsgType) {
   MsgType["Text"] = "m.text";
   MsgType["Emote"] = "m.emote";
@@ -106,94 +105,128 @@
   MsgType["Video"] = "m.video";
   MsgType["KeyVerificationRequest"] = "m.key.verification.request";
 })(MsgType || (exports.MsgType = MsgType = {}));
-
 const RoomCreateTypeField = "type";
 exports.RoomCreateTypeField = RoomCreateTypeField;
 let RoomType;
-/**
- * Identifier for an [MSC3088](https://github.com/matrix-org/matrix-doc/pull/3088)
- * room purpose. Note that this reference is UNSTABLE and subject to breaking changes,
- * including its eventual removal.
- */
-
 exports.RoomType = RoomType;
-
 (function (RoomType) {
   RoomType["Space"] = "m.space";
   RoomType["UnstableCall"] = "org.matrix.msc3417.call";
   RoomType["ElementVideo"] = "io.element.video";
 })(RoomType || (exports.RoomType = RoomType = {}));
+const ToDeviceMessageId = "org.matrix.msgid";
 
+/**
+ * Identifier for an [MSC3088](https://github.com/matrix-org/matrix-doc/pull/3088)
+ * room purpose. Note that this reference is UNSTABLE and subject to breaking changes,
+ * including its eventual removal.
+ */
+exports.ToDeviceMessageId = ToDeviceMessageId;
 const UNSTABLE_MSC3088_PURPOSE = new _NamespacedValue.UnstableValue("m.room.purpose", "org.matrix.msc3088.purpose");
+
 /**
  * Enabled flag for an [MSC3088](https://github.com/matrix-org/matrix-doc/pull/3088)
  * room purpose. Note that this reference is UNSTABLE and subject to breaking changes,
  * including its eventual removal.
  */
-
 exports.UNSTABLE_MSC3088_PURPOSE = UNSTABLE_MSC3088_PURPOSE;
 const UNSTABLE_MSC3088_ENABLED = new _NamespacedValue.UnstableValue("m.enabled", "org.matrix.msc3088.enabled");
+
 /**
  * Subtype for an [MSC3089](https://github.com/matrix-org/matrix-doc/pull/3089) space-room.
  * Note that this reference is UNSTABLE and subject to breaking changes, including its
  * eventual removal.
  */
-
 exports.UNSTABLE_MSC3088_ENABLED = UNSTABLE_MSC3088_ENABLED;
 const UNSTABLE_MSC3089_TREE_SUBTYPE = new _NamespacedValue.UnstableValue("m.data_tree", "org.matrix.msc3089.data_tree");
+
 /**
  * Leaf type for an event in a [MSC3089](https://github.com/matrix-org/matrix-doc/pull/3089) space-room.
  * Note that this reference is UNSTABLE and subject to breaking changes, including its
  * eventual removal.
  */
-
 exports.UNSTABLE_MSC3089_TREE_SUBTYPE = UNSTABLE_MSC3089_TREE_SUBTYPE;
 const UNSTABLE_MSC3089_LEAF = new _NamespacedValue.UnstableValue("m.leaf", "org.matrix.msc3089.leaf");
+
 /**
  * Branch (Leaf Reference) type for the index approach in a
  * [MSC3089](https://github.com/matrix-org/matrix-doc/pull/3089) space-room. Note that this reference is
  * UNSTABLE and subject to breaking changes, including its eventual removal.
  */
-
 exports.UNSTABLE_MSC3089_LEAF = UNSTABLE_MSC3089_LEAF;
 const UNSTABLE_MSC3089_BRANCH = new _NamespacedValue.UnstableValue("m.branch", "org.matrix.msc3089.branch");
+
 /**
  * Marker event type to point back at imported historical content in a room. See
  * [MSC2716](https://github.com/matrix-org/matrix-spec-proposals/pull/2716).
  * Note that this reference is UNSTABLE and subject to breaking changes,
  * including its eventual removal.
  */
-
 exports.UNSTABLE_MSC3089_BRANCH = UNSTABLE_MSC3089_BRANCH;
 const UNSTABLE_MSC2716_MARKER = new _NamespacedValue.UnstableValue("m.room.marker", "org.matrix.msc2716.marker");
+
+/**
+ * Name of the "with_relations" request property for relation based redactions.
+ * {@link https://github.com/matrix-org/matrix-spec-proposals/pull/3912}
+ */
+exports.UNSTABLE_MSC2716_MARKER = UNSTABLE_MSC2716_MARKER;
+const MSC3912_RELATION_BASED_REDACTIONS_PROP = new _NamespacedValue.UnstableValue("with_relations", "org.matrix.msc3912.with_relations");
+
 /**
  * Functional members type for declaring a purpose of room members (e.g. helpful bots).
  * Note that this reference is UNSTABLE and subject to breaking changes, including its
  * eventual removal.
  *
  * Schema (TypeScript):
+ * ```
  * {
  *   service_members?: string[]
  * }
+ * ```
  *
- * Example:
+ * @example
+ * ```
  * {
  *   "service_members": [
  *     "@helperbot:localhost",
  *     "@reminderbot:alice.tdl"
  *   ]
  * }
+ * ```
  */
-
-exports.UNSTABLE_MSC2716_MARKER = UNSTABLE_MSC2716_MARKER;
+exports.MSC3912_RELATION_BASED_REDACTIONS_PROP = MSC3912_RELATION_BASED_REDACTIONS_PROP;
 const UNSTABLE_ELEMENT_FUNCTIONAL_USERS = new _NamespacedValue.UnstableValue("io.element.functional_members", "io.element.functional_members");
+
 /**
  * A type of message that affects visibility of a message,
  * as per https://github.com/matrix-org/matrix-doc/pull/3531
  *
  * @experimental
  */
-
 exports.UNSTABLE_ELEMENT_FUNCTIONAL_USERS = UNSTABLE_ELEMENT_FUNCTIONAL_USERS;
 const EVENT_VISIBILITY_CHANGE_TYPE = new _NamespacedValue.UnstableValue("m.visibility", "org.matrix.msc3531.visibility");
-exports.EVENT_VISIBILITY_CHANGE_TYPE = EVENT_VISIBILITY_CHANGE_TYPE;
\ No newline at end of file
+
+/**
+ * https://github.com/matrix-org/matrix-doc/pull/3881
+ *
+ * @experimental
+ */
+exports.EVENT_VISIBILITY_CHANGE_TYPE = EVENT_VISIBILITY_CHANGE_TYPE;
+const PUSHER_ENABLED = new _NamespacedValue.UnstableValue("enabled", "org.matrix.msc3881.enabled");
+
+/**
+ * https://github.com/matrix-org/matrix-doc/pull/3881
+ *
+ * @experimental
+ */
+exports.PUSHER_ENABLED = PUSHER_ENABLED;
+const PUSHER_DEVICE_ID = new _NamespacedValue.UnstableValue("device_id", "org.matrix.msc3881.device_id");
+
+/**
+ * https://github.com/matrix-org/matrix-doc/pull/3890
+ *
+ * @experimental
+ */
+exports.PUSHER_DEVICE_ID = PUSHER_DEVICE_ID;
+const LOCAL_NOTIFICATION_SETTINGS_PREFIX = new _NamespacedValue.UnstableValue("m.local_notification_settings", "org.matrix.msc3890.local_notification_settings");
+exports.LOCAL_NOTIFICATION_SETTINGS_PREFIX = LOCAL_NOTIFICATION_SETTINGS_PREFIX;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/extensible_events.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/extensible_events.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/extensible_events.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/extensible_events.js	2023-04-11 06:11:52.000000000 +0000
@@ -3,12 +3,12 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.TEXT_NODE_TYPE = void 0;
-
-var _NamespacedValue = require("../NamespacedValue");
-
+exports.REFERENCE_RELATION = exports.M_TEXT = exports.M_MESSAGE = exports.M_HTML = void 0;
+exports.isEventTypeSame = isEventTypeSame;
+var _matrixEventsSdk = require("matrix-events-sdk");
+var _utilities = require("../extensible_events_v1/utilities");
 /*
-Copyright 2021 The Matrix.org Foundation C.I.C.
+Copyright 2021 - 2023 The Matrix.org Foundation C.I.C.
 
 Licensed under the Apache License, Version 2.0 (the "License");
 you may not use this file except in compliance with the License.
@@ -22,6 +22,64 @@
 See the License for the specific language governing permissions and
 limitations under the License.
 */
-// Types for MSC1767: Extensible events in Matrix
-const TEXT_NODE_TYPE = new _NamespacedValue.UnstableValue("m.text", "org.matrix.msc1767.text");
-exports.TEXT_NODE_TYPE = TEXT_NODE_TYPE;
\ No newline at end of file
+
+/**
+ * The namespaced value for m.message
+ */
+const M_MESSAGE = new _matrixEventsSdk.UnstableValue("m.message", "org.matrix.msc1767.message");
+
+/**
+ * An m.message event rendering
+ */
+exports.M_MESSAGE = M_MESSAGE;
+/**
+ * The namespaced value for m.text
+ */
+const M_TEXT = new _matrixEventsSdk.UnstableValue("m.text", "org.matrix.msc1767.text");
+
+/**
+ * The content for an m.text event
+ */
+exports.M_TEXT = M_TEXT;
+/**
+ * The namespaced value for m.html
+ */
+const M_HTML = new _matrixEventsSdk.UnstableValue("m.html", "org.matrix.msc1767.html");
+
+/**
+ * The content for an m.html event
+ */
+exports.M_HTML = M_HTML;
+/**
+ * The namespaced value for an m.reference relation
+ */
+const REFERENCE_RELATION = new _matrixEventsSdk.NamespacedValue("m.reference");
+
+/**
+ * Represents any relation type
+ */
+exports.REFERENCE_RELATION = REFERENCE_RELATION;
+/**
+ * Determines if two event types are the same, including namespaces.
+ * @param given - The given event type. This will be compared
+ * against the expected type.
+ * @param expected - The expected event type.
+ * @returns True if the given type matches the expected type.
+ */
+function isEventTypeSame(given, expected) {
+  if (typeof given === "string") {
+    if (typeof expected === "string") {
+      return expected === given;
+    } else {
+      return expected.matches(given);
+    }
+  } else {
+    if (typeof expected === "string") {
+      return given.matches(expected);
+    } else {
+      const expectedNs = expected;
+      const givenNs = given;
+      return expectedNs.matches(givenNs.name) || (0, _utilities.isProvided)(givenNs.altName) && expectedNs.matches(givenNs.altName);
+    }
+  }
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/global.d.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/global.d.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/global.d.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/global.d.js	2023-04-11 06:11:52.000000000 +0000
@@ -3,5 +3,4 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-
 require("@matrix-org/olm");
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/local_notifications.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/local_notifications.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/local_notifications.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/local_notifications.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/location.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/location.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/location.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/location.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,11 +4,8 @@
   value: true
 });
 exports.M_TIMESTAMP = exports.M_LOCATION = exports.M_ASSET = exports.LocationAssetType = void 0;
-
 var _NamespacedValue = require("../NamespacedValue");
-
 var _extensible_events = require("./extensible_events");
-
 /*
 Copyright 2021 The Matrix.org Foundation C.I.C.
 
@@ -27,19 +24,16 @@
 // Types for MSC3488 - m.location: Extending events with location data
 let LocationAssetType;
 exports.LocationAssetType = LocationAssetType;
-
 (function (LocationAssetType) {
   LocationAssetType["Self"] = "m.self";
   LocationAssetType["Pin"] = "m.pin";
 })(LocationAssetType || (exports.LocationAssetType = LocationAssetType = {}));
-
 const M_ASSET = new _NamespacedValue.UnstableValue("m.asset", "org.matrix.msc3488.asset");
 exports.M_ASSET = M_ASSET;
 const M_TIMESTAMP = new _NamespacedValue.UnstableValue("m.ts", "org.matrix.msc3488.ts");
 /**
  * The event definition for an m.ts event (in content)
  */
-
 exports.M_TIMESTAMP = M_TIMESTAMP;
 const M_LOCATION = new _NamespacedValue.UnstableValue("m.location", "org.matrix.msc3488.location");
 exports.M_LOCATION = M_LOCATION;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/partials.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/partials.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/partials.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/partials.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,7 +4,6 @@
   value: true
 });
 exports.Visibility = exports.RestrictedAllowType = exports.Preset = exports.JoinRule = exports.HistoryVisibility = exports.GuestAccess = void 0;
-
 /*
 Copyright 2021 The Matrix.org Foundation C.I.C.
 
@@ -22,25 +21,20 @@
 */
 let Visibility;
 exports.Visibility = Visibility;
-
 (function (Visibility) {
   Visibility["Public"] = "public";
   Visibility["Private"] = "private";
 })(Visibility || (exports.Visibility = Visibility = {}));
-
 let Preset;
 exports.Preset = Preset;
-
 (function (Preset) {
   Preset["PrivateChat"] = "private_chat";
   Preset["TrustedPrivateChat"] = "trusted_private_chat";
   Preset["PublicChat"] = "public_chat";
 })(Preset || (exports.Preset = Preset = {}));
-
 // Knock and private are reserved keywords which are not yet implemented.
 let JoinRule;
 exports.JoinRule = JoinRule;
-
 (function (JoinRule) {
   JoinRule["Public"] = "public";
   JoinRule["Invite"] = "invite";
@@ -48,25 +42,19 @@
   JoinRule["Knock"] = "knock";
   JoinRule["Restricted"] = "restricted";
 })(JoinRule || (exports.JoinRule = JoinRule = {}));
-
 let RestrictedAllowType;
 exports.RestrictedAllowType = RestrictedAllowType;
-
 (function (RestrictedAllowType) {
   RestrictedAllowType["RoomMembership"] = "m.room_membership";
 })(RestrictedAllowType || (exports.RestrictedAllowType = RestrictedAllowType = {}));
-
 let GuestAccess;
 exports.GuestAccess = GuestAccess;
-
 (function (GuestAccess) {
   GuestAccess["CanJoin"] = "can_join";
   GuestAccess["Forbidden"] = "forbidden";
 })(GuestAccess || (exports.GuestAccess = GuestAccess = {}));
-
 let HistoryVisibility;
 exports.HistoryVisibility = HistoryVisibility;
-
 (function (HistoryVisibility) {
   HistoryVisibility["Invited"] = "invited";
   HistoryVisibility["Joined"] = "joined";
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/polls.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/polls.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/polls.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/polls.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,65 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.M_POLL_START = exports.M_POLL_RESPONSE = exports.M_POLL_KIND_UNDISCLOSED = exports.M_POLL_KIND_DISCLOSED = exports.M_POLL_END = void 0;
+var _matrixEventsSdk = require("matrix-events-sdk");
+/*
+Copyright 2022 - 2023 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+/**
+ * Identifier for a disclosed poll.
+ */
+const M_POLL_KIND_DISCLOSED = new _matrixEventsSdk.UnstableValue("m.poll.disclosed", "org.matrix.msc3381.poll.disclosed");
+
+/**
+ * Identifier for an undisclosed poll.
+ */
+exports.M_POLL_KIND_DISCLOSED = M_POLL_KIND_DISCLOSED;
+const M_POLL_KIND_UNDISCLOSED = new _matrixEventsSdk.UnstableValue("m.poll.undisclosed", "org.matrix.msc3381.poll.undisclosed");
+
+/**
+ * Any poll kind.
+ */
+exports.M_POLL_KIND_UNDISCLOSED = M_POLL_KIND_UNDISCLOSED;
+/**
+ * The namespaced value for m.poll.start
+ */
+const M_POLL_START = new _matrixEventsSdk.UnstableValue("m.poll.start", "org.matrix.msc3381.poll.start");
+
+/**
+ * The m.poll.start type within event content
+ */
+exports.M_POLL_START = M_POLL_START;
+/**
+ * The namespaced value for m.poll.response
+ */
+const M_POLL_RESPONSE = new _matrixEventsSdk.UnstableValue("m.poll.response", "org.matrix.msc3381.poll.response");
+
+/**
+ * The m.poll.response type within event content
+ */
+exports.M_POLL_RESPONSE = M_POLL_RESPONSE;
+/**
+ * The namespaced value for m.poll.end
+ */
+const M_POLL_END = new _matrixEventsSdk.UnstableValue("m.poll.end", "org.matrix.msc3381.poll.end");
+
+/**
+ * The event definition for an m.poll.end event (in content)
+ */
+exports.M_POLL_END = M_POLL_END;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/PushRules.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/PushRules.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/PushRules.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/PushRules.js	2023-04-11 06:11:52.000000000 +0000
@@ -5,7 +5,6 @@
 });
 exports.TweakName = exports.RuleId = exports.PushRuleKind = exports.PushRuleActionName = exports.DMMemberCountCondition = exports.ConditionOperator = exports.ConditionKind = void 0;
 exports.isDmMemberCountCondition = isDmMemberCountCondition;
-
 /*
 Copyright 2021 The Matrix.org Foundation C.I.C.
 
@@ -22,28 +21,22 @@
 limitations under the License.
 */
 // allow camelcase as these are things that go onto the wire
-
 /* eslint-disable camelcase */
 let PushRuleActionName;
 exports.PushRuleActionName = PushRuleActionName;
-
 (function (PushRuleActionName) {
   PushRuleActionName["DontNotify"] = "dont_notify";
   PushRuleActionName["Notify"] = "notify";
   PushRuleActionName["Coalesce"] = "coalesce";
 })(PushRuleActionName || (exports.PushRuleActionName = PushRuleActionName = {}));
-
 let TweakName;
 exports.TweakName = TweakName;
-
 (function (TweakName) {
   TweakName["Highlight"] = "highlight";
   TweakName["Sound"] = "sound";
 })(TweakName || (exports.TweakName = TweakName = {}));
-
 let ConditionOperator;
 exports.ConditionOperator = ConditionOperator;
-
 (function (ConditionOperator) {
   ConditionOperator["ExactEquals"] = "==";
   ConditionOperator["LessThan"] = "<";
@@ -51,27 +44,24 @@
   ConditionOperator["GreaterThanOrEqual"] = ">=";
   ConditionOperator["LessThanOrEqual"] = "<=";
 })(ConditionOperator || (exports.ConditionOperator = ConditionOperator = {}));
-
 const DMMemberCountCondition = "2";
 exports.DMMemberCountCondition = DMMemberCountCondition;
-
 function isDmMemberCountCondition(condition) {
   return condition === "==2" || condition === "2";
 }
-
 let ConditionKind;
 exports.ConditionKind = ConditionKind;
-
 (function (ConditionKind) {
   ConditionKind["EventMatch"] = "event_match";
+  ConditionKind["EventPropertyIs"] = "event_property_is";
   ConditionKind["ContainsDisplayName"] = "contains_display_name";
   ConditionKind["RoomMemberCount"] = "room_member_count";
   ConditionKind["SenderNotificationPermission"] = "sender_notification_permission";
+  ConditionKind["CallStarted"] = "call_started";
+  ConditionKind["CallStartedPrefix"] = "org.matrix.msc3914.call_started";
 })(ConditionKind || (exports.ConditionKind = ConditionKind = {}));
-
 let PushRuleKind;
 exports.PushRuleKind = PushRuleKind;
-
 (function (PushRuleKind) {
   PushRuleKind["Override"] = "override";
   PushRuleKind["ContentSpecific"] = "content";
@@ -79,10 +69,8 @@
   PushRuleKind["SenderSpecific"] = "sender";
   PushRuleKind["Underride"] = "underride";
 })(PushRuleKind || (exports.PushRuleKind = PushRuleKind = {}));
-
 let RuleId;
 exports.RuleId = RuleId;
-
 (function (RuleId) {
   RuleId["Master"] = ".m.rule.master";
   RuleId["ContainsDisplayName"] = ".m.rule.contains_display_name";
@@ -97,5 +85,13 @@
   RuleId["IncomingCall"] = ".m.rule.call";
   RuleId["SuppressNotices"] = ".m.rule.suppress_notices";
   RuleId["Tombstone"] = ".m.rule.tombstone";
+  RuleId["PollStart"] = ".m.rule.poll_start";
+  RuleId["PollStartUnstable"] = ".org.matrix.msc3930.rule.poll_start";
+  RuleId["PollEnd"] = ".m.rule.poll_end";
+  RuleId["PollEndUnstable"] = ".org.matrix.msc3930.rule.poll_end";
+  RuleId["PollStartOneToOne"] = ".m.rule.poll_start_one_to_one";
+  RuleId["PollStartOneToOneUnstable"] = ".org.matrix.msc3930.rule.poll_start_one_to_one";
+  RuleId["PollEndOneToOne"] = ".m.rule.poll_end_one_to_one";
+  RuleId["PollEndOneToOneUnstable"] = ".org.matrix.msc3930.rule.poll_end_one_to_one";
 })(RuleId || (exports.RuleId = RuleId = {}));
 /* eslint-enable camelcase */
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/read_receipts.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/read_receipts.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/read_receipts.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/read_receipts.js	2023-04-11 06:11:52.000000000 +0000
@@ -3,8 +3,7 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.ReceiptType = void 0;
-
+exports.ReceiptType = exports.MAIN_ROOM_TIMELINE = void 0;
 /*
 Copyright 2022 Šimon Brandner <simon.bra.ag@gmail.com>
 
@@ -22,9 +21,10 @@
 */
 let ReceiptType;
 exports.ReceiptType = ReceiptType;
-
 (function (ReceiptType) {
   ReceiptType["Read"] = "m.read";
   ReceiptType["FullyRead"] = "m.fully_read";
   ReceiptType["ReadPrivate"] = "m.read.private";
-})(ReceiptType || (exports.ReceiptType = ReceiptType = {}));
\ No newline at end of file
+})(ReceiptType || (exports.ReceiptType = ReceiptType = {}));
+const MAIN_ROOM_TIMELINE = "main";
+exports.MAIN_ROOM_TIMELINE = MAIN_ROOM_TIMELINE;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/search.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/search.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/search.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/search.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,7 +4,6 @@
   value: true
 });
 exports.SearchOrderBy = void 0;
-
 /*
 Copyright 2021 The Matrix.org Foundation C.I.C.
 
@@ -21,18 +20,14 @@
 limitations under the License.
 */
 // Types relating to the /search API
-
 /* eslint-disable camelcase */
 var GroupKey;
-
 (function (GroupKey) {
   GroupKey["RoomId"] = "room_id";
   GroupKey["Sender"] = "sender";
 })(GroupKey || (GroupKey = {}));
-
 let SearchOrderBy;
 exports.SearchOrderBy = SearchOrderBy;
-
 (function (SearchOrderBy) {
   SearchOrderBy["Recent"] = "recent";
   SearchOrderBy["Rank"] = "rank";
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/sync.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/sync.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/sync.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/sync.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,30 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.UNREAD_THREAD_NOTIFICATIONS = void 0;
+var _NamespacedValue = require("../NamespacedValue");
+/*
+Copyright 2022 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+/**
+ * https://github.com/matrix-org/matrix-doc/pull/3773
+ *
+ * @experimental
+ */
+const UNREAD_THREAD_NOTIFICATIONS = new _NamespacedValue.ServerControlledNamespacedValue("unread_thread_notifications", "org.matrix.msc3773.unread_thread_notifications");
+exports.UNREAD_THREAD_NOTIFICATIONS = UNREAD_THREAD_NOTIFICATIONS;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/threepids.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/threepids.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/threepids.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/threepids.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,7 +4,6 @@
   value: true
 });
 exports.ThreepidMedium = void 0;
-
 /*
 Copyright 2021 The Matrix.org Foundation C.I.C.
 
@@ -21,9 +20,7 @@
 limitations under the License.
 */
 let ThreepidMedium; // TODO: Are these types universal, or specific to just /account/3pid?
-
 exports.ThreepidMedium = ThreepidMedium;
-
 (function (ThreepidMedium) {
   ThreepidMedium["Email"] = "email";
   ThreepidMedium["Phone"] = "msisdn";
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/topic.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/topic.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/topic.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/topic.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,9 +4,7 @@
   value: true
 });
 exports.M_TOPIC = void 0;
-
 var _NamespacedValue = require("../NamespacedValue");
-
 /*
 Copyright 2022 The Matrix.org Foundation C.I.C.
 
@@ -26,10 +24,9 @@
 /**
  * Extensible topic event type based on MSC3765
  * https://github.com/matrix-org/matrix-spec-proposals/pull/3765
- */
-
-/**
- * Eg
+ *
+ * @example
+ * ```
  * {
  *      "type": "m.room.topic,
  *      "state_key": "",
@@ -44,14 +41,15 @@
  *          }],
  *      }
  * }
+ * ```
  */
 
 /**
  * The event type for an m.topic event (in content)
  */
 const M_TOPIC = new _NamespacedValue.UnstableValue("m.topic", "org.matrix.msc3765.topic");
+
 /**
  * The event content for an m.topic event (in content)
  */
-
 exports.M_TOPIC = M_TOPIC;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/uia.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/uia.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/@types/uia.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/@types/uia.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/utils.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/utils.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/utils.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/utils.js	2023-04-11 06:11:52.000000000 +0000
@@ -3,7 +3,7 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.DEFAULT_ALPHABET = void 0;
+exports.MapWithDefault = exports.DEFAULT_ALPHABET = void 0;
 exports.alphabetPad = alphabetPad;
 exports.averageBetweenStrings = averageBetweenStrings;
 exports.baseToString = baseToString;
@@ -19,109 +19,105 @@
 exports.encodeUri = encodeUri;
 exports.ensureNoTrailingSlash = ensureNoTrailingSlash;
 exports.escapeRegExp = escapeRegExp;
-exports.getCrypto = getCrypto;
 exports.globToRegexp = globToRegexp;
+exports.immediate = immediate;
 exports.internaliseString = internaliseString;
 exports.isFunction = isFunction;
 exports.isNullOrUndefined = isNullOrUndefined;
 exports.isNumber = isNumber;
 exports.isSupportedReceiptType = isSupportedReceiptType;
 exports.lexicographicCompare = lexicographicCompare;
+exports.mapsEqual = mapsEqual;
 exports.nextString = nextString;
+exports.noUnsafeEventProps = noUnsafeEventProps;
 exports.normalize = normalize;
 exports.prevString = prevString;
 exports.promiseMapSeries = promiseMapSeries;
 exports.promiseTry = promiseTry;
+exports.recursiveMapToObject = recursiveMapToObject;
 exports.recursivelyAssign = recursivelyAssign;
 exports.removeDirectionOverrideChars = removeDirectionOverrideChars;
 exports.removeElement = removeElement;
 exports.removeHiddenChars = removeHiddenChars;
-exports.setCrypto = setCrypto;
+exports.replaceParam = replaceParam;
+exports.safeSet = safeSet;
 exports.simpleRetryOperation = simpleRetryOperation;
 exports.sleep = sleep;
 exports.sortEventsByLatestContentTimestamp = sortEventsByLatestContentTimestamp;
 exports.stringToBase = stringToBase;
-
+exports.unsafeProp = unsafeProp;
 var _unhomoglyph = _interopRequireDefault(require("unhomoglyph"));
-
 var _pRetry = _interopRequireDefault(require("p-retry"));
-
 var _location = require("./@types/location");
-
 var _read_receipts = require("./@types/read_receipts");
-
 function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; }
-
-/*
-Copyright 2015, 2016 OpenMarket Ltd
-Copyright 2019 The Matrix.org Foundation C.I.C.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-/**
- * This is an internal module.
- * @module utils
- */
+function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
+function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 const interns = new Map();
+
 /**
  * Internalises a string, reusing a known pointer or storing the pointer
  * if needed for future strings.
- * @param str The string to internalise.
+ * @param str - The string to internalise.
  * @returns The internalised string.
  */
-
 function internaliseString(str) {
   // Unwrap strings before entering the map, if we somehow got a wrapped
   // string as our input. This should only happen from tests.
   if (str instanceof String) {
     str = str.toString();
-  } // Check the map to see if we can store the value
-
+  }
 
+  // Check the map to see if we can store the value
   if (!interns.has(str)) {
     interns.set(str, str);
-  } // Return any cached string reference
-
+  }
 
+  // Return any cached string reference
   return interns.get(str);
 }
+
 /**
  * Encode a dictionary of query parameters.
  * Omits any undefined/null values.
- * @param {Object} params A dict of key/values to encode e.g.
- * {"foo": "bar", "baz": "taz"}
- * @return {string} The encoded string e.g. foo=bar&baz=taz
+ * @param params - A dict of key/values to encode e.g.
+ * `{"foo": "bar", "baz": "taz"}`
+ * @returns The encoded string e.g. foo=bar&baz=taz
  */
-
-
-function encodeParams(params) {
-  const searchParams = new URLSearchParams();
-
+function encodeParams(params, urlSearchParams) {
+  const searchParams = urlSearchParams ?? new URLSearchParams();
   for (const [key, val] of Object.entries(params)) {
     if (val !== undefined && val !== null) {
-      searchParams.set(key, String(val));
+      if (Array.isArray(val)) {
+        val.forEach(v => {
+          searchParams.append(key, String(v));
+        });
+      } else {
+        searchParams.append(key, String(val));
+      }
     }
   }
-
-  return searchParams.toString();
+  return searchParams;
+}
+/**
+ * Replace a stable parameter with the unstable naming for params
+ */
+function replaceParam(stable, unstable, dict) {
+  const result = _objectSpread(_objectSpread({}, dict), {}, {
+    [unstable]: dict[stable]
+  });
+  delete result[stable];
+  return result;
 }
 
 /**
  * Decode a query string in `application/x-www-form-urlencoded` format.
- * @param {string} query A query string to decode e.g.
+ * @param query - A query string to decode e.g.
  * foo=bar&via=server1&server2
- * @return {Object} The decoded object, if any keys occurred multiple times
+ * @returns The decoded object, if any keys occurred multiple times
  * then the value will be an array of strings, else it will be an array.
  * This behaviour matches Node's qs.parse but is built on URLSearchParams
  * for native web compatibility
@@ -129,50 +125,47 @@
 function decodeParams(query) {
   const o = {};
   const params = new URLSearchParams(query);
-
   for (const key of params.keys()) {
     const val = params.getAll(key);
     o[key] = val.length === 1 ? val[0] : val;
   }
-
   return o;
 }
+
 /**
  * Encodes a URI according to a set of template variables. Variables will be
  * passed through encodeURIComponent.
- * @param {string} pathTemplate The path with template variables e.g. '/foo/$bar'.
- * @param {Object} variables The key/value pairs to replace the template
- * variables with. E.g. { "$bar": "baz" }.
- * @return {string} The result of replacing all template variables e.g. '/foo/baz'.
+ * @param pathTemplate - The path with template variables e.g. '/foo/$bar'.
+ * @param variables - The key/value pairs to replace the template
+ * variables with. E.g. `{ "$bar": "baz" }`.
+ * @returns The result of replacing all template variables e.g. '/foo/baz'.
  */
-
-
 function encodeUri(pathTemplate, variables) {
   for (const key in variables) {
     if (!variables.hasOwnProperty(key)) {
       continue;
     }
-
-    pathTemplate = pathTemplate.replace(key, encodeURIComponent(variables[key]));
+    const value = variables[key];
+    if (value === undefined || value === null) {
+      continue;
+    }
+    pathTemplate = pathTemplate.replace(key, encodeURIComponent(value));
   }
-
   return pathTemplate;
 }
+
 /**
  * The removeElement() method removes the first element in the array that
  * satisfies (returns true) the provided testing function.
- * @param {Array} array The array.
- * @param {Function} fn Function to execute on each value in the array, with the
- * function signature <code>fn(element, index, array)</code>. Return true to
+ * @param array - The array.
+ * @param fn - Function to execute on each value in the array, with the
+ * function signature `fn(element, index, array)`. Return true to
  * remove this element and break.
- * @param {boolean} reverse True to search in reverse order.
- * @return {boolean} True if an element was removed.
+ * @param reverse - True to search in reverse order.
+ * @returns True if an element was removed.
  */
-
-
 function removeElement(array, fn, reverse) {
   let i;
-
   if (reverse) {
     for (i = array.length - 1; i >= 0; i--) {
       if (fn(array[i], i, array)) {
@@ -188,101 +181,95 @@
       }
     }
   }
-
   return false;
 }
+
 /**
  * Checks if the given thing is a function.
- * @param {*} value The thing to check.
- * @return {boolean} True if it is a function.
+ * @param value - The thing to check.
+ * @returns True if it is a function.
  */
-
-
 function isFunction(value) {
   return Object.prototype.toString.call(value) === "[object Function]";
 }
+
 /**
  * Checks that the given object has the specified keys.
- * @param {Object} obj The object to check.
- * @param {string[]} keys The list of keys that 'obj' must have.
+ * @param obj - The object to check.
+ * @param keys - The list of keys that 'obj' must have.
  * @throws If the object is missing keys.
  */
 // note using 'keys' here would shadow the 'keys' function defined above
-
-
 function checkObjectHasKeys(obj, keys) {
-  for (let i = 0; i < keys.length; i++) {
-    if (!obj.hasOwnProperty(keys[i])) {
-      throw new Error("Missing required key: " + keys[i]);
+  for (const key of keys) {
+    if (!obj.hasOwnProperty(key)) {
+      throw new Error("Missing required key: " + key);
     }
   }
 }
+
 /**
  * Deep copy the given object. The object MUST NOT have circular references and
  * MUST NOT have functions.
- * @param {Object} obj The object to deep copy.
- * @return {Object} A copy of the object without any references to the original.
+ * @param obj - The object to deep copy.
+ * @returns A copy of the object without any references to the original.
  */
-
-
 function deepCopy(obj) {
   return JSON.parse(JSON.stringify(obj));
 }
+
 /**
  * Compare two objects for equality. The objects MUST NOT have circular references.
  *
- * @param {Object} x The first object to compare.
- * @param {Object} y The second object to compare.
+ * @param x - The first object to compare.
+ * @param y - The second object to compare.
  *
- * @return {boolean} true if the two objects are equal
+ * @returns true if the two objects are equal
  */
-
-
 function deepCompare(x, y) {
   // Inspired by
   // http://stackoverflow.com/questions/1068834/object-comparison-in-javascript#1144249
+
   // Compare primitives and functions.
   // Also check if both arguments link to the same object.
   if (x === y) {
     return true;
   }
-
   if (typeof x !== typeof y) {
     return false;
-  } // special-case NaN (since NaN !== NaN)
-
+  }
 
-  if (typeof x === 'number' && isNaN(x) && isNaN(y)) {
+  // special-case NaN (since NaN !== NaN)
+  if (typeof x === "number" && isNaN(x) && isNaN(y)) {
     return true;
-  } // special-case null (since typeof null == 'object', but null.constructor
-  // throws)
-
+  }
 
+  // special-case null (since typeof null == 'object', but null.constructor
+  // throws)
   if (x === null || y === null) {
     return x === y;
-  } // everything else is either an unequal primitive, or an object
-
+  }
 
+  // everything else is either an unequal primitive, or an object
   if (!(x instanceof Object)) {
     return false;
-  } // check they are the same type of object
-
+  }
 
+  // check they are the same type of object
   if (x.constructor !== y.constructor || x.prototype !== y.prototype) {
     return false;
-  } // special-casing for some special types of object
-
+  }
 
+  // special-casing for some special types of object
   if (x instanceof RegExp || x instanceof Date) {
     return x.toString() === y.toString();
-  } // the object algorithm works for Array, but it's sub-optimal.
-
+  }
 
-  if (x instanceof Array) {
+  // the object algorithm works for Array, but it's sub-optimal.
+  if (Array.isArray(x)) {
     if (x.length !== y.length) {
       return false;
     }
-
     for (let i = 0; i < x.length; i++) {
       if (!deepCompare(x[i], y[i])) {
         return false;
@@ -294,91 +281,86 @@
       if (y.hasOwnProperty(p) !== x.hasOwnProperty(p)) {
         return false;
       }
-    } // finally, compare each of x's keys with y
-
+    }
 
+    // finally, compare each of x's keys with y
     for (const p in x) {
       if (y.hasOwnProperty(p) !== x.hasOwnProperty(p) || !deepCompare(x[p], y[p])) {
         return false;
       }
     }
   }
-
   return true;
-} // Dev note: This returns an array of tuples, but jsdoc doesn't like that. https://github.com/jsdoc/jsdoc/issues/1703
+}
 
+// Dev note: This returns an array of tuples, but jsdoc doesn't like that. https://github.com/jsdoc/jsdoc/issues/1703
 /**
  * Creates an array of object properties/values (entries) then
  * sorts the result by key, recursively. The input object must
  * ensure it does not have loops. If the input is not an object
  * then it will be returned as-is.
- * @param {*} obj The object to get entries of
- * @returns {Array} The entries, sorted by key.
+ * @param obj - The object to get entries of
+ * @returns The entries, sorted by key.
  */
-
-
 function deepSortedObjectEntries(obj) {
-  if (typeof obj !== "object") return obj; // Apparently these are object types...
+  if (typeof obj !== "object") return obj;
 
+  // Apparently these are object types...
   if (obj === null || obj === undefined || Array.isArray(obj)) return obj;
   const pairs = [];
-
   for (const [k, v] of Object.entries(obj)) {
     pairs.push([k, deepSortedObjectEntries(v)]);
-  } // lexicographicCompare is faster than localeCompare, so let's use that.
-
+  }
 
+  // lexicographicCompare is faster than localeCompare, so let's use that.
   pairs.sort((a, b) => lexicographicCompare(a[0], b[0]));
   return pairs;
 }
+
 /**
  * Returns whether the given value is a finite number without type-coercion
  *
- * @param {*} value the value to test
- * @return {boolean} whether or not value is a finite number without type-coercion
+ * @param value - the value to test
+ * @returns whether or not value is a finite number without type-coercion
  */
-
-
 function isNumber(value) {
-  return typeof value === 'number' && isFinite(value);
+  return typeof value === "number" && isFinite(value);
 }
+
 /**
  * Removes zero width chars, diacritics and whitespace from the string
  * Also applies an unhomoglyph on the string, to prevent similar looking chars
- * @param {string} str the string to remove hidden characters from
- * @return {string} a string with the hidden characters removed
+ * @param str - the string to remove hidden characters from
+ * @returns a string with the hidden characters removed
  */
-
-
 function removeHiddenChars(str) {
   if (typeof str === "string") {
-    return (0, _unhomoglyph.default)(str.normalize('NFD').replace(removeHiddenCharsRegex, ''));
+    return (0, _unhomoglyph.default)(str.normalize("NFD").replace(removeHiddenCharsRegex, ""));
   }
-
   return "";
 }
+
 /**
  * Removes the direction override characters from a string
- * @param {string} input
  * @returns string with chars removed
  */
-
-
 function removeDirectionOverrideChars(str) {
   if (typeof str === "string") {
-    return str.replace(/[\u202d-\u202e]/g, '');
+    return str.replace(/[\u202d-\u202e]/g, "");
   }
-
   return "";
 }
-
 function normalize(str) {
   // Note: we have to match the filter with the removeHiddenChars() because the
   // function strips spaces and other characters (M becomes RN for example, in lowercase).
-  return removeHiddenChars(str.toLowerCase()) // Strip all punctuation
-  .replace(/[\\'!"#$%&()*+,\-./:;<=>?@[\]^_`{|}~\u2000-\u206f\u2e00-\u2e7f]/g, "") // We also doubly convert to lowercase to work around oddities of the library.
+  return removeHiddenChars(str.toLowerCase())
+  // Strip all punctuation
+  .replace(/[\\'!"#$%&()*+,\-./:;<=>?@[\]^_`{|}~\u2000-\u206f\u2e00-\u2e7f]/g, "")
+  // We also doubly convert to lowercase to work around oddities of the library.
   .toLowerCase();
-} // Regex matching bunch of unicode control characters and otherwise misleading/invisible characters.
+}
+
+// Regex matching bunch of unicode control characters and otherwise misleading/invisible characters.
 // Includes:
 // various width spaces U+2000 - U+200D
 // LTR and RTL marks U+200E and U+200F
@@ -386,44 +368,51 @@
 // Arabic Letter RTL mark U+061C
 // Combining characters U+0300 - U+036F
 // Zero width no-break space (BOM) U+FEFF
+// Blank/invisible characters (U2800, U2062-U2063)
 // eslint-disable-next-line no-misleading-character-class
-
-
-const removeHiddenCharsRegex = /[\u2000-\u200F\u202A-\u202F\u0300-\u036F\uFEFF\u061C\s]/g;
-
+const removeHiddenCharsRegex = /[\u2000-\u200F\u202A-\u202F\u0300-\u036F\uFEFF\u061C\u2800\u2062-\u2063\s]/g;
 function escapeRegExp(string) {
   return string.replace(/[.*+?^${}()|[\]\\]/g, "\\$&");
 }
-
 function globToRegexp(glob, extended = false) {
   // From
   // https://github.com/matrix-org/synapse/blob/abbee6b29be80a77e05730707602f3bbfc3f38cb/synapse/push/__init__.py#L132
   // Because micromatch is about 130KB with dependencies,
   // and minimatch is not much better.
-  const replacements = [[/\\\*/g, '.*'], [/\?/g, '.'], !extended && [/\\\[(!|)(.*)\\]/g, (_match, neg, pat) => ['[', neg ? '^' : '', pat.replace(/\\-/, '-'), ']'].join('')]];
-  return replacements.reduce( // https://github.com/microsoft/TypeScript/issues/30134
+  const replacements = [[/\\\*/g, ".*"], [/\?/g, "."]];
+  if (!extended) {
+    replacements.push([/\\\[(!|)(.*)\\]/g, (_match, neg, pat) => ["[", neg ? "^" : "", pat.replace(/\\-/, "-"), "]"].join("")]);
+  }
+  return replacements.reduce(
+  // https://github.com/microsoft/TypeScript/issues/30134
   (pat, args) => args ? pat.replace(args[0], args[1]) : pat, escapeRegExp(glob));
 }
-
 function ensureNoTrailingSlash(url) {
-  if (url && url.endsWith("/")) {
+  if (url?.endsWith("/")) {
     return url.slice(0, -1);
   } else {
     return url;
   }
-} // Returns a promise which resolves with a given value after the given number of ms
-
+}
 
+/**
+ * Returns a promise which resolves with a given value after the given number of ms
+ */
 function sleep(ms, value) {
   return new Promise(resolve => {
     setTimeout(resolve, ms, value);
   });
 }
 
+/**
+ * Promise/async version of {@link setImmediate}.
+ */
+function immediate() {
+  return new Promise(setImmediate);
+}
 function isNullOrUndefined(val) {
   return val === null || val === undefined;
 }
-
 // Returns a Deferred
 function defer() {
   let resolve;
@@ -438,39 +427,34 @@
     promise
   };
 }
-
-async function promiseMapSeries(promises, fn // if async/promise we don't care about the type as we only await resolution
+async function promiseMapSeries(promises, fn // if async we don't care about the type as we only await resolution
 ) {
   for (const o of promises) {
     await fn(await o);
   }
 }
-
 function promiseTry(fn) {
   return Promise.resolve(fn());
-} // Creates and awaits all promises, running no more than `chunkSize` at the same time
-
+}
 
+// Creates and awaits all promises, running no more than `chunkSize` at the same time
 async function chunkPromises(fns, chunkSize) {
   const results = [];
-
   for (let i = 0; i < fns.length; i += chunkSize) {
     results.push(...(await Promise.all(fns.slice(i, i + chunkSize).map(fn => fn()))));
   }
-
   return results;
 }
+
 /**
  * Retries the function until it succeeds or is interrupted. The given function must return
  * a promise which throws/rejects on error, otherwise the retry will assume the request
  * succeeded. The promise chain returned will contain the successful promise. The given function
  * should always return a new promise.
- * @param {Function} promiseFn The function to call to get a fresh promise instance. Takes an
+ * @param promiseFn - The function to call to get a fresh promise instance. Takes an
  * attempt count as an argument, for logging/debugging purposes.
- * @returns {Promise<T>} The promise for the retried operation.
+ * @returns The promise for the retried operation.
  */
-
-
 function simpleRetryOperation(promiseFn) {
   return (0, _pRetry.default)(attempt => {
     return promiseFn(attempt);
@@ -480,23 +464,10 @@
     minTimeout: 3000,
     // ms
     maxTimeout: 15000 // ms
-
   });
-} // We need to be able to access the Node.js crypto library from within the
-// Matrix SDK without needing to `require("crypto")`, which will fail in
-// browsers.  So `index.ts` will call `setCrypto` to store it, and when we need
-// it, we can call `getCrypto`.
-
-
-let crypto;
-
-function setCrypto(c) {
-  crypto = c;
 }
 
-function getCrypto() {
-  return crypto;
-} // String averaging inspired by https://stackoverflow.com/a/2510816
+// String averaging inspired by https://stackoverflow.com/a/2510816
 // Dev note: We make the alphabet a string because it's easier to write syntactically
 // than arrays. Thankfully, strings implement the useful parts of the Array interface
 // anyhow.
@@ -505,81 +476,73 @@
  * The default alphabet used by string averaging in this SDK. This matches
  * all usefully printable ASCII characters (0x20-0x7E, inclusive).
  */
-
-
 const DEFAULT_ALPHABET = (() => {
   let str = "";
-
-  for (let c = 0x20; c <= 0x7E; c++) {
+  for (let c = 0x20; c <= 0x7e; c++) {
     str += String.fromCharCode(c);
   }
-
   return str;
 })();
+
 /**
  * Pads a string using the given alphabet as a base. The returned string will be
  * padded at the end with the first character in the alphabet.
  *
  * This is intended for use with string averaging.
- * @param {string} s The string to pad.
- * @param {number} n The length to pad to.
- * @param {string} alphabet The alphabet to use as a single string.
- * @returns {string} The padded string.
+ * @param s - The string to pad.
+ * @param n - The length to pad to.
+ * @param alphabet - The alphabet to use as a single string.
+ * @returns The padded string.
  */
-
-
 exports.DEFAULT_ALPHABET = DEFAULT_ALPHABET;
-
 function alphabetPad(s, n, alphabet = DEFAULT_ALPHABET) {
   return s.padEnd(n, alphabet[0]);
 }
+
 /**
  * Converts a baseN number to a string, where N is the alphabet's length.
  *
  * This is intended for use with string averaging.
- * @param {bigint} n The baseN number.
- * @param {string} alphabet The alphabet to use as a single string.
- * @returns {string} The baseN number encoded as a string from the alphabet.
+ * @param n - The baseN number.
+ * @param alphabet - The alphabet to use as a single string.
+ * @returns The baseN number encoded as a string from the alphabet.
  */
-
-
 function baseToString(n, alphabet = DEFAULT_ALPHABET) {
   // Developer note: the stringToBase() function offsets the character set by 1 so that repeated
   // characters (ie: "aaaaaa" in a..z) don't come out as zero. We have to reverse this here as
   // otherwise we'll be wrong in our conversion. Undoing a +1 before an exponent isn't very fun
   // though, so we rely on a lengthy amount of `x - 1` and integer division rules to reach a
   // sane state. This also means we have to do rollover detection: see below.
-  const len = BigInt(alphabet.length);
 
+  const len = BigInt(alphabet.length);
   if (n <= len) {
     return alphabet[Number(n) - 1] ?? "";
   }
-
   let d = n / len;
-  let r = Number(n % len) - 1; // Rollover detection: if the remainder is negative, it means that the string needs
+  let r = Number(n % len) - 1;
+
+  // Rollover detection: if the remainder is negative, it means that the string needs
   // to roll over by 1 character downwards (ie: in a..z, the previous to "aaa" would be
   // "zz").
-
   if (r < 0) {
     d -= BigInt(Math.abs(r)); // abs() is just to be clear what we're doing. Could also `+= r`.
-
     r = Number(len) - 1;
   }
-
   return baseToString(d, alphabet) + alphabet[r];
 }
+
 /**
  * Converts a string to a baseN number, where N is the alphabet's length.
  *
  * This is intended for use with string averaging.
- * @param {string} s The string to convert to a number.
- * @param {string} alphabet The alphabet to use as a single string.
- * @returns {bigint} The baseN number.
+ * @param s - The string to convert to a number.
+ * @param alphabet - The alphabet to use as a single string.
+ * @returns The baseN number.
  */
-
-
 function stringToBase(s, alphabet = DEFAULT_ALPHABET) {
-  const len = BigInt(alphabet.length); // In our conversion to baseN we do a couple performance optimizations to avoid using
+  const len = BigInt(alphabet.length);
+
+  // In our conversion to baseN we do a couple performance optimizations to avoid using
   // excess CPU and such. To create baseN numbers, the input string needs to be reversed
   // so the exponents stack up appropriately, as the last character in the unreversed
   // string has less impact than the first character (in "abc" the A is a lot more important
@@ -587,79 +550,75 @@
   // alphabet lookup, avoiding an index scan of `alphabet.indexOf(reversedStr[i])` - we know
   // that the alphabet and (theoretically) the input string are constrained on character sets
   // and thus can do simple subtraction to end up with the same result.
+
   // Developer caution: we carefully cast to BigInt here to avoid losing precision. We cannot
   // rely on Math.pow() (for example) to be capable of handling our insane numbers.
 
   let result = BigInt(0);
-
   for (let i = s.length - 1, j = BigInt(0); i >= 0; i--, j++) {
-    const charIndex = s.charCodeAt(i) - alphabet.charCodeAt(0); // We add 1 to the char index to offset the whole numbering scheme. We unpack this in
-    // the baseToString() function.
+    const charIndex = s.charCodeAt(i) - alphabet.charCodeAt(0);
 
+    // We add 1 to the char index to offset the whole numbering scheme. We unpack this in
+    // the baseToString() function.
     result += BigInt(1 + charIndex) * len ** j;
   }
-
   return result;
 }
+
 /**
  * Averages two strings, returning the midpoint between them. This is accomplished by
  * converting both to baseN numbers (where N is the alphabet's length) then averaging
  * those before re-encoding as a string.
- * @param {string} a The first string.
- * @param {string} b The second string.
- * @param {string} alphabet The alphabet to use as a single string.
- * @returns {string} The midpoint between the strings, as a string.
+ * @param a - The first string.
+ * @param b - The second string.
+ * @param alphabet - The alphabet to use as a single string.
+ * @returns The midpoint between the strings, as a string.
  */
-
-
 function averageBetweenStrings(a, b, alphabet = DEFAULT_ALPHABET) {
   const padN = Math.max(a.length, b.length);
   const baseA = stringToBase(alphabetPad(a, padN, alphabet), alphabet);
   const baseB = stringToBase(alphabetPad(b, padN, alphabet), alphabet);
-  const avg = (baseA + baseB) / BigInt(2); // Detect integer division conflicts. This happens when two numbers are divided too close so
-  // we lose a .5 precision. We need to add a padding character in these cases.
+  const avg = (baseA + baseB) / BigInt(2);
 
+  // Detect integer division conflicts. This happens when two numbers are divided too close so
+  // we lose a .5 precision. We need to add a padding character in these cases.
   if (avg === baseA || avg == baseB) {
     return baseToString(avg, alphabet) + alphabet[0];
   }
-
   return baseToString(avg, alphabet);
 }
+
 /**
  * Finds the next string using the alphabet provided. This is done by converting the
  * string to a baseN number, where N is the alphabet's length, then adding 1 before
  * converting back to a string.
- * @param {string} s The string to start at.
- * @param {string} alphabet The alphabet to use as a single string.
- * @returns {string} The string which follows the input string.
+ * @param s - The string to start at.
+ * @param alphabet - The alphabet to use as a single string.
+ * @returns The string which follows the input string.
  */
-
-
 function nextString(s, alphabet = DEFAULT_ALPHABET) {
   return baseToString(stringToBase(s, alphabet) + BigInt(1), alphabet);
 }
+
 /**
  * Finds the previous string using the alphabet provided. This is done by converting the
  * string to a baseN number, where N is the alphabet's length, then subtracting 1 before
  * converting back to a string.
- * @param {string} s The string to start at.
- * @param {string} alphabet The alphabet to use as a single string.
- * @returns {string} The string which precedes the input string.
+ * @param s - The string to start at.
+ * @param alphabet - The alphabet to use as a single string.
+ * @returns The string which precedes the input string.
  */
-
-
 function prevString(s, alphabet = DEFAULT_ALPHABET) {
   return baseToString(stringToBase(s, alphabet) - BigInt(1), alphabet);
 }
+
 /**
  * Compares strings lexicographically as a sort-safe function.
- * @param {string} a The first (reference) string.
- * @param {string} b The second (compare) string.
- * @returns {number} Negative if the reference string is before the compare string;
+ * @param a - The first (reference) string.
+ * @param b - The second (compare) string.
+ * @returns Negative if the reference string is before the compare string;
  * positive if the reference string is after; and zero if equal.
  */
-
-
 function lexicographicCompare(a, b) {
   // Dev note: this exists because I'm sad that you can use math operators on strings, so I've
   // hidden the operation in this function.
@@ -671,56 +630,112 @@
     return 0;
   }
 }
-
 const collator = new Intl.Collator();
 /**
  * Performant language-sensitive string comparison
- * @param a the first string to compare
- * @param b the second string to compare
+ * @param a - the first string to compare
+ * @param b - the second string to compare
  */
-
 function compare(a, b) {
   return collator.compare(a, b);
 }
+
 /**
  * This function is similar to Object.assign() but it assigns recursively and
  * allows you to ignore nullish values from the source
  *
- * @param {Object} target
- * @param {Object} source
  * @returns the target object
  */
-
-
 function recursivelyAssign(target, source, ignoreNullish = false) {
   for (const [sourceKey, sourceValue] of Object.entries(source)) {
     if (target[sourceKey] instanceof Object && sourceValue) {
       recursivelyAssign(target[sourceKey], sourceValue);
       continue;
     }
-
     if (sourceValue !== null && sourceValue !== undefined || !ignoreNullish) {
       target[sourceKey] = sourceValue;
       continue;
     }
   }
-
   return target;
 }
-
 function getContentTimestampWithFallback(event) {
   return _location.M_TIMESTAMP.findIn(event.getContent()) ?? -1;
 }
+
 /**
  * Sort events by their content m.ts property
  * Latest timestamp first
  */
-
-
 function sortEventsByLatestContentTimestamp(left, right) {
   return getContentTimestampWithFallback(right) - getContentTimestampWithFallback(left);
 }
-
 function isSupportedReceiptType(receiptType) {
   return [_read_receipts.ReceiptType.Read, _read_receipts.ReceiptType.ReadPrivate].includes(receiptType);
-}
\ No newline at end of file
+}
+
+/**
+ * Determines whether two maps are equal.
+ * @param eq - The equivalence relation to compare values by. Defaults to strict equality.
+ */
+function mapsEqual(x, y, eq = (v1, v2) => v1 === v2) {
+  if (x.size !== y.size) return false;
+  for (const [k, v1] of x) {
+    const v2 = y.get(k);
+    if (v2 === undefined || !eq(v1, v2)) return false;
+  }
+  return true;
+}
+function processMapToObjectValue(value) {
+  if (value instanceof Map) {
+    // Value is a Map. Recursively map it to an object.
+    return recursiveMapToObject(value);
+  } else if (Array.isArray(value)) {
+    // Value is an Array. Recursively map the value (e.g. to cover Array of Arrays).
+    return value.map(v => processMapToObjectValue(v));
+  } else {
+    return value;
+  }
+}
+
+/**
+ * Recursively converts Maps to plain objects.
+ * Also supports sub-lists of Maps.
+ */
+function recursiveMapToObject(map) {
+  const targetMap = new Map();
+  for (const [key, value] of map) {
+    targetMap.set(key, processMapToObjectValue(value));
+  }
+  return Object.fromEntries(targetMap.entries());
+}
+function unsafeProp(prop) {
+  return prop === "__proto__" || prop === "prototype" || prop === "constructor";
+}
+function safeSet(obj, prop, value) {
+  if (unsafeProp(prop)) {
+    throw new Error("Trying to modify prototype or constructor");
+  }
+  obj[prop] = value;
+}
+function noUnsafeEventProps(event) {
+  return !(unsafeProp(event.room_id) || unsafeProp(event.sender) || unsafeProp(event.user_id) || unsafeProp(event.event_id));
+}
+class MapWithDefault extends Map {
+  constructor(createDefault) {
+    super();
+    this.createDefault = createDefault;
+  }
+
+  /**
+   * Returns the value if the key already exists.
+   * If not, it creates a new value under that key using the ctor callback and returns it.
+   */
+  getOrCreate(key) {
+    if (!this.has(key)) {
+      this.set(key, this.createDefault());
+    }
+    return this.get(key);
+  }
+}
+exports.MapWithDefault = MapWithDefault;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/audioContext.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/audioContext.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/audioContext.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/audioContext.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,52 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.releaseContext = exports.acquireContext = void 0;
+/*
+Copyright 2022 The Matrix.org Foundation C.I.C.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+let audioContext = null;
+let refCount = 0;
+
+/**
+ * Acquires a reference to the shared AudioContext.
+ * It's highly recommended to reuse this AudioContext rather than creating your
+ * own, because multiple AudioContexts can be problematic in some browsers.
+ * Make sure to call releaseContext when you're done using it.
+ * @returns The shared AudioContext
+ */
+const acquireContext = () => {
+  if (audioContext === null) audioContext = new AudioContext();
+  refCount++;
+  return audioContext;
+};
+
+/**
+ * Signals that one of the references to the shared AudioContext has been
+ * released, allowing the context and associated hardware resources to be
+ * cleaned up if nothing else is using it.
+ */
+exports.acquireContext = acquireContext;
+const releaseContext = () => {
+  refCount--;
+  if (refCount === 0) {
+    audioContext?.close();
+    audioContext = null;
+  }
+};
+exports.releaseContext = releaseContext;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/callEventHandler.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/callEventHandler.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/callEventHandler.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/callEventHandler.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,107 +4,90 @@
   value: true
 });
 exports.CallEventHandlerEvent = exports.CallEventHandler = void 0;
-
-var _event = require("../models/event");
-
 var _logger = require("../logger");
-
 var _call = require("./call");
-
-var _event2 = require("../@types/event");
-
+var _event = require("../@types/event");
 var _client = require("../client");
-
-var _sync = require("../sync");
-
+var _groupCall = require("./groupCall");
 var _room = require("../models/room");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 // Don't ring unless we'd be ringing for at least 3 seconds: the user needs some
 // time to press the 'accept' button
 const RING_GRACE_PERIOD = 3000;
 let CallEventHandlerEvent;
 exports.CallEventHandlerEvent = CallEventHandlerEvent;
-
 (function (CallEventHandlerEvent) {
   CallEventHandlerEvent["Incoming"] = "Call.incoming";
 })(CallEventHandlerEvent || (exports.CallEventHandlerEvent = CallEventHandlerEvent = {}));
-
 class CallEventHandler {
-  constructor(client) {
-    _defineProperty(this, "client", void 0);
+  // XXX: Most of these are only public because of the tests
 
+  constructor(client) {
     _defineProperty(this, "calls", void 0);
-
     _defineProperty(this, "callEventBuffer", void 0);
-
+    _defineProperty(this, "nextSeqByCall", new Map());
+    _defineProperty(this, "toDeviceEventBuffers", new Map());
+    _defineProperty(this, "client", void 0);
     _defineProperty(this, "candidateEventsByCall", void 0);
-
-    _defineProperty(this, "evaluateEventBuffer", async () => {
-      if (this.client.getSyncState() === _sync.SyncState.Syncing) {
-        await Promise.all(this.callEventBuffer.map(event => {
-          this.client.decryptEventIfNeeded(event);
-        }));
-        const ignoreCallIds = new Set(); // inspect the buffer and mark all calls which have been answered
-        // or hung up before passing them to the call event handler.
-
-        for (const ev of this.callEventBuffer) {
-          if (ev.getType() === _event2.EventType.CallAnswer || ev.getType() === _event2.EventType.CallHangup) {
-            ignoreCallIds.add(ev.getContent().call_id);
-          }
-        } // now loop through the buffer chronologically and inject them
-
-
-        for (const e of this.callEventBuffer) {
-          if (e.getType() === _event2.EventType.CallInvite && ignoreCallIds.has(e.getContent().call_id)) {
-            // This call has previously been answered or hung up: ignore it
-            continue;
-          }
-
-          try {
-            await this.handleCallEvent(e);
-          } catch (e) {
-            _logger.logger.error("Caught exception handling call event", e);
-          }
-        }
-
-        this.callEventBuffer = [];
+    _defineProperty(this, "eventBufferPromiseChain", void 0);
+    _defineProperty(this, "onSync", () => {
+      // Process the current event buffer and start queuing into a new one.
+      const currentEventBuffer = this.callEventBuffer;
+      this.callEventBuffer = [];
+
+      // Ensure correct ordering by only processing this queue after the previous one has finished processing
+      if (this.eventBufferPromiseChain) {
+        this.eventBufferPromiseChain = this.eventBufferPromiseChain.then(() => this.evaluateEventBuffer(currentEventBuffer));
+      } else {
+        this.eventBufferPromiseChain = this.evaluateEventBuffer(currentEventBuffer);
       }
     });
-
     _defineProperty(this, "onRoomTimeline", event => {
-      this.client.decryptEventIfNeeded(event); // any call events or ones that might be once they're decrypted
-
-      if (this.eventIsACall(event) || event.isBeingDecrypted()) {
-        // queue up for processing once all events from this sync have been
-        // processed (see above).
+      this.callEventBuffer.push(event);
+    });
+    _defineProperty(this, "onToDeviceEvent", event => {
+      const content = event.getContent();
+      if (!content.call_id) {
         this.callEventBuffer.push(event);
+        return;
       }
-
-      if (event.isBeingDecrypted() || event.isDecryptionFailure()) {
-        // add an event listener for once the event is decrypted.
-        event.once(_event.MatrixEventEvent.Decrypted, async () => {
-          if (!this.eventIsACall(event)) return;
-
-          if (this.callEventBuffer.includes(event)) {
-            // we were waiting for that event to decrypt, so recheck the buffer
-            this.evaluateEventBuffer();
-          } else {
-            // This one wasn't buffered so just run the event handler for it
-            // straight away
-            try {
-              await this.handleCallEvent(event);
-            } catch (e) {
-              _logger.logger.error("Caught exception handling call event", e);
-            }
-          }
-        });
+      if (!this.nextSeqByCall.has(content.call_id)) {
+        this.nextSeqByCall.set(content.call_id, 0);
+      }
+      if (content.seq === undefined) {
+        this.callEventBuffer.push(event);
+        return;
+      }
+      const nextSeq = this.nextSeqByCall.get(content.call_id) || 0;
+      if (content.seq !== nextSeq) {
+        if (!this.toDeviceEventBuffers.has(content.call_id)) {
+          this.toDeviceEventBuffers.set(content.call_id, []);
+        }
+        const buffer = this.toDeviceEventBuffers.get(content.call_id);
+        const index = buffer.findIndex(e => e.getContent().seq > content.seq);
+        if (index === -1) {
+          buffer.push(event);
+        } else {
+          buffer.splice(index, 0, event);
+        }
+      } else {
+        const callId = content.call_id;
+        this.callEventBuffer.push(event);
+        this.nextSeqByCall.set(callId, content.seq + 1);
+        const buffer = this.toDeviceEventBuffers.get(callId);
+        let nextEvent = buffer && buffer.shift();
+        while (nextEvent && nextEvent.getContent().seq === this.nextSeqByCall.get(callId)) {
+          this.callEventBuffer.push(nextEvent);
+          this.nextSeqByCall.set(callId, nextEvent.getContent().seq + 1);
+          nextEvent = buffer.shift();
+        }
       }
     });
-
     this.client = client;
-    this.calls = new Map(); // The sync code always emits one event at a time, so it will patiently
+    this.calls = new Map();
+    // The sync code always emits one event at a time, so it will patiently
     // wait for us to finish processing a call invite before delivering the
     // next event, even if that next event is a hangup. We therefore accumulate
     // all our call events and then process them on the 'sync' event, ie.
@@ -112,132 +95,174 @@
     // call events if we get both the invite and answer/hangup in the same sync.
     // This happens quite often, eg. replaying sync from storage, catchup sync
     // after loading and after we've been offline for a bit.
-
     this.callEventBuffer = [];
     this.candidateEventsByCall = new Map();
   }
-
   start() {
-    this.client.on(_client.ClientEvent.Sync, this.evaluateEventBuffer);
+    this.client.on(_client.ClientEvent.Sync, this.onSync);
     this.client.on(_room.RoomEvent.Timeline, this.onRoomTimeline);
+    this.client.on(_client.ClientEvent.ToDeviceEvent, this.onToDeviceEvent);
   }
-
   stop() {
-    this.client.removeListener(_client.ClientEvent.Sync, this.evaluateEventBuffer);
+    this.client.removeListener(_client.ClientEvent.Sync, this.onSync);
     this.client.removeListener(_room.RoomEvent.Timeline, this.onRoomTimeline);
+    this.client.removeListener(_client.ClientEvent.ToDeviceEvent, this.onToDeviceEvent);
   }
+  async evaluateEventBuffer(eventBuffer) {
+    await Promise.all(eventBuffer.map(event => this.client.decryptEventIfNeeded(event)));
+    const callEvents = eventBuffer.filter(event => {
+      const eventType = event.getType();
+      return eventType.startsWith("m.call.") || eventType.startsWith("org.matrix.call.");
+    });
+    const ignoreCallIds = new Set();
 
-  eventIsACall(event) {
-    const type = event.getType();
-    /**
-     * Unstable prefixes:
-     *   - org.matrix.call. : MSC3086 https://github.com/matrix-org/matrix-doc/pull/3086
-     */
+    // inspect the buffer and mark all calls which have been answered
+    // or hung up before passing them to the call event handler.
+    for (const event of callEvents) {
+      const eventType = event.getType();
+      if (eventType === _event.EventType.CallAnswer || eventType === _event.EventType.CallHangup) {
+        ignoreCallIds.add(event.getContent().call_id);
+      }
+    }
 
-    return type.startsWith("m.call.") || type.startsWith("org.matrix.call.");
+    // Process call events in the order that they were received
+    for (const event of callEvents) {
+      const eventType = event.getType();
+      const callId = event.getContent().call_id;
+      if (eventType === _event.EventType.CallInvite && ignoreCallIds.has(callId)) {
+        // This call has previously been answered or hung up: ignore it
+        continue;
+      }
+      try {
+        await this.handleCallEvent(event);
+      } catch (e) {
+        _logger.logger.error("CallEventHandler evaluateEventBuffer() caught exception handling call event", e);
+      }
+    }
   }
-
   async handleCallEvent(event) {
+    this.client.emit(_client.ClientEvent.ReceivedVoipEvent, event);
     const content = event.getContent();
+    const callRoomId = event.getRoomId() || this.client.groupCallEventHandler.getGroupCallById(content.conf_id)?.room?.roomId;
+    const groupCallId = content.conf_id;
     const type = event.getType();
-    const weSentTheEvent = event.getSender() === this.client.credentials.userId;
-    let call = content.call_id ? this.calls.get(content.call_id) : undefined; //console.info("RECV %s content=%s", type, JSON.stringify(content));
-
-    if (type === _event2.EventType.CallInvite) {
+    const senderId = event.getSender();
+    let call = content.call_id ? this.calls.get(content.call_id) : undefined;
+    let opponentDeviceId;
+    let groupCall;
+    if (groupCallId) {
+      groupCall = this.client.groupCallEventHandler.getGroupCallById(groupCallId);
+      if (!groupCall) {
+        _logger.logger.warn(`CallEventHandler handleCallEvent() could not find a group call - ignoring event (groupCallId=${groupCallId}, type=${type})`);
+        return;
+      }
+      opponentDeviceId = content.device_id;
+      if (!opponentDeviceId) {
+        _logger.logger.warn(`CallEventHandler handleCallEvent() could not find a device id - ignoring event (senderId=${senderId})`);
+        groupCall.emit(_groupCall.GroupCallEvent.Error, new _groupCall.GroupCallUnknownDeviceError(senderId));
+        return;
+      }
+      if (content.dest_session_id !== this.client.getSessionId()) {
+        _logger.logger.warn("CallEventHandler handleCallEvent() call event does not match current session id - ignoring");
+        return;
+      }
+    }
+    const weSentTheEvent = senderId === this.client.credentials.userId && (opponentDeviceId === undefined || opponentDeviceId === this.client.getDeviceId());
+    if (!callRoomId) return;
+    if (type === _event.EventType.CallInvite) {
       // ignore invites you send
-      if (weSentTheEvent) return; // expired call
-
-      if (event.getLocalAge() > content.lifetime - RING_GRACE_PERIOD) return; // stale/old invite event
-
+      if (weSentTheEvent) return;
+      // expired call
+      if (event.getLocalAge() > content.lifetime - RING_GRACE_PERIOD) return;
+      // stale/old invite event
       if (call && call.state === _call.CallState.Ended) return;
-
       if (call) {
-        _logger.logger.log(`WARN: Already have a MatrixCall with id ${content.call_id} but got an ` + `invite. Clobbering.`);
+        _logger.logger.warn(`CallEventHandler handleCallEvent() already has a call but got an invite - clobbering (callId=${content.call_id})`);
+      }
+      if (content.invitee && content.invitee !== this.client.getUserId()) {
+        return; // This invite was meant for another user in the room
       }
 
-      const timeUntilTurnCresExpire = this.client.getTurnServersExpiry() - Date.now();
-
-      _logger.logger.info("Current turn creds expire in " + timeUntilTurnCresExpire + " ms");
-
-      call = (0, _call.createNewMatrixCall)(this.client, event.getRoomId(), {
-        forceTURN: this.client.forceTURN
-      });
-
+      const timeUntilTurnCresExpire = (this.client.getTurnServersExpiry() ?? 0) - Date.now();
+      _logger.logger.info("CallEventHandler handleCallEvent() current turn creds expire in " + timeUntilTurnCresExpire + " ms");
+      call = (0, _call.createNewMatrixCall)(this.client, callRoomId, {
+        forceTURN: this.client.forceTURN,
+        opponentDeviceId,
+        groupCallId,
+        opponentSessionId: content.sender_session_id
+      }) ?? undefined;
       if (!call) {
-        _logger.logger.log("Incoming call ID " + content.call_id + " but this client " + "doesn't support WebRTC"); // don't hang up the call: there could be other clients
+        _logger.logger.log(`CallEventHandler handleCallEvent() this client does not support WebRTC (callId=${content.call_id})`);
+        // don't hang up the call: there could be other clients
         // connected that do support WebRTC and declining the
         // the call on their behalf would be really annoying.
-
-
         return;
       }
-
       call.callId = content.call_id;
-      await call.initWithInvite(event);
-      this.calls.set(call.callId, call); // if we stashed candidate events for that call ID, play them back now
+      try {
+        await call.initWithInvite(event);
+      } catch (e) {
+        if (e instanceof _call.CallError) {
+          if (e.code === _groupCall.GroupCallErrorCode.UnknownDevice) {
+            groupCall?.emit(_groupCall.GroupCallEvent.Error, e);
+          } else {
+            _logger.logger.error(e);
+          }
+        }
+      }
+      this.calls.set(call.callId, call);
 
+      // if we stashed candidate events for that call ID, play them back now
       if (this.candidateEventsByCall.get(call.callId)) {
         for (const ev of this.candidateEventsByCall.get(call.callId)) {
           call.onRemoteIceCandidatesReceived(ev);
         }
-      } // Were we trying to call that user (room)?
-
+      }
 
+      // Were we trying to call that user (room)?
       let existingCall;
-
       for (const thisCall of this.calls.values()) {
         const isCalling = [_call.CallState.WaitLocalMedia, _call.CallState.CreateOffer, _call.CallState.InviteSent].includes(thisCall.state);
-
-        if (call.roomId === thisCall.roomId && thisCall.direction === _call.CallDirection.Outbound && isCalling) {
+        if (call.roomId === thisCall.roomId && thisCall.direction === _call.CallDirection.Outbound && call.getOpponentMember()?.userId === thisCall.invitee && isCalling) {
           existingCall = thisCall;
           break;
         }
       }
-
       if (existingCall) {
-        // If we've only got to wait_local_media or create_offer and
-        // we've got an invite, pick the incoming call because we know
-        // we haven't sent our invite yet otherwise, pick whichever
-        // call has the lowest call ID (by string comparison)
-        if (existingCall.state === _call.CallState.WaitLocalMedia || existingCall.state === _call.CallState.CreateOffer || existingCall.callId > call.callId) {
-          _logger.logger.log("Glare detected: answering incoming call " + call.callId + " and canceling outgoing call " + existingCall.callId);
-
+        if (existingCall.callId > call.callId) {
+          _logger.logger.log(`CallEventHandler handleCallEvent() detected glare - answering incoming call and canceling outgoing call (incomingId=${call.callId}, outgoingId=${existingCall.callId})`);
           existingCall.replacedBy(call);
-          call.answer();
         } else {
-          _logger.logger.log("Glare detected: rejecting incoming call " + call.callId + " and keeping outgoing call " + existingCall.callId);
-
+          _logger.logger.log(`CallEventHandler handleCallEvent() detected glare - hanging up incoming call (incomingId=${call.callId}, outgoingId=${existingCall.callId})`);
           call.hangup(_call.CallErrorCode.Replaced, true);
         }
       } else {
         this.client.emit(CallEventHandlerEvent.Incoming, call);
       }
-
       return;
-    } else if (type === _event2.EventType.CallCandidates) {
+    } else if (type === _event.EventType.CallCandidates) {
       if (weSentTheEvent) return;
-
       if (!call) {
         // store the candidates; we may get a call eventually.
         if (!this.candidateEventsByCall.has(content.call_id)) {
           this.candidateEventsByCall.set(content.call_id, []);
         }
-
         this.candidateEventsByCall.get(content.call_id).push(event);
       } else {
         call.onRemoteIceCandidatesReceived(event);
       }
-
       return;
-    } else if ([_event2.EventType.CallHangup, _event2.EventType.CallReject].includes(type)) {
+    } else if ([_event.EventType.CallHangup, _event.EventType.CallReject].includes(type)) {
       // Note that we also observe our own hangups here so we can see
       // if we've already rejected a call that would otherwise be valid
       if (!call) {
         // if not live, store the fact that the call has ended because
         // we're probably getting events backwards so
         // the hangup will come before the invite
-        call = (0, _call.createNewMatrixCall)(this.client, event.getRoomId());
-
+        call = (0, _call.createNewMatrixCall)(this.client, callRoomId, {
+          opponentDeviceId,
+          opponentSessionId: content.sender_session_id
+        }) ?? undefined;
         if (call) {
           call.callId = content.call_id;
           call.initWithHangup(event);
@@ -245,34 +270,30 @@
         }
       } else {
         if (call.state !== _call.CallState.Ended) {
-          if (type === _event2.EventType.CallHangup) {
+          if (type === _event.EventType.CallHangup) {
             call.onHangupReceived(content);
           } else {
             call.onRejectReceived(content);
-          } // @ts-expect-error typescript thinks the state can't be 'ended' because we're
+          }
+
+          // @ts-expect-error typescript thinks the state can't be 'ended' because we're
           // inside the if block where it wasn't, but it could have changed because
           // on[Hangup|Reject]Received are side-effecty.
-
-
           if (call.state === _call.CallState.Ended) this.calls.delete(content.call_id);
         }
       }
-
       return;
-    } // The following events need a call and a peer connection
-
+    }
 
+    // The following events need a call and a peer connection
     if (!call || !call.hasPeerConnection) {
-      _logger.logger.info(`Discarding possible call event ${event.getId()} as we don't have a call/peerConn`, type);
-
+      _logger.logger.info(`CallEventHandler handleCallEvent() discarding possible call event as we don't have a call (type=${type})`);
       return;
-    } // Ignore remote echo
-
-
+    }
+    // Ignore remote echo
     if (event.getContent().party_id === call.ourPartyId) return;
-
     switch (type) {
-      case _event2.EventType.CallAnswer:
+      case _event.EventType.CallAnswer:
         if (weSentTheEvent) {
           if (call.state === _call.CallState.Ringing) {
             call.onAnsweredElsewhere(content);
@@ -280,29 +301,22 @@
         } else {
           call.onAnswerReceived(event);
         }
-
         break;
-
-      case _event2.EventType.CallSelectAnswer:
+      case _event.EventType.CallSelectAnswer:
         call.onSelectAnswerReceived(event);
         break;
-
-      case _event2.EventType.CallNegotiate:
+      case _event.EventType.CallNegotiate:
         call.onNegotiateReceived(event);
         break;
-
-      case _event2.EventType.CallAssertedIdentity:
-      case _event2.EventType.CallAssertedIdentityPrefix:
+      case _event.EventType.CallAssertedIdentity:
+      case _event.EventType.CallAssertedIdentityPrefix:
         call.onAssertedIdentityReceived(event);
         break;
-
-      case _event2.EventType.CallSDPStreamMetadataChanged:
-      case _event2.EventType.CallSDPStreamMetadataChangedPrefix:
+      case _event.EventType.CallSDPStreamMetadataChanged:
+      case _event.EventType.CallSDPStreamMetadataChangedPrefix:
         call.onSDPStreamMetadataChangedReceived(event);
         break;
     }
   }
-
 }
-
 exports.CallEventHandler = CallEventHandler;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/callEventTypes.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/callEventTypes.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/callEventTypes.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/callEventTypes.js	2023-04-11 06:11:52.000000000 +0000
@@ -5,14 +5,13 @@
 });
 exports.SDPStreamMetadataPurpose = exports.SDPStreamMetadataKey = void 0;
 // allow non-camelcase as these are events type that go onto the wire
-
 /* eslint-disable camelcase */
+
 // TODO: Change to "sdp_stream_metadata" when MSC3077 is merged
 const SDPStreamMetadataKey = "org.matrix.msc3077.sdp_stream_metadata";
 exports.SDPStreamMetadataKey = SDPStreamMetadataKey;
 let SDPStreamMetadataPurpose;
 exports.SDPStreamMetadataPurpose = SDPStreamMetadataPurpose;
-
 (function (SDPStreamMetadataPurpose) {
   SDPStreamMetadataPurpose["Usermedia"] = "m.usermedia";
   SDPStreamMetadataPurpose["Screenshare"] = "m.screenshare";
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/callFeed.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/callFeed.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/callFeed.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/callFeed.js	2023-04-11 06:11:52.000000000 +0000
@@ -4,144 +4,139 @@
   value: true
 });
 exports.SPEAKING_THRESHOLD = exports.CallFeedEvent = exports.CallFeed = void 0;
-
+var _callEventTypes = require("./callEventTypes");
+var _audioContext = require("./audioContext");
+var _logger = require("../logger");
 var _typedEventEmitter = require("../models/typed-event-emitter");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+var _call = require("./call");
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
 const POLLING_INTERVAL = 200; // ms
-
 const SPEAKING_THRESHOLD = -60; // dB
-
 exports.SPEAKING_THRESHOLD = SPEAKING_THRESHOLD;
 const SPEAKING_SAMPLE_COUNT = 8; // samples
-
 let CallFeedEvent;
 exports.CallFeedEvent = CallFeedEvent;
-
 (function (CallFeedEvent) {
   CallFeedEvent["NewStream"] = "new_stream";
   CallFeedEvent["MuteStateChanged"] = "mute_state_changed";
+  CallFeedEvent["LocalVolumeChanged"] = "local_volume_changed";
   CallFeedEvent["VolumeChanged"] = "volume_changed";
+  CallFeedEvent["ConnectedChanged"] = "connected_changed";
   CallFeedEvent["Speaking"] = "speaking";
+  CallFeedEvent["Disposed"] = "disposed";
 })(CallFeedEvent || (exports.CallFeedEvent = CallFeedEvent = {}));
-
 class CallFeed extends _typedEventEmitter.TypedEventEmitter {
   constructor(opts) {
     super();
-
     _defineProperty(this, "stream", void 0);
-
+    _defineProperty(this, "sdpMetadataStreamId", void 0);
     _defineProperty(this, "userId", void 0);
-
+    _defineProperty(this, "deviceId", void 0);
     _defineProperty(this, "purpose", void 0);
-
     _defineProperty(this, "speakingVolumeSamples", void 0);
-
     _defineProperty(this, "client", void 0);
-
+    _defineProperty(this, "call", void 0);
     _defineProperty(this, "roomId", void 0);
-
     _defineProperty(this, "audioMuted", void 0);
-
     _defineProperty(this, "videoMuted", void 0);
-
+    _defineProperty(this, "localVolume", 1);
     _defineProperty(this, "measuringVolumeActivity", false);
-
     _defineProperty(this, "audioContext", void 0);
-
     _defineProperty(this, "analyser", void 0);
-
     _defineProperty(this, "frequencyBinCount", void 0);
-
     _defineProperty(this, "speakingThreshold", SPEAKING_THRESHOLD);
-
     _defineProperty(this, "speaking", false);
-
     _defineProperty(this, "volumeLooperTimeout", void 0);
-
+    _defineProperty(this, "_disposed", false);
+    _defineProperty(this, "_connected", false);
     _defineProperty(this, "onAddTrack", () => {
       this.emit(CallFeedEvent.NewStream, this.stream);
     });
-
+    _defineProperty(this, "onCallState", state => {
+      if (state === _call.CallState.Connected) {
+        this.connected = true;
+      } else if (state === _call.CallState.Connecting) {
+        this.connected = false;
+      }
+    });
     _defineProperty(this, "volumeLooper", () => {
       if (!this.analyser) return;
       if (!this.measuringVolumeActivity) return;
       this.analyser.getFloatFrequencyData(this.frequencyBinCount);
       let maxVolume = -Infinity;
-
-      for (let i = 0; i < this.frequencyBinCount.length; i++) {
-        if (this.frequencyBinCount[i] > maxVolume) {
-          maxVolume = this.frequencyBinCount[i];
+      for (const volume of this.frequencyBinCount) {
+        if (volume > maxVolume) {
+          maxVolume = volume;
         }
       }
-
       this.speakingVolumeSamples.shift();
       this.speakingVolumeSamples.push(maxVolume);
       this.emit(CallFeedEvent.VolumeChanged, maxVolume);
       let newSpeaking = false;
-
-      for (let i = 0; i < this.speakingVolumeSamples.length; i++) {
-        const volume = this.speakingVolumeSamples[i];
-
+      for (const volume of this.speakingVolumeSamples) {
         if (volume > this.speakingThreshold) {
           newSpeaking = true;
           break;
         }
       }
-
       if (this.speaking !== newSpeaking) {
         this.speaking = newSpeaking;
         this.emit(CallFeedEvent.Speaking, this.speaking);
       }
-
       this.volumeLooperTimeout = setTimeout(this.volumeLooper, POLLING_INTERVAL);
     });
-
     this.client = opts.client;
+    this.call = opts.call;
     this.roomId = opts.roomId;
     this.userId = opts.userId;
+    this.deviceId = opts.deviceId;
     this.purpose = opts.purpose;
     this.audioMuted = opts.audioMuted;
     this.videoMuted = opts.videoMuted;
     this.speakingVolumeSamples = new Array(SPEAKING_SAMPLE_COUNT).fill(-Infinity);
+    this.sdpMetadataStreamId = opts.stream.id;
     this.updateStream(null, opts.stream);
+    this.stream = opts.stream; // updateStream does this, but this makes TS happier
 
     if (this.hasAudioTrack) {
       this.initVolumeMeasuring();
     }
+    if (opts.call) {
+      opts.call.addListener(_call.CallEvent.State, this.onCallState);
+      this.onCallState(opts.call.state);
+    }
+  }
+  get connected() {
+    // Local feeds are always considered connected
+    return this.isLocal() || this._connected;
+  }
+  set connected(connected) {
+    this._connected = connected;
+    this.emit(CallFeedEvent.ConnectedChanged, this.connected);
   }
-
   get hasAudioTrack() {
     return this.stream.getAudioTracks().length > 0;
   }
-
   updateStream(oldStream, newStream) {
     if (newStream === oldStream) return;
-
     if (oldStream) {
       oldStream.removeEventListener("addtrack", this.onAddTrack);
       this.measureVolumeActivity(false);
     }
-
-    if (newStream) {
-      this.stream = newStream;
-      newStream.addEventListener("addtrack", this.onAddTrack);
-
-      if (this.hasAudioTrack) {
-        this.initVolumeMeasuring();
-      } else {
-        this.measureVolumeActivity(false);
-      }
+    this.stream = newStream;
+    newStream.addEventListener("addtrack", this.onAddTrack);
+    if (this.hasAudioTrack) {
+      this.initVolumeMeasuring();
+    } else {
+      this.measureVolumeActivity(false);
     }
-
     this.emit(CallFeedEvent.NewStream, this.stream);
   }
-
   initVolumeMeasuring() {
-    const AudioContext = window.AudioContext || window.webkitAudioContext;
-    if (!this.hasAudioTrack || !AudioContext) return;
-    this.audioContext = new AudioContext();
+    if (!this.hasAudioTrack) return;
+    if (!this.audioContext) this.audioContext = (0, _audioContext.acquireContext)();
     this.analyser = this.audioContext.createAnalyser();
     this.analyser.fftSize = 512;
     this.analyser.smoothingTimeConstant = 0.1;
@@ -149,77 +144,80 @@
     mediaStreamAudioSourceNode.connect(this.analyser);
     this.frequencyBinCount = new Float32Array(this.analyser.frequencyBinCount);
   }
-
   /**
    * Returns callRoom member
    * @returns member of the callRoom
    */
   getMember() {
     const callRoom = this.client.getRoom(this.roomId);
-    return callRoom.getMember(this.userId);
+    return callRoom?.getMember(this.userId) ?? null;
   }
+
   /**
    * Returns true if CallFeed is local, otherwise returns false
-   * @returns {boolean} is local?
+   * @returns is local?
    */
-
-
   isLocal() {
-    return this.userId === this.client.getUserId();
+    return this.userId === this.client.getUserId() && (this.deviceId === undefined || this.deviceId === this.client.getDeviceId());
   }
+
   /**
    * Returns true if audio is muted or if there are no audio
    * tracks, otherwise returns false
-   * @returns {boolean} is audio muted?
+   * @returns is audio muted?
    */
-
-
   isAudioMuted() {
     return this.stream.getAudioTracks().length === 0 || this.audioMuted;
   }
+
   /**
    * Returns true video is muted or if there are no video
    * tracks, otherwise returns false
-   * @returns {boolean} is video muted?
+   * @returns is video muted?
    */
-
-
   isVideoMuted() {
     // We assume only one video track
     return this.stream.getVideoTracks().length === 0 || this.videoMuted;
   }
-
   isSpeaking() {
     return this.speaking;
   }
+
+  /**
+   * Replaces the current MediaStream with a new one.
+   * The stream will be different and new stream as remote parties are
+   * concerned, but this can be used for convenience locally to set up
+   * volume listeners automatically on the new stream etc.
+   * @param newStream - new stream with which to replace the current one
+   */
+  setNewStream(newStream) {
+    this.updateStream(this.stream, newStream);
+  }
+
   /**
    * Set one or both of feed's internal audio and video video mute state
    * Either value may be null to leave it as-is
-   * @param muted is the feed's video muted?
+   * @param audioMuted - is the feed's audio muted?
+   * @param videoMuted - is the feed's video muted?
    */
-
-
   setAudioVideoMuted(audioMuted, videoMuted) {
     if (audioMuted !== null) {
       if (this.audioMuted !== audioMuted) {
         this.speakingVolumeSamples.fill(-Infinity);
       }
-
       this.audioMuted = audioMuted;
     }
-
     if (videoMuted !== null) this.videoMuted = videoMuted;
     this.emit(CallFeedEvent.MuteStateChanged, this.audioMuted, this.videoMuted);
   }
+
   /**
    * Starts emitting volume_changed events where the emitter value is in decibels
-   * @param enabled emit volume changes
+   * @param enabled - emit volume changes
    */
-
-
   measureVolumeActivity(enabled) {
     if (enabled) {
-      if (!this.audioContext || !this.analyser || !this.frequencyBinCount || !this.hasAudioTrack) return;
+      if (!this.analyser || !this.frequencyBinCount || !this.hasAudioTrack) return;
       this.measuringVolumeActivity = true;
       this.volumeLooper();
     } else {
@@ -228,15 +226,53 @@
       this.emit(CallFeedEvent.VolumeChanged, -Infinity);
     }
   }
-
   setSpeakingThreshold(threshold) {
     this.speakingThreshold = threshold;
   }
-
+  clone() {
+    const mediaHandler = this.client.getMediaHandler();
+    const stream = this.stream.clone();
+    _logger.logger.log(`CallFeed clone() cloning stream (originalStreamId=${this.stream.id}, newStreamId${stream.id})`);
+    if (this.purpose === _callEventTypes.SDPStreamMetadataPurpose.Usermedia) {
+      mediaHandler.userMediaStreams.push(stream);
+    } else {
+      mediaHandler.screensharingStreams.push(stream);
+    }
+    return new CallFeed({
+      client: this.client,
+      roomId: this.roomId,
+      userId: this.userId,
+      deviceId: this.deviceId,
+      stream,
+      purpose: this.purpose,
+      audioMuted: this.audioMuted,
+      videoMuted: this.videoMuted
+    });
+  }
   dispose() {
     clearTimeout(this.volumeLooperTimeout);
+    this.stream?.removeEventListener("addtrack", this.onAddTrack);
+    this.call?.removeListener(_call.CallEvent.State, this.onCallState);
+    if (this.audioContext) {
+      this.audioContext = undefined;
+      this.analyser = undefined;
+      (0, _audioContext.releaseContext)();
+    }
+    this._disposed = true;
+    this.emit(CallFeedEvent.Disposed);
+  }
+  get disposed() {
+    return this._disposed;
+  }
+  set disposed(value) {
+    this._disposed = value;
+  }
+  getLocalVolume() {
+    return this.localVolume;
+  }
+  setLocalVolume(localVolume) {
+    this.localVolume = localVolume;
+    this.emit(CallFeedEvent.LocalVolumeChanged, localVolume);
   }
-
 }
-
 exports.CallFeed = CallFeed;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/call.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/call.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/call.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/call.js	2023-04-11 06:11:52.000000000 +0000
@@ -5,31 +5,40 @@
 });
 exports.MatrixCall = exports.CallType = exports.CallState = exports.CallParty = exports.CallEvent = exports.CallErrorCode = exports.CallError = exports.CallDirection = void 0;
 exports.createNewMatrixCall = createNewMatrixCall;
+exports.genCallID = genCallID;
+exports.setTracksEnabled = setTracksEnabled;
 exports.supportsMatrixCall = supportsMatrixCall;
-
+var _uuid = require("uuid");
+var _sdpTransform = require("sdp-transform");
 var _logger = require("../logger");
-
 var utils = _interopRequireWildcard(require("../utils"));
-
 var _event = require("../@types/event");
-
 var _randomstring = require("../randomstring");
-
 var _callEventTypes = require("./callEventTypes");
-
 var _callFeed = require("./callFeed");
-
 var _typedEventEmitter = require("../models/typed-event-emitter");
-
+var _deviceinfo = require("../crypto/deviceinfo");
+var _groupCall = require("./groupCall");
+var _httpApi = require("../http-api");
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
-
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
+function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
+function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+var MediaType;
+(function (MediaType) {
+  MediaType["AUDIO"] = "audio";
+  MediaType["VIDEO"] = "video";
+})(MediaType || (MediaType = {}));
+var CodecName; // add more as needed
+// Used internally to specify modifications to codec parameters in SDP
+(function (CodecName) {
+  CodecName["OPUS"] = "opus";
+})(CodecName || (CodecName = {}));
 let CallState;
 exports.CallState = CallState;
-
 (function (CallState) {
   CallState["Fledgling"] = "fledgling";
   CallState["InviteSent"] = "invite_sent";
@@ -41,34 +50,26 @@
   CallState["Ringing"] = "ringing";
   CallState["Ended"] = "ended";
 })(CallState || (exports.CallState = CallState = {}));
-
 let CallType;
 exports.CallType = CallType;
-
 (function (CallType) {
   CallType["Voice"] = "voice";
   CallType["Video"] = "video";
 })(CallType || (exports.CallType = CallType = {}));
-
 let CallDirection;
 exports.CallDirection = CallDirection;
-
 (function (CallDirection) {
   CallDirection["Inbound"] = "inbound";
   CallDirection["Outbound"] = "outbound";
 })(CallDirection || (exports.CallDirection = CallDirection = {}));
-
 let CallParty;
 exports.CallParty = CallParty;
-
 (function (CallParty) {
   CallParty["Local"] = "local";
   CallParty["Remote"] = "remote";
 })(CallParty || (exports.CallParty = CallParty = {}));
-
 let CallEvent;
 exports.CallEvent = CallEvent;
-
 (function (CallEvent) {
   CallEvent["Hangup"] = "hangup";
   CallEvent["State"] = "state";
@@ -81,15 +82,13 @@
   CallEvent["AssertedIdentityChanged"] = "asserted_identity_changed";
   CallEvent["LengthChanged"] = "length_changed";
   CallEvent["DataChannel"] = "datachannel";
+  CallEvent["SendVoipEvent"] = "send_voip_event";
 })(CallEvent || (exports.CallEvent = CallEvent = {}));
-
 let CallErrorCode;
 /**
  * The version field that we set in m.call.* events
  */
-
 exports.CallErrorCode = CallErrorCode;
-
 (function (CallErrorCode) {
   CallErrorCode["UserHangup"] = "user_hangup";
   CallErrorCode["LocalOfferFailed"] = "local_offer_failed";
@@ -97,6 +96,7 @@
   CallErrorCode["UnknownDevices"] = "unknown_devices";
   CallErrorCode["SendInvite"] = "send_invite";
   CallErrorCode["CreateAnswer"] = "create_answer";
+  CallErrorCode["CreateOffer"] = "create_offer";
   CallErrorCode["SendAnswer"] = "send_answer";
   CallErrorCode["SetRemoteDescription"] = "set_remote_description";
   CallErrorCode["SetLocalDescription"] = "set_local_description";
@@ -106,749 +106,683 @@
   CallErrorCode["Replaced"] = "replaced";
   CallErrorCode["SignallingFailed"] = "signalling_timeout";
   CallErrorCode["UserBusy"] = "user_busy";
-  CallErrorCode["Transfered"] = "transferred";
+  CallErrorCode["Transferred"] = "transferred";
+  CallErrorCode["NewSession"] = "new_session";
 })(CallErrorCode || (exports.CallErrorCode = CallErrorCode = {}));
-
 const VOIP_PROTO_VERSION = "1";
+
 /** The fallback ICE server to use for STUN or TURN protocols. */
+const FALLBACK_ICE_SERVER = "stun:turn.matrix.org";
 
-const FALLBACK_ICE_SERVER = 'stun:turn.matrix.org';
 /** The length of time a call can be ringing for. */
-
-const CALL_TIMEOUT_MS = 60000;
+const CALL_TIMEOUT_MS = 60 * 1000; // ms
+/** The time after which we increment callLength */
+const CALL_LENGTH_INTERVAL = 1000; // ms
+/** The time after which we end the call, if ICE got disconnected */
+const ICE_DISCONNECTED_TIMEOUT = 30 * 1000; // ms
 
 class CallError extends Error {
   constructor(code, msg, err) {
     // Still don't think there's any way to have proper nested errors
     super(msg + ": " + err);
-
     _defineProperty(this, "code", void 0);
-
     this.code = code;
   }
-
 }
-
 exports.CallError = CallError;
-
 function genCallID() {
   return Date.now().toString() + (0, _randomstring.randomString)(16);
 }
-
-/**
- * Construct a new Matrix Call.
- * @constructor
- * @param {Object} opts Config options.
- * @param {string} opts.roomId The room ID for this call.
- * @param {Object} opts.webRtc The WebRTC globals from the browser.
- * @param {boolean} opts.forceTURN whether relay through TURN should be forced.
- * @param {Object} opts.URL The URL global.
- * @param {Array<Object>} opts.turnServers Optional. A list of TURN servers.
- * @param {MatrixClient} opts.client The Matrix Client instance to send events to.
- */
+function getCodecParamMods(isPtt) {
+  const mods = [{
+    mediaType: "audio",
+    codec: "opus",
+    enableDtx: true,
+    maxAverageBitrate: isPtt ? 12000 : undefined
+  }];
+  return mods;
+}
+// generates keys for the map of transceivers
+// kind is unfortunately a string rather than MediaType as this is the type of
+// track.kind
+function getTransceiverKey(purpose, kind) {
+  return purpose + ":" + kind;
+}
 class MatrixCall extends _typedEventEmitter.TypedEventEmitter {
+  // whether this call should have push-to-talk semantics
+  // This should be set by the consumer on incoming & outgoing calls.
+
   // A queue for candidates waiting to go out.
   // We try to amalgamate candidates into a single candidate message where
   // possible
+
+  // our transceivers for each purpose and type of media
+
   // The party ID of the other side: undefined if we haven't chosen a partner
   // yet, null if we have but they didn't send a party ID.
+
   // The logic of when & if a call is on hold is nontrivial and explained in is*OnHold
   // This flag represents whether we want the other party to be on hold
+
   // the stats for the call at the point it ended. We can't get these after we
   // tear the call down, so we just grab a snapshot before we stop the call.
   // The typescript definitions have this type as 'any' :(
+
   // Perfect negotiation state: https://www.w3.org/TR/webrtc/#perfect-negotiation-example
+
   // If candidates arrive before we've picked an opponent (which, in particular,
   // will happen if the opponent sends candidates eagerly before the user answers
   // the call) we buffer them up here so we can then add the ones from the party we pick
+
+  // Used to keep the timer for the delay before actually stopping our
+  // video track after muting (see setLocalVideoMuted)
+
+  // Used to allow connection without Video and Audio. To establish a webrtc connection without media a Data channel is
+  // needed At the moment this property is true if we allow MatrixClient with isVoipWithNoMediaAllowed = true
+
+  /**
+   * Construct a new Matrix Call.
+   * @param opts - Config options.
+   */
   constructor(opts) {
     super();
-
     _defineProperty(this, "roomId", void 0);
-
     _defineProperty(this, "callId", void 0);
-
-    _defineProperty(this, "state", CallState.Fledgling);
-
+    _defineProperty(this, "invitee", void 0);
     _defineProperty(this, "hangupParty", void 0);
-
     _defineProperty(this, "hangupReason", void 0);
-
     _defineProperty(this, "direction", void 0);
-
     _defineProperty(this, "ourPartyId", void 0);
-
+    _defineProperty(this, "peerConn", void 0);
+    _defineProperty(this, "toDeviceSeq", 0);
+    _defineProperty(this, "isPtt", false);
+    _defineProperty(this, "_state", CallState.Fledgling);
     _defineProperty(this, "client", void 0);
-
     _defineProperty(this, "forceTURN", void 0);
-
     _defineProperty(this, "turnServers", void 0);
-
     _defineProperty(this, "candidateSendQueue", []);
-
     _defineProperty(this, "candidateSendTries", 0);
-
-    _defineProperty(this, "sentEndOfCandidates", false);
-
-    _defineProperty(this, "peerConn", void 0);
-
+    _defineProperty(this, "candidatesEnded", false);
     _defineProperty(this, "feeds", []);
-
-    _defineProperty(this, "usermediaSenders", []);
-
-    _defineProperty(this, "screensharingSenders", []);
-
+    _defineProperty(this, "transceivers", new Map());
     _defineProperty(this, "inviteOrAnswerSent", false);
-
-    _defineProperty(this, "waitForLocalAVStream", void 0);
-
+    _defineProperty(this, "waitForLocalAVStream", false);
     _defineProperty(this, "successor", void 0);
-
     _defineProperty(this, "opponentMember", void 0);
-
     _defineProperty(this, "opponentVersion", void 0);
-
     _defineProperty(this, "opponentPartyId", void 0);
-
     _defineProperty(this, "opponentCaps", void 0);
-
+    _defineProperty(this, "iceDisconnectedTimeout", void 0);
     _defineProperty(this, "inviteTimeout", void 0);
-
+    _defineProperty(this, "removeTrackListeners", new Map());
     _defineProperty(this, "remoteOnHold", false);
-
     _defineProperty(this, "callStatsAtEnd", void 0);
-
     _defineProperty(this, "makingOffer", false);
-
-    _defineProperty(this, "ignoreOffer", void 0);
-
+    _defineProperty(this, "ignoreOffer", false);
+    _defineProperty(this, "responsePromiseChain", void 0);
     _defineProperty(this, "remoteCandidateBuffer", new Map());
-
     _defineProperty(this, "remoteAssertedIdentity", void 0);
-
     _defineProperty(this, "remoteSDPStreamMetadata", void 0);
-
     _defineProperty(this, "callLengthInterval", void 0);
-
-    _defineProperty(this, "callLength", 0);
-
+    _defineProperty(this, "callStartTime", void 0);
+    _defineProperty(this, "opponentDeviceId", void 0);
+    _defineProperty(this, "opponentDeviceInfo", void 0);
+    _defineProperty(this, "opponentSessionId", void 0);
+    _defineProperty(this, "groupCallId", void 0);
+    _defineProperty(this, "stopVideoTrackTimer", void 0);
+    _defineProperty(this, "isOnlyDataChannelAllowed", void 0);
     _defineProperty(this, "gotLocalIceCandidate", event => {
       if (event.candidate) {
-        _logger.logger.debug("Call " + this.callId + " got local ICE " + event.candidate.sdpMid + " candidate: " + event.candidate.candidate);
+        if (this.candidatesEnded) {
+          _logger.logger.warn(`Call ${this.callId} gotLocalIceCandidate() got candidate after candidates have ended - ignoring!`);
+          return;
+        }
+        _logger.logger.debug(`Call ${this.callId} got local ICE ${event.candidate.sdpMid} ${event.candidate.candidate}`);
+        if (this.callHasEnded()) return;
 
-        if (this.callHasEnded()) return; // As with the offer, note we need to make a copy of this object, not
+        // As with the offer, note we need to make a copy of this object, not
         // pass the original: that broke in Chrome ~m43.
-
-        if (event.candidate.candidate !== '' || !this.sentEndOfCandidates) {
+        if (event.candidate.candidate === "") {
+          this.queueCandidate(null);
+        } else {
           this.queueCandidate(event.candidate);
-          if (event.candidate.candidate === '') this.sentEndOfCandidates = true;
         }
       }
     });
-
     _defineProperty(this, "onIceGatheringStateChange", event => {
-      _logger.logger.debug("ice gathering state changed to " + this.peerConn.iceGatheringState);
-
-      if (this.peerConn.iceGatheringState === 'complete' && !this.sentEndOfCandidates) {
-        // If we didn't get an empty-string candidate to signal the end of candidates,
-        // create one ourselves now gathering has finished.
-        // We cast because the interface lists all the properties as required but we
-        // only want to send 'candidate'
-        // XXX: We probably want to send either sdpMid or sdpMLineIndex, as it's not strictly
-        // correct to have a candidate that lacks both of these. We'd have to figure out what
-        // previous candidates had been sent with and copy them.
-        const c = {
-          candidate: ''
-        };
-        this.queueCandidate(c);
-        this.sentEndOfCandidates = true;
+      _logger.logger.debug(`Call ${this.callId} onIceGatheringStateChange() ice gathering state changed to ${this.peerConn.iceGatheringState}`);
+      if (this.peerConn?.iceGatheringState === "complete") {
+        this.queueCandidate(null);
       }
     });
-
-    _defineProperty(this, "gotLocalOffer", async description => {
-      _logger.logger.debug("Created offer: ", description);
-
-      if (this.callHasEnded()) {
-        _logger.logger.debug("Ignoring newly created offer on call ID " + this.callId + " because the call has ended");
-
-        return;
-      }
-
-      try {
-        await this.peerConn.setLocalDescription(description);
-      } catch (err) {
-        _logger.logger.debug("Error setting local description!", err);
-
-        this.terminate(CallParty.Local, CallErrorCode.SetLocalDescription, true);
-        return;
-      }
-
-      if (this.peerConn.iceGatheringState === 'gathering') {
-        // Allow a short time for initial candidates to be gathered
-        await new Promise(resolve => {
-          setTimeout(resolve, 200);
-        });
-      }
-
-      if (this.callHasEnded()) return;
-      const eventType = this.state === CallState.CreateOffer ? _event.EventType.CallInvite : _event.EventType.CallNegotiate;
-      const content = {
-        lifetime: CALL_TIMEOUT_MS
-      }; // clunky because TypeScript can't follow the types through if we use an expression as the key
-
-      if (this.state === CallState.CreateOffer) {
-        content.offer = this.peerConn.localDescription;
-      } else {
-        content.description = this.peerConn.localDescription;
-      }
-
-      content.capabilities = {
-        'm.call.transferee': this.client.supportsCallTransfer,
-        'm.call.dtmf': false
-      };
-      content[_callEventTypes.SDPStreamMetadataKey] = this.getLocalSDPStreamMetadata(); // Get rid of any candidates waiting to be sent: they'll be included in the local
-      // description we just got and will send in the offer.
-
-      _logger.logger.info(`Discarding ${this.candidateSendQueue.length} candidates that will be sent in offer`);
-
-      this.candidateSendQueue = [];
-
-      try {
-        await this.sendVoipEvent(eventType, content);
-      } catch (error) {
-        _logger.logger.error("Failed to send invite", error);
-
-        if (error.event) this.client.cancelPendingEvent(error.event);
-        let code = CallErrorCode.SignallingFailed;
-        let message = "Signalling failed";
-
-        if (this.state === CallState.CreateOffer) {
-          code = CallErrorCode.SendInvite;
-          message = "Failed to send invite";
-        }
-
-        if (error.name == 'UnknownDeviceError') {
-          code = CallErrorCode.UnknownDevices;
-          message = "Unknown devices present in the room";
-        }
-
-        this.emit(CallEvent.Error, new CallError(code, message, error));
-        this.terminate(CallParty.Local, code, false); // no need to carry on & send the candidate queue, but we also
-        // don't want to rethrow the error
-
-        return;
-      }
-
-      this.sendCandidateQueue();
-
-      if (this.state === CallState.CreateOffer) {
-        this.inviteOrAnswerSent = true;
-        this.setState(CallState.InviteSent);
-        this.inviteTimeout = setTimeout(() => {
-          this.inviteTimeout = null;
-
-          if (this.state === CallState.InviteSent) {
-            this.hangup(CallErrorCode.InviteTimeout, false);
-          }
-        }, CALL_TIMEOUT_MS);
-      }
-    });
-
     _defineProperty(this, "getLocalOfferFailed", err => {
-      _logger.logger.error("Failed to get local offer", err);
-
+      _logger.logger.error(`Call ${this.callId} getLocalOfferFailed() running`, err);
       this.emit(CallEvent.Error, new CallError(CallErrorCode.LocalOfferFailed, "Failed to get local offer!", err));
       this.terminate(CallParty.Local, CallErrorCode.LocalOfferFailed, false);
     });
-
     _defineProperty(this, "getUserMediaFailed", err => {
       if (this.successor) {
         this.successor.getUserMediaFailed(err);
         return;
       }
-
-      _logger.logger.warn("Failed to get user media - ending call", err);
-
+      _logger.logger.warn(`Call ${this.callId} getUserMediaFailed() failed to get user media - ending call`, err);
       this.emit(CallEvent.Error, new CallError(CallErrorCode.NoUserMedia, "Couldn't start capturing media! Is your microphone set up and " + "does this app have permission?", err));
       this.terminate(CallParty.Local, CallErrorCode.NoUserMedia, false);
     });
-
     _defineProperty(this, "onIceConnectionStateChanged", () => {
       if (this.callHasEnded()) {
         return; // because ICE can still complete as we're ending the call
       }
 
-      _logger.logger.debug("Call ID " + this.callId + ": ICE connection state changed to: " + this.peerConn.iceConnectionState); // ideally we'd consider the call to be connected when we get media but
-      // chrome doesn't implement any of the 'onstarted' events yet
-
+      _logger.logger.debug(`Call ${this.callId} onIceConnectionStateChanged() running (state=${this.peerConn?.iceConnectionState})`);
 
-      if (this.peerConn.iceConnectionState == 'connected') {
-        this.setState(CallState.Connected);
-
-        if (!this.callLengthInterval) {
+      // ideally we'd consider the call to be connected when we get media but
+      // chrome doesn't implement any of the 'onstarted' events yet
+      if (["connected", "completed"].includes(this.peerConn?.iceConnectionState ?? "")) {
+        clearTimeout(this.iceDisconnectedTimeout);
+        this.iceDisconnectedTimeout = undefined;
+        this.state = CallState.Connected;
+        if (!this.callLengthInterval && !this.callStartTime) {
+          this.callStartTime = Date.now();
           this.callLengthInterval = setInterval(() => {
-            this.callLength++;
-            this.emit(CallEvent.LengthChanged, this.callLength);
-          }, 1000);
+            this.emit(CallEvent.LengthChanged, Math.round((Date.now() - this.callStartTime) / 1000));
+          }, CALL_LENGTH_INTERVAL);
         }
-      } else if (this.peerConn.iceConnectionState == 'failed') {
-        this.hangup(CallErrorCode.IceFailed, false);
+      } else if (this.peerConn?.iceConnectionState == "failed") {
+        // Firefox for Android does not yet have support for restartIce()
+        // (the types say it's always defined though, so we have to cast
+        // to prevent typescript from warning).
+        if (this.peerConn?.restartIce) {
+          this.candidatesEnded = false;
+          this.peerConn.restartIce();
+        } else {
+          _logger.logger.info(`Call ${this.callId} onIceConnectionStateChanged() hanging up call (ICE failed and no ICE restart method)`);
+          this.hangup(CallErrorCode.IceFailed, false);
+        }
+      } else if (this.peerConn?.iceConnectionState == "disconnected") {
+        this.iceDisconnectedTimeout = setTimeout(() => {
+          _logger.logger.info(`Call ${this.callId} onIceConnectionStateChanged() hanging up call (ICE disconnected for too long)`);
+          this.hangup(CallErrorCode.IceFailed, false);
+        }, ICE_DISCONNECTED_TIMEOUT);
+        this.state = CallState.Connecting;
       }
-    });
 
+      // In PTT mode, override feed status to muted when we lose connection to
+      // the peer, since we don't want to block the line if they're not saying anything.
+      // Experimenting in Chrome, this happens after 5 or 6 seconds, which is probably
+      // fast enough.
+      if (this.isPtt && ["failed", "disconnected"].includes(this.peerConn.iceConnectionState)) {
+        for (const feed of this.getRemoteFeeds()) {
+          feed.setAudioVideoMuted(true, true);
+        }
+      }
+    });
     _defineProperty(this, "onSignallingStateChanged", () => {
-      _logger.logger.debug("call " + this.callId + ": Signalling state changed to: " + this.peerConn.signalingState);
+      _logger.logger.debug(`Call ${this.callId} onSignallingStateChanged() running (state=${this.peerConn?.signalingState})`);
     });
-
     _defineProperty(this, "onTrack", ev => {
       if (ev.streams.length === 0) {
-        _logger.logger.warn(`Streamless ${ev.track.kind} found: ignoring.`);
-
+        _logger.logger.warn(`Call ${this.callId} onTrack() called with streamless track streamless (kind=${ev.track.kind})`);
         return;
       }
-
       const stream = ev.streams[0];
       this.pushRemoteFeed(stream);
-      stream.addEventListener("removetrack", () => {
-        if (stream.getTracks().length === 0) {
-          _logger.logger.info(`Stream ID ${stream.id} has no tracks remaining - removing`);
-
-          this.deleteFeedByStream(stream);
-        }
-      });
+      if (!this.removeTrackListeners.has(stream)) {
+        const onRemoveTrack = () => {
+          if (stream.getTracks().length === 0) {
+            _logger.logger.info(`Call ${this.callId} onTrack() removing track (streamId=${stream.id})`);
+            this.deleteFeedByStream(stream);
+            stream.removeEventListener("removetrack", onRemoveTrack);
+            this.removeTrackListeners.delete(stream);
+          }
+        };
+        stream.addEventListener("removetrack", onRemoveTrack);
+        this.removeTrackListeners.set(stream, onRemoveTrack);
+      }
     });
-
     _defineProperty(this, "onDataChannel", ev => {
       this.emit(CallEvent.DataChannel, ev.channel);
     });
-
     _defineProperty(this, "onNegotiationNeeded", async () => {
-      _logger.logger.info("Negotiation is needed!");
-
+      _logger.logger.info(`Call ${this.callId} onNegotiationNeeded() negotiation is needed!`);
       if (this.state !== CallState.CreateOffer && this.opponentVersion === 0) {
-        _logger.logger.info("Opponent does not support renegotiation: ignoring negotiationneeded event");
-
+        _logger.logger.info(`Call ${this.callId} onNegotiationNeeded() opponent does not support renegotiation: ignoring negotiationneeded event`);
         return;
       }
-
-      this.makingOffer = true;
-
-      try {
-        this.getRidOfRTXCodecs();
-        const myOffer = await this.peerConn.createOffer();
-        await this.gotLocalOffer(myOffer);
-      } catch (e) {
-        this.getLocalOfferFailed(e);
-        return;
-      } finally {
-        this.makingOffer = false;
-      }
+      this.queueGotLocalOffer();
     });
-
     _defineProperty(this, "onHangupReceived", msg => {
-      _logger.logger.debug("Hangup received for call ID " + this.callId); // party ID must match (our chosen partner hanging up the call) or be undefined (we haven't chosen
-      // a partner yet but we're treating the hangup as a reject as per VoIP v0)
-
+      _logger.logger.debug(`Call ${this.callId} onHangupReceived() running`);
 
+      // party ID must match (our chosen partner hanging up the call) or be undefined (we haven't chosen
+      // a partner yet but we're treating the hangup as a reject as per VoIP v0)
       if (this.partyIdMatches(msg) || this.state === CallState.Ringing) {
         // default reason is user_hangup
         this.terminate(CallParty.Remote, msg.reason || CallErrorCode.UserHangup, true);
       } else {
-        _logger.logger.info(`Ignoring message from party ID ${msg.party_id}: our partner is ${this.opponentPartyId}`);
+        _logger.logger.info(`Call ${this.callId} onHangupReceived() ignoring message from party ID ${msg.party_id}: our partner is ${this.opponentPartyId}`);
       }
     });
-
     _defineProperty(this, "onRejectReceived", msg => {
-      _logger.logger.debug("Reject received for call ID " + this.callId); // No need to check party_id for reject because if we'd received either
-      // an answer or reject, we wouldn't be in state InviteSent
+      _logger.logger.debug(`Call ${this.callId} onRejectReceived() running`);
 
+      // No need to check party_id for reject because if we'd received either
+      // an answer or reject, we wouldn't be in state InviteSent
 
-      const shouldTerminate = // reject events also end the call if it's ringing: it's another of
+      const shouldTerminate =
+      // reject events also end the call if it's ringing: it's another of
       // our devices rejecting the call.
-      [CallState.InviteSent, CallState.Ringing].includes(this.state) || // also if we're in the init state and it's an inbound call, since
+      [CallState.InviteSent, CallState.Ringing].includes(this.state) ||
+      // also if we're in the init state and it's an inbound call, since
       // this means we just haven't entered the ringing state yet
       this.state === CallState.Fledgling && this.direction === CallDirection.Inbound;
-
       if (shouldTerminate) {
         this.terminate(CallParty.Remote, msg.reason || CallErrorCode.UserHangup, true);
       } else {
-        _logger.logger.debug(`Call is in state: ${this.state}: ignoring reject`);
+        _logger.logger.debug(`Call ${this.callId} onRejectReceived() called in wrong state (state=${this.state})`);
       }
     });
-
     _defineProperty(this, "onAnsweredElsewhere", msg => {
-      _logger.logger.debug("Call ID " + this.callId + " answered elsewhere");
-
+      _logger.logger.debug(`Call ${this.callId} onAnsweredElsewhere() running`);
       this.terminate(CallParty.Remote, CallErrorCode.AnsweredElsewhere, true);
     });
-
     this.roomId = opts.roomId;
+    this.invitee = opts.invitee;
     this.client = opts.client;
-    this.forceTURN = opts.forceTURN;
-    this.ourPartyId = this.client.deviceId; // Array of Objects with urls, username, credential keys
-
+    if (!this.client.deviceId) throw new Error("Client must have a device ID to start calls");
+    this.forceTURN = opts.forceTURN ?? false;
+    this.ourPartyId = this.client.deviceId;
+    this.opponentDeviceId = opts.opponentDeviceId;
+    this.opponentSessionId = opts.opponentSessionId;
+    this.groupCallId = opts.groupCallId;
+    // Array of Objects with urls, username, credential keys
     this.turnServers = opts.turnServers || [];
-
     if (this.turnServers.length === 0 && this.client.isFallbackICEServerAllowed()) {
       this.turnServers.push({
         urls: [FALLBACK_ICE_SERVER]
       });
     }
-
     for (const server of this.turnServers) {
       utils.checkObjectHasKeys(server, ["urls"]);
     }
-
     this.callId = genCallID();
+    // If the Client provides calls without audio and video we need a datachannel for a webrtc connection
+    this.isOnlyDataChannelAllowed = this.client.isVoipWithNoMediaAllowed;
   }
+
   /**
    * Place a voice call to this room.
    * @throws If you have not specified a listener for 'error' events.
    */
-
-
   async placeVoiceCall() {
     await this.placeCall(true, false);
   }
+
   /**
    * Place a video call to this room.
    * @throws If you have not specified a listener for 'error' events.
    */
-
-
   async placeVideoCall() {
     await this.placeCall(true, true);
   }
+
   /**
    * Create a datachannel using this call's peer connection.
-   * @param label A human readable label for this datachannel
-   * @param options An object providing configuration options for the data channel.
+   * @param label - A human readable label for this datachannel
+   * @param options - An object providing configuration options for the data channel.
    */
-
-
   createDataChannel(label, options) {
     const dataChannel = this.peerConn.createDataChannel(label, options);
     this.emit(CallEvent.DataChannel, dataChannel);
-
-    _logger.logger.debug("created data channel");
-
     return dataChannel;
   }
-
   getOpponentMember() {
     return this.opponentMember;
   }
-
+  getOpponentDeviceId() {
+    return this.opponentDeviceId;
+  }
+  getOpponentSessionId() {
+    return this.opponentSessionId;
+  }
   opponentCanBeTransferred() {
     return Boolean(this.opponentCaps && this.opponentCaps["m.call.transferee"]);
   }
-
   opponentSupportsDTMF() {
     return Boolean(this.opponentCaps && this.opponentCaps["m.call.dtmf"]);
   }
-
   getRemoteAssertedIdentity() {
     return this.remoteAssertedIdentity;
   }
-
+  get state() {
+    return this._state;
+  }
+  set state(state) {
+    const oldState = this._state;
+    this._state = state;
+    this.emit(CallEvent.State, state, oldState);
+  }
   get type() {
-    return this.hasLocalUserMediaVideoTrack || this.hasRemoteUserMediaVideoTrack ? CallType.Video : CallType.Voice;
+    // we may want to look for a video receiver here rather than a track to match the
+    // sender behaviour, although in practice they should be the same thing
+    return this.hasUserMediaVideoSender || this.hasRemoteUserMediaVideoTrack ? CallType.Video : CallType.Voice;
   }
-
   get hasLocalUserMediaVideoTrack() {
-    return this.localUsermediaStream?.getVideoTracks().length > 0;
+    return !!this.localUsermediaStream?.getVideoTracks().length;
   }
-
   get hasRemoteUserMediaVideoTrack() {
     return this.getRemoteFeeds().some(feed => {
-      return feed.purpose === _callEventTypes.SDPStreamMetadataPurpose.Usermedia && feed.stream.getVideoTracks().length > 0;
+      return feed.purpose === _callEventTypes.SDPStreamMetadataPurpose.Usermedia && feed.stream?.getVideoTracks().length;
     });
   }
-
   get hasLocalUserMediaAudioTrack() {
-    return this.localUsermediaStream?.getAudioTracks().length > 0;
+    return !!this.localUsermediaStream?.getAudioTracks().length;
   }
-
   get hasRemoteUserMediaAudioTrack() {
     return this.getRemoteFeeds().some(feed => {
-      return feed.purpose === _callEventTypes.SDPStreamMetadataPurpose.Usermedia && feed.stream.getAudioTracks().length > 0;
+      return feed.purpose === _callEventTypes.SDPStreamMetadataPurpose.Usermedia && !!feed.stream?.getAudioTracks().length;
     });
   }
-
+  get hasUserMediaAudioSender() {
+    return Boolean(this.transceivers.get(getTransceiverKey(_callEventTypes.SDPStreamMetadataPurpose.Usermedia, "audio"))?.sender);
+  }
+  get hasUserMediaVideoSender() {
+    return Boolean(this.transceivers.get(getTransceiverKey(_callEventTypes.SDPStreamMetadataPurpose.Usermedia, "video"))?.sender);
+  }
   get localUsermediaFeed() {
     return this.getLocalFeeds().find(feed => feed.purpose === _callEventTypes.SDPStreamMetadataPurpose.Usermedia);
   }
-
   get localScreensharingFeed() {
     return this.getLocalFeeds().find(feed => feed.purpose === _callEventTypes.SDPStreamMetadataPurpose.Screenshare);
   }
-
   get localUsermediaStream() {
     return this.localUsermediaFeed?.stream;
   }
-
   get localScreensharingStream() {
     return this.localScreensharingFeed?.stream;
   }
-
   get remoteUsermediaFeed() {
     return this.getRemoteFeeds().find(feed => feed.purpose === _callEventTypes.SDPStreamMetadataPurpose.Usermedia);
   }
-
   get remoteScreensharingFeed() {
     return this.getRemoteFeeds().find(feed => feed.purpose === _callEventTypes.SDPStreamMetadataPurpose.Screenshare);
   }
-
   get remoteUsermediaStream() {
     return this.remoteUsermediaFeed?.stream;
   }
-
   get remoteScreensharingStream() {
     return this.remoteScreensharingFeed?.stream;
   }
-
   getFeedByStreamId(streamId) {
     return this.getFeeds().find(feed => feed.stream.id === streamId);
   }
+
   /**
    * Returns an array of all CallFeeds
-   * @returns {Array<CallFeed>} CallFeeds
+   * @returns CallFeeds
    */
-
-
   getFeeds() {
     return this.feeds;
   }
+
   /**
    * Returns an array of all local CallFeeds
-   * @returns {Array<CallFeed>} local CallFeeds
+   * @returns local CallFeeds
    */
-
-
   getLocalFeeds() {
     return this.feeds.filter(feed => feed.isLocal());
   }
+
   /**
    * Returns an array of all remote CallFeeds
-   * @returns {Array<CallFeed>} remote CallFeeds
+   * @returns remote CallFeeds
    */
-
-
   getRemoteFeeds() {
     return this.feeds.filter(feed => !feed.isLocal());
   }
+  async initOpponentCrypto() {
+    if (!this.opponentDeviceId) return;
+    if (!this.client.getUseE2eForGroupCall()) return;
+    // It's possible to want E2EE and yet not have the means to manage E2EE
+    // ourselves (for example if the client is a RoomWidgetClient)
+    if (!this.client.isCryptoEnabled()) {
+      // All we know is the device ID
+      this.opponentDeviceInfo = new _deviceinfo.DeviceInfo(this.opponentDeviceId);
+      return;
+    }
+    // if we've got to this point, we do want to init crypto, so throw if we can't
+    if (!this.client.crypto) throw new Error("Crypto is not initialised.");
+    const userId = this.invitee || this.getOpponentMember()?.userId;
+    if (!userId) throw new Error("Couldn't find opponent user ID to init crypto");
+    const deviceInfoMap = await this.client.crypto.deviceList.downloadKeys([userId], false);
+    this.opponentDeviceInfo = deviceInfoMap.get(userId)?.get(this.opponentDeviceId);
+    if (this.opponentDeviceInfo === undefined) {
+      throw new _groupCall.GroupCallUnknownDeviceError(userId);
+    }
+  }
+
   /**
    * Generates and returns localSDPStreamMetadata
-   * @returns {SDPStreamMetadata} localSDPStreamMetadata
+   * @returns localSDPStreamMetadata
    */
-
-
-  getLocalSDPStreamMetadata() {
+  getLocalSDPStreamMetadata(updateStreamIds = false) {
     const metadata = {};
-
     for (const localFeed of this.getLocalFeeds()) {
-      metadata[localFeed.stream.id] = {
+      if (updateStreamIds) {
+        localFeed.sdpMetadataStreamId = localFeed.stream.id;
+      }
+      metadata[localFeed.sdpMetadataStreamId] = {
         purpose: localFeed.purpose,
         audio_muted: localFeed.isAudioMuted(),
         video_muted: localFeed.isVideoMuted()
       };
     }
-
-    _logger.logger.debug("Got local SDPStreamMetadata", metadata);
-
     return metadata;
   }
+
   /**
    * Returns true if there are no incoming feeds,
    * otherwise returns false
-   * @returns {boolean} no incoming feeds
+   * @returns no incoming feeds
    */
-
-
   noIncomingFeeds() {
     return !this.feeds.some(feed => !feed.isLocal());
   }
-
   pushRemoteFeed(stream) {
     // Fallback to old behavior if the other side doesn't support SDPStreamMetadata
     if (!this.opponentSupportsSDPStreamMetadata()) {
       this.pushRemoteFeedWithoutMetadata(stream);
       return;
     }
-
     const userId = this.getOpponentMember().userId;
     const purpose = this.remoteSDPStreamMetadata[stream.id].purpose;
     const audioMuted = this.remoteSDPStreamMetadata[stream.id].audio_muted;
     const videoMuted = this.remoteSDPStreamMetadata[stream.id].video_muted;
-
     if (!purpose) {
-      _logger.logger.warn(`Ignoring stream with id ${stream.id} because we didn't get any metadata about it`);
-
+      _logger.logger.warn(`Call ${this.callId} pushRemoteFeed() ignoring stream because we didn't get any metadata about it (streamId=${stream.id})`);
       return;
     }
-
     if (this.getFeedByStreamId(stream.id)) {
-      _logger.logger.warn(`Ignoring stream with id ${stream.id} because we already have a feed for it`);
-
+      _logger.logger.warn(`Call ${this.callId} pushRemoteFeed() ignoring stream because we already have a feed for it (streamId=${stream.id})`);
       return;
     }
-
     this.feeds.push(new _callFeed.CallFeed({
       client: this.client,
+      call: this,
       roomId: this.roomId,
       userId,
+      deviceId: this.getOpponentDeviceId(),
       stream,
       purpose,
       audioMuted,
       videoMuted
     }));
     this.emit(CallEvent.FeedsChanged, this.feeds);
-
-    _logger.logger.info(`Pushed remote stream (id="${stream.id}", active="${stream.active}", purpose=${purpose})`);
+    _logger.logger.info(`Call ${this.callId} pushRemoteFeed() pushed stream (streamId=${stream.id}, active=${stream.active}, purpose=${purpose})`);
   }
+
   /**
    * This method is used ONLY if the other client doesn't support sending SDPStreamMetadata
    */
-
-
   pushRemoteFeedWithoutMetadata(stream) {
-    const userId = this.getOpponentMember().userId; // We can guess the purpose here since the other client can only send one stream
-
+    const userId = this.getOpponentMember().userId;
+    // We can guess the purpose here since the other client can only send one stream
     const purpose = _callEventTypes.SDPStreamMetadataPurpose.Usermedia;
-    const oldRemoteStream = this.feeds.find(feed => !feed.isLocal())?.stream; // Note that we check by ID and always set the remote stream: Chrome appears
+    const oldRemoteStream = this.feeds.find(feed => !feed.isLocal())?.stream;
+
+    // Note that we check by ID and always set the remote stream: Chrome appears
     // to make new stream objects when transceiver directionality is changed and the 'active'
     // status of streams change - Dave
     // If we already have a stream, check this stream has the same id
-
     if (oldRemoteStream && stream.id !== oldRemoteStream.id) {
-      _logger.logger.warn(`Ignoring new stream ID ${stream.id}: we already have stream ID ${oldRemoteStream.id}`);
-
+      _logger.logger.warn(`Call ${this.callId} pushRemoteFeedWithoutMetadata() ignoring new stream because we already have stream (streamId=${stream.id})`);
       return;
     }
-
     if (this.getFeedByStreamId(stream.id)) {
-      _logger.logger.warn(`Ignoring stream with id ${stream.id} because we already have a feed for it`);
-
+      _logger.logger.warn(`Call ${this.callId} pushRemoteFeedWithoutMetadata() ignoring stream because we already have a feed for it (streamId=${stream.id})`);
       return;
     }
-
     this.feeds.push(new _callFeed.CallFeed({
       client: this.client,
+      call: this,
       roomId: this.roomId,
       audioMuted: false,
       videoMuted: false,
       userId,
+      deviceId: this.getOpponentDeviceId(),
       stream,
       purpose
     }));
     this.emit(CallEvent.FeedsChanged, this.feeds);
-
-    _logger.logger.info(`Pushed remote stream (id="${stream.id}", active="${stream.active}")`);
+    _logger.logger.info(`Call ${this.callId} pushRemoteFeedWithoutMetadata() pushed stream (streamId=${stream.id}, active=${stream.active})`);
   }
-
   pushNewLocalFeed(stream, purpose, addToPeerConnection = true) {
-    const userId = this.client.getUserId(); // Tracks don't always start off enabled, eg. chrome will give a disabled
+    const userId = this.client.getUserId();
+
+    // Tracks don't always start off enabled, eg. chrome will give a disabled
     // audio track if you ask for user media audio and already had one that
     // you'd set to disabled (presumably because it clones them internally).
-
     setTracksEnabled(stream.getAudioTracks(), true);
     setTracksEnabled(stream.getVideoTracks(), true);
-
     if (this.getFeedByStreamId(stream.id)) {
-      _logger.logger.warn(`Ignoring stream with id ${stream.id} because we already have a feed for it`);
-
+      _logger.logger.warn(`Call ${this.callId} pushNewLocalFeed() ignoring stream because we already have a feed for it (streamId=${stream.id})`);
       return;
     }
-
     this.pushLocalFeed(new _callFeed.CallFeed({
       client: this.client,
       roomId: this.roomId,
       audioMuted: false,
       videoMuted: false,
       userId,
+      deviceId: this.getOpponentDeviceId(),
       stream,
       purpose
     }), addToPeerConnection);
   }
+
   /**
    * Pushes supplied feed to the call
-   * @param {CallFeed} callFeed to push
-   * @param {boolean} addToPeerConnection whether to add the tracks to the peer connection
+   * @param callFeed - to push
+   * @param addToPeerConnection - whether to add the tracks to the peer connection
    */
-
-
   pushLocalFeed(callFeed, addToPeerConnection = true) {
+    if (this.feeds.some(feed => callFeed.stream.id === feed.stream.id)) {
+      _logger.logger.info(`Call ${this.callId} pushLocalFeed() ignoring duplicate local stream (streamId=${callFeed.stream.id})`);
+      return;
+    }
     this.feeds.push(callFeed);
-
     if (addToPeerConnection) {
-      const senderArray = callFeed.purpose === _callEventTypes.SDPStreamMetadataPurpose.Usermedia ? this.usermediaSenders : this.screensharingSenders; // Empty the array
-
-      senderArray.splice(0, senderArray.length);
-
       for (const track of callFeed.stream.getTracks()) {
-        _logger.logger.info(`Adding track (` + `id="${track.id}", ` + `kind="${track.kind}", ` + `streamId="${callFeed.stream.id}", ` + `streamPurpose="${callFeed.purpose}", ` + `enabled=${track.enabled}` + `) to peer connection`);
-
-        senderArray.push(this.peerConn.addTrack(track, callFeed.stream));
+        _logger.logger.info(`Call ${this.callId} pushLocalFeed() adding track to peer connection (id=${track.id}, kind=${track.kind}, streamId=${callFeed.stream.id}, streamPurpose=${callFeed.purpose}, enabled=${track.enabled})`);
+        const tKey = getTransceiverKey(callFeed.purpose, track.kind);
+        if (this.transceivers.has(tKey)) {
+          // we already have a sender, so we re-use it. We try to re-use transceivers as much
+          // as possible because they can't be removed once added, so otherwise they just
+          // accumulate which makes the SDP very large very quickly: in fact it only takes
+          // about 6 video tracks to exceed the maximum size of an Olm-encrypted
+          // Matrix event.
+          const transceiver = this.transceivers.get(tKey);
+
+          // this is what would allow us to use addTransceiver(), but it's not available
+          // on Firefox yet. We call it anyway if we have it.
+          if (transceiver.sender.setStreams) transceiver.sender.setStreams(callFeed.stream);
+          transceiver.sender.replaceTrack(track);
+          // set the direction to indicate we're going to start sending again
+          // (this will trigger the re-negotiation)
+          transceiver.direction = transceiver.direction === "inactive" ? "sendonly" : "sendrecv";
+        } else {
+          // create a new one. We need to use addTrack rather addTransceiver for this because firefox
+          // doesn't yet implement RTCRTPSender.setStreams()
+          // (https://bugzilla.mozilla.org/show_bug.cgi?id=1510802) so we'd have no way to group the
+          // two tracks together into a stream.
+          const newSender = this.peerConn.addTrack(track, callFeed.stream);
+
+          // now go & fish for the new transceiver
+          const newTransceiver = this.peerConn.getTransceivers().find(t => t.sender === newSender);
+          if (newTransceiver) {
+            this.transceivers.set(tKey, newTransceiver);
+          } else {
+            _logger.logger.warn(`Call ${this.callId} pushLocalFeed() didn't find a matching transceiver after adding track!`);
+          }
+        }
       }
     }
-
-    _logger.logger.info(`Pushed local stream ` + `(id="${callFeed.stream.id}", ` + `active="${callFeed.stream.active}", ` + `purpose="${callFeed.purpose}")`);
-
+    _logger.logger.info(`Call ${this.callId} pushLocalFeed() pushed stream (id=${callFeed.stream.id}, active=${callFeed.stream.active}, purpose=${callFeed.purpose})`);
     this.emit(CallEvent.FeedsChanged, this.feeds);
   }
+
   /**
    * Removes local call feed from the call and its tracks from the peer
    * connection
-   * @param callFeed to remove
+   * @param callFeed - to remove
    */
-
-
   removeLocalFeed(callFeed) {
-    const senderArray = callFeed.purpose === _callEventTypes.SDPStreamMetadataPurpose.Usermedia ? this.usermediaSenders : this.screensharingSenders;
-
-    for (const sender of senderArray) {
-      this.peerConn.removeTrack(sender);
-    } // Empty the array
-
-
-    senderArray.splice(0, senderArray.length);
-    this.deleteFeedByStream(callFeed.stream);
+    const audioTransceiverKey = getTransceiverKey(callFeed.purpose, "audio");
+    const videoTransceiverKey = getTransceiverKey(callFeed.purpose, "video");
+    for (const transceiverKey of [audioTransceiverKey, videoTransceiverKey]) {
+      // this is slightly mixing the track and transceiver API but is basically just shorthand.
+      // There is no way to actually remove a transceiver, so this just sets it to inactive
+      // (or recvonly) and replaces the source with nothing.
+      if (this.transceivers.has(transceiverKey)) {
+        const transceiver = this.transceivers.get(transceiverKey);
+        if (transceiver.sender) this.peerConn.removeTrack(transceiver.sender);
+      }
+    }
+    if (callFeed.purpose === _callEventTypes.SDPStreamMetadataPurpose.Screenshare) {
+      this.client.getMediaHandler().stopScreensharingStream(callFeed.stream);
+    }
+    this.deleteFeed(callFeed);
   }
-
   deleteAllFeeds() {
     for (const feed of this.feeds) {
-      feed.dispose();
+      if (!feed.isLocal() || !this.groupCallId) {
+        feed.dispose();
+      }
     }
-
     this.feeds = [];
     this.emit(CallEvent.FeedsChanged, this.feeds);
   }
-
   deleteFeedByStream(stream) {
-    _logger.logger.debug(`Removing feed with stream id ${stream.id}`);
-
     const feed = this.getFeedByStreamId(stream.id);
-
     if (!feed) {
-      _logger.logger.warn(`Didn't find the feed with stream id ${stream.id} to delete`);
-
+      _logger.logger.warn(`Call ${this.callId} deleteFeedByStream() didn't find the feed to delete (streamId=${stream.id})`);
       return;
     }
-
+    this.deleteFeed(feed);
+  }
+  deleteFeed(feed) {
     feed.dispose();
     this.feeds.splice(this.feeds.indexOf(feed), 1);
     this.emit(CallEvent.FeedsChanged, this.feeds);
-  } // The typescript definitions have this type as 'any' :(
-
+  }
 
+  // The typescript definitions have this type as 'any' :(
   async getCurrentCallStats() {
     if (this.callHasEnded()) {
       return this.callStatsAtEnd;
     }
-
     return this.collectCallStats();
   }
-
   async collectCallStats() {
     // This happens when the call fails before it starts.
     // For example when we fail to get capture sources
@@ -860,125 +794,115 @@
     });
     return stats;
   }
+
   /**
    * Configure this call from an invite event. Used by MatrixClient.
-   * @param {MatrixEvent} event The m.call.invite event
+   * @param event - The m.call.invite event
    */
-
-
   async initWithInvite(event) {
     const invite = event.getContent();
-    this.direction = CallDirection.Inbound; // make sure we have valid turn creds. Unless something's gone wrong, it should
-    // poll and keep the credentials valid so this should be instant.
+    this.direction = CallDirection.Inbound;
 
+    // make sure we have valid turn creds. Unless something's gone wrong, it should
+    // poll and keep the credentials valid so this should be instant.
     const haveTurnCreds = await this.client.checkTurnServers();
-
     if (!haveTurnCreds) {
-      _logger.logger.warn("Failed to get TURN credentials! Proceeding with call anyway...");
+      _logger.logger.warn(`Call ${this.callId} initWithInvite() failed to get TURN credentials! Proceeding with call anyway...`);
     }
-
     const sdpStreamMetadata = invite[_callEventTypes.SDPStreamMetadataKey];
-
     if (sdpStreamMetadata) {
       this.updateRemoteSDPStreamMetadata(sdpStreamMetadata);
     } else {
-      _logger.logger.debug("Did not get any SDPStreamMetadata! Can not send/receive multiple streams");
+      _logger.logger.debug(`Call ${this.callId} initWithInvite() did not get any SDPStreamMetadata! Can not send/receive multiple streams`);
     }
-
-    this.peerConn = this.createPeerConnection(); // we must set the party ID before await-ing on anything: the call event
+    this.peerConn = this.createPeerConnection();
+    // we must set the party ID before await-ing on anything: the call event
     // handler will start giving us more call events (eg. candidates) so if
     // we haven't set the party ID, we'll ignore them.
-
     this.chooseOpponent(event);
-
+    await this.initOpponentCrypto();
     try {
       await this.peerConn.setRemoteDescription(invite.offer);
       await this.addBufferedIceCandidates();
     } catch (e) {
-      _logger.logger.debug("Failed to set remote description", e);
-
+      _logger.logger.debug(`Call ${this.callId} initWithInvite() failed to set remote description`, e);
       this.terminate(CallParty.Local, CallErrorCode.SetRemoteDescription, false);
       return;
     }
+    const remoteStream = this.feeds.find(feed => !feed.isLocal())?.stream;
 
-    const remoteStream = this.feeds.find(feed => !feed.isLocal())?.stream; // According to previous comments in this file, firefox at some point did not
+    // According to previous comments in this file, firefox at some point did not
     // add streams until media started arriving on them. Testing latest firefox
     // (81 at time of writing), this is no longer a problem, so let's do it the correct way.
-
-    if (!remoteStream || remoteStream.getTracks().length === 0) {
-      _logger.logger.error("No remote stream or no tracks after setting remote description!");
-
+    //
+    // For example in case of no media webrtc connections like screen share only call we have to allow webrtc
+    // connections without remote media. In this case we always use a data channel. At the moment we allow as well
+    // only data channel as media in the WebRTC connection with this setup here.
+    if (!this.isOnlyDataChannelAllowed && (!remoteStream || remoteStream.getTracks().length === 0)) {
+      _logger.logger.error(`Call ${this.callId} initWithInvite() no remote stream or no tracks after setting remote description!`);
       this.terminate(CallParty.Local, CallErrorCode.SetRemoteDescription, false);
       return;
     }
-
-    this.setState(CallState.Ringing);
-
+    this.state = CallState.Ringing;
     if (event.getLocalAge()) {
-      setTimeout(() => {
+      // Time out the call if it's ringing for too long
+      const ringingTimer = setTimeout(() => {
         if (this.state == CallState.Ringing) {
-          _logger.logger.debug("Call invite has expired. Hanging up.");
-
+          _logger.logger.debug(`Call ${this.callId} initWithInvite() invite has expired. Hanging up.`);
           this.hangupParty = CallParty.Remote; // effectively
-
-          this.setState(CallState.Ended);
+          this.state = CallState.Ended;
           this.stopAllMedia();
-
-          if (this.peerConn.signalingState != 'closed') {
+          if (this.peerConn.signalingState != "closed") {
             this.peerConn.close();
           }
-
-          this.emit(CallEvent.Hangup);
+          this.emit(CallEvent.Hangup, this);
         }
       }, invite.lifetime - event.getLocalAge());
+      const onState = state => {
+        if (state !== CallState.Ringing) {
+          clearTimeout(ringingTimer);
+          this.off(CallEvent.State, onState);
+        }
+      };
+      this.on(CallEvent.State, onState);
     }
   }
+
   /**
    * Configure this call from a hangup or reject event. Used by MatrixClient.
-   * @param {MatrixEvent} event The m.call.hangup event
+   * @param event - The m.call.hangup event
    */
-
-
   initWithHangup(event) {
     // perverse as it may seem, sometimes we want to instantiate a call with a
     // hangup message (because when getting the state of the room on load, events
     // come in reverse order and we want to remember that a call has been hung up)
-    this.setState(CallState.Ended);
+    this.state = CallState.Ended;
   }
-
   shouldAnswerWithMediaType(wantedValue, valueOfTheOtherSide, type) {
     if (wantedValue && !valueOfTheOtherSide) {
       // TODO: Figure out how to do this
-      _logger.logger.warn(`Unable to answer with ${type} because the other side isn't sending it either.`);
-
+      _logger.logger.warn(`Call ${this.callId} shouldAnswerWithMediaType() unable to answer with ${type} because the other side isn't sending it either.`);
       return false;
     } else if (!utils.isNullOrUndefined(wantedValue) && wantedValue !== valueOfTheOtherSide && !this.opponentSupportsSDPStreamMetadata()) {
-      _logger.logger.warn(`Unable to answer with ${type}=${wantedValue} because the other side doesn't support it. ` + `Answering with ${type}=${valueOfTheOtherSide}.`);
-
+      _logger.logger.warn(`Call ${this.callId} shouldAnswerWithMediaType() unable to answer with ${type}=${wantedValue} because the other side doesn't support it. Answering with ${type}=${valueOfTheOtherSide}.`);
       return valueOfTheOtherSide;
     }
-
     return wantedValue ?? valueOfTheOtherSide;
   }
+
   /**
    * Answer a call.
    */
-
-
   async answer(audio, video) {
-    if (this.inviteOrAnswerSent) return; // TODO: Figure out how to do this
-
+    if (this.inviteOrAnswerSent) return;
+    // TODO: Figure out how to do this
     if (audio === false && video === false) throw new Error("You CANNOT answer a call without media");
-
-    _logger.logger.debug(`Answering call ${this.callId}`);
-
     if (!this.localUsermediaStream && !this.waitForLocalAVStream) {
       const prevState = this.state;
       const answerWithAudio = this.shouldAnswerWithMediaType(audio, this.hasRemoteUserMediaAudioTrack, "audio");
       const answerWithVideo = this.shouldAnswerWithMediaType(video, this.hasRemoteUserMediaVideoTrack, "video");
-      this.setState(CallState.WaitLocalMedia);
+      this.state = CallState.WaitLocalMedia;
       this.waitForLocalAVStream = true;
-
       try {
         const stream = await this.client.getMediaHandler().getUserMediaStream(answerWithAudio, answerWithVideo);
         this.waitForLocalAVStream = false;
@@ -986,24 +910,22 @@
           client: this.client,
           roomId: this.roomId,
           userId: this.client.getUserId(),
+          deviceId: this.client.getDeviceId() ?? undefined,
           stream,
           purpose: _callEventTypes.SDPStreamMetadataPurpose.Usermedia,
           audioMuted: false,
           videoMuted: false
         });
         const feeds = [usermediaFeed];
-
         if (this.localScreensharingFeed) {
           feeds.push(this.localScreensharingFeed);
         }
-
         this.answerWithCallFeeds(feeds);
       } catch (e) {
         if (answerWithVideo) {
           // Try to answer without video
-          _logger.logger.warn("Failed to getUserMedia(), trying to getUserMedia() without video");
-
-          this.setState(prevState);
+          _logger.logger.warn(`Call ${this.callId} answer() failed to getUserMedia(), trying to getUserMedia() without video`);
+          this.state = prevState;
           this.waitForLocalAVStream = false;
           await this.answer(answerWithAudio, false);
         } else {
@@ -1012,420 +934,428 @@
         }
       }
     } else if (this.waitForLocalAVStream) {
-      this.setState(CallState.WaitLocalMedia);
+      this.state = CallState.WaitLocalMedia;
     }
   }
-
   answerWithCallFeeds(callFeeds) {
     if (this.inviteOrAnswerSent) return;
-    this.gotCallFeedsForAnswer(callFeeds);
+    this.queueGotCallFeedsForAnswer(callFeeds);
   }
+
   /**
    * Replace this call with a new call, e.g. for glare resolution. Used by
    * MatrixClient.
-   * @param {MatrixCall} newCall The new call.
+   * @param newCall - The new call.
    */
-
-
   replacedBy(newCall) {
+    _logger.logger.debug(`Call ${this.callId} replacedBy() running (newCallId=${newCall.callId})`);
     if (this.state === CallState.WaitLocalMedia) {
-      _logger.logger.debug("Telling new call to wait for local media");
-
+      _logger.logger.debug(`Call ${this.callId} replacedBy() telling new call to wait for local media (newCallId=${newCall.callId})`);
       newCall.waitForLocalAVStream = true;
     } else if ([CallState.CreateOffer, CallState.InviteSent].includes(this.state)) {
-      _logger.logger.debug("Handing local stream to new call");
-
-      newCall.gotCallFeedsForAnswer(this.getLocalFeeds());
+      if (newCall.direction === CallDirection.Outbound) {
+        newCall.queueGotCallFeedsForAnswer([]);
+      } else {
+        _logger.logger.debug(`Call ${this.callId} replacedBy() handing local stream to new call(newCallId=${newCall.callId})`);
+        newCall.queueGotCallFeedsForAnswer(this.getLocalFeeds().map(feed => feed.clone()));
+      }
     }
-
     this.successor = newCall;
     this.emit(CallEvent.Replaced, newCall);
     this.hangup(CallErrorCode.Replaced, true);
   }
+
   /**
    * Hangup a call.
-   * @param {string} reason The reason why the call is being hung up.
-   * @param {boolean} suppressEvent True to suppress emitting an event.
+   * @param reason - The reason why the call is being hung up.
+   * @param suppressEvent - True to suppress emitting an event.
    */
-
-
   hangup(reason, suppressEvent) {
     if (this.callHasEnded()) return;
-
-    _logger.logger.debug("Ending call " + this.callId);
-
-    this.terminate(CallParty.Local, reason, !suppressEvent); // We don't want to send hangup here if we didn't even get to sending an invite
-
-    if (this.state === CallState.WaitLocalMedia) return;
-    const content = {}; // Don't send UserHangup reason to older clients
-
+    _logger.logger.debug(`Call ${this.callId} hangup() ending call (reason=${reason})`);
+    this.terminate(CallParty.Local, reason, !suppressEvent);
+    // We don't want to send hangup here if we didn't even get to sending an invite
+    if ([CallState.Fledgling, CallState.WaitLocalMedia].includes(this.state)) return;
+    const content = {};
+    // Don't send UserHangup reason to older clients
     if (this.opponentVersion && this.opponentVersion !== 0 || reason !== CallErrorCode.UserHangup) {
       content["reason"] = reason;
     }
-
     this.sendVoipEvent(_event.EventType.CallHangup, content);
   }
+
   /**
    * Reject a call
    * This used to be done by calling hangup, but is a separate method and protocol
    * event as of MSC2746.
    */
-
-
   reject() {
     if (this.state !== CallState.Ringing) {
       throw Error("Call must be in 'ringing' state to reject!");
     }
-
     if (this.opponentVersion === 0) {
-      _logger.logger.info(`Opponent version is less than 1 (${this.opponentVersion}): sending hangup instead of reject`);
-
+      _logger.logger.info(`Call ${this.callId} reject() opponent version is less than 1: sending hangup instead of reject (opponentVersion=${this.opponentVersion})`);
       this.hangup(CallErrorCode.UserHangup, true);
       return;
     }
-
     _logger.logger.debug("Rejecting call: " + this.callId);
-
     this.terminate(CallParty.Local, CallErrorCode.UserHangup, true);
     this.sendVoipEvent(_event.EventType.CallReject, {});
   }
+
   /**
    * Adds an audio and/or video track - upgrades the call
-   * @param {boolean} audio should add an audio track
-   * @param {boolean} video should add an video track
+   * @param audio - should add an audio track
+   * @param video - should add an video track
    */
-
-
   async upgradeCall(audio, video) {
     // We don't do call downgrades
     if (!audio && !video) return;
     if (!this.opponentSupportsSDPStreamMetadata()) return;
-
     try {
+      _logger.logger.debug(`Call ${this.callId} upgradeCall() upgrading call (audio=${audio}, video=${video})`);
       const getAudio = audio || this.hasLocalUserMediaAudioTrack;
-      const getVideo = video || this.hasLocalUserMediaVideoTrack; // updateLocalUsermediaStream() will take the tracks, use them as
-      // replacement and throw the stream away, so it isn't reusable
+      const getVideo = video || this.hasLocalUserMediaVideoTrack;
 
+      // updateLocalUsermediaStream() will take the tracks, use them as
+      // replacement and throw the stream away, so it isn't reusable
       const stream = await this.client.getMediaHandler().getUserMediaStream(getAudio, getVideo, false);
       await this.updateLocalUsermediaStream(stream, audio, video);
     } catch (error) {
-      _logger.logger.error("Failed to upgrade the call", error);
-
+      _logger.logger.error(`Call ${this.callId} upgradeCall() failed to upgrade the call`, error);
       this.emit(CallEvent.Error, new CallError(CallErrorCode.NoUserMedia, "Failed to get camera access: ", error));
     }
   }
+
   /**
    * Returns true if this.remoteSDPStreamMetadata is defined, otherwise returns false
-   * @returns {boolean} can screenshare
+   * @returns can screenshare
    */
-
-
   opponentSupportsSDPStreamMetadata() {
     return Boolean(this.remoteSDPStreamMetadata);
   }
+
   /**
    * If there is a screensharing stream returns true, otherwise returns false
-   * @returns {boolean} is screensharing
+   * @returns is screensharing
    */
-
-
   isScreensharing() {
     return Boolean(this.localScreensharingStream);
   }
+
   /**
    * Starts/stops screensharing
-   * @param enabled the desired screensharing state
-   * @param {string} desktopCapturerSourceId optional id of the desktop capturer source to use
-   * @returns {boolean} new screensharing state
+   * @param enabled - the desired screensharing state
+   * @param desktopCapturerSourceId - optional id of the desktop capturer source to use
+   * @returns new screensharing state
    */
-
-
-  async setScreensharingEnabled(enabled, desktopCapturerSourceId) {
+  async setScreensharingEnabled(enabled, opts) {
     // Skip if there is nothing to do
     if (enabled && this.isScreensharing()) {
-      _logger.logger.warn(`There is already a screensharing stream - there is nothing to do!`);
-
+      _logger.logger.warn(`Call ${this.callId} setScreensharingEnabled() there is already a screensharing stream - there is nothing to do!`);
       return true;
     } else if (!enabled && !this.isScreensharing()) {
-      _logger.logger.warn(`There already isn't a screensharing stream - there is nothing to do!`);
-
+      _logger.logger.warn(`Call ${this.callId} setScreensharingEnabled() there already isn't a screensharing stream - there is nothing to do!`);
       return false;
-    } // Fallback to replaceTrack()
-
+    }
 
+    // Fallback to replaceTrack()
     if (!this.opponentSupportsSDPStreamMetadata()) {
-      return this.setScreensharingEnabledWithoutMetadataSupport(enabled, desktopCapturerSourceId);
+      return this.setScreensharingEnabledWithoutMetadataSupport(enabled, opts);
     }
-
-    _logger.logger.debug(`Set screensharing enabled? ${enabled}`);
-
+    _logger.logger.debug(`Call ${this.callId} setScreensharingEnabled() running (enabled=${enabled})`);
     if (enabled) {
       try {
-        const stream = await this.client.getMediaHandler().getScreensharingStream(desktopCapturerSourceId);
+        const stream = await this.client.getMediaHandler().getScreensharingStream(opts);
         if (!stream) return false;
         this.pushNewLocalFeed(stream, _callEventTypes.SDPStreamMetadataPurpose.Screenshare);
         return true;
       } catch (err) {
-        _logger.logger.error("Failed to get screen-sharing stream:", err);
-
+        _logger.logger.error(`Call ${this.callId} setScreensharingEnabled() failed to get screen-sharing stream:`, err);
         return false;
       }
     } else {
-      for (const sender of this.screensharingSenders) {
-        this.peerConn.removeTrack(sender);
+      const audioTransceiver = this.transceivers.get(getTransceiverKey(_callEventTypes.SDPStreamMetadataPurpose.Screenshare, "audio"));
+      const videoTransceiver = this.transceivers.get(getTransceiverKey(_callEventTypes.SDPStreamMetadataPurpose.Screenshare, "video"));
+      for (const transceiver of [audioTransceiver, videoTransceiver]) {
+        // this is slightly mixing the track and transceiver API but is basically just shorthand
+        // for removing the sender.
+        if (transceiver && transceiver.sender) this.peerConn.removeTrack(transceiver.sender);
       }
-
       this.client.getMediaHandler().stopScreensharingStream(this.localScreensharingStream);
       this.deleteFeedByStream(this.localScreensharingStream);
       return false;
     }
   }
+
   /**
    * Starts/stops screensharing
    * Should be used ONLY if the opponent doesn't support SDPStreamMetadata
-   * @param enabled the desired screensharing state
-   * @param {string} desktopCapturerSourceId optional id of the desktop capturer source to use
-   * @returns {boolean} new screensharing state
+   * @param enabled - the desired screensharing state
+   * @param desktopCapturerSourceId - optional id of the desktop capturer source to use
+   * @returns new screensharing state
    */
-
-
-  async setScreensharingEnabledWithoutMetadataSupport(enabled, desktopCapturerSourceId) {
-    _logger.logger.debug(`Set screensharing enabled? ${enabled} using replaceTrack()`);
-
+  async setScreensharingEnabledWithoutMetadataSupport(enabled, opts) {
+    _logger.logger.debug(`Call ${this.callId} setScreensharingEnabledWithoutMetadataSupport() running (enabled=${enabled})`);
     if (enabled) {
       try {
-        const stream = await this.client.getMediaHandler().getScreensharingStream(desktopCapturerSourceId);
+        const stream = await this.client.getMediaHandler().getScreensharingStream(opts);
         if (!stream) return false;
-        const track = stream.getTracks().find(track => {
-          return track.kind === "video";
-        });
-        const sender = this.usermediaSenders.find(sender => {
-          return sender.track?.kind === "video";
-        });
-        sender.replaceTrack(track);
+        const track = stream.getTracks().find(track => track.kind === "video");
+        const sender = this.transceivers.get(getTransceiverKey(_callEventTypes.SDPStreamMetadataPurpose.Usermedia, "video"))?.sender;
+        sender?.replaceTrack(track ?? null);
         this.pushNewLocalFeed(stream, _callEventTypes.SDPStreamMetadataPurpose.Screenshare, false);
         return true;
       } catch (err) {
-        _logger.logger.error("Failed to get screen-sharing stream:", err);
-
+        _logger.logger.error(`Call ${this.callId} setScreensharingEnabledWithoutMetadataSupport() failed to get screen-sharing stream:`, err);
         return false;
       }
     } else {
-      const track = this.localUsermediaStream.getTracks().find(track => {
-        return track.kind === "video";
-      });
-      const sender = this.usermediaSenders.find(sender => {
-        return sender.track?.kind === "video";
-      });
-      sender.replaceTrack(track);
+      const track = this.localUsermediaStream?.getTracks().find(track => track.kind === "video");
+      const sender = this.transceivers.get(getTransceiverKey(_callEventTypes.SDPStreamMetadataPurpose.Usermedia, "video"))?.sender;
+      sender?.replaceTrack(track ?? null);
       this.client.getMediaHandler().stopScreensharingStream(this.localScreensharingStream);
       this.deleteFeedByStream(this.localScreensharingStream);
       return false;
     }
   }
+
   /**
    * Replaces/adds the tracks from the passed stream to the localUsermediaStream
-   * @param {MediaStream} stream to use a replacement for the local usermedia stream
+   * @param stream - to use a replacement for the local usermedia stream
    */
-
-
   async updateLocalUsermediaStream(stream, forceAudio = false, forceVideo = false) {
     const callFeed = this.localUsermediaFeed;
     const audioEnabled = forceAudio || !callFeed.isAudioMuted() && !this.remoteOnHold;
     const videoEnabled = forceVideo || !callFeed.isVideoMuted() && !this.remoteOnHold;
+    _logger.logger.log(`Call ${this.callId} updateLocalUsermediaStream() running (streamId=${stream.id}, audio=${audioEnabled}, video=${videoEnabled})`);
     setTracksEnabled(stream.getAudioTracks(), audioEnabled);
-    setTracksEnabled(stream.getVideoTracks(), videoEnabled); // We want to keep the same stream id, so we replace the tracks rather than the whole stream
+    setTracksEnabled(stream.getVideoTracks(), videoEnabled);
 
+    // We want to keep the same stream id, so we replace the tracks rather
+    // than the whole stream.
+
+    // Firstly, we replace the tracks in our localUsermediaStream.
     for (const track of this.localUsermediaStream.getTracks()) {
       this.localUsermediaStream.removeTrack(track);
       track.stop();
     }
-
     for (const track of stream.getTracks()) {
       this.localUsermediaStream.addTrack(track);
     }
 
-    const newSenders = [];
-
+    // Then replace the old tracks, if possible.
     for (const track of stream.getTracks()) {
-      const oldSender = this.usermediaSenders.find(sender => sender.track?.kind === track.kind);
-      let newSender;
-
+      const tKey = getTransceiverKey(_callEventTypes.SDPStreamMetadataPurpose.Usermedia, track.kind);
+      const transceiver = this.transceivers.get(tKey);
+      const oldSender = transceiver?.sender;
+      let added = false;
       if (oldSender) {
-        _logger.logger.info(`Replacing track (` + `id="${track.id}", ` + `kind="${track.kind}", ` + `streamId="${stream.id}", ` + `streamPurpose="${callFeed.purpose}"` + `) to peer connection`);
-
-        await oldSender.replaceTrack(track);
-        newSender = oldSender;
-      } else {
-        _logger.logger.info(`Adding track (` + `id="${track.id}", ` + `kind="${track.kind}", ` + `streamId="${stream.id}", ` + `streamPurpose="${callFeed.purpose}"` + `) to peer connection`);
-
-        newSender = this.peerConn.addTrack(track, this.localUsermediaStream);
+        try {
+          _logger.logger.info(`Call ${this.callId} updateLocalUsermediaStream() replacing track (id=${track.id}, kind=${track.kind}, streamId=${stream.id}, streamPurpose=${callFeed.purpose})`);
+          await oldSender.replaceTrack(track);
+          // Set the direction to indicate we're going to be sending.
+          // This is only necessary in the cases where we're upgrading
+          // the call to video after downgrading it.
+          transceiver.direction = transceiver.direction === "inactive" ? "sendonly" : "sendrecv";
+          added = true;
+        } catch (error) {
+          _logger.logger.warn(`Call ${this.callId} updateLocalUsermediaStream() replaceTrack failed: adding new transceiver instead`, error);
+        }
+      }
+      if (!added) {
+        _logger.logger.info(`Call ${this.callId} updateLocalUsermediaStream() adding track to peer connection (id=${track.id}, kind=${track.kind}, streamId=${stream.id}, streamPurpose=${callFeed.purpose})`);
+        const newSender = this.peerConn.addTrack(track, this.localUsermediaStream);
+        const newTransceiver = this.peerConn.getTransceivers().find(t => t.sender === newSender);
+        if (newTransceiver) {
+          this.transceivers.set(tKey, newTransceiver);
+        } else {
+          _logger.logger.warn(`Call ${this.callId} updateLocalUsermediaStream() couldn't find matching transceiver for newly added track!`);
+        }
       }
-
-      newSenders.push(newSender);
     }
-
-    this.usermediaSenders = newSenders;
   }
+
   /**
    * Set whether our outbound video should be muted or not.
-   * @param {boolean} muted True to mute the outbound video.
+   * @param muted - True to mute the outbound video.
    * @returns the new mute state
    */
-
-
   async setLocalVideoMuted(muted) {
+    _logger.logger.log(`Call ${this.callId} setLocalVideoMuted() running ${muted}`);
+
+    // if we were still thinking about stopping and removing the video
+    // track: don't, because we want it back.
+    if (!muted && this.stopVideoTrackTimer !== undefined) {
+      clearTimeout(this.stopVideoTrackTimer);
+      this.stopVideoTrackTimer = undefined;
+    }
     if (!(await this.client.getMediaHandler().hasVideoDevice())) {
       return this.isLocalVideoMuted();
     }
-
-    if (!this.hasLocalUserMediaVideoTrack && !muted) {
+    if (!this.hasUserMediaVideoSender && !muted) {
       await this.upgradeCall(false, true);
       return this.isLocalVideoMuted();
     }
 
+    // we may not have a video track - if not, re-request usermedia
+    if (!muted && this.localUsermediaStream.getVideoTracks().length === 0) {
+      const stream = await this.client.getMediaHandler().getUserMediaStream(true, true);
+      await this.updateLocalUsermediaStream(stream);
+    }
     this.localUsermediaFeed?.setAudioVideoMuted(null, muted);
     this.updateMuteStatus();
+    await this.sendMetadataUpdate();
+
+    // if we're muting video, set a timeout to stop & remove the video track so we release
+    // the camera. We wait a short time to do this because when we disable a track, WebRTC
+    // will send black video for it. If we just stop and remove it straight away, the video
+    // will just freeze which means that when we unmute video, the other side will briefly
+    // get a static frame of us from before we muted. This way, the still frame is just black.
+    // A very small delay is not always enough so the theory here is that it needs to be long
+    // enough for WebRTC to encode a frame: 120ms should be long enough even if we're only
+    // doing 10fps.
+    if (muted) {
+      this.stopVideoTrackTimer = setTimeout(() => {
+        for (const t of this.localUsermediaStream.getVideoTracks()) {
+          t.stop();
+          this.localUsermediaStream.removeTrack(t);
+        }
+      }, 120);
+    }
     return this.isLocalVideoMuted();
   }
+
   /**
    * Check if local video is muted.
    *
    * If there are multiple video tracks, <i>all</i> of the tracks need to be muted
    * for this to return true. This means if there are no video tracks, this will
    * return true.
-   * @return {Boolean} True if the local preview video is muted, else false
+   * @returns True if the local preview video is muted, else false
    * (including if the call is not set up yet).
    */
-
-
   isLocalVideoMuted() {
-    return this.localUsermediaFeed?.isVideoMuted();
+    return this.localUsermediaFeed?.isVideoMuted() ?? false;
   }
+
   /**
    * Set whether the microphone should be muted or not.
-   * @param {boolean} muted True to mute the mic.
+   * @param muted - True to mute the mic.
    * @returns the new mute state
    */
-
-
   async setMicrophoneMuted(muted) {
+    _logger.logger.log(`Call ${this.callId} setMicrophoneMuted() running ${muted}`);
     if (!(await this.client.getMediaHandler().hasAudioDevice())) {
       return this.isMicrophoneMuted();
     }
-
-    if (!this.hasLocalUserMediaAudioTrack && !muted) {
+    if (!muted && (!this.hasUserMediaAudioSender || !this.hasLocalUserMediaAudioTrack)) {
       await this.upgradeCall(true, false);
       return this.isMicrophoneMuted();
     }
-
     this.localUsermediaFeed?.setAudioVideoMuted(muted, null);
     this.updateMuteStatus();
+    await this.sendMetadataUpdate();
     return this.isMicrophoneMuted();
   }
+
   /**
    * Check if the microphone is muted.
    *
    * If there are multiple audio tracks, <i>all</i> of the tracks need to be muted
    * for this to return true. This means if there are no audio tracks, this will
    * return true.
-   * @return {Boolean} True if the mic is muted, else false (including if the call
+   * @returns True if the mic is muted, else false (including if the call
    * is not set up yet).
    */
-
-
   isMicrophoneMuted() {
-    return this.localUsermediaFeed?.isAudioMuted();
+    return this.localUsermediaFeed?.isAudioMuted() ?? false;
   }
+
   /**
    * @returns true if we have put the party on the other side of the call on hold
    * (that is, we are signalling to them that we are not listening)
    */
-
-
   isRemoteOnHold() {
     return this.remoteOnHold;
   }
-
   setRemoteOnHold(onHold) {
     if (this.isRemoteOnHold() === onHold) return;
     this.remoteOnHold = onHold;
-
     for (const transceiver of this.peerConn.getTransceivers()) {
       // We don't send hold music or anything so we're not actually
       // sending anything, but sendrecv is fairly standard for hold and
       // it makes it a lot easier to figure out who's put who on hold.
-      transceiver.direction = onHold ? 'sendonly' : 'sendrecv';
+      transceiver.direction = onHold ? "sendonly" : "sendrecv";
     }
-
     this.updateMuteStatus();
+    this.sendMetadataUpdate();
     this.emit(CallEvent.RemoteHoldUnhold, this.remoteOnHold);
   }
+
   /**
    * Indicates whether we are 'on hold' to the remote party (ie. if true,
    * they cannot hear us).
    * @returns true if the other party has put us on hold
    */
-
-
   isLocalOnHold() {
     if (this.state !== CallState.Connected) return false;
-    let callOnHold = true; // We consider a call to be on hold only if *all* the tracks are on hold
-    // (is this the right thing to do?)
+    let callOnHold = true;
 
+    // We consider a call to be on hold only if *all* the tracks are on hold
+    // (is this the right thing to do?)
     for (const transceiver of this.peerConn.getTransceivers()) {
-      const trackOnHold = ['inactive', 'recvonly'].includes(transceiver.currentDirection);
+      const trackOnHold = ["inactive", "recvonly"].includes(transceiver.currentDirection);
       if (!trackOnHold) callOnHold = false;
     }
-
     return callOnHold;
   }
+
   /**
    * Sends a DTMF digit to the other party
-   * @param digit The digit (nb. string - '#' and '*' are dtmf too)
+   * @param digit - The digit (nb. string - '#' and '*' are dtmf too)
    */
-
-
   sendDtmfDigit(digit) {
     for (const sender of this.peerConn.getSenders()) {
-      if (sender.track.kind === 'audio' && sender.dtmf) {
+      if (sender.track?.kind === "audio" && sender.dtmf) {
         sender.dtmf.insertDTMF(digit);
         return;
       }
     }
-
     throw new Error("Unable to find a track to send DTMF on");
   }
-
   updateMuteStatus() {
-    this.sendVoipEvent(_event.EventType.CallSDPStreamMetadataChangedPrefix, {
-      [_callEventTypes.SDPStreamMetadataKey]: this.getLocalSDPStreamMetadata()
-    });
     const micShouldBeMuted = this.isMicrophoneMuted() || this.remoteOnHold;
     const vidShouldBeMuted = this.isLocalVideoMuted() || this.remoteOnHold;
+    _logger.logger.log(`Call ${this.callId} updateMuteStatus stream ${this.localUsermediaStream.id} micShouldBeMuted ${micShouldBeMuted} vidShouldBeMuted ${vidShouldBeMuted}`);
     setTracksEnabled(this.localUsermediaStream.getAudioTracks(), !micShouldBeMuted);
     setTracksEnabled(this.localUsermediaStream.getVideoTracks(), !vidShouldBeMuted);
   }
-
-  gotCallFeedsForInvite(callFeeds) {
+  async sendMetadataUpdate() {
+    await this.sendVoipEvent(_event.EventType.CallSDPStreamMetadataChangedPrefix, {
+      [_callEventTypes.SDPStreamMetadataKey]: this.getLocalSDPStreamMetadata()
+    });
+  }
+  gotCallFeedsForInvite(callFeeds, requestScreenshareFeed = false) {
     if (this.successor) {
-      this.successor.gotCallFeedsForAnswer(callFeeds);
+      this.successor.queueGotCallFeedsForAnswer(callFeeds);
       return;
     }
-
     if (this.callHasEnded()) {
       this.stopAllMedia();
       return;
     }
-
     for (const feed of callFeeds) {
       this.pushLocalFeed(feed);
     }
-
-    this.setState(CallState.CreateOffer);
-
-    _logger.logger.debug("gotUserMediaForInvite"); // Now we wait for the negotiationneeded event
-
+    if (requestScreenshareFeed) {
+      this.peerConn.addTransceiver("video", {
+        direction: "recvonly"
+      });
+    }
+    this.state = CallState.CreateOffer;
+    _logger.logger.debug(`Call ${this.callId} gotUserMediaForInvite() run`);
+    // Now we wait for the negotiationneeded event
   }
 
   async sendAnswer() {
@@ -1436,168 +1366,207 @@
         // required to still be sent for backwards compat
         type: this.peerConn.localDescription.type
       },
-      [_callEventTypes.SDPStreamMetadataKey]: this.getLocalSDPStreamMetadata()
+      [_callEventTypes.SDPStreamMetadataKey]: this.getLocalSDPStreamMetadata(true)
     };
     answerContent.capabilities = {
-      'm.call.transferee': this.client.supportsCallTransfer,
-      'm.call.dtmf': false
-    }; // We have just taken the local description from the peerConn which will
+      "m.call.transferee": this.client.supportsCallTransfer,
+      "m.call.dtmf": false
+    };
+
+    // We have just taken the local description from the peerConn which will
     // contain all the local candidates added so far, so we can discard any candidates
     // we had queued up because they'll be in the answer.
-
-    _logger.logger.info(`Discarding ${this.candidateSendQueue.length} candidates that will be sent in answer`);
-
-    this.candidateSendQueue = [];
-
+    const discardCount = this.discardDuplicateCandidates();
+    _logger.logger.info(`Call ${this.callId} sendAnswer() discarding ${discardCount} candidates that will be sent in answer`);
     try {
-      await this.sendVoipEvent(_event.EventType.CallAnswer, answerContent); // If this isn't the first time we've tried to send the answer,
+      await this.sendVoipEvent(_event.EventType.CallAnswer, answerContent);
+      // If this isn't the first time we've tried to send the answer,
       // we may have candidates queued up, so send them now.
-
       this.inviteOrAnswerSent = true;
     } catch (error) {
       // We've failed to answer: back to the ringing state
-      this.setState(CallState.Ringing);
-      this.client.cancelPendingEvent(error.event);
+      this.state = CallState.Ringing;
+      if (error instanceof _httpApi.MatrixError && error.event) this.client.cancelPendingEvent(error.event);
       let code = CallErrorCode.SendAnswer;
       let message = "Failed to send answer";
-
-      if (error.name == 'UnknownDeviceError') {
+      if (error.name == "UnknownDeviceError") {
         code = CallErrorCode.UnknownDevices;
         message = "Unknown devices present in the room";
       }
-
       this.emit(CallEvent.Error, new CallError(code, message, error));
       throw error;
-    } // error handler re-throws so this won't happen on error, but
-    // we don't want the same error handling on the candidate queue
-
+    }
 
+    // error handler re-throws so this won't happen on error, but
+    // we don't want the same error handling on the candidate queue
     this.sendCandidateQueue();
   }
-
+  queueGotCallFeedsForAnswer(callFeeds) {
+    // Ensure only one negotiate/answer event is being processed at a time.
+    if (this.responsePromiseChain) {
+      this.responsePromiseChain = this.responsePromiseChain.then(() => this.gotCallFeedsForAnswer(callFeeds));
+    } else {
+      this.responsePromiseChain = this.gotCallFeedsForAnswer(callFeeds);
+    }
+  }
+
+  // Enables DTX (discontinuous transmission) on the given session to reduce
+  // bandwidth when transmitting silence
+  mungeSdp(description, mods) {
+    // The only way to enable DTX at this time is through SDP munging
+    const sdp = (0, _sdpTransform.parse)(description.sdp);
+    sdp.media.forEach(media => {
+      const payloadTypeToCodecMap = new Map();
+      const codecToPayloadTypeMap = new Map();
+      for (const rtp of media.rtp) {
+        payloadTypeToCodecMap.set(rtp.payload, rtp.codec);
+        codecToPayloadTypeMap.set(rtp.codec, rtp.payload);
+      }
+      for (const mod of mods) {
+        if (mod.mediaType !== media.type) continue;
+        if (!codecToPayloadTypeMap.has(mod.codec)) {
+          _logger.logger.info(`Call ${this.callId} mungeSdp() ignoring SDP modifications for ${mod.codec} as it's not present.`);
+          continue;
+        }
+        const extraConfig = [];
+        if (mod.enableDtx !== undefined) {
+          extraConfig.push(`usedtx=${mod.enableDtx ? "1" : "0"}`);
+        }
+        if (mod.maxAverageBitrate !== undefined) {
+          extraConfig.push(`maxaveragebitrate=${mod.maxAverageBitrate}`);
+        }
+        let found = false;
+        for (const fmtp of media.fmtp) {
+          if (payloadTypeToCodecMap.get(fmtp.payload) === mod.codec) {
+            found = true;
+            fmtp.config += ";" + extraConfig.join(";");
+          }
+        }
+        if (!found) {
+          media.fmtp.push({
+            payload: codecToPayloadTypeMap.get(mod.codec),
+            config: extraConfig.join(";")
+          });
+        }
+      }
+    });
+    description.sdp = (0, _sdpTransform.write)(sdp);
+  }
+  async createOffer() {
+    const offer = await this.peerConn.createOffer();
+    this.mungeSdp(offer, getCodecParamMods(this.isPtt));
+    return offer;
+  }
+  async createAnswer() {
+    const answer = await this.peerConn.createAnswer();
+    this.mungeSdp(answer, getCodecParamMods(this.isPtt));
+    return answer;
+  }
   async gotCallFeedsForAnswer(callFeeds) {
     if (this.callHasEnded()) return;
     this.waitForLocalAVStream = false;
-
     for (const feed of callFeeds) {
       this.pushLocalFeed(feed);
     }
-
-    this.setState(CallState.CreateAnswer);
-    let myAnswer;
-
+    this.state = CallState.CreateAnswer;
+    let answer;
     try {
       this.getRidOfRTXCodecs();
-      myAnswer = await this.peerConn.createAnswer();
+      answer = await this.createAnswer();
     } catch (err) {
-      _logger.logger.debug("Failed to create answer: ", err);
-
+      _logger.logger.debug(`Call ${this.callId} gotCallFeedsForAnswer() failed to create answer: `, err);
       this.terminate(CallParty.Local, CallErrorCode.CreateAnswer, true);
       return;
     }
-
     try {
-      await this.peerConn.setLocalDescription(myAnswer);
-      this.setState(CallState.Connecting); // Allow a short time for initial candidates to be gathered
+      await this.peerConn.setLocalDescription(answer);
+
+      // make sure we're still going
+      if (this.callHasEnded()) return;
+      this.state = CallState.Connecting;
 
+      // Allow a short time for initial candidates to be gathered
       await new Promise(resolve => {
         setTimeout(resolve, 200);
       });
+
+      // make sure the call hasn't ended before we continue
+      if (this.callHasEnded()) return;
       this.sendAnswer();
     } catch (err) {
-      _logger.logger.debug("Error setting local description!", err);
-
+      _logger.logger.debug(`Call ${this.callId} gotCallFeedsForAnswer() error setting local description!`, err);
       this.terminate(CallParty.Local, CallErrorCode.SetLocalDescription, true);
       return;
     }
   }
+
   /**
    * Internal
-   * @param {Object} event
    */
 
-
   async onRemoteIceCandidatesReceived(ev) {
     if (this.callHasEnded()) {
       //debuglog("Ignoring remote ICE candidate because call has ended");
       return;
     }
-
     const content = ev.getContent();
     const candidates = content.candidates;
-
     if (!candidates) {
-      _logger.logger.info("Ignoring candidates event with no candidates!");
-
+      _logger.logger.info(`Call ${this.callId} onRemoteIceCandidatesReceived() ignoring candidates event with no candidates!`);
       return;
     }
-
     const fromPartyId = content.version === 0 ? null : content.party_id || null;
-
     if (this.opponentPartyId === undefined) {
       // we haven't picked an opponent yet so save the candidates
-      _logger.logger.info(`Buffering ${candidates.length} candidates until we pick an opponent`);
-
-      const bufferedCandidates = this.remoteCandidateBuffer.get(fromPartyId) || [];
-      bufferedCandidates.push(...candidates);
-      this.remoteCandidateBuffer.set(fromPartyId, bufferedCandidates);
+      if (fromPartyId) {
+        _logger.logger.info(`Call ${this.callId} onRemoteIceCandidatesReceived() buffering ${candidates.length} candidates until we pick an opponent`);
+        const bufferedCandidates = this.remoteCandidateBuffer.get(fromPartyId) || [];
+        bufferedCandidates.push(...candidates);
+        this.remoteCandidateBuffer.set(fromPartyId, bufferedCandidates);
+      }
       return;
     }
-
     if (!this.partyIdMatches(content)) {
-      _logger.logger.info(`Ignoring candidates from party ID ${content.party_id}: ` + `we have chosen party ID ${this.opponentPartyId}`);
-
+      _logger.logger.info(`Call ${this.callId} onRemoteIceCandidatesReceived() ignoring candidates from party ID ${content.party_id}: we have chosen party ID ${this.opponentPartyId}`);
       return;
     }
-
     await this.addIceCandidates(candidates);
   }
+
   /**
    * Used by MatrixClient.
-   * @param {Object} msg
    */
-
-
   async onAnswerReceived(event) {
     const content = event.getContent();
-
-    _logger.logger.debug(`Got answer for call ID ${this.callId} from party ID ${content.party_id}`);
-
+    _logger.logger.debug(`Call ${this.callId} onAnswerReceived() running (hangupParty=${content.party_id})`);
     if (this.callHasEnded()) {
-      _logger.logger.debug(`Ignoring answer because call ID ${this.callId} has ended`);
-
+      _logger.logger.debug(`Call ${this.callId} onAnswerReceived() ignoring answer because call has ended`);
       return;
     }
-
     if (this.opponentPartyId !== undefined) {
-      _logger.logger.info(`Ignoring answer from party ID ${content.party_id}: ` + `we already have an answer/reject from ${this.opponentPartyId}`);
-
+      _logger.logger.info(`Call ${this.callId} onAnswerReceived() ignoring answer from party ID ${content.party_id}: we already have an answer/reject from ${this.opponentPartyId}`);
       return;
     }
-
     this.chooseOpponent(event);
     await this.addBufferedIceCandidates();
-    this.setState(CallState.Connecting);
+    this.state = CallState.Connecting;
     const sdpStreamMetadata = content[_callEventTypes.SDPStreamMetadataKey];
-
     if (sdpStreamMetadata) {
       this.updateRemoteSDPStreamMetadata(sdpStreamMetadata);
     } else {
-      _logger.logger.warn("Did not get any SDPStreamMetadata! Can not send/receive multiple streams");
+      _logger.logger.warn(`Call ${this.callId} onAnswerReceived() did not get any SDPStreamMetadata! Can not send/receive multiple streams`);
     }
-
     try {
       await this.peerConn.setRemoteDescription(content.answer);
     } catch (e) {
-      _logger.logger.debug("Failed to set remote description", e);
-
+      _logger.logger.debug(`Call ${this.callId} onAnswerReceived() failed to set remote description`, e);
       this.terminate(CallParty.Local, CallErrorCode.SetRemoteDescription, false);
       return;
-    } // If the answer we selected has a party_id, send a select_answer event
+    }
+
+    // If the answer we selected has a party_id, send a select_answer event
     // We do this after setting the remote description since otherwise we'd block
     // call setup on it
-
-
     if (this.opponentPartyId !== null) {
       try {
         await this.sendVoipEvent(_event.EventType.CallSelectAnswer, {
@@ -1606,96 +1575,83 @@
       } catch (err) {
         // This isn't fatal, and will just mean that if another party has raced to answer
         // the call, they won't know they got rejected, so we carry on & don't retry.
-        _logger.logger.warn("Failed to send select_answer event", err);
+        _logger.logger.warn(`Call ${this.callId} onAnswerReceived() failed to send select_answer event`, err);
       }
     }
   }
-
   async onSelectAnswerReceived(event) {
     if (this.direction !== CallDirection.Inbound) {
-      _logger.logger.warn("Got select_answer for an outbound call: ignoring");
-
+      _logger.logger.warn(`Call ${this.callId} onSelectAnswerReceived() got select_answer for an outbound call: ignoring`);
       return;
     }
-
     const selectedPartyId = event.getContent().selected_party_id;
-
     if (selectedPartyId === undefined || selectedPartyId === null) {
-      _logger.logger.warn("Got nonsensical select_answer with null/undefined selected_party_id: ignoring");
-
+      _logger.logger.warn(`Call ${this.callId} onSelectAnswerReceived() got nonsensical select_answer with null/undefined selected_party_id: ignoring`);
       return;
     }
-
     if (selectedPartyId !== this.ourPartyId) {
-      _logger.logger.info(`Got select_answer for party ID ${selectedPartyId}: we are party ID ${this.ourPartyId}.`); // The other party has picked somebody else's answer
-
-
+      _logger.logger.info(`Call ${this.callId} onSelectAnswerReceived() got select_answer for party ID ${selectedPartyId}: we are party ID ${this.ourPartyId}.`);
+      // The other party has picked somebody else's answer
       await this.terminate(CallParty.Remote, CallErrorCode.AnsweredElsewhere, true);
     }
   }
-
   async onNegotiateReceived(event) {
     const content = event.getContent();
     const description = content.description;
-
     if (!description || !description.sdp || !description.type) {
-      _logger.logger.info("Ignoring invalid m.call.negotiate event");
-
+      _logger.logger.info(`Call ${this.callId} onNegotiateReceived() ignoring invalid m.call.negotiate event`);
       return;
-    } // Politeness always follows the direction of the call: in a glare situation,
+    }
+    // Politeness always follows the direction of the call: in a glare situation,
     // we pick either the inbound or outbound call, so one side will always be
     // inbound and one outbound
+    const polite = this.direction === CallDirection.Inbound;
 
-
-    const polite = this.direction === CallDirection.Inbound; // Here we follow the perfect negotiation logic from
+    // Here we follow the perfect negotiation logic from
     // https://developer.mozilla.org/en-US/docs/Web/API/WebRTC_API/Perfect_negotiation
-
-    const offerCollision = description.type === 'offer' && (this.makingOffer || this.peerConn.signalingState !== 'stable');
+    const offerCollision = description.type === "offer" && (this.makingOffer || this.peerConn.signalingState !== "stable");
     this.ignoreOffer = !polite && offerCollision;
-
     if (this.ignoreOffer) {
-      _logger.logger.info("Ignoring colliding negotiate event because we're impolite");
-
+      _logger.logger.info(`Call ${this.callId} onNegotiateReceived() ignoring colliding negotiate event because we're impolite`);
       return;
     }
-
     const prevLocalOnHold = this.isLocalOnHold();
     const sdpStreamMetadata = content[_callEventTypes.SDPStreamMetadataKey];
-
     if (sdpStreamMetadata) {
       this.updateRemoteSDPStreamMetadata(sdpStreamMetadata);
     } else {
-      _logger.logger.warn("Received negotiation event without SDPStreamMetadata!");
+      _logger.logger.warn(`Call ${this.callId} onNegotiateReceived() received negotiation event without SDPStreamMetadata!`);
     }
-
     try {
       await this.peerConn.setRemoteDescription(description);
-
-      if (description.type === 'offer') {
-        this.getRidOfRTXCodecs();
-        const localDescription = await this.peerConn.createAnswer();
-        await this.peerConn.setLocalDescription(localDescription);
+      if (description.type === "offer") {
+        let answer;
+        try {
+          this.getRidOfRTXCodecs();
+          answer = await this.createAnswer();
+        } catch (err) {
+          _logger.logger.debug(`Call ${this.callId} onNegotiateReceived() failed to create answer: `, err);
+          this.terminate(CallParty.Local, CallErrorCode.CreateAnswer, true);
+          return;
+        }
+        await this.peerConn.setLocalDescription(answer);
         this.sendVoipEvent(_event.EventType.CallNegotiate, {
-          description: this.peerConn.localDescription,
-          [_callEventTypes.SDPStreamMetadataKey]: this.getLocalSDPStreamMetadata()
+          description: this.peerConn.localDescription?.toJSON(),
+          [_callEventTypes.SDPStreamMetadataKey]: this.getLocalSDPStreamMetadata(true)
         });
       }
     } catch (err) {
-      _logger.logger.warn("Failed to complete negotiation", err);
+      _logger.logger.warn(`Call ${this.callId} onNegotiateReceived() failed to complete negotiation`, err);
     }
-
     const newLocalOnHold = this.isLocalOnHold();
-
     if (prevLocalOnHold !== newLocalOnHold) {
-      this.emit(CallEvent.LocalHoldUnhold, newLocalOnHold); // also this one for backwards compat
-
+      this.emit(CallEvent.LocalHoldUnhold, newLocalOnHold);
+      // also this one for backwards compat
       this.emit(CallEvent.HoldUnhold, newLocalOnHold);
     }
   }
-
   updateRemoteSDPStreamMetadata(metadata) {
     this.remoteSDPStreamMetadata = utils.recursivelyAssign(this.remoteSDPStreamMetadata || {}, metadata, true);
-
     for (const feed of this.getRemoteFeeds()) {
       const streamId = feed.stream.id;
       const metadata = this.remoteSDPStreamMetadata[streamId];
@@ -1703,13 +1659,11 @@
       feed.purpose = this.remoteSDPStreamMetadata[streamId]?.purpose;
     }
   }
-
   onSDPStreamMetadataChangedReceived(event) {
     const content = event.getContent();
     const metadata = content[_callEventTypes.SDPStreamMetadataKey];
     this.updateRemoteSDPStreamMetadata(metadata);
   }
-
   async onAssertedIdentityReceived(event) {
     const content = event.getContent();
     if (!content.asserted_identity) return;
@@ -1719,14 +1673,118 @@
     };
     this.emit(CallEvent.AssertedIdentityChanged);
   }
-
   callHasEnded() {
     // This exists as workaround to typescript trying to be clever and erroring
     // when putting if (this.state === CallState.Ended) return; twice in the same
     // function, even though that function is async.
     return this.state === CallState.Ended;
   }
+  queueGotLocalOffer() {
+    // Ensure only one negotiate/answer event is being processed at a time.
+    if (this.responsePromiseChain) {
+      this.responsePromiseChain = this.responsePromiseChain.then(() => this.wrappedGotLocalOffer());
+    } else {
+      this.responsePromiseChain = this.wrappedGotLocalOffer();
+    }
+  }
+  async wrappedGotLocalOffer() {
+    this.makingOffer = true;
+    try {
+      await this.gotLocalOffer();
+    } catch (e) {
+      this.getLocalOfferFailed(e);
+      return;
+    } finally {
+      this.makingOffer = false;
+    }
+  }
+  async gotLocalOffer() {
+    _logger.logger.debug(`Call ${this.callId} gotLocalOffer() running`);
+    if (this.callHasEnded()) {
+      _logger.logger.debug(`Call ${this.callId} gotLocalOffer() ignoring newly created offer because the call has ended"`);
+      return;
+    }
+    let offer;
+    try {
+      this.getRidOfRTXCodecs();
+      offer = await this.createOffer();
+    } catch (err) {
+      _logger.logger.debug(`Call ${this.callId} gotLocalOffer() failed to create offer: `, err);
+      this.terminate(CallParty.Local, CallErrorCode.CreateOffer, true);
+      return;
+    }
+    try {
+      await this.peerConn.setLocalDescription(offer);
+    } catch (err) {
+      _logger.logger.debug(`Call ${this.callId} gotLocalOffer() error setting local description!`, err);
+      this.terminate(CallParty.Local, CallErrorCode.SetLocalDescription, true);
+      return;
+    }
+    if (this.peerConn.iceGatheringState === "gathering") {
+      // Allow a short time for initial candidates to be gathered
+      await new Promise(resolve => {
+        setTimeout(resolve, 200);
+      });
+    }
+    if (this.callHasEnded()) return;
+    const eventType = this.state === CallState.CreateOffer ? _event.EventType.CallInvite : _event.EventType.CallNegotiate;
+    const content = {
+      lifetime: CALL_TIMEOUT_MS
+    };
+    if (eventType === _event.EventType.CallInvite && this.invitee) {
+      content.invitee = this.invitee;
+    }
+
+    // clunky because TypeScript can't follow the types through if we use an expression as the key
+    if (this.state === CallState.CreateOffer) {
+      content.offer = this.peerConn.localDescription?.toJSON();
+    } else {
+      content.description = this.peerConn.localDescription?.toJSON();
+    }
+    content.capabilities = {
+      "m.call.transferee": this.client.supportsCallTransfer,
+      "m.call.dtmf": false
+    };
+    content[_callEventTypes.SDPStreamMetadataKey] = this.getLocalSDPStreamMetadata(true);
+
+    // Get rid of any candidates waiting to be sent: they'll be included in the local
+    // description we just got and will send in the offer.
+    const discardCount = this.discardDuplicateCandidates();
+    _logger.logger.info(`Call ${this.callId} gotLocalOffer() discarding ${discardCount} candidates that will be sent in offer`);
+    try {
+      await this.sendVoipEvent(eventType, content);
+    } catch (error) {
+      _logger.logger.error(`Call ${this.callId} gotLocalOffer() failed to send invite`, error);
+      if (error instanceof _httpApi.MatrixError && error.event) this.client.cancelPendingEvent(error.event);
+      let code = CallErrorCode.SignallingFailed;
+      let message = "Signalling failed";
+      if (this.state === CallState.CreateOffer) {
+        code = CallErrorCode.SendInvite;
+        message = "Failed to send invite";
+      }
+      if (error.name == "UnknownDeviceError") {
+        code = CallErrorCode.UnknownDevices;
+        message = "Unknown devices present in the room";
+      }
+      this.emit(CallEvent.Error, new CallError(code, message, error));
+      this.terminate(CallParty.Local, code, false);
 
+      // no need to carry on & send the candidate queue, but we also
+      // don't want to rethrow the error
+      return;
+    }
+    this.sendCandidateQueue();
+    if (this.state === CallState.CreateOffer) {
+      this.inviteOrAnswerSent = true;
+      this.state = CallState.InviteSent;
+      this.inviteTimeout = setTimeout(() => {
+        this.inviteTimeout = undefined;
+        if (this.state === CallState.InviteSent) {
+          this.hangup(CallErrorCode.InviteTimeout, false);
+        }
+      }, CALL_TIMEOUT_MS);
+    }
+  }
   /**
    * This method removes all video/rtx codecs from screensharing video
    * transceivers. This is necessary since they can cause problems. Without
@@ -1746,74 +1804,129 @@
     const recvCodecs = RTCRtpReceiver.getCapabilities("video").codecs;
     const sendCodecs = RTCRtpSender.getCapabilities("video").codecs;
     const codecs = [...sendCodecs, ...recvCodecs];
-
     for (const codec of codecs) {
       if (codec.mimeType === "video/rtx") {
         const rtxCodecIndex = codecs.indexOf(codec);
         codecs.splice(rtxCodecIndex, 1);
       }
     }
-
-    for (const trans of this.peerConn.getTransceivers()) {
-      if (this.screensharingSenders.includes(trans.sender) && (trans.sender.track?.kind === "video" || trans.receiver.track?.kind === "video")) {
-        trans.setCodecPreferences(codecs);
-      }
-    }
-  }
-
-  setState(state) {
-    const oldState = this.state;
-    this.state = state;
-    this.emit(CallEvent.State, state, oldState);
+    const screenshareVideoTransceiver = this.transceivers.get(getTransceiverKey(_callEventTypes.SDPStreamMetadataPurpose.Screenshare, "video"));
+    if (screenshareVideoTransceiver) screenshareVideoTransceiver.setCodecPreferences(codecs);
   }
   /**
-   * Internal
-   * @param {string} eventType
-   * @param {Object} content
-   * @return {Promise}
+   * @internal
    */
-
-
-  sendVoipEvent(eventType, content) {
-    return this.client.sendEvent(this.roomId, eventType, Object.assign({}, content, {
+  async sendVoipEvent(eventType, content) {
+    const realContent = Object.assign({}, content, {
       version: VOIP_PROTO_VERSION,
       call_id: this.callId,
-      party_id: this.ourPartyId
-    }));
+      party_id: this.ourPartyId,
+      conf_id: this.groupCallId
+    });
+    if (this.opponentDeviceId) {
+      const toDeviceSeq = this.toDeviceSeq++;
+      const content = _objectSpread(_objectSpread({}, realContent), {}, {
+        device_id: this.client.deviceId,
+        sender_session_id: this.client.getSessionId(),
+        dest_session_id: this.opponentSessionId,
+        seq: toDeviceSeq,
+        [_event.ToDeviceMessageId]: (0, _uuid.v4)()
+      });
+      this.emit(CallEvent.SendVoipEvent, {
+        type: "toDevice",
+        eventType,
+        userId: this.invitee || this.getOpponentMember()?.userId,
+        opponentDeviceId: this.opponentDeviceId,
+        content
+      });
+      const userId = this.invitee || this.getOpponentMember().userId;
+      if (this.client.getUseE2eForGroupCall()) {
+        if (!this.opponentDeviceInfo) {
+          _logger.logger.warn(`Call ${this.callId} sendVoipEvent() failed: we do not have opponentDeviceInfo`);
+          return;
+        }
+        await this.client.encryptAndSendToDevices([{
+          userId,
+          deviceInfo: this.opponentDeviceInfo
+        }], {
+          type: eventType,
+          content
+        });
+      } else {
+        await this.client.sendToDevice(eventType, new Map([[userId, new Map([[this.opponentDeviceId, content]])]]));
+      }
+    } else {
+      this.emit(CallEvent.SendVoipEvent, {
+        type: "sendEvent",
+        eventType,
+        roomId: this.roomId,
+        content: realContent,
+        userId: this.invitee || this.getOpponentMember()?.userId
+      });
+      await this.client.sendEvent(this.roomId, eventType, realContent);
+    }
   }
 
+  /**
+   * Queue a candidate to be sent
+   * @param content - The candidate to queue up, or null if candidates have finished being generated
+   *                and end-of-candidates should be signalled
+   */
   queueCandidate(content) {
     // We partially de-trickle candidates by waiting for `delay` before sending them
     // amalgamated, in order to avoid sending too many m.call.candidates events and hitting
     // rate limits in Matrix.
     // In practice, it'd be better to remove rate limits for m.call.*
+
     // N.B. this deliberately lets you queue and send blank candidates, which MSC2746
     // currently proposes as the way to indicate that candidate gathering is complete.
     // This will hopefully be changed to an explicit rather than implicit notification
     // shortly.
-    this.candidateSendQueue.push(content); // Don't send the ICE candidates yet if the call is in the ringing state: this
+    if (content) {
+      this.candidateSendQueue.push(content);
+    } else {
+      this.candidatesEnded = true;
+    }
+
+    // Don't send the ICE candidates yet if the call is in the ringing state: this
     // means we tried to pick (ie. started generating candidates) and then failed to
     // send the answer and went back to the ringing state. Queue up the candidates
     // to send if we successfully send the answer.
     // Equally don't send if we haven't yet sent the answer because we can send the
     // first batch of candidates along with the answer
+    if (this.state === CallState.Ringing || !this.inviteOrAnswerSent) return;
 
-    if (this.state === CallState.Ringing || !this.inviteOrAnswerSent) return; // MSC2746 recommends these values (can be quite long when calling because the
+    // MSC2746 recommends these values (can be quite long when calling because the
     // callee will need a while to answer the call)
-
     const delay = this.direction === CallDirection.Inbound ? 500 : 2000;
-
     if (this.candidateSendTries === 0) {
       setTimeout(() => {
         this.sendCandidateQueue();
       }, delay);
     }
   }
+
+  // Discard all non-end-of-candidates messages
+  // Return the number of candidate messages that were discarded.
+  // Call this method before sending an invite or answer message
+  discardDuplicateCandidates() {
+    let discardCount = 0;
+    const newQueue = [];
+    for (let i = 0; i < this.candidateSendQueue.length; i++) {
+      const candidate = this.candidateSendQueue[i];
+      if (candidate.candidate === "") {
+        newQueue.push(candidate);
+      } else {
+        discardCount++;
+      }
+    }
+    this.candidateSendQueue = newQueue;
+    return discardCount;
+  }
+
   /*
    * Transfers this call to another user
    */
-
-
   async transfer(targetUserId) {
     // Fetch the target user's global profile info: their room avatar / displayname
     // could be different in whatever room we share with them.
@@ -1829,26 +1942,27 @@
       create_call: replacementId
     };
     await this.sendVoipEvent(_event.EventType.CallReplaces, body);
-    await this.terminate(CallParty.Local, CallErrorCode.Transfered, true);
+    await this.terminate(CallParty.Local, CallErrorCode.Transferred, true);
   }
+
   /*
    * Transfers this call to the target call, effectively 'joining' the
    * two calls (so the remote parties on each call are connected together).
    */
-
-
   async transferToCall(transferTargetCall) {
-    const targetProfileInfo = await this.client.getProfileInfo(transferTargetCall.getOpponentMember().userId);
-    const transfereeProfileInfo = await this.client.getProfileInfo(this.getOpponentMember().userId);
+    const targetUserId = transferTargetCall.getOpponentMember()?.userId;
+    const targetProfileInfo = targetUserId ? await this.client.getProfileInfo(targetUserId) : undefined;
+    const opponentUserId = this.getOpponentMember()?.userId;
+    const transfereeProfileInfo = opponentUserId ? await this.client.getProfileInfo(opponentUserId) : undefined;
     const newCallId = genCallID();
     const bodyToTransferTarget = {
       // the replacements on each side have their own ID, and it's distinct from the
       // ID of the new call (but we can use the same function to generate it)
       replacement_id: genCallID(),
       target_user: {
-        id: this.getOpponentMember().userId,
-        display_name: transfereeProfileInfo.displayname,
-        avatar_url: transfereeProfileInfo.avatar_url
+        id: opponentUserId,
+        display_name: transfereeProfileInfo?.displayname,
+        avatar_url: transfereeProfileInfo?.avatar_url
       },
       await_call: newCallId
     };
@@ -1856,142 +1970,151 @@
     const bodyToTransferee = {
       replacement_id: genCallID(),
       target_user: {
-        id: transferTargetCall.getOpponentMember().userId,
-        display_name: targetProfileInfo.displayname,
-        avatar_url: targetProfileInfo.avatar_url
+        id: targetUserId,
+        display_name: targetProfileInfo?.displayname,
+        avatar_url: targetProfileInfo?.avatar_url
       },
       create_call: newCallId
     };
     await this.sendVoipEvent(_event.EventType.CallReplaces, bodyToTransferee);
-    await this.terminate(CallParty.Local, CallErrorCode.Transfered, true);
-    await transferTargetCall.terminate(CallParty.Local, CallErrorCode.Transfered, true);
+    await this.terminate(CallParty.Local, CallErrorCode.Transferred, true);
+    await transferTargetCall.terminate(CallParty.Local, CallErrorCode.Transferred, true);
   }
-
   async terminate(hangupParty, hangupReason, shouldEmit) {
     if (this.callHasEnded()) return;
-    this.callStatsAtEnd = await this.collectCallStats();
-
+    this.hangupParty = hangupParty;
+    this.hangupReason = hangupReason;
+    this.state = CallState.Ended;
     if (this.inviteTimeout) {
       clearTimeout(this.inviteTimeout);
-      this.inviteTimeout = null;
+      this.inviteTimeout = undefined;
+    }
+    if (this.iceDisconnectedTimeout !== undefined) {
+      clearTimeout(this.iceDisconnectedTimeout);
+      this.iceDisconnectedTimeout = undefined;
     }
-
     if (this.callLengthInterval) {
       clearInterval(this.callLengthInterval);
-      this.callLengthInterval = null;
-    } // Order is important here: first we stopAllMedia() and only then we can deleteAllFeeds()
-    // We don't stop media if the call was replaced as we want to re-use streams in the successor
-
+      this.callLengthInterval = undefined;
+    }
+    if (this.stopVideoTrackTimer !== undefined) {
+      clearTimeout(this.stopVideoTrackTimer);
+      this.stopVideoTrackTimer = undefined;
+    }
+    for (const [stream, listener] of this.removeTrackListeners) {
+      stream.removeEventListener("removetrack", listener);
+    }
+    this.removeTrackListeners.clear();
+    this.callStatsAtEnd = await this.collectCallStats();
 
-    if (hangupReason !== CallErrorCode.Replaced) this.stopAllMedia();
+    // Order is important here: first we stopAllMedia() and only then we can deleteAllFeeds()
+    this.stopAllMedia();
     this.deleteAllFeeds();
-    this.hangupParty = hangupParty;
-    this.hangupReason = hangupReason;
-    this.setState(CallState.Ended);
-
-    if (this.peerConn && this.peerConn.signalingState !== 'closed') {
+    if (this.peerConn && this.peerConn.signalingState !== "closed") {
       this.peerConn.close();
     }
-
     if (shouldEmit) {
-      this.emit(CallEvent.Hangup);
+      this.emit(CallEvent.Hangup, this);
     }
+    this.client.callEventHandler.calls.delete(this.callId);
   }
-
   stopAllMedia() {
-    _logger.logger.debug("Stopping all media for call", this.callId);
-
+    _logger.logger.debug(`Call ${this.callId} stopAllMedia() running`);
     for (const feed of this.feeds) {
+      // Slightly awkward as local feed need to go via the correct method on
+      // the MediaHandler so they get removed from MediaHandler (remote tracks
+      // don't)
+      // NB. We clone local streams when passing them to individual calls in a group
+      // call, so we can (and should) stop the clones once we no longer need them:
+      // the other clones will continue fine.
       if (feed.isLocal() && feed.purpose === _callEventTypes.SDPStreamMetadataPurpose.Usermedia) {
         this.client.getMediaHandler().stopUserMediaStream(feed.stream);
       } else if (feed.isLocal() && feed.purpose === _callEventTypes.SDPStreamMetadataPurpose.Screenshare) {
         this.client.getMediaHandler().stopScreensharingStream(feed.stream);
-      } else {
-        _logger.logger.debug("Stopping remote stream", feed.stream.id);
-
+      } else if (!feed.isLocal()) {
+        _logger.logger.debug(`Call ${this.callId} stopAllMedia() stopping stream (streamId=${feed.stream.id})`);
         for (const track of feed.stream.getTracks()) {
           track.stop();
         }
       }
     }
   }
-
   checkForErrorListener() {
     if (this.listeners(_typedEventEmitter.EventEmitterEvents.Error).length === 0) {
       throw new Error("You MUST attach an error listener using call.on('error', function() {})");
     }
   }
-
   async sendCandidateQueue() {
-    if (this.candidateSendQueue.length === 0) {
+    if (this.candidateSendQueue.length === 0 || this.callHasEnded()) {
       return;
     }
-
     const candidates = this.candidateSendQueue;
     this.candidateSendQueue = [];
     ++this.candidateSendTries;
     const content = {
-      candidates: candidates
+      candidates: candidates.map(candidate => candidate.toJSON())
     };
-
-    _logger.logger.debug("Attempting to send " + candidates.length + " candidates");
-
+    if (this.candidatesEnded) {
+      // If there are no more candidates, signal this by adding an empty string candidate
+      content.candidates.push({
+        candidate: ""
+      });
+    }
+    _logger.logger.debug(`Call ${this.callId} sendCandidateQueue() attempting to send ${candidates.length} candidates`);
     try {
-      await this.sendVoipEvent(_event.EventType.CallCandidates, content); // reset our retry count if we have successfully sent our candidates
+      await this.sendVoipEvent(_event.EventType.CallCandidates, content);
+      // reset our retry count if we have successfully sent our candidates
       // otherwise queueCandidate() will refuse to try to flush the queue
-
       this.candidateSendTries = 0;
+
+      // Try to send candidates again just in case we received more candidates while sending.
+      this.sendCandidateQueue();
     } catch (error) {
       // don't retry this event: we'll send another one later as we might
       // have more candidates by then.
-      if (error.event) this.client.cancelPendingEvent(error.event); // put all the candidates we failed to send back in the queue
+      if (error instanceof _httpApi.MatrixError && error.event) this.client.cancelPendingEvent(error.event);
 
+      // put all the candidates we failed to send back in the queue
       this.candidateSendQueue.push(...candidates);
-
       if (this.candidateSendTries > 5) {
-        _logger.logger.debug("Failed to send candidates on attempt " + this.candidateSendTries + ". Giving up on this call.", error);
-
+        _logger.logger.debug(`Call ${this.callId} sendCandidateQueue() failed to send candidates on attempt ${this.candidateSendTries}. Giving up on this call.`, error);
         const code = CallErrorCode.SignallingFailed;
         const message = "Signalling failed";
         this.emit(CallEvent.Error, new CallError(code, message, error));
         this.hangup(code, false);
         return;
       }
-
       const delayMs = 500 * Math.pow(2, this.candidateSendTries);
       ++this.candidateSendTries;
-
-      _logger.logger.debug("Failed to send candidates. Retrying in " + delayMs + "ms", error);
-
+      _logger.logger.debug(`Call ${this.callId} sendCandidateQueue() failed to send candidates. Retrying in ${delayMs}ms`, error);
       setTimeout(() => {
         this.sendCandidateQueue();
       }, delayMs);
     }
   }
+
   /**
    * Place a call to this room.
    * @throws if you have not specified a listener for 'error' events.
    * @throws if have passed audio=false.
    */
-
-
   async placeCall(audio, video) {
     if (!audio) {
       throw new Error("You CANNOT start a call without audio");
     }
-
-    this.setState(CallState.WaitLocalMedia);
-
+    this.state = CallState.WaitLocalMedia;
     try {
-      const stream = await this.client.getMediaHandler().getUserMediaStream(audio, video); // make sure all the tracks are enabled (same as pushNewLocalFeed -
-      // we probably ought to just have one code path for adding streams)
+      const stream = await this.client.getMediaHandler().getUserMediaStream(audio, video);
 
+      // make sure all the tracks are enabled (same as pushNewLocalFeed -
+      // we probably ought to just have one code path for adding streams)
       setTracksEnabled(stream.getAudioTracks(), true);
       setTracksEnabled(stream.getVideoTracks(), true);
       const callFeed = new _callFeed.CallFeed({
         client: this.client,
         roomId: this.roomId,
         userId: this.client.getUserId(),
+        deviceId: this.client.getDeviceId() ?? undefined,
         stream,
         purpose: _callEventTypes.SDPStreamMetadataPurpose.Usermedia,
         audioMuted: false,
@@ -2003,50 +2126,51 @@
       return;
     }
   }
+
   /**
    * Place a call to this room with call feed.
-   * @param {CallFeed[]} callFeeds to use
+   * @param callFeeds - to use
    * @throws if you have not specified a listener for 'error' events.
    * @throws if have passed audio=false.
    */
-
-
-  async placeCallWithCallFeeds(callFeeds) {
+  async placeCallWithCallFeeds(callFeeds, requestScreenshareFeed = false) {
     this.checkForErrorListener();
-    this.direction = CallDirection.Outbound; // XXX Find a better way to do this
+    this.direction = CallDirection.Outbound;
+    await this.initOpponentCrypto();
 
-    this.client.callEventHandler.calls.set(this.callId, this); // make sure we have valid turn creds. Unless something's gone wrong, it should
-    // poll and keep the credentials valid so this should be instant.
+    // XXX Find a better way to do this
+    this.client.callEventHandler.calls.set(this.callId, this);
 
+    // make sure we have valid turn creds. Unless something's gone wrong, it should
+    // poll and keep the credentials valid so this should be instant.
     const haveTurnCreds = await this.client.checkTurnServers();
-
     if (!haveTurnCreds) {
-      _logger.logger.warn("Failed to get TURN credentials! Proceeding with call anyway...");
-    } // create the peer connection now so it can be gathering candidates while we get user
-    // media (assuming a candidate pool size is configured)
-
+      _logger.logger.warn(`Call ${this.callId} placeCallWithCallFeeds() failed to get TURN credentials! Proceeding with call anyway...`);
+    }
 
+    // create the peer connection now so it can be gathering candidates while we get user
+    // media (assuming a candidate pool size is configured)
     this.peerConn = this.createPeerConnection();
-    this.gotCallFeedsForInvite(callFeeds);
+    this.gotCallFeedsForInvite(callFeeds, requestScreenshareFeed);
   }
-
   createPeerConnection() {
     const pc = new window.RTCPeerConnection({
-      iceTransportPolicy: this.forceTURN ? 'relay' : undefined,
+      iceTransportPolicy: this.forceTURN ? "relay" : undefined,
       iceServers: this.turnServers,
-      iceCandidatePoolSize: this.client.iceCandidatePoolSize
-    }); // 'connectionstatechange' would be better, but firefox doesn't implement that.
+      iceCandidatePoolSize: this.client.iceCandidatePoolSize,
+      bundlePolicy: "max-bundle"
+    });
 
-    pc.addEventListener('iceconnectionstatechange', this.onIceConnectionStateChanged);
-    pc.addEventListener('signalingstatechange', this.onSignallingStateChanged);
-    pc.addEventListener('icecandidate', this.gotLocalIceCandidate);
-    pc.addEventListener('icegatheringstatechange', this.onIceGatheringStateChange);
-    pc.addEventListener('track', this.onTrack);
-    pc.addEventListener('negotiationneeded', this.onNegotiationNeeded);
-    pc.addEventListener('datachannel', this.onDataChannel);
+    // 'connectionstatechange' would be better, but firefox doesn't implement that.
+    pc.addEventListener("iceconnectionstatechange", this.onIceConnectionStateChanged);
+    pc.addEventListener("signalingstatechange", this.onSignallingStateChanged);
+    pc.addEventListener("icecandidate", this.gotLocalIceCandidate);
+    pc.addEventListener("icegatheringstatechange", this.onIceGatheringStateChange);
+    pc.addEventListener("track", this.onTrack);
+    pc.addEventListener("negotiationneeded", this.onNegotiationNeeded);
+    pc.addEventListener("datachannel", this.onDataChannel);
     return pc;
   }
-
   partyIdMatches(msg) {
     // They must either match or both be absent (in which case opponentPartyId will be null)
     // Also we ignore party IDs on the invite/offer if the version is 0, so we must do the same
@@ -2054,18 +2178,15 @@
     // same call with different versions)
     const msgPartyId = msg.version === 0 ? null : msg.party_id || null;
     return msgPartyId === this.opponentPartyId;
-  } // Commits to an opponent for the call
-  // ev: An invite or answer event
-
+  }
 
+  // Commits to an opponent for the call
+  // ev: An invite or answer event
   chooseOpponent(ev) {
     // I choo-choo-choose you
     const msg = ev.getContent();
-
-    _logger.logger.debug(`Choosing party ID ${msg.party_id} for call ID ${this.callId}`);
-
+    _logger.logger.debug(`Call ${this.callId} chooseOpponent() running (partyId=${msg.party_id})`);
     this.opponentVersion = msg.version;
-
     if (this.opponentVersion === 0) {
       // set to null to indicate that we've chosen an opponent, but because
       // they're v0 they have no party ID (even if they sent one, we're ignoring it)
@@ -2076,112 +2197,93 @@
       // party ID
       this.opponentPartyId = msg.party_id || null;
     }
-
     this.opponentCaps = msg.capabilities || {};
-    this.opponentMember = ev.sender;
+    this.opponentMember = this.client.getRoom(this.roomId).getMember(ev.getSender()) ?? undefined;
   }
-
   async addBufferedIceCandidates() {
     const bufferedCandidates = this.remoteCandidateBuffer.get(this.opponentPartyId);
-
     if (bufferedCandidates) {
-      _logger.logger.info(`Adding ${bufferedCandidates.length} buffered candidates for opponent ${this.opponentPartyId}`);
-
+      _logger.logger.info(`Call ${this.callId} addBufferedIceCandidates() adding ${bufferedCandidates.length} buffered candidates for opponent ${this.opponentPartyId}`);
       await this.addIceCandidates(bufferedCandidates);
     }
-
-    this.remoteCandidateBuffer = null;
+    this.remoteCandidateBuffer.clear();
   }
-
   async addIceCandidates(candidates) {
     for (const candidate of candidates) {
       if ((candidate.sdpMid === null || candidate.sdpMid === undefined) && (candidate.sdpMLineIndex === null || candidate.sdpMLineIndex === undefined)) {
-        _logger.logger.debug("Ignoring remote ICE candidate with no sdpMid or sdpMLineIndex");
-
-        continue;
+        _logger.logger.debug(`Call ${this.callId} addIceCandidates() got remote ICE end-of-candidates`);
+      } else {
+        _logger.logger.debug(`Call ${this.callId} addIceCandidates() got remote ICE candidate (sdpMid=${candidate.sdpMid}, candidate=${candidate.candidate})`);
       }
-
-      _logger.logger.debug("Call " + this.callId + " got remote ICE " + candidate.sdpMid + " candidate: " + candidate.candidate);
-
       try {
         await this.peerConn.addIceCandidate(candidate);
       } catch (err) {
         if (!this.ignoreOffer) {
-          _logger.logger.info("Failed to add remote ICE candidate", err);
+          _logger.logger.info(`Call ${this.callId} addIceCandidates() failed to add remote ICE candidate`, err);
         }
       }
     }
   }
-
   get hasPeerConnection() {
     return Boolean(this.peerConn);
   }
-
 }
-
 exports.MatrixCall = MatrixCall;
-
 function setTracksEnabled(tracks, enabled) {
-  for (let i = 0; i < tracks.length; i++) {
-    tracks[i].enabled = enabled;
+  for (const track of tracks) {
+    track.enabled = enabled;
   }
 }
-
 function supportsMatrixCall() {
   // typeof prevents Node from erroring on an undefined reference
-  if (typeof window === 'undefined' || typeof document === 'undefined') {
+  if (typeof window === "undefined" || typeof document === "undefined") {
     // NB. We don't log here as apps try to create a call object as a test for
     // whether calls are supported, so we shouldn't fill the logs up.
     return false;
-  } // Firefox throws on so little as accessing the RTCPeerConnection when operating in a secure mode.
+  }
+
+  // Firefox throws on so little as accessing the RTCPeerConnection when operating in a secure mode.
   // There's some information at https://bugzilla.mozilla.org/show_bug.cgi?id=1542616 though the concern
   // is that the browser throwing a SecurityError will brick the client creation process.
-
-
   try {
     const supported = Boolean(window.RTCPeerConnection || window.RTCSessionDescription || window.RTCIceCandidate || navigator.mediaDevices);
-
     if (!supported) {
-      /* istanbul ignore if */
-      // Adds a lot of noise to test runs, so disable logging there.
+      /* istanbul ignore if */ // Adds a lot of noise to test runs, so disable logging there.
       if (process.env.NODE_ENV !== "test") {
         _logger.logger.error("WebRTC is not supported in this browser / environment");
       }
-
       return false;
     }
   } catch (e) {
     _logger.logger.error("Exception thrown when trying to access WebRTC", e);
-
     return false;
   }
-
   return true;
 }
+
 /**
  * DEPRECATED
  * Use client.createCall()
  *
  * Create a new Matrix call for the browser.
- * @param {MatrixClient} client The client instance to use.
- * @param {string} roomId The room the call is in.
- * @param {Object?} options DEPRECATED optional options map.
- * @param {boolean} options.forceTURN DEPRECATED whether relay through TURN should be
- * forced. This option is deprecated - use opts.forceTURN when creating the matrix client
- * since it's only possible to set this option on outbound calls.
- * @return {MatrixCall} the call or null if the browser doesn't support calling.
+ * @param client - The client instance to use.
+ * @param roomId - The room the call is in.
+ * @param options - DEPRECATED optional options map.
+ * @returns the call or null if the browser doesn't support calling.
  */
-
-
 function createNewMatrixCall(client, roomId, options) {
   if (!supportsMatrixCall()) return null;
   const optionsForceTURN = options ? options.forceTURN : false;
   const opts = {
     client: client,
     roomId: roomId,
+    invitee: options?.invitee,
     turnServers: client.getTurnServers(),
     // call level options
-    forceTURN: client.forceTURN || optionsForceTURN
+    forceTURN: client.forceTURN || optionsForceTURN,
+    opponentDeviceId: options?.opponentDeviceId,
+    opponentSessionId: options?.opponentSessionId,
+    groupCallId: options?.groupCallId
   };
   const call = new MatrixCall(opts);
   client.reEmitter.reEmit(call, Object.values(CallEvent));
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/groupCallEventHandler.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/groupCallEventHandler.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/groupCallEventHandler.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/groupCallEventHandler.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,169 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.GroupCallEventHandlerEvent = exports.GroupCallEventHandler = void 0;
+var _client = require("../client");
+var _groupCall = require("./groupCall");
+var _roomState = require("../models/room-state");
+var _logger = require("../logger");
+var _event = require("../@types/event");
+var _sync = require("../sync");
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+let GroupCallEventHandlerEvent;
+exports.GroupCallEventHandlerEvent = GroupCallEventHandlerEvent;
+(function (GroupCallEventHandlerEvent) {
+  GroupCallEventHandlerEvent["Incoming"] = "GroupCall.incoming";
+  GroupCallEventHandlerEvent["Outgoing"] = "GroupCall.outgoing";
+  GroupCallEventHandlerEvent["Ended"] = "GroupCall.ended";
+  GroupCallEventHandlerEvent["Participants"] = "GroupCall.participants";
+})(GroupCallEventHandlerEvent || (exports.GroupCallEventHandlerEvent = GroupCallEventHandlerEvent = {}));
+class GroupCallEventHandler {
+  // roomId -> GroupCall
+
+  // All rooms we know about and whether we've seen a 'Room' event
+  // for them. The promise will be fulfilled once we've processed that
+  // event which means we're "up to date" on what calls are in a room
+  // and get
+
+  constructor(client) {
+    this.client = client;
+    _defineProperty(this, "groupCalls", new Map());
+    _defineProperty(this, "roomDeferreds", new Map());
+    _defineProperty(this, "onRoomsChanged", room => {
+      this.createGroupCallForRoom(room);
+    });
+    _defineProperty(this, "onRoomStateChanged", (event, state) => {
+      const eventType = event.getType();
+      if (eventType === _event.EventType.GroupCallPrefix) {
+        const groupCallId = event.getStateKey();
+        const content = event.getContent();
+        const currentGroupCall = this.groupCalls.get(state.roomId);
+        if (!currentGroupCall && !content["m.terminated"]) {
+          this.createGroupCallFromRoomStateEvent(event);
+        } else if (currentGroupCall && currentGroupCall.groupCallId === groupCallId) {
+          if (content["m.terminated"]) {
+            currentGroupCall.terminate(false);
+          } else if (content["m.type"] !== currentGroupCall.type) {
+            // TODO: Handle the callType changing when the room state changes
+            _logger.logger.warn(`GroupCallEventHandler onRoomStateChanged() currently does not support changing type (roomId=${state.roomId})`);
+          }
+        } else if (currentGroupCall && currentGroupCall.groupCallId !== groupCallId) {
+          // TODO: Handle new group calls and multiple group calls
+          _logger.logger.warn(`GroupCallEventHandler onRoomStateChanged() currently does not support multiple calls (roomId=${state.roomId})`);
+        }
+      }
+    });
+  }
+  async start() {
+    // We wait until the client has started syncing for real.
+    // This is because we only support one call at a time, and want
+    // the latest. We therefore want the latest state of the room before
+    // we create a group call for the room so we can be fairly sure that
+    // the group call we create is really the latest one.
+    if (this.client.getSyncState() !== _sync.SyncState.Syncing) {
+      _logger.logger.debug("GroupCallEventHandler start() waiting for client to start syncing");
+      await new Promise(resolve => {
+        const onSync = () => {
+          if (this.client.getSyncState() === _sync.SyncState.Syncing) {
+            this.client.off(_client.ClientEvent.Sync, onSync);
+            return resolve();
+          }
+        };
+        this.client.on(_client.ClientEvent.Sync, onSync);
+      });
+    }
+    const rooms = this.client.getRooms();
+    for (const room of rooms) {
+      this.createGroupCallForRoom(room);
+    }
+    this.client.on(_client.ClientEvent.Room, this.onRoomsChanged);
+    this.client.on(_roomState.RoomStateEvent.Events, this.onRoomStateChanged);
+  }
+  stop() {
+    this.client.removeListener(_roomState.RoomStateEvent.Events, this.onRoomStateChanged);
+  }
+  getRoomDeferred(roomId) {
+    let deferred = this.roomDeferreds.get(roomId);
+    if (deferred === undefined) {
+      let resolveFunc;
+      deferred = {
+        prom: new Promise(resolve => {
+          resolveFunc = resolve;
+        })
+      };
+      deferred.resolve = resolveFunc;
+      this.roomDeferreds.set(roomId, deferred);
+    }
+    return deferred;
+  }
+  waitUntilRoomReadyForGroupCalls(roomId) {
+    return this.getRoomDeferred(roomId).prom;
+  }
+  getGroupCallById(groupCallId) {
+    return [...this.groupCalls.values()].find(groupCall => groupCall.groupCallId === groupCallId);
+  }
+  createGroupCallForRoom(room) {
+    const callEvents = room.currentState.getStateEvents(_event.EventType.GroupCallPrefix);
+    const sortedCallEvents = callEvents.sort((a, b) => b.getTs() - a.getTs());
+    for (const callEvent of sortedCallEvents) {
+      const content = callEvent.getContent();
+      if (content["m.terminated"]) {
+        continue;
+      }
+      _logger.logger.debug(`GroupCallEventHandler createGroupCallForRoom() choosing group call from possible calls (stateKey=${callEvent.getStateKey()}, ts=${callEvent.getTs()}, roomId=${room.roomId}, numOfPossibleCalls=${callEvents.length})`);
+      this.createGroupCallFromRoomStateEvent(callEvent);
+      break;
+    }
+    _logger.logger.info(`GroupCallEventHandler createGroupCallForRoom() processed room (roomId=${room.roomId})`);
+    this.getRoomDeferred(room.roomId).resolve();
+  }
+  createGroupCallFromRoomStateEvent(event) {
+    const roomId = event.getRoomId();
+    const content = event.getContent();
+    const room = this.client.getRoom(roomId);
+    if (!room) {
+      _logger.logger.warn(`GroupCallEventHandler createGroupCallFromRoomStateEvent() couldn't find room for call (roomId=${roomId})`);
+      return;
+    }
+    const groupCallId = event.getStateKey();
+    const callType = content["m.type"];
+    if (!Object.values(_groupCall.GroupCallType).includes(callType)) {
+      _logger.logger.warn(`GroupCallEventHandler createGroupCallFromRoomStateEvent() received invalid call type (type=${callType}, roomId=${roomId})`);
+      return;
+    }
+    const callIntent = content["m.intent"];
+    if (!Object.values(_groupCall.GroupCallIntent).includes(callIntent)) {
+      _logger.logger.warn(`Received invalid group call intent (type=${callType}, roomId=${roomId})`);
+      return;
+    }
+    const isPtt = Boolean(content["io.element.ptt"]);
+    let dataChannelOptions;
+    if (content?.dataChannelsEnabled && content?.dataChannelOptions) {
+      // Pull out just the dataChannelOptions we want to support.
+      const {
+        ordered,
+        maxPacketLifeTime,
+        maxRetransmits,
+        protocol
+      } = content.dataChannelOptions;
+      dataChannelOptions = {
+        ordered,
+        maxPacketLifeTime,
+        maxRetransmits,
+        protocol
+      };
+    }
+    const groupCall = new _groupCall.GroupCall(this.client, room, callType, isPtt, callIntent, groupCallId,
+    // Because without Media section a WebRTC connection is not possible, so need a RTCDataChannel to set up a
+    // no media WebRTC connection anyway.
+    content?.dataChannelsEnabled || this.client.isVoipWithNoMediaAllowed, dataChannelOptions, this.client.isVoipWithNoMediaAllowed);
+    this.groupCalls.set(room.roomId, groupCall);
+    this.client.emit(GroupCallEventHandlerEvent.Incoming, groupCall);
+    return groupCall;
+  }
+}
+exports.GroupCallEventHandler = GroupCallEventHandler;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/groupCall.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/groupCall.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/groupCall.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/groupCall.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,1101 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.OtherUserSpeakingError = exports.GroupCallUnknownDeviceError = exports.GroupCallType = exports.GroupCallTerminationReason = exports.GroupCallState = exports.GroupCallIntent = exports.GroupCallEvent = exports.GroupCallErrorCode = exports.GroupCallError = exports.GroupCall = void 0;
+var _typedEventEmitter = require("../models/typed-event-emitter");
+var _callFeed = require("./callFeed");
+var _call = require("./call");
+var _roomState = require("../models/room-state");
+var _logger = require("../logger");
+var _ReEmitter = require("../ReEmitter");
+var _callEventTypes = require("./callEventTypes");
+var _event = require("../@types/event");
+var _callEventHandler = require("./callEventHandler");
+var _groupCallEventHandler = require("./groupCallEventHandler");
+var _utils = require("../utils");
+function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
+function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+let GroupCallIntent;
+exports.GroupCallIntent = GroupCallIntent;
+(function (GroupCallIntent) {
+  GroupCallIntent["Ring"] = "m.ring";
+  GroupCallIntent["Prompt"] = "m.prompt";
+  GroupCallIntent["Room"] = "m.room";
+})(GroupCallIntent || (exports.GroupCallIntent = GroupCallIntent = {}));
+let GroupCallType;
+exports.GroupCallType = GroupCallType;
+(function (GroupCallType) {
+  GroupCallType["Video"] = "m.video";
+  GroupCallType["Voice"] = "m.voice";
+})(GroupCallType || (exports.GroupCallType = GroupCallType = {}));
+let GroupCallTerminationReason;
+exports.GroupCallTerminationReason = GroupCallTerminationReason;
+(function (GroupCallTerminationReason) {
+  GroupCallTerminationReason["CallEnded"] = "call_ended";
+})(GroupCallTerminationReason || (exports.GroupCallTerminationReason = GroupCallTerminationReason = {}));
+let GroupCallEvent;
+exports.GroupCallEvent = GroupCallEvent;
+(function (GroupCallEvent) {
+  GroupCallEvent["GroupCallStateChanged"] = "group_call_state_changed";
+  GroupCallEvent["ActiveSpeakerChanged"] = "active_speaker_changed";
+  GroupCallEvent["CallsChanged"] = "calls_changed";
+  GroupCallEvent["UserMediaFeedsChanged"] = "user_media_feeds_changed";
+  GroupCallEvent["ScreenshareFeedsChanged"] = "screenshare_feeds_changed";
+  GroupCallEvent["LocalScreenshareStateChanged"] = "local_screenshare_state_changed";
+  GroupCallEvent["LocalMuteStateChanged"] = "local_mute_state_changed";
+  GroupCallEvent["ParticipantsChanged"] = "participants_changed";
+  GroupCallEvent["Error"] = "error";
+})(GroupCallEvent || (exports.GroupCallEvent = GroupCallEvent = {}));
+let GroupCallErrorCode;
+exports.GroupCallErrorCode = GroupCallErrorCode;
+(function (GroupCallErrorCode) {
+  GroupCallErrorCode["NoUserMedia"] = "no_user_media";
+  GroupCallErrorCode["UnknownDevice"] = "unknown_device";
+  GroupCallErrorCode["PlaceCallFailed"] = "place_call_failed";
+})(GroupCallErrorCode || (exports.GroupCallErrorCode = GroupCallErrorCode = {}));
+class GroupCallError extends Error {
+  constructor(code, msg, err) {
+    // Still don't think there's any way to have proper nested errors
+    if (err) {
+      super(msg + ": " + err);
+      _defineProperty(this, "code", void 0);
+    } else {
+      super(msg);
+      _defineProperty(this, "code", void 0);
+    }
+    this.code = code;
+  }
+}
+exports.GroupCallError = GroupCallError;
+class GroupCallUnknownDeviceError extends GroupCallError {
+  constructor(userId) {
+    super(GroupCallErrorCode.UnknownDevice, "No device found for " + userId);
+    this.userId = userId;
+  }
+}
+exports.GroupCallUnknownDeviceError = GroupCallUnknownDeviceError;
+class OtherUserSpeakingError extends Error {
+  constructor() {
+    super("Cannot unmute: another user is speaking");
+  }
+}
+exports.OtherUserSpeakingError = OtherUserSpeakingError;
+let GroupCallState;
+exports.GroupCallState = GroupCallState;
+(function (GroupCallState) {
+  GroupCallState["LocalCallFeedUninitialized"] = "local_call_feed_uninitialized";
+  GroupCallState["InitializingLocalCallFeed"] = "initializing_local_call_feed";
+  GroupCallState["LocalCallFeedInitialized"] = "local_call_feed_initialized";
+  GroupCallState["Entered"] = "entered";
+  GroupCallState["Ended"] = "ended";
+})(GroupCallState || (exports.GroupCallState = GroupCallState = {}));
+const DEVICE_TIMEOUT = 1000 * 60 * 60; // 1 hour
+
+function getCallUserId(call) {
+  return call.getOpponentMember()?.userId || call.invitee || null;
+}
+class GroupCall extends _typedEventEmitter.TypedEventEmitter {
+  // Config
+
+  // user_id -> device_id -> MatrixCall
+  // user_id -> device_id -> ICallHandlers
+
+  // user_id -> device_id -> count
+
+  constructor(client, room, type, isPtt, intent, groupCallId, dataChannelsEnabled, dataChannelOptions, isCallWithoutVideoAndAudio) {
+    super();
+    this.client = client;
+    this.room = room;
+    this.type = type;
+    this.isPtt = isPtt;
+    this.intent = intent;
+    this.dataChannelsEnabled = dataChannelsEnabled;
+    this.dataChannelOptions = dataChannelOptions;
+    _defineProperty(this, "activeSpeakerInterval", 1000);
+    _defineProperty(this, "retryCallInterval", 5000);
+    _defineProperty(this, "participantTimeout", 1000 * 15);
+    _defineProperty(this, "pttMaxTransmitTime", 1000 * 20);
+    _defineProperty(this, "activeSpeaker", void 0);
+    _defineProperty(this, "localCallFeed", void 0);
+    _defineProperty(this, "localScreenshareFeed", void 0);
+    _defineProperty(this, "localDesktopCapturerSourceId", void 0);
+    _defineProperty(this, "userMediaFeeds", []);
+    _defineProperty(this, "screenshareFeeds", []);
+    _defineProperty(this, "groupCallId", void 0);
+    _defineProperty(this, "allowCallWithoutVideoAndAudio", void 0);
+    _defineProperty(this, "calls", new Map());
+    _defineProperty(this, "callHandlers", new Map());
+    _defineProperty(this, "activeSpeakerLoopInterval", void 0);
+    _defineProperty(this, "retryCallLoopInterval", void 0);
+    _defineProperty(this, "retryCallCounts", new Map());
+    _defineProperty(this, "reEmitter", void 0);
+    _defineProperty(this, "transmitTimer", null);
+    _defineProperty(this, "participantsExpirationTimer", null);
+    _defineProperty(this, "resendMemberStateTimer", null);
+    _defineProperty(this, "initWithAudioMuted", false);
+    _defineProperty(this, "initWithVideoMuted", false);
+    _defineProperty(this, "initCallFeedPromise", void 0);
+    _defineProperty(this, "_state", GroupCallState.LocalCallFeedUninitialized);
+    _defineProperty(this, "_participants", new Map());
+    _defineProperty(this, "_creationTs", null);
+    _defineProperty(this, "_enteredViaAnotherSession", false);
+    _defineProperty(this, "onIncomingCall", newCall => {
+      // The incoming calls may be for another room, which we will ignore.
+      if (newCall.roomId !== this.room.roomId) {
+        return;
+      }
+      if (newCall.state !== _call.CallState.Ringing) {
+        _logger.logger.warn(`GroupCall ${this.groupCallId} onIncomingCall() incoming call no longer in ringing state - ignoring`);
+        return;
+      }
+      if (!newCall.groupCallId || newCall.groupCallId !== this.groupCallId) {
+        _logger.logger.log(`GroupCall ${this.groupCallId} onIncomingCall() ignored because it doesn't match the current group call`);
+        newCall.reject();
+        return;
+      }
+      const opponentUserId = newCall.getOpponentMember()?.userId;
+      if (opponentUserId === undefined) {
+        _logger.logger.warn(`GroupCall ${this.groupCallId} onIncomingCall() incoming call with no member - ignoring`);
+        return;
+      }
+      const deviceMap = this.calls.get(opponentUserId) ?? new Map();
+      const prevCall = deviceMap.get(newCall.getOpponentDeviceId());
+      if (prevCall?.callId === newCall.callId) return;
+      _logger.logger.log(`GroupCall ${this.groupCallId} onIncomingCall() incoming call (userId=${opponentUserId}, callId=${newCall.callId})`);
+      if (prevCall) this.disposeCall(prevCall, _call.CallErrorCode.Replaced);
+      this.initCall(newCall);
+      newCall.answerWithCallFeeds(this.getLocalFeeds().map(feed => feed.clone()));
+      deviceMap.set(newCall.getOpponentDeviceId(), newCall);
+      this.calls.set(opponentUserId, deviceMap);
+      this.emit(GroupCallEvent.CallsChanged, this.calls);
+    });
+    _defineProperty(this, "onRetryCallLoop", () => {
+      let needsRetry = false;
+      for (const [{
+        userId
+      }, participantMap] of this.participants) {
+        const callMap = this.calls.get(userId);
+        let retriesMap = this.retryCallCounts.get(userId);
+        for (const [deviceId, participant] of participantMap) {
+          const call = callMap?.get(deviceId);
+          const retries = retriesMap?.get(deviceId) ?? 0;
+          if (call?.getOpponentSessionId() !== participant.sessionId && this.wantsOutgoingCall(userId, deviceId) && retries < 3) {
+            if (retriesMap === undefined) {
+              retriesMap = new Map();
+              this.retryCallCounts.set(userId, retriesMap);
+            }
+            retriesMap.set(deviceId, retries + 1);
+            needsRetry = true;
+          }
+        }
+      }
+      if (needsRetry) this.placeOutgoingCalls();
+    });
+    _defineProperty(this, "onCallFeedsChanged", call => {
+      const opponentMemberId = getCallUserId(call);
+      const opponentDeviceId = call.getOpponentDeviceId();
+      if (!opponentMemberId) {
+        throw new Error("Cannot change call feeds without user id");
+      }
+      const currentUserMediaFeed = this.getUserMediaFeed(opponentMemberId, opponentDeviceId);
+      const remoteUsermediaFeed = call.remoteUsermediaFeed;
+      const remoteFeedChanged = remoteUsermediaFeed !== currentUserMediaFeed;
+      if (remoteFeedChanged) {
+        if (!currentUserMediaFeed && remoteUsermediaFeed) {
+          this.addUserMediaFeed(remoteUsermediaFeed);
+        } else if (currentUserMediaFeed && remoteUsermediaFeed) {
+          this.replaceUserMediaFeed(currentUserMediaFeed, remoteUsermediaFeed);
+        } else if (currentUserMediaFeed && !remoteUsermediaFeed) {
+          this.removeUserMediaFeed(currentUserMediaFeed);
+        }
+      }
+      const currentScreenshareFeed = this.getScreenshareFeed(opponentMemberId, opponentDeviceId);
+      const remoteScreensharingFeed = call.remoteScreensharingFeed;
+      const remoteScreenshareFeedChanged = remoteScreensharingFeed !== currentScreenshareFeed;
+      if (remoteScreenshareFeedChanged) {
+        if (!currentScreenshareFeed && remoteScreensharingFeed) {
+          this.addScreenshareFeed(remoteScreensharingFeed);
+        } else if (currentScreenshareFeed && remoteScreensharingFeed) {
+          this.replaceScreenshareFeed(currentScreenshareFeed, remoteScreensharingFeed);
+        } else if (currentScreenshareFeed && !remoteScreensharingFeed) {
+          this.removeScreenshareFeed(currentScreenshareFeed);
+        }
+      }
+    });
+    _defineProperty(this, "onCallStateChanged", (call, state, _oldState) => {
+      const audioMuted = this.localCallFeed.isAudioMuted();
+      if (call.localUsermediaStream && call.isMicrophoneMuted() !== audioMuted) {
+        call.setMicrophoneMuted(audioMuted);
+      }
+      const videoMuted = this.localCallFeed.isVideoMuted();
+      if (call.localUsermediaStream && call.isLocalVideoMuted() !== videoMuted) {
+        call.setLocalVideoMuted(videoMuted);
+      }
+      const opponentUserId = call.getOpponentMember()?.userId;
+      if (state === _call.CallState.Connected && opponentUserId) {
+        const retriesMap = this.retryCallCounts.get(opponentUserId);
+        retriesMap?.delete(call.getOpponentDeviceId());
+        if (retriesMap?.size === 0) this.retryCallCounts.delete(opponentUserId);
+      }
+    });
+    _defineProperty(this, "onCallHangup", call => {
+      if (call.hangupReason === _call.CallErrorCode.Replaced) return;
+      const opponentUserId = call.getOpponentMember()?.userId ?? this.room.getMember(call.invitee).userId;
+      const deviceMap = this.calls.get(opponentUserId);
+
+      // Sanity check that this call is in fact in the map
+      if (deviceMap?.get(call.getOpponentDeviceId()) === call) {
+        this.disposeCall(call, call.hangupReason);
+        deviceMap.delete(call.getOpponentDeviceId());
+        if (deviceMap.size === 0) this.calls.delete(opponentUserId);
+        this.emit(GroupCallEvent.CallsChanged, this.calls);
+      }
+    });
+    _defineProperty(this, "onCallReplaced", (prevCall, newCall) => {
+      const opponentUserId = prevCall.getOpponentMember().userId;
+      let deviceMap = this.calls.get(opponentUserId);
+      if (deviceMap === undefined) {
+        deviceMap = new Map();
+        this.calls.set(opponentUserId, deviceMap);
+      }
+      this.disposeCall(prevCall, _call.CallErrorCode.Replaced);
+      this.initCall(newCall);
+      deviceMap.set(prevCall.getOpponentDeviceId(), newCall);
+      this.emit(GroupCallEvent.CallsChanged, this.calls);
+    });
+    _defineProperty(this, "onActiveSpeakerLoop", () => {
+      let topAvg = undefined;
+      let nextActiveSpeaker = undefined;
+      for (const callFeed of this.userMediaFeeds) {
+        if (callFeed.isLocal() && this.userMediaFeeds.length > 1) continue;
+        const total = callFeed.speakingVolumeSamples.reduce((acc, volume) => acc + Math.max(volume, _callFeed.SPEAKING_THRESHOLD));
+        const avg = total / callFeed.speakingVolumeSamples.length;
+        if (!topAvg || avg > topAvg) {
+          topAvg = avg;
+          nextActiveSpeaker = callFeed;
+        }
+      }
+      if (nextActiveSpeaker && this.activeSpeaker !== nextActiveSpeaker && topAvg && topAvg > _callFeed.SPEAKING_THRESHOLD) {
+        this.activeSpeaker = nextActiveSpeaker;
+        this.emit(GroupCallEvent.ActiveSpeakerChanged, this.activeSpeaker);
+      }
+    });
+    _defineProperty(this, "onRoomState", () => this.updateParticipants());
+    _defineProperty(this, "onParticipantsChanged", () => {
+      if (this.state === GroupCallState.Entered) this.placeOutgoingCalls();
+    });
+    _defineProperty(this, "onStateChanged", (newState, oldState) => {
+      if (newState === GroupCallState.Entered || oldState === GroupCallState.Entered || newState === GroupCallState.Ended) {
+        // We either entered, left, or ended the call
+        this.updateParticipants();
+        this.updateMemberState().catch(e => _logger.logger.error(`GroupCall ${this.groupCallId} onStateChanged() failed to update member state devices"`, e));
+      }
+    });
+    _defineProperty(this, "onLocalFeedsChanged", () => {
+      if (this.state === GroupCallState.Entered) {
+        this.updateMemberState().catch(e => _logger.logger.error(`GroupCall ${this.groupCallId} onLocalFeedsChanged() failed to update member state feeds`, e));
+      }
+    });
+    this.reEmitter = new _ReEmitter.ReEmitter(this);
+    this.groupCallId = groupCallId ?? (0, _call.genCallID)();
+    this.creationTs = room.currentState.getStateEvents(_event.EventType.GroupCallPrefix, this.groupCallId)?.getTs() ?? null;
+    this.updateParticipants();
+    room.on(_roomState.RoomStateEvent.Update, this.onRoomState);
+    this.on(GroupCallEvent.ParticipantsChanged, this.onParticipantsChanged);
+    this.on(GroupCallEvent.GroupCallStateChanged, this.onStateChanged);
+    this.on(GroupCallEvent.LocalScreenshareStateChanged, this.onLocalFeedsChanged);
+    this.allowCallWithoutVideoAndAudio = !!isCallWithoutVideoAndAudio;
+  }
+  async create() {
+    this.creationTs = Date.now();
+    this.client.groupCallEventHandler.groupCalls.set(this.room.roomId, this);
+    this.client.emit(_groupCallEventHandler.GroupCallEventHandlerEvent.Outgoing, this);
+    const groupCallState = {
+      "m.intent": this.intent,
+      "m.type": this.type,
+      "io.element.ptt": this.isPtt,
+      // TODO: Specify data-channels better
+      "dataChannelsEnabled": this.dataChannelsEnabled,
+      "dataChannelOptions": this.dataChannelsEnabled ? this.dataChannelOptions : undefined
+    };
+    await this.client.sendStateEvent(this.room.roomId, _event.EventType.GroupCallPrefix, groupCallState, this.groupCallId);
+    return this;
+  }
+  /**
+   * The group call's state.
+   */
+  get state() {
+    return this._state;
+  }
+  set state(value) {
+    const prevValue = this._state;
+    if (value !== prevValue) {
+      this._state = value;
+      this.emit(GroupCallEvent.GroupCallStateChanged, value, prevValue);
+    }
+  }
+  /**
+   * The current participants in the call, as a map from members to device IDs
+   * to participant info.
+   */
+  get participants() {
+    return this._participants;
+  }
+  set participants(value) {
+    const prevValue = this._participants;
+    const participantStateEqual = (x, y) => x.sessionId === y.sessionId && x.screensharing === y.screensharing;
+    const deviceMapsEqual = (x, y) => (0, _utils.mapsEqual)(x, y, participantStateEqual);
+
+    // Only update if the map actually changed
+    if (!(0, _utils.mapsEqual)(value, prevValue, deviceMapsEqual)) {
+      this._participants = value;
+      this.emit(GroupCallEvent.ParticipantsChanged, value);
+    }
+  }
+  /**
+   * The timestamp at which the call was created, or null if it has not yet
+   * been created.
+   */
+  get creationTs() {
+    return this._creationTs;
+  }
+  set creationTs(value) {
+    this._creationTs = value;
+  }
+  /**
+   * Whether the local device has entered this call via another session, such
+   * as a widget.
+   */
+  get enteredViaAnotherSession() {
+    return this._enteredViaAnotherSession;
+  }
+  set enteredViaAnotherSession(value) {
+    this._enteredViaAnotherSession = value;
+    this.updateParticipants();
+  }
+
+  /**
+   * Executes the given callback on all calls in this group call.
+   * @param f - The callback.
+   */
+  forEachCall(f) {
+    for (const deviceMap of this.calls.values()) {
+      for (const call of deviceMap.values()) f(call);
+    }
+  }
+  getLocalFeeds() {
+    const feeds = [];
+    if (this.localCallFeed) feeds.push(this.localCallFeed);
+    if (this.localScreenshareFeed) feeds.push(this.localScreenshareFeed);
+    return feeds;
+  }
+  hasLocalParticipant() {
+    return this.participants.get(this.room.getMember(this.client.getUserId()))?.has(this.client.getDeviceId()) ?? false;
+  }
+  async initLocalCallFeed() {
+    if (this.state !== GroupCallState.LocalCallFeedUninitialized) {
+      throw new Error(`Cannot initialize local call feed in the "${this.state}" state.`);
+    }
+    this.state = GroupCallState.InitializingLocalCallFeed;
+
+    // wraps the real method to serialise calls, because we don't want to try starting
+    // multiple call feeds at once
+    if (this.initCallFeedPromise) return this.initCallFeedPromise;
+    try {
+      this.initCallFeedPromise = this.initLocalCallFeedInternal();
+      await this.initCallFeedPromise;
+    } finally {
+      this.initCallFeedPromise = undefined;
+    }
+  }
+  async initLocalCallFeedInternal() {
+    _logger.logger.log(`GroupCall ${this.groupCallId} initLocalCallFeedInternal() running`);
+    let stream;
+    try {
+      stream = await this.client.getMediaHandler().getUserMediaStream(true, this.type === GroupCallType.Video);
+    } catch (error) {
+      // If is allowed to join a call without a media stream, then we
+      // don't throw an error here. But we need an empty Local Feed to establish
+      // a connection later.
+      if (this.allowCallWithoutVideoAndAudio) {
+        stream = new MediaStream();
+      } else {
+        this.state = GroupCallState.LocalCallFeedUninitialized;
+        throw error;
+      }
+    }
+
+    // The call could've been disposed while we were waiting, and could
+    // also have been started back up again (hello, React 18) so if we're
+    // still in this 'initializing' state, carry on, otherwise bail.
+    if (this._state !== GroupCallState.InitializingLocalCallFeed) {
+      this.client.getMediaHandler().stopUserMediaStream(stream);
+      throw new Error("Group call disposed while gathering media stream");
+    }
+    const callFeed = new _callFeed.CallFeed({
+      client: this.client,
+      roomId: this.room.roomId,
+      userId: this.client.getUserId(),
+      deviceId: this.client.getDeviceId(),
+      stream,
+      purpose: _callEventTypes.SDPStreamMetadataPurpose.Usermedia,
+      audioMuted: this.initWithAudioMuted || stream.getAudioTracks().length === 0 || this.isPtt,
+      videoMuted: this.initWithVideoMuted || stream.getVideoTracks().length === 0
+    });
+    (0, _call.setTracksEnabled)(stream.getAudioTracks(), !callFeed.isAudioMuted());
+    (0, _call.setTracksEnabled)(stream.getVideoTracks(), !callFeed.isVideoMuted());
+    this.localCallFeed = callFeed;
+    this.addUserMediaFeed(callFeed);
+    this.state = GroupCallState.LocalCallFeedInitialized;
+  }
+  async updateLocalUsermediaStream(stream) {
+    if (this.localCallFeed) {
+      const oldStream = this.localCallFeed.stream;
+      this.localCallFeed.setNewStream(stream);
+      const micShouldBeMuted = this.localCallFeed.isAudioMuted();
+      const vidShouldBeMuted = this.localCallFeed.isVideoMuted();
+      _logger.logger.log(`GroupCall ${this.groupCallId} updateLocalUsermediaStream() (oldStreamId=${oldStream.id}, newStreamId=${stream.id}, micShouldBeMuted=${micShouldBeMuted}, vidShouldBeMuted=${vidShouldBeMuted})`);
+      (0, _call.setTracksEnabled)(stream.getAudioTracks(), !micShouldBeMuted);
+      (0, _call.setTracksEnabled)(stream.getVideoTracks(), !vidShouldBeMuted);
+      this.client.getMediaHandler().stopUserMediaStream(oldStream);
+    }
+  }
+  async enter() {
+    if (this.state === GroupCallState.LocalCallFeedUninitialized) {
+      await this.initLocalCallFeed();
+    } else if (this.state !== GroupCallState.LocalCallFeedInitialized) {
+      throw new Error(`Cannot enter call in the "${this.state}" state`);
+    }
+    _logger.logger.log(`GroupCall ${this.groupCallId} enter() running`);
+    this.state = GroupCallState.Entered;
+    this.client.on(_callEventHandler.CallEventHandlerEvent.Incoming, this.onIncomingCall);
+    for (const call of this.client.callEventHandler.calls.values()) {
+      this.onIncomingCall(call);
+    }
+    this.retryCallLoopInterval = setInterval(this.onRetryCallLoop, this.retryCallInterval);
+    this.activeSpeaker = undefined;
+    this.onActiveSpeakerLoop();
+    this.activeSpeakerLoopInterval = setInterval(this.onActiveSpeakerLoop, this.activeSpeakerInterval);
+  }
+  dispose() {
+    if (this.localCallFeed) {
+      this.removeUserMediaFeed(this.localCallFeed);
+      this.localCallFeed = undefined;
+    }
+    if (this.localScreenshareFeed) {
+      this.client.getMediaHandler().stopScreensharingStream(this.localScreenshareFeed.stream);
+      this.removeScreenshareFeed(this.localScreenshareFeed);
+      this.localScreenshareFeed = undefined;
+      this.localDesktopCapturerSourceId = undefined;
+    }
+    this.client.getMediaHandler().stopAllStreams();
+    if (this.transmitTimer !== null) {
+      clearTimeout(this.transmitTimer);
+      this.transmitTimer = null;
+    }
+    if (this.retryCallLoopInterval !== undefined) {
+      clearInterval(this.retryCallLoopInterval);
+      this.retryCallLoopInterval = undefined;
+    }
+    if (this.state !== GroupCallState.Entered) {
+      return;
+    }
+    this.forEachCall(call => this.disposeCall(call, _call.CallErrorCode.UserHangup));
+    this.calls.clear();
+    this.activeSpeaker = undefined;
+    clearInterval(this.activeSpeakerLoopInterval);
+    this.retryCallCounts.clear();
+    clearInterval(this.retryCallLoopInterval);
+    this.client.removeListener(_callEventHandler.CallEventHandlerEvent.Incoming, this.onIncomingCall);
+  }
+  leave() {
+    this.dispose();
+    this.state = GroupCallState.LocalCallFeedUninitialized;
+  }
+  async terminate(emitStateEvent = true) {
+    this.dispose();
+    this.room.off(_roomState.RoomStateEvent.Update, this.onRoomState);
+    this.client.groupCallEventHandler.groupCalls.delete(this.room.roomId);
+    this.client.emit(_groupCallEventHandler.GroupCallEventHandlerEvent.Ended, this);
+    this.state = GroupCallState.Ended;
+    if (emitStateEvent) {
+      const existingStateEvent = this.room.currentState.getStateEvents(_event.EventType.GroupCallPrefix, this.groupCallId);
+      await this.client.sendStateEvent(this.room.roomId, _event.EventType.GroupCallPrefix, _objectSpread(_objectSpread({}, existingStateEvent.getContent()), {}, {
+        "m.terminated": GroupCallTerminationReason.CallEnded
+      }), this.groupCallId);
+    }
+  }
+
+  /*
+   * Local Usermedia
+   */
+
+  isLocalVideoMuted() {
+    if (this.localCallFeed) {
+      return this.localCallFeed.isVideoMuted();
+    }
+    return true;
+  }
+  isMicrophoneMuted() {
+    if (this.localCallFeed) {
+      return this.localCallFeed.isAudioMuted();
+    }
+    return true;
+  }
+
+  /**
+   * Sets the mute state of the local participants's microphone.
+   * @param muted - Whether to mute the microphone
+   * @returns Whether muting/unmuting was successful
+   */
+  async setMicrophoneMuted(muted) {
+    // hasAudioDevice can block indefinitely if the window has lost focus,
+    // and it doesn't make much sense to keep a device from being muted, so
+    // we always allow muted = true changes to go through
+    if (!muted && !(await this.client.getMediaHandler().hasAudioDevice())) {
+      return false;
+    }
+    const sendUpdatesBefore = !muted && this.isPtt;
+
+    // set a timer for the maximum transmit time on PTT calls
+    if (this.isPtt) {
+      // Set or clear the max transmit timer
+      if (!muted && this.isMicrophoneMuted()) {
+        this.transmitTimer = setTimeout(() => {
+          this.setMicrophoneMuted(true);
+        }, this.pttMaxTransmitTime);
+      } else if (muted && !this.isMicrophoneMuted()) {
+        if (this.transmitTimer !== null) clearTimeout(this.transmitTimer);
+        this.transmitTimer = null;
+      }
+    }
+    this.forEachCall(call => call.localUsermediaFeed?.setAudioVideoMuted(muted, null));
+    const sendUpdates = async () => {
+      const updates = [];
+      this.forEachCall(call => updates.push(call.sendMetadataUpdate()));
+      await Promise.all(updates).catch(e => _logger.logger.info(`GroupCall ${this.groupCallId} setMicrophoneMuted() failed to send some metadata updates`, e));
+    };
+    if (sendUpdatesBefore) await sendUpdates();
+    if (this.localCallFeed) {
+      _logger.logger.log(`GroupCall ${this.groupCallId} setMicrophoneMuted() (streamId=${this.localCallFeed.stream.id}, muted=${muted})`);
+
+      // We needed this here to avoid an error in case user join a call without a device.
+      // I can not use .then .catch functions because linter :-(
+      try {
+        if (!muted) {
+          const stream = await this.client.getMediaHandler().getUserMediaStream(true, !this.localCallFeed.isVideoMuted());
+          if (stream === null) {
+            // if case permission denied to get a stream stop this here
+            /* istanbul ignore next */
+            _logger.logger.log(`GroupCall ${this.groupCallId} setMicrophoneMuted() no device to receive local stream, muted=${muted}`);
+            return false;
+          }
+        }
+      } catch (e) {
+        /* istanbul ignore next */
+        _logger.logger.log(`GroupCall ${this.groupCallId} setMicrophoneMuted() no device or permission to receive local stream, muted=${muted}`);
+        return false;
+      }
+      this.localCallFeed.setAudioVideoMuted(muted, null);
+      // I don't believe its actually necessary to enable these tracks: they
+      // are the one on the GroupCall's own CallFeed and are cloned before being
+      // given to any of the actual calls, so these tracks don't actually go
+      // anywhere. Let's do it anyway to avoid confusion.
+      (0, _call.setTracksEnabled)(this.localCallFeed.stream.getAudioTracks(), !muted);
+    } else {
+      _logger.logger.log(`GroupCall ${this.groupCallId} setMicrophoneMuted() no stream muted (muted=${muted})`);
+      this.initWithAudioMuted = muted;
+    }
+    this.forEachCall(call => (0, _call.setTracksEnabled)(call.localUsermediaFeed.stream.getAudioTracks(), !muted));
+    this.emit(GroupCallEvent.LocalMuteStateChanged, muted, this.isLocalVideoMuted());
+    if (!sendUpdatesBefore) await sendUpdates();
+    return true;
+  }
+
+  /**
+   * Sets the mute state of the local participants's video.
+   * @param muted - Whether to mute the video
+   * @returns Whether muting/unmuting was successful
+   */
+  async setLocalVideoMuted(muted) {
+    // hasAudioDevice can block indefinitely if the window has lost focus,
+    // and it doesn't make much sense to keep a device from being muted, so
+    // we always allow muted = true changes to go through
+    if (!muted && !(await this.client.getMediaHandler().hasVideoDevice())) {
+      return false;
+    }
+    if (this.localCallFeed) {
+      /* istanbul ignore next */
+      _logger.logger.log(`GroupCall ${this.groupCallId} setLocalVideoMuted() (stream=${this.localCallFeed.stream.id}, muted=${muted})`);
+      try {
+        const stream = await this.client.getMediaHandler().getUserMediaStream(true, !muted);
+        await this.updateLocalUsermediaStream(stream);
+        this.localCallFeed.setAudioVideoMuted(null, muted);
+        (0, _call.setTracksEnabled)(this.localCallFeed.stream.getVideoTracks(), !muted);
+      } catch (_) {
+        // No permission to video device
+        /* istanbul ignore next */
+        _logger.logger.log(`GroupCall ${this.groupCallId} setLocalVideoMuted() no device or permission to receive local stream, muted=${muted}`);
+        return false;
+      }
+    } else {
+      _logger.logger.log(`GroupCall ${this.groupCallId} setLocalVideoMuted() no stream muted (muted=${muted})`);
+      this.initWithVideoMuted = muted;
+    }
+    const updates = [];
+    this.forEachCall(call => updates.push(call.setLocalVideoMuted(muted)));
+    await Promise.all(updates);
+    this.emit(GroupCallEvent.LocalMuteStateChanged, this.isMicrophoneMuted(), muted);
+    return true;
+  }
+  async setScreensharingEnabled(enabled, opts = {}) {
+    if (enabled === this.isScreensharing()) {
+      return enabled;
+    }
+    if (enabled) {
+      try {
+        _logger.logger.log(`GroupCall ${this.groupCallId} setScreensharingEnabled() is asking for screensharing permissions`);
+        const stream = await this.client.getMediaHandler().getScreensharingStream(opts);
+        for (const track of stream.getTracks()) {
+          const onTrackEnded = () => {
+            this.setScreensharingEnabled(false);
+            track.removeEventListener("ended", onTrackEnded);
+          };
+          track.addEventListener("ended", onTrackEnded);
+        }
+        _logger.logger.log(`GroupCall ${this.groupCallId} setScreensharingEnabled() granted screensharing permissions. Setting screensharing enabled on all calls`);
+        this.localDesktopCapturerSourceId = opts.desktopCapturerSourceId;
+        this.localScreenshareFeed = new _callFeed.CallFeed({
+          client: this.client,
+          roomId: this.room.roomId,
+          userId: this.client.getUserId(),
+          deviceId: this.client.getDeviceId(),
+          stream,
+          purpose: _callEventTypes.SDPStreamMetadataPurpose.Screenshare,
+          audioMuted: false,
+          videoMuted: false
+        });
+        this.addScreenshareFeed(this.localScreenshareFeed);
+        this.emit(GroupCallEvent.LocalScreenshareStateChanged, true, this.localScreenshareFeed, this.localDesktopCapturerSourceId);
+
+        // TODO: handle errors
+        this.forEachCall(call => call.pushLocalFeed(this.localScreenshareFeed.clone()));
+        return true;
+      } catch (error) {
+        if (opts.throwOnFail) throw error;
+        _logger.logger.error(`GroupCall ${this.groupCallId} setScreensharingEnabled() enabling screensharing error`, error);
+        this.emit(GroupCallEvent.Error, new GroupCallError(GroupCallErrorCode.NoUserMedia, "Failed to get screen-sharing stream: ", error));
+        return false;
+      }
+    } else {
+      this.forEachCall(call => {
+        if (call.localScreensharingFeed) call.removeLocalFeed(call.localScreensharingFeed);
+      });
+      this.client.getMediaHandler().stopScreensharingStream(this.localScreenshareFeed.stream);
+      this.removeScreenshareFeed(this.localScreenshareFeed);
+      this.localScreenshareFeed = undefined;
+      this.localDesktopCapturerSourceId = undefined;
+      this.emit(GroupCallEvent.LocalScreenshareStateChanged, false, undefined, undefined);
+      return false;
+    }
+  }
+  isScreensharing() {
+    return !!this.localScreenshareFeed;
+  }
+
+  /*
+   * Call Setup
+   *
+   * There are two different paths for calls to be created:
+   * 1. Incoming calls triggered by the Call.incoming event.
+   * 2. Outgoing calls to the initial members of a room or new members
+   *    as they are observed by the RoomState.members event.
+   */
+
+  /**
+   * Determines whether a given participant expects us to call them (versus
+   * them calling us).
+   * @param userId - The participant's user ID.
+   * @param deviceId - The participant's device ID.
+   * @returns Whether we need to place an outgoing call to the participant.
+   */
+  wantsOutgoingCall(userId, deviceId) {
+    const localUserId = this.client.getUserId();
+    const localDeviceId = this.client.getDeviceId();
+    return (
+      // If a user's ID is less than our own, they'll call us
+      userId >= localUserId && (
+      // If this is another one of our devices, compare device IDs to tell whether it'll call us
+      userId !== localUserId || deviceId > localDeviceId)
+    );
+  }
+
+  /**
+   * Places calls to all participants that we're responsible for calling.
+   */
+  placeOutgoingCalls() {
+    let callsChanged = false;
+    for (const [{
+      userId
+    }, participantMap] of this.participants) {
+      const callMap = this.calls.get(userId) ?? new Map();
+      for (const [deviceId, participant] of participantMap) {
+        const prevCall = callMap.get(deviceId);
+        if (prevCall?.getOpponentSessionId() !== participant.sessionId && this.wantsOutgoingCall(userId, deviceId)) {
+          callsChanged = true;
+          if (prevCall !== undefined) {
+            _logger.logger.debug(`GroupCall ${this.groupCallId} placeOutgoingCalls() replacing call (userId=${userId}, deviceId=${deviceId}, callId=${prevCall.callId})`);
+            this.disposeCall(prevCall, _call.CallErrorCode.NewSession);
+          }
+          const newCall = (0, _call.createNewMatrixCall)(this.client, this.room.roomId, {
+            invitee: userId,
+            opponentDeviceId: deviceId,
+            opponentSessionId: participant.sessionId,
+            groupCallId: this.groupCallId
+          });
+          if (newCall === null) {
+            _logger.logger.error(`GroupCall ${this.groupCallId} placeOutgoingCalls() failed to create call (userId=${userId}, device=${deviceId})`);
+            callMap.delete(deviceId);
+          } else {
+            this.initCall(newCall);
+            callMap.set(deviceId, newCall);
+            _logger.logger.debug(`GroupCall ${this.groupCallId} placeOutgoingCalls() placing call (userId=${userId}, deviceId=${deviceId}, sessionId=${participant.sessionId})`);
+            newCall.placeCallWithCallFeeds(this.getLocalFeeds().map(feed => feed.clone()), participant.screensharing).then(() => {
+              if (this.dataChannelsEnabled) {
+                newCall.createDataChannel("datachannel", this.dataChannelOptions);
+              }
+            }).catch(e => {
+              _logger.logger.warn(`GroupCall ${this.groupCallId} placeOutgoingCalls() failed to place call (userId=${userId})`, e);
+              if (e instanceof _call.CallError && e.code === GroupCallErrorCode.UnknownDevice) {
+                this.emit(GroupCallEvent.Error, e);
+              } else {
+                this.emit(GroupCallEvent.Error, new GroupCallError(GroupCallErrorCode.PlaceCallFailed, `Failed to place call to ${userId}`));
+              }
+              this.disposeCall(newCall, _call.CallErrorCode.SignallingFailed);
+              if (callMap.get(deviceId) === newCall) callMap.delete(deviceId);
+            });
+          }
+        }
+      }
+      if (callMap.size > 0) {
+        this.calls.set(userId, callMap);
+      } else {
+        this.calls.delete(userId);
+      }
+    }
+    if (callsChanged) this.emit(GroupCallEvent.CallsChanged, this.calls);
+  }
+
+  /*
+   * Room Member State
+   */
+
+  getMemberStateEvents(userId) {
+    return userId === undefined ? this.room.currentState.getStateEvents(_event.EventType.GroupCallMemberPrefix) : this.room.currentState.getStateEvents(_event.EventType.GroupCallMemberPrefix, userId);
+  }
+  initCall(call) {
+    const opponentMemberId = getCallUserId(call);
+    if (!opponentMemberId) {
+      throw new Error("Cannot init call without user id");
+    }
+    const onCallFeedsChanged = () => this.onCallFeedsChanged(call);
+    const onCallStateChanged = (state, oldState) => this.onCallStateChanged(call, state, oldState);
+    const onCallHangup = this.onCallHangup;
+    const onCallReplaced = newCall => this.onCallReplaced(call, newCall);
+    let deviceMap = this.callHandlers.get(opponentMemberId);
+    if (deviceMap === undefined) {
+      deviceMap = new Map();
+      this.callHandlers.set(opponentMemberId, deviceMap);
+    }
+    deviceMap.set(call.getOpponentDeviceId(), {
+      onCallFeedsChanged,
+      onCallStateChanged,
+      onCallHangup,
+      onCallReplaced
+    });
+    call.on(_call.CallEvent.FeedsChanged, onCallFeedsChanged);
+    call.on(_call.CallEvent.State, onCallStateChanged);
+    call.on(_call.CallEvent.Hangup, onCallHangup);
+    call.on(_call.CallEvent.Replaced, onCallReplaced);
+    call.isPtt = this.isPtt;
+    this.reEmitter.reEmit(call, Object.values(_call.CallEvent));
+    onCallFeedsChanged();
+  }
+  disposeCall(call, hangupReason) {
+    const opponentMemberId = getCallUserId(call);
+    const opponentDeviceId = call.getOpponentDeviceId();
+    if (!opponentMemberId) {
+      throw new Error("Cannot dispose call without user id");
+    }
+    const deviceMap = this.callHandlers.get(opponentMemberId);
+    const {
+      onCallFeedsChanged,
+      onCallStateChanged,
+      onCallHangup,
+      onCallReplaced
+    } = deviceMap.get(opponentDeviceId);
+    call.removeListener(_call.CallEvent.FeedsChanged, onCallFeedsChanged);
+    call.removeListener(_call.CallEvent.State, onCallStateChanged);
+    call.removeListener(_call.CallEvent.Hangup, onCallHangup);
+    call.removeListener(_call.CallEvent.Replaced, onCallReplaced);
+    deviceMap.delete(opponentMemberId);
+    if (deviceMap.size === 0) this.callHandlers.delete(opponentMemberId);
+    if (call.hangupReason === _call.CallErrorCode.Replaced) {
+      return;
+    }
+    if (call.state !== _call.CallState.Ended) {
+      call.hangup(hangupReason, false);
+    }
+    const usermediaFeed = this.getUserMediaFeed(opponentMemberId, opponentDeviceId);
+    if (usermediaFeed) {
+      this.removeUserMediaFeed(usermediaFeed);
+    }
+    const screenshareFeed = this.getScreenshareFeed(opponentMemberId, opponentDeviceId);
+    if (screenshareFeed) {
+      this.removeScreenshareFeed(screenshareFeed);
+    }
+  }
+  /*
+   * UserMedia CallFeed Event Handlers
+   */
+
+  getUserMediaFeed(userId, deviceId) {
+    return this.userMediaFeeds.find(f => f.userId === userId && f.deviceId === deviceId);
+  }
+  addUserMediaFeed(callFeed) {
+    this.userMediaFeeds.push(callFeed);
+    callFeed.measureVolumeActivity(true);
+    this.emit(GroupCallEvent.UserMediaFeedsChanged, this.userMediaFeeds);
+  }
+  replaceUserMediaFeed(existingFeed, replacementFeed) {
+    const feedIndex = this.userMediaFeeds.findIndex(f => f.userId === existingFeed.userId && f.deviceId === existingFeed.deviceId);
+    if (feedIndex === -1) {
+      throw new Error("Couldn't find user media feed to replace");
+    }
+    this.userMediaFeeds.splice(feedIndex, 1, replacementFeed);
+    existingFeed.dispose();
+    replacementFeed.measureVolumeActivity(true);
+    this.emit(GroupCallEvent.UserMediaFeedsChanged, this.userMediaFeeds);
+  }
+  removeUserMediaFeed(callFeed) {
+    const feedIndex = this.userMediaFeeds.findIndex(f => f.userId === callFeed.userId && f.deviceId === callFeed.deviceId);
+    if (feedIndex === -1) {
+      throw new Error("Couldn't find user media feed to remove");
+    }
+    this.userMediaFeeds.splice(feedIndex, 1);
+    callFeed.dispose();
+    this.emit(GroupCallEvent.UserMediaFeedsChanged, this.userMediaFeeds);
+    if (this.activeSpeaker === callFeed) {
+      this.activeSpeaker = this.userMediaFeeds[0];
+      this.emit(GroupCallEvent.ActiveSpeakerChanged, this.activeSpeaker);
+    }
+  }
+  /*
+   * Screenshare Call Feed Event Handlers
+   */
+
+  getScreenshareFeed(userId, deviceId) {
+    return this.screenshareFeeds.find(f => f.userId === userId && f.deviceId === deviceId);
+  }
+  addScreenshareFeed(callFeed) {
+    this.screenshareFeeds.push(callFeed);
+    this.emit(GroupCallEvent.ScreenshareFeedsChanged, this.screenshareFeeds);
+  }
+  replaceScreenshareFeed(existingFeed, replacementFeed) {
+    const feedIndex = this.screenshareFeeds.findIndex(f => f.userId === existingFeed.userId && f.deviceId === existingFeed.deviceId);
+    if (feedIndex === -1) {
+      throw new Error("Couldn't find screenshare feed to replace");
+    }
+    this.screenshareFeeds.splice(feedIndex, 1, replacementFeed);
+    existingFeed.dispose();
+    this.emit(GroupCallEvent.ScreenshareFeedsChanged, this.screenshareFeeds);
+  }
+  removeScreenshareFeed(callFeed) {
+    const feedIndex = this.screenshareFeeds.findIndex(f => f.userId === callFeed.userId && f.deviceId === callFeed.deviceId);
+    if (feedIndex === -1) {
+      throw new Error("Couldn't find screenshare feed to remove");
+    }
+    this.screenshareFeeds.splice(feedIndex, 1);
+    callFeed.dispose();
+    this.emit(GroupCallEvent.ScreenshareFeedsChanged, this.screenshareFeeds);
+  }
+
+  /**
+   * Recalculates and updates the participant map to match the room state.
+   */
+  updateParticipants() {
+    const localMember = this.room.getMember(this.client.getUserId());
+    if (!localMember) {
+      // The client hasn't fetched enough of the room state to get our own member
+      // event. This probably shouldn't happen, but sanity check & exit for now.
+      _logger.logger.warn(`GroupCall ${this.groupCallId} updateParticipants() tried to update participants before local room member is available`);
+      return;
+    }
+    if (this.participantsExpirationTimer !== null) {
+      clearTimeout(this.participantsExpirationTimer);
+      this.participantsExpirationTimer = null;
+    }
+    if (this.state === GroupCallState.Ended) {
+      this.participants = new Map();
+      return;
+    }
+    const participants = new Map();
+    const now = Date.now();
+    const entered = this.state === GroupCallState.Entered || this.enteredViaAnotherSession;
+    let nextExpiration = Infinity;
+    for (const e of this.getMemberStateEvents()) {
+      const member = this.room.getMember(e.getStateKey());
+      const content = e.getContent();
+      const calls = Array.isArray(content["m.calls"]) ? content["m.calls"] : [];
+      const call = calls.find(call => call["m.call_id"] === this.groupCallId);
+      const devices = Array.isArray(call?.["m.devices"]) ? call["m.devices"] : [];
+
+      // Filter out invalid and expired devices
+      let validDevices = devices.filter(d => typeof d.device_id === "string" && typeof d.session_id === "string" && typeof d.expires_ts === "number" && d.expires_ts > now && Array.isArray(d.feeds));
+
+      // Apply local echo for the unentered case
+      if (!entered && member?.userId === this.client.getUserId()) {
+        validDevices = validDevices.filter(d => d.device_id !== this.client.getDeviceId());
+      }
+
+      // Must have a connected device and be joined to the room
+      if (validDevices.length > 0 && member?.membership === "join") {
+        const deviceMap = new Map();
+        participants.set(member, deviceMap);
+        for (const d of validDevices) {
+          deviceMap.set(d.device_id, {
+            sessionId: d.session_id,
+            screensharing: d.feeds.some(f => f.purpose === _callEventTypes.SDPStreamMetadataPurpose.Screenshare)
+          });
+          if (d.expires_ts < nextExpiration) nextExpiration = d.expires_ts;
+        }
+      }
+    }
+
+    // Apply local echo for the entered case
+    if (entered) {
+      let deviceMap = participants.get(localMember);
+      if (deviceMap === undefined) {
+        deviceMap = new Map();
+        participants.set(localMember, deviceMap);
+      }
+      if (!deviceMap.has(this.client.getDeviceId())) {
+        deviceMap.set(this.client.getDeviceId(), {
+          sessionId: this.client.getSessionId(),
+          screensharing: this.getLocalFeeds().some(f => f.purpose === _callEventTypes.SDPStreamMetadataPurpose.Screenshare)
+        });
+      }
+    }
+    this.participants = participants;
+    if (nextExpiration < Infinity) {
+      this.participantsExpirationTimer = setTimeout(() => this.updateParticipants(), nextExpiration - now);
+    }
+  }
+
+  /**
+   * Updates the local user's member state with the devices returned by the given function.
+   * @param fn - A function from the current devices to the new devices. If it
+   *   returns null, the update will be skipped.
+   * @param keepAlive - Whether the request should outlive the window.
+   */
+  async updateDevices(fn, keepAlive = false) {
+    const now = Date.now();
+    const localUserId = this.client.getUserId();
+    const event = this.getMemberStateEvents(localUserId);
+    const content = event?.getContent() ?? {};
+    const calls = Array.isArray(content["m.calls"]) ? content["m.calls"] : [];
+    let call = null;
+    const otherCalls = [];
+    for (const c of calls) {
+      if (c["m.call_id"] === this.groupCallId) {
+        call = c;
+      } else {
+        otherCalls.push(c);
+      }
+    }
+    if (call === null) call = {};
+    const devices = Array.isArray(call["m.devices"]) ? call["m.devices"] : [];
+
+    // Filter out invalid and expired devices
+    const validDevices = devices.filter(d => typeof d.device_id === "string" && typeof d.session_id === "string" && typeof d.expires_ts === "number" && d.expires_ts > now && Array.isArray(d.feeds));
+    const newDevices = fn(validDevices);
+    if (newDevices === null) return;
+    const newCalls = [...otherCalls];
+    if (newDevices.length > 0) {
+      newCalls.push(_objectSpread(_objectSpread({}, call), {}, {
+        "m.call_id": this.groupCallId,
+        "m.devices": newDevices
+      }));
+    }
+    const newContent = {
+      "m.calls": newCalls
+    };
+    await this.client.sendStateEvent(this.room.roomId, _event.EventType.GroupCallMemberPrefix, newContent, localUserId, {
+      keepAlive
+    });
+  }
+  async addDeviceToMemberState() {
+    await this.updateDevices(devices => [...devices.filter(d => d.device_id !== this.client.getDeviceId()), {
+      device_id: this.client.getDeviceId(),
+      session_id: this.client.getSessionId(),
+      expires_ts: Date.now() + DEVICE_TIMEOUT,
+      feeds: this.getLocalFeeds().map(feed => ({
+        purpose: feed.purpose
+      }))
+      // TODO: Add data channels
+    }]);
+  }
+
+  async updateMemberState() {
+    // Clear the old update interval before proceeding
+    if (this.resendMemberStateTimer !== null) {
+      clearInterval(this.resendMemberStateTimer);
+      this.resendMemberStateTimer = null;
+    }
+    if (this.state === GroupCallState.Entered) {
+      // Add the local device
+      await this.addDeviceToMemberState();
+
+      // Resend the state event every so often so it doesn't become stale
+      this.resendMemberStateTimer = setInterval(async () => {
+        _logger.logger.log(`GroupCall ${this.groupCallId} updateMemberState() resending call member state"`);
+        try {
+          await this.addDeviceToMemberState();
+        } catch (e) {
+          _logger.logger.error(`GroupCall ${this.groupCallId} updateMemberState() failed to resend call member state`, e);
+        }
+      }, DEVICE_TIMEOUT * 3 / 4);
+    } else {
+      // Remove the local device
+      await this.updateDevices(devices => devices.filter(d => d.device_id !== this.client.getDeviceId()), true);
+    }
+  }
+
+  /**
+   * Cleans up our member state by filtering out logged out devices, inactive
+   * devices, and our own device (if we know we haven't entered).
+   */
+  async cleanMemberState() {
+    const {
+      devices: myDevices
+    } = await this.client.getDevices();
+    const deviceMap = new Map(myDevices.map(d => [d.device_id, d]));
+
+    // updateDevices takes care of filtering out inactive devices for us
+    await this.updateDevices(devices => {
+      const newDevices = devices.filter(d => {
+        const device = deviceMap.get(d.device_id);
+        return device?.last_seen_ts !== undefined && !(d.device_id === this.client.getDeviceId() && this.state !== GroupCallState.Entered && !this.enteredViaAnotherSession);
+      });
+
+      // Skip the update if the devices are unchanged
+      return newDevices.length === devices.length ? null : newDevices;
+    });
+  }
+}
+exports.GroupCall = GroupCall;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/mediaHandler.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/mediaHandler.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/mediaHandler.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-sdk/webrtc/mediaHandler.js	2023-04-11 06:11:52.000000000 +0000
@@ -3,267 +3,338 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.MediaHandler = void 0;
-
+exports.MediaHandlerEvent = exports.MediaHandler = void 0;
+var _typedEventEmitter = require("../models/typed-event-emitter");
+var _groupCall = require("../webrtc/groupCall");
 var _logger = require("../logger");
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(arg) { var key = _toPrimitive(arg, "string"); return typeof key === "symbol" ? key : String(key); }
+function _toPrimitive(input, hint) { if (typeof input !== "object" || input === null) return input; var prim = input[Symbol.toPrimitive]; if (prim !== undefined) { var res = prim.call(input, hint || "default"); if (typeof res !== "object") return res; throw new TypeError("@@toPrimitive must return a primitive value."); } return (hint === "string" ? String : Number)(input); }
+let MediaHandlerEvent;
+exports.MediaHandlerEvent = MediaHandlerEvent;
+(function (MediaHandlerEvent) {
+  MediaHandlerEvent["LocalStreamsChanged"] = "local_streams_changed";
+})(MediaHandlerEvent || (exports.MediaHandlerEvent = MediaHandlerEvent = {}));
+class MediaHandler extends _typedEventEmitter.TypedEventEmitter {
+  // Promise chain to serialise calls to getMediaStream
 
-var _call = require("./call");
-
-function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
-
-class MediaHandler {
   constructor(client) {
+    super();
     this.client = client;
-
     _defineProperty(this, "audioInput", void 0);
-
+    _defineProperty(this, "audioSettings", void 0);
     _defineProperty(this, "videoInput", void 0);
-
     _defineProperty(this, "localUserMediaStream", void 0);
-
     _defineProperty(this, "userMediaStreams", []);
-
     _defineProperty(this, "screensharingStreams", []);
+    _defineProperty(this, "getMediaStreamPromise", void 0);
+  }
+  restoreMediaSettings(audioInput, videoInput) {
+    this.audioInput = audioInput;
+    this.videoInput = videoInput;
   }
+
   /**
    * Set an audio input device to use for MatrixCalls
-   * @param {string} deviceId the identifier for the device
+   * @param deviceId - the identifier for the device
    * undefined treated as unset
    */
-
-
   async setAudioInput(deviceId) {
-    _logger.logger.info("LOG setting audio input to", deviceId);
-
+    _logger.logger.info(`MediaHandler setAudioInput() running (deviceId=${deviceId})`);
     if (this.audioInput === deviceId) return;
     this.audioInput = deviceId;
     await this.updateLocalUsermediaStreams();
   }
+
+  /**
+   * Set audio settings for MatrixCalls
+   * @param opts - audio options to set
+   */
+  async setAudioSettings(opts) {
+    _logger.logger.info(`MediaHandler setAudioSettings() running (opts=${JSON.stringify(opts)})`);
+    this.audioSettings = Object.assign({}, opts);
+    await this.updateLocalUsermediaStreams();
+  }
+
   /**
    * Set a video input device to use for MatrixCalls
-   * @param {string} deviceId the identifier for the device
+   * @param deviceId - the identifier for the device
    * undefined treated as unset
    */
-
-
   async setVideoInput(deviceId) {
-    _logger.logger.info("LOG setting video input to", deviceId);
-
+    _logger.logger.info(`MediaHandler setVideoInput() running (deviceId=${deviceId})`);
     if (this.videoInput === deviceId) return;
     this.videoInput = deviceId;
     await this.updateLocalUsermediaStreams();
   }
+
   /**
-   * Requests new usermedia streams and replace the old ones
+   * Set media input devices to use for MatrixCalls
+   * @param audioInput - the identifier for the audio device
+   * @param videoInput - the identifier for the video device
+   * undefined treated as unset
    */
+  async setMediaInputs(audioInput, videoInput) {
+    _logger.logger.log(`MediaHandler setMediaInputs() running (audioInput: ${audioInput} videoInput: ${videoInput})`);
+    this.audioInput = audioInput;
+    this.videoInput = videoInput;
+    await this.updateLocalUsermediaStreams();
+  }
 
-
+  /*
+   * Requests new usermedia streams and replace the old ones
+   */
   async updateLocalUsermediaStreams() {
     if (this.userMediaStreams.length === 0) return;
     const callMediaStreamParams = new Map();
-
     for (const call of this.client.callEventHandler.calls.values()) {
       callMediaStreamParams.set(call.callId, {
         audio: call.hasLocalUserMediaAudioTrack,
         video: call.hasLocalUserMediaVideoTrack
       });
     }
-
+    for (const stream of this.userMediaStreams) {
+      _logger.logger.log(`MediaHandler updateLocalUsermediaStreams() stopping all tracks (streamId=${stream.id})`);
+      for (const track of stream.getTracks()) {
+        track.stop();
+      }
+    }
+    this.userMediaStreams = [];
+    this.localUserMediaStream = undefined;
     for (const call of this.client.callEventHandler.calls.values()) {
-      if (call.state === _call.CallState.Ended || !callMediaStreamParams.has(call.callId)) continue;
+      if (call.callHasEnded() || !callMediaStreamParams.has(call.callId)) {
+        continue;
+      }
       const {
         audio,
         video
-      } = callMediaStreamParams.get(call.callId); // This stream won't be reusable as we will replace the tracks of the old stream
-
-      const stream = await this.getUserMediaStream(audio, video, false);
+      } = callMediaStreamParams.get(call.callId);
+      _logger.logger.log(`MediaHandler updateLocalUsermediaStreams() calling getUserMediaStream() (callId=${call.callId})`);
+      const stream = await this.getUserMediaStream(audio, video);
+      if (call.callHasEnded()) {
+        continue;
+      }
       await call.updateLocalUsermediaStream(stream);
     }
+    for (const groupCall of this.client.groupCallEventHandler.groupCalls.values()) {
+      if (!groupCall.localCallFeed) {
+        continue;
+      }
+      _logger.logger.log(`MediaHandler updateLocalUsermediaStreams() calling getUserMediaStream() (groupCallId=${groupCall.groupCallId})`);
+      const stream = await this.getUserMediaStream(true, groupCall.type === _groupCall.GroupCallType.Video);
+      if (groupCall.state === _groupCall.GroupCallState.Ended) {
+        continue;
+      }
+      await groupCall.updateLocalUsermediaStream(stream);
+    }
+    this.emit(MediaHandlerEvent.LocalStreamsChanged);
   }
-
   async hasAudioDevice() {
-    const devices = await navigator.mediaDevices.enumerateDevices();
-    return devices.filter(device => device.kind === "audioinput").length > 0;
+    try {
+      const devices = await navigator.mediaDevices.enumerateDevices();
+      return devices.filter(device => device.kind === "audioinput").length > 0;
+    } catch (err) {
+      _logger.logger.log(`MediaHandler hasAudioDevice() calling navigator.mediaDevices.enumerateDevices with error`, err);
+      return false;
+    }
   }
-
   async hasVideoDevice() {
-    const devices = await navigator.mediaDevices.enumerateDevices();
-    return devices.filter(device => device.kind === "videoinput").length > 0;
+    try {
+      const devices = await navigator.mediaDevices.enumerateDevices();
+      return devices.filter(device => device.kind === "videoinput").length > 0;
+    } catch (err) {
+      _logger.logger.log(`MediaHandler hasVideoDevice() calling navigator.mediaDevices.enumerateDevices with error`, err);
+      return false;
+    }
   }
+
   /**
-   * @param audio should have an audio track
-   * @param video should have a video track
-   * @param reusable is allowed to be reused by the MediaHandler
-   * @returns {MediaStream} based on passed parameters
+   * @param audio - should have an audio track
+   * @param video - should have a video track
+   * @param reusable - is allowed to be reused by the MediaHandler
+   * @returns based on passed parameters
    */
-
-
   async getUserMediaStream(audio, video, reusable = true) {
+    // Serialise calls, othertwise we can't sensibly re-use the stream
+    if (this.getMediaStreamPromise) {
+      this.getMediaStreamPromise = this.getMediaStreamPromise.then(() => {
+        return this.getUserMediaStreamInternal(audio, video, reusable);
+      });
+    } else {
+      this.getMediaStreamPromise = this.getUserMediaStreamInternal(audio, video, reusable);
+    }
+    return this.getMediaStreamPromise;
+  }
+  async getUserMediaStreamInternal(audio, video, reusable) {
     const shouldRequestAudio = audio && (await this.hasAudioDevice());
     const shouldRequestVideo = video && (await this.hasVideoDevice());
     let stream;
+    let canReuseStream = true;
+    if (this.localUserMediaStream) {
+      // This figures out if we can reuse the current localUsermediaStream
+      // based on whether or not the "mute state" (presence of tracks of a
+      // given kind) matches what is being requested
+      if (shouldRequestAudio !== this.localUserMediaStream.getAudioTracks().length > 0) {
+        canReuseStream = false;
+      }
+      if (shouldRequestVideo !== this.localUserMediaStream.getVideoTracks().length > 0) {
+        canReuseStream = false;
+      }
 
-    if (!this.localUserMediaStream || this.localUserMediaStream.getAudioTracks().length === 0 && shouldRequestAudio || this.localUserMediaStream.getVideoTracks().length === 0 && shouldRequestVideo || this.localUserMediaStream.getAudioTracks()[0]?.getSettings()?.deviceId !== this.audioInput || this.localUserMediaStream.getVideoTracks()[0]?.getSettings()?.deviceId !== this.videoInput) {
+      // This code checks that the device ID is the same as the localUserMediaStream stream, but we update
+      // the localUserMediaStream whenever the device ID changes (apart from when restoring) so it's not
+      // clear why this would ever be different, unless there's a race.
+      if (shouldRequestAudio && this.localUserMediaStream.getAudioTracks()[0]?.getSettings()?.deviceId !== this.audioInput) {
+        canReuseStream = false;
+      }
+      if (shouldRequestVideo && this.localUserMediaStream.getVideoTracks()[0]?.getSettings()?.deviceId !== this.videoInput) {
+        canReuseStream = false;
+      }
+    } else {
+      canReuseStream = false;
+    }
+    if (!canReuseStream) {
       const constraints = this.getUserMediaContraints(shouldRequestAudio, shouldRequestVideo);
-
-      _logger.logger.log("Getting user media with constraints", constraints);
-
       stream = await navigator.mediaDevices.getUserMedia(constraints);
-
+      _logger.logger.log(`MediaHandler getUserMediaStreamInternal() calling getUserMediaStream (streamId=${stream.id}, shouldRequestAudio=${shouldRequestAudio}, shouldRequestVideo=${shouldRequestVideo}, constraints=${JSON.stringify(constraints)})`);
       for (const track of stream.getTracks()) {
         const settings = track.getSettings();
-
         if (track.kind === "audio") {
           this.audioInput = settings.deviceId;
         } else if (track.kind === "video") {
           this.videoInput = settings.deviceId;
         }
       }
-
       if (reusable) {
         this.localUserMediaStream = stream;
       }
     } else {
       stream = this.localUserMediaStream.clone();
-
+      _logger.logger.log(`MediaHandler getUserMediaStreamInternal() cloning (oldStreamId=${this.localUserMediaStream?.id} newStreamId=${stream.id} shouldRequestAudio=${shouldRequestAudio} shouldRequestVideo=${shouldRequestVideo})`);
       if (!shouldRequestAudio) {
         for (const track of stream.getAudioTracks()) {
           stream.removeTrack(track);
         }
       }
-
       if (!shouldRequestVideo) {
         for (const track of stream.getVideoTracks()) {
           stream.removeTrack(track);
         }
       }
     }
-
     if (reusable) {
       this.userMediaStreams.push(stream);
     }
-
+    this.emit(MediaHandlerEvent.LocalStreamsChanged);
     return stream;
   }
+
   /**
    * Stops all tracks on the provided usermedia stream
    */
-
-
   stopUserMediaStream(mediaStream) {
-    _logger.logger.debug("Stopping usermedia stream", mediaStream.id);
-
+    _logger.logger.log(`MediaHandler stopUserMediaStream() stopping (streamId=${mediaStream.id})`);
     for (const track of mediaStream.getTracks()) {
       track.stop();
     }
-
     const index = this.userMediaStreams.indexOf(mediaStream);
-
     if (index !== -1) {
-      _logger.logger.debug("Splicing usermedia stream out stream array", mediaStream.id);
-
+      _logger.logger.debug(`MediaHandler stopUserMediaStream() splicing usermedia stream out stream array (streamId=${mediaStream.id})`, mediaStream.id);
       this.userMediaStreams.splice(index, 1);
     }
-
+    this.emit(MediaHandlerEvent.LocalStreamsChanged);
     if (this.localUserMediaStream === mediaStream) {
       this.localUserMediaStream = undefined;
     }
   }
+
   /**
-   * @param desktopCapturerSourceId sourceId for Electron DesktopCapturer
-   * @param reusable is allowed to be reused by the MediaHandler
-   * @returns {MediaStream} based on passed parameters
+   * @param desktopCapturerSourceId - sourceId for Electron DesktopCapturer
+   * @param reusable - is allowed to be reused by the MediaHandler
+   * @returns based on passed parameters
    */
-
-
-  async getScreensharingStream(desktopCapturerSourceId, reusable = true) {
+  async getScreensharingStream(opts = {}, reusable = true) {
     let stream;
-
     if (this.screensharingStreams.length === 0) {
-      const screenshareConstraints = this.getScreenshareContraints(desktopCapturerSourceId);
-      if (!screenshareConstraints) return null;
-
-      if (desktopCapturerSourceId) {
+      const screenshareConstraints = this.getScreenshareContraints(opts);
+      if (opts.desktopCapturerSourceId) {
         // We are using Electron
-        _logger.logger.debug("Getting screensharing stream using getUserMedia()", desktopCapturerSourceId);
-
+        _logger.logger.debug(`MediaHandler getScreensharingStream() calling getUserMedia() (opts=${JSON.stringify(opts)})`);
         stream = await navigator.mediaDevices.getUserMedia(screenshareConstraints);
       } else {
         // We are not using Electron
-        _logger.logger.debug("Getting screensharing stream using getDisplayMedia()");
-
+        _logger.logger.debug(`MediaHandler getScreensharingStream() calling getDisplayMedia() (opts=${JSON.stringify(opts)})`);
         stream = await navigator.mediaDevices.getDisplayMedia(screenshareConstraints);
       }
     } else {
       const matchingStream = this.screensharingStreams[this.screensharingStreams.length - 1];
-
-      _logger.logger.log("Cloning screensharing stream", matchingStream.id);
-
+      _logger.logger.log(`MediaHandler getScreensharingStream() cloning (streamId=${matchingStream.id})`);
       stream = matchingStream.clone();
     }
-
     if (reusable) {
       this.screensharingStreams.push(stream);
     }
-
+    this.emit(MediaHandlerEvent.LocalStreamsChanged);
     return stream;
   }
+
   /**
    * Stops all tracks on the provided screensharing stream
    */
-
-
   stopScreensharingStream(mediaStream) {
-    _logger.logger.debug("Stopping screensharing stream", mediaStream.id);
-
+    _logger.logger.debug(`MediaHandler stopScreensharingStream() stopping stream (streamId=${mediaStream.id})`);
     for (const track of mediaStream.getTracks()) {
       track.stop();
     }
-
     const index = this.screensharingStreams.indexOf(mediaStream);
-
     if (index !== -1) {
-      _logger.logger.debug("Splicing screensharing stream out stream array", mediaStream.id);
-
+      _logger.logger.debug(`MediaHandler stopScreensharingStream() splicing stream out (streamId=${mediaStream.id})`);
       this.screensharingStreams.splice(index, 1);
     }
+    this.emit(MediaHandlerEvent.LocalStreamsChanged);
   }
+
   /**
    * Stops all local media tracks
    */
-
-
   stopAllStreams() {
     for (const stream of this.userMediaStreams) {
+      _logger.logger.log(`MediaHandler stopAllStreams() stopping (streamId=${stream.id})`);
       for (const track of stream.getTracks()) {
         track.stop();
       }
     }
-
     for (const stream of this.screensharingStreams) {
       for (const track of stream.getTracks()) {
         track.stop();
       }
     }
-
     this.userMediaStreams = [];
     this.screensharingStreams = [];
     this.localUserMediaStream = undefined;
+    this.emit(MediaHandlerEvent.LocalStreamsChanged);
   }
-
   getUserMediaContraints(audio, video) {
     const isWebkit = !!navigator.webkitGetUserMedia;
     return {
       audio: audio ? {
         deviceId: this.audioInput ? {
           ideal: this.audioInput
+        } : undefined,
+        autoGainControl: this.audioSettings ? {
+          ideal: this.audioSettings.autoGainControl
+        } : undefined,
+        echoCancellation: this.audioSettings ? {
+          ideal: this.audioSettings.echoCancellation
+        } : undefined,
+        noiseSuppression: this.audioSettings ? {
+          ideal: this.audioSettings.noiseSuppression
         } : undefined
       } : false,
       video: video ? {
         deviceId: this.videoInput ? {
           ideal: this.videoInput
         } : undefined,
-
         /* We want 640x360.  Chrome will give it only if we ask exactly,
         FF refuses entirely if we ask exactly, so have to ask for ideal
         instead
@@ -282,13 +353,14 @@
       } : false
     };
   }
-
-  getScreenshareContraints(desktopCapturerSourceId) {
+  getScreenshareContraints(opts) {
+    const {
+      desktopCapturerSourceId,
+      audio
+    } = opts;
     if (desktopCapturerSourceId) {
-      _logger.logger.debug("Using desktop capturer source", desktopCapturerSourceId);
-
       return {
-        audio: false,
+        audio: audio ?? false,
         video: {
           mandatory: {
             chromeMediaSource: "desktop",
@@ -297,15 +369,11 @@
         }
       };
     } else {
-      _logger.logger.debug("Not using desktop capturer source");
-
       return {
-        audio: false,
+        audio: audio ?? false,
         video: true
       };
     }
   }
-
 }
-
 exports.MediaHandler = MediaHandler;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/ClientWidgetApi.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/ClientWidgetApi.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/ClientWidgetApi.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/ClientWidgetApi.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,1293 @@
+"use strict";
+
+function _typeof(obj) { "@babel/helpers - typeof"; return _typeof = "function" == typeof Symbol && "symbol" == typeof Symbol.iterator ? function (obj) { return typeof obj; } : function (obj) { return obj && "function" == typeof Symbol && obj.constructor === Symbol && obj !== Symbol.prototype ? "symbol" : typeof obj; }, _typeof(obj); }
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.ClientWidgetApi = void 0;
+
+var _events = require("events");
+
+var _PostmessageTransport = require("./transport/PostmessageTransport");
+
+var _WidgetApiDirection = require("./interfaces/WidgetApiDirection");
+
+var _WidgetApiAction = require("./interfaces/WidgetApiAction");
+
+var _Capabilities = require("./interfaces/Capabilities");
+
+var _ApiVersion = require("./interfaces/ApiVersion");
+
+var _WidgetEventCapability = require("./models/WidgetEventCapability");
+
+var _GetOpenIDAction = require("./interfaces/GetOpenIDAction");
+
+var _SimpleObservable = require("./util/SimpleObservable");
+
+var _Symbols = require("./Symbols");
+
+function _regeneratorRuntime() { "use strict"; /*! regenerator-runtime -- Copyright (c) 2014-present, Facebook, Inc. -- license (MIT): https://github.com/facebook/regenerator/blob/main/LICENSE */ _regeneratorRuntime = function _regeneratorRuntime() { return exports; }; var exports = {}, Op = Object.prototype, hasOwn = Op.hasOwnProperty, $Symbol = "function" == typeof Symbol ? Symbol : {}, iteratorSymbol = $Symbol.iterator || "@@iterator", asyncIteratorSymbol = $Symbol.asyncIterator || "@@asyncIterator", toStringTagSymbol = $Symbol.toStringTag || "@@toStringTag"; function define(obj, key, value) { return Object.defineProperty(obj, key, { value: value, enumerable: !0, configurable: !0, writable: !0 }), obj[key]; } try { define({}, ""); } catch (err) { define = function define(obj, key, value) { return obj[key] = value; }; } function wrap(innerFn, outerFn, self, tryLocsList) { var protoGenerator = outerFn && outerFn.prototype instanceof Generator ? outerFn : Generator, generator = Object.create(protoGenerator.prototype), context = new Context(tryLocsList || []); return generator._invoke = function (innerFn, self, context) { var state = "suspendedStart"; return function (method, arg) { if ("executing" === state) throw new Error("Generator is already running"); if ("completed" === state) { if ("throw" === method) throw arg; return doneResult(); } for (context.method = method, context.arg = arg;;) { var delegate = context.delegate; if (delegate) { var delegateResult = maybeInvokeDelegate(delegate, context); if (delegateResult) { if (delegateResult === ContinueSentinel) continue; return delegateResult; } } if ("next" === context.method) context.sent = context._sent = context.arg;else if ("throw" === context.method) { if ("suspendedStart" === state) throw state = "completed", context.arg; context.dispatchException(context.arg); } else "return" === context.method && context.abrupt("return", context.arg); state = "executing"; var record = tryCatch(innerFn, self, context); if ("normal" === record.type) { if (state = context.done ? "completed" : "suspendedYield", record.arg === ContinueSentinel) continue; return { value: record.arg, done: context.done }; } "throw" === record.type && (state = "completed", context.method = "throw", context.arg = record.arg); } }; }(innerFn, self, context), generator; } function tryCatch(fn, obj, arg) { try { return { type: "normal", arg: fn.call(obj, arg) }; } catch (err) { return { type: "throw", arg: err }; } } exports.wrap = wrap; var ContinueSentinel = {}; function Generator() {} function GeneratorFunction() {} function GeneratorFunctionPrototype() {} var IteratorPrototype = {}; define(IteratorPrototype, iteratorSymbol, function () { return this; }); var getProto = Object.getPrototypeOf, NativeIteratorPrototype = getProto && getProto(getProto(values([]))); NativeIteratorPrototype && NativeIteratorPrototype !== Op && hasOwn.call(NativeIteratorPrototype, iteratorSymbol) && (IteratorPrototype = NativeIteratorPrototype); var Gp = GeneratorFunctionPrototype.prototype = Generator.prototype = Object.create(IteratorPrototype); function defineIteratorMethods(prototype) { ["next", "throw", "return"].forEach(function (method) { define(prototype, method, function (arg) { return this._invoke(method, arg); }); }); } function AsyncIterator(generator, PromiseImpl) { function invoke(method, arg, resolve, reject) { var record = tryCatch(generator[method], generator, arg); if ("throw" !== record.type) { var result = record.arg, value = result.value; return value && "object" == _typeof(value) && hasOwn.call(value, "__await") ? PromiseImpl.resolve(value.__await).then(function (value) { invoke("next", value, resolve, reject); }, function (err) { invoke("throw", err, resolve, reject); }) : PromiseImpl.resolve(value).then(function (unwrapped) { result.value = unwrapped, resolve(result); }, function (error) { return invoke("throw", error, resolve, reject); }); } reject(record.arg); } var previousPromise; this._invoke = function (method, arg) { function callInvokeWithMethodAndArg() { return new PromiseImpl(function (resolve, reject) { invoke(method, arg, resolve, reject); }); } return previousPromise = previousPromise ? previousPromise.then(callInvokeWithMethodAndArg, callInvokeWithMethodAndArg) : callInvokeWithMethodAndArg(); }; } function maybeInvokeDelegate(delegate, context) { var method = delegate.iterator[context.method]; if (undefined === method) { if (context.delegate = null, "throw" === context.method) { if (delegate.iterator["return"] && (context.method = "return", context.arg = undefined, maybeInvokeDelegate(delegate, context), "throw" === context.method)) return ContinueSentinel; context.method = "throw", context.arg = new TypeError("The iterator does not provide a 'throw' method"); } return ContinueSentinel; } var record = tryCatch(method, delegate.iterator, context.arg); if ("throw" === record.type) return context.method = "throw", context.arg = record.arg, context.delegate = null, ContinueSentinel; var info = record.arg; return info ? info.done ? (context[delegate.resultName] = info.value, context.next = delegate.nextLoc, "return" !== context.method && (context.method = "next", context.arg = undefined), context.delegate = null, ContinueSentinel) : info : (context.method = "throw", context.arg = new TypeError("iterator result is not an object"), context.delegate = null, ContinueSentinel); } function pushTryEntry(locs) { var entry = { tryLoc: locs[0] }; 1 in locs && (entry.catchLoc = locs[1]), 2 in locs && (entry.finallyLoc = locs[2], entry.afterLoc = locs[3]), this.tryEntries.push(entry); } function resetTryEntry(entry) { var record = entry.completion || {}; record.type = "normal", delete record.arg, entry.completion = record; } function Context(tryLocsList) { this.tryEntries = [{ tryLoc: "root" }], tryLocsList.forEach(pushTryEntry, this), this.reset(!0); } function values(iterable) { if (iterable) { var iteratorMethod = iterable[iteratorSymbol]; if (iteratorMethod) return iteratorMethod.call(iterable); if ("function" == typeof iterable.next) return iterable; if (!isNaN(iterable.length)) { var i = -1, next = function next() { for (; ++i < iterable.length;) { if (hasOwn.call(iterable, i)) return next.value = iterable[i], next.done = !1, next; } return next.value = undefined, next.done = !0, next; }; return next.next = next; } } return { next: doneResult }; } function doneResult() { return { value: undefined, done: !0 }; } return GeneratorFunction.prototype = GeneratorFunctionPrototype, define(Gp, "constructor", GeneratorFunctionPrototype), define(GeneratorFunctionPrototype, "constructor", GeneratorFunction), GeneratorFunction.displayName = define(GeneratorFunctionPrototype, toStringTagSymbol, "GeneratorFunction"), exports.isGeneratorFunction = function (genFun) { var ctor = "function" == typeof genFun && genFun.constructor; return !!ctor && (ctor === GeneratorFunction || "GeneratorFunction" === (ctor.displayName || ctor.name)); }, exports.mark = function (genFun) { return Object.setPrototypeOf ? Object.setPrototypeOf(genFun, GeneratorFunctionPrototype) : (genFun.__proto__ = GeneratorFunctionPrototype, define(genFun, toStringTagSymbol, "GeneratorFunction")), genFun.prototype = Object.create(Gp), genFun; }, exports.awrap = function (arg) { return { __await: arg }; }, defineIteratorMethods(AsyncIterator.prototype), define(AsyncIterator.prototype, asyncIteratorSymbol, function () { return this; }), exports.AsyncIterator = AsyncIterator, exports.async = function (innerFn, outerFn, self, tryLocsList, PromiseImpl) { void 0 === PromiseImpl && (PromiseImpl = Promise); var iter = new AsyncIterator(wrap(innerFn, outerFn, self, tryLocsList), PromiseImpl); return exports.isGeneratorFunction(outerFn) ? iter : iter.next().then(function (result) { return result.done ? result.value : iter.next(); }); }, defineIteratorMethods(Gp), define(Gp, toStringTagSymbol, "Generator"), define(Gp, iteratorSymbol, function () { return this; }), define(Gp, "toString", function () { return "[object Generator]"; }), exports.keys = function (object) { var keys = []; for (var key in object) { keys.push(key); } return keys.reverse(), function next() { for (; keys.length;) { var key = keys.pop(); if (key in object) return next.value = key, next.done = !1, next; } return next.done = !0, next; }; }, exports.values = values, Context.prototype = { constructor: Context, reset: function reset(skipTempReset) { if (this.prev = 0, this.next = 0, this.sent = this._sent = undefined, this.done = !1, this.delegate = null, this.method = "next", this.arg = undefined, this.tryEntries.forEach(resetTryEntry), !skipTempReset) for (var name in this) { "t" === name.charAt(0) && hasOwn.call(this, name) && !isNaN(+name.slice(1)) && (this[name] = undefined); } }, stop: function stop() { this.done = !0; var rootRecord = this.tryEntries[0].completion; if ("throw" === rootRecord.type) throw rootRecord.arg; return this.rval; }, dispatchException: function dispatchException(exception) { if (this.done) throw exception; var context = this; function handle(loc, caught) { return record.type = "throw", record.arg = exception, context.next = loc, caught && (context.method = "next", context.arg = undefined), !!caught; } for (var i = this.tryEntries.length - 1; i >= 0; --i) { var entry = this.tryEntries[i], record = entry.completion; if ("root" === entry.tryLoc) return handle("end"); if (entry.tryLoc <= this.prev) { var hasCatch = hasOwn.call(entry, "catchLoc"), hasFinally = hasOwn.call(entry, "finallyLoc"); if (hasCatch && hasFinally) { if (this.prev < entry.catchLoc) return handle(entry.catchLoc, !0); if (this.prev < entry.finallyLoc) return handle(entry.finallyLoc); } else if (hasCatch) { if (this.prev < entry.catchLoc) return handle(entry.catchLoc, !0); } else { if (!hasFinally) throw new Error("try statement without catch or finally"); if (this.prev < entry.finallyLoc) return handle(entry.finallyLoc); } } } }, abrupt: function abrupt(type, arg) { for (var i = this.tryEntries.length - 1; i >= 0; --i) { var entry = this.tryEntries[i]; if (entry.tryLoc <= this.prev && hasOwn.call(entry, "finallyLoc") && this.prev < entry.finallyLoc) { var finallyEntry = entry; break; } } finallyEntry && ("break" === type || "continue" === type) && finallyEntry.tryLoc <= arg && arg <= finallyEntry.finallyLoc && (finallyEntry = null); var record = finallyEntry ? finallyEntry.completion : {}; return record.type = type, record.arg = arg, finallyEntry ? (this.method = "next", this.next = finallyEntry.finallyLoc, ContinueSentinel) : this.complete(record); }, complete: function complete(record, afterLoc) { if ("throw" === record.type) throw record.arg; return "break" === record.type || "continue" === record.type ? this.next = record.arg : "return" === record.type ? (this.rval = this.arg = record.arg, this.method = "return", this.next = "end") : "normal" === record.type && afterLoc && (this.next = afterLoc), ContinueSentinel; }, finish: function finish(finallyLoc) { for (var i = this.tryEntries.length - 1; i >= 0; --i) { var entry = this.tryEntries[i]; if (entry.finallyLoc === finallyLoc) return this.complete(entry.completion, entry.afterLoc), resetTryEntry(entry), ContinueSentinel; } }, "catch": function _catch(tryLoc) { for (var i = this.tryEntries.length - 1; i >= 0; --i) { var entry = this.tryEntries[i]; if (entry.tryLoc === tryLoc) { var record = entry.completion; if ("throw" === record.type) { var thrown = record.arg; resetTryEntry(entry); } return thrown; } } throw new Error("illegal catch attempt"); }, delegateYield: function delegateYield(iterable, resultName, nextLoc) { return this.delegate = { iterator: values(iterable), resultName: resultName, nextLoc: nextLoc }, "next" === this.method && (this.arg = undefined), ContinueSentinel; } }, exports; }
+
+function asyncGeneratorStep(gen, resolve, reject, _next, _throw, key, arg) { try { var info = gen[key](arg); var value = info.value; } catch (error) { reject(error); return; } if (info.done) { resolve(value); } else { Promise.resolve(value).then(_next, _throw); } }
+
+function _asyncToGenerator(fn) { return function () { var self = this, args = arguments; return new Promise(function (resolve, reject) { var gen = fn.apply(self, args); function _next(value) { asyncGeneratorStep(gen, resolve, reject, _next, _throw, "next", value); } function _throw(err) { asyncGeneratorStep(gen, resolve, reject, _next, _throw, "throw", err); } _next(undefined); }); }; }
+
+function _createForOfIteratorHelper(o, allowArrayLike) { var it = typeof Symbol !== "undefined" && o[Symbol.iterator] || o["@@iterator"]; if (!it) { if (Array.isArray(o) || (it = _unsupportedIterableToArray(o)) || allowArrayLike && o && typeof o.length === "number") { if (it) o = it; var i = 0; var F = function F() {}; return { s: F, n: function n() { if (i >= o.length) return { done: true }; return { done: false, value: o[i++] }; }, e: function e(_e) { throw _e; }, f: F }; } throw new TypeError("Invalid attempt to iterate non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method."); } var normalCompletion = true, didErr = false, err; return { s: function s() { it = it.call(o); }, n: function n() { var step = it.next(); normalCompletion = step.done; return step; }, e: function e(_e2) { didErr = true; err = _e2; }, f: function f() { try { if (!normalCompletion && it["return"] != null) it["return"](); } finally { if (didErr) throw err; } } }; }
+
+function _unsupportedIterableToArray(o, minLen) { if (!o) return; if (typeof o === "string") return _arrayLikeToArray(o, minLen); var n = Object.prototype.toString.call(o).slice(8, -1); if (n === "Object" && o.constructor) n = o.constructor.name; if (n === "Map" || n === "Set") return Array.from(o); if (n === "Arguments" || /^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(n)) return _arrayLikeToArray(o, minLen); }
+
+function _arrayLikeToArray(arr, len) { if (len == null || len > arr.length) len = arr.length; for (var i = 0, arr2 = new Array(len); i < len; i++) { arr2[i] = arr[i]; } return arr2; }
+
+function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
+
+function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
+
+function _classCallCheck(instance, Constructor) { if (!(instance instanceof Constructor)) { throw new TypeError("Cannot call a class as a function"); } }
+
+function _defineProperties(target, props) { for (var i = 0; i < props.length; i++) { var descriptor = props[i]; descriptor.enumerable = descriptor.enumerable || false; descriptor.configurable = true; if ("value" in descriptor) descriptor.writable = true; Object.defineProperty(target, descriptor.key, descriptor); } }
+
+function _createClass(Constructor, protoProps, staticProps) { if (protoProps) _defineProperties(Constructor.prototype, protoProps); if (staticProps) _defineProperties(Constructor, staticProps); Object.defineProperty(Constructor, "prototype", { writable: false }); return Constructor; }
+
+function _inherits(subClass, superClass) { if (typeof superClass !== "function" && superClass !== null) { throw new TypeError("Super expression must either be null or a function"); } subClass.prototype = Object.create(superClass && superClass.prototype, { constructor: { value: subClass, writable: true, configurable: true } }); Object.defineProperty(subClass, "prototype", { writable: false }); if (superClass) _setPrototypeOf(subClass, superClass); }
+
+function _setPrototypeOf(o, p) { _setPrototypeOf = Object.setPrototypeOf ? Object.setPrototypeOf.bind() : function _setPrototypeOf(o, p) { o.__proto__ = p; return o; }; return _setPrototypeOf(o, p); }
+
+function _createSuper(Derived) { var hasNativeReflectConstruct = _isNativeReflectConstruct(); return function _createSuperInternal() { var Super = _getPrototypeOf(Derived), result; if (hasNativeReflectConstruct) { var NewTarget = _getPrototypeOf(this).constructor; result = Reflect.construct(Super, arguments, NewTarget); } else { result = Super.apply(this, arguments); } return _possibleConstructorReturn(this, result); }; }
+
+function _possibleConstructorReturn(self, call) { if (call && (_typeof(call) === "object" || typeof call === "function")) { return call; } else if (call !== void 0) { throw new TypeError("Derived constructors may only return object or undefined"); } return _assertThisInitialized(self); }
+
+function _assertThisInitialized(self) { if (self === void 0) { throw new ReferenceError("this hasn't been initialised - super() hasn't been called"); } return self; }
+
+function _isNativeReflectConstruct() { if (typeof Reflect === "undefined" || !Reflect.construct) return false; if (Reflect.construct.sham) return false; if (typeof Proxy === "function") return true; try { Boolean.prototype.valueOf.call(Reflect.construct(Boolean, [], function () {})); return true; } catch (e) { return false; } }
+
+function _getPrototypeOf(o) { _getPrototypeOf = Object.setPrototypeOf ? Object.getPrototypeOf.bind() : function _getPrototypeOf(o) { return o.__proto__ || Object.getPrototypeOf(o); }; return _getPrototypeOf(o); }
+
+function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+
+function _asyncIterator(iterable) { var method, async, sync, retry = 2; for ("undefined" != typeof Symbol && (async = Symbol.asyncIterator, sync = Symbol.iterator); retry--;) { if (async && null != (method = iterable[async])) return method.call(iterable); if (sync && null != (method = iterable[sync])) return new AsyncFromSyncIterator(method.call(iterable)); async = "@@asyncIterator", sync = "@@iterator"; } throw new TypeError("Object is not async iterable"); }
+
+function AsyncFromSyncIterator(s) { function AsyncFromSyncIteratorContinuation(r) { if (Object(r) !== r) return Promise.reject(new TypeError(r + " is not an object.")); var done = r.done; return Promise.resolve(r.value).then(function (value) { return { value: value, done: done }; }); } return AsyncFromSyncIterator = function AsyncFromSyncIterator(s) { this.s = s, this.n = s.next; }, AsyncFromSyncIterator.prototype = { s: null, n: null, next: function next() { return AsyncFromSyncIteratorContinuation(this.n.apply(this.s, arguments)); }, "return": function _return(value) { var ret = this.s["return"]; return void 0 === ret ? Promise.resolve({ value: value, done: !0 }) : AsyncFromSyncIteratorContinuation(ret.apply(this.s, arguments)); }, "throw": function _throw(value) { var thr = this.s["return"]; return void 0 === thr ? Promise.reject(value) : AsyncFromSyncIteratorContinuation(thr.apply(this.s, arguments)); } }, new AsyncFromSyncIterator(s); }
+
+/**
+ * API handler for the client side of widgets. This raises events
+ * for each action received as `action:${action}` (eg: "action:screenshot").
+ * Default handling can be prevented by using preventDefault() on the
+ * raised event. The default handling varies for each action: ones
+ * which the SDK can handle safely are acknowledged appropriately and
+ * ones which are unhandled (custom or require the client to do something)
+ * are rejected with an error.
+ *
+ * Events which are preventDefault()ed must reply using the transport.
+ * The events raised will have a default of an IWidgetApiRequest
+ * interface.
+ *
+ * When the ClientWidgetApi is ready to start sending requests, it will
+ * raise a "ready" CustomEvent. After the ready event fires, actions can
+ * be sent and the transport will be ready.
+ *
+ * When the widget has indicated it has loaded, this class raises a
+ * "preparing" CustomEvent. The preparing event does not indicate that
+ * the widget is ready to receive communications - that is signified by
+ * the ready event exclusively.
+ *
+ * This class only handles one widget at a time.
+ */
+var ClientWidgetApi = /*#__PURE__*/function (_EventEmitter) {
+  _inherits(ClientWidgetApi, _EventEmitter);
+
+  var _super = _createSuper(ClientWidgetApi);
+
+  // contentLoadedActionSent is used to check that only one ContentLoaded request is send.
+
+  /**
+   * Creates a new client widget API. This will instantiate the transport
+   * and start everything. When the iframe is loaded under the widget's
+   * conditions, a "ready" event will be raised.
+   * @param {Widget} widget The widget to communicate with.
+   * @param {HTMLIFrameElement} iframe The iframe the widget is in.
+   * @param {WidgetDriver} driver The driver for this widget/client.
+   */
+  function ClientWidgetApi(widget, iframe, driver) {
+    var _this;
+
+    _classCallCheck(this, ClientWidgetApi);
+
+    _this = _super.call(this);
+    _this.widget = widget;
+    _this.iframe = iframe;
+    _this.driver = driver;
+
+    _defineProperty(_assertThisInitialized(_this), "transport", void 0);
+
+    _defineProperty(_assertThisInitialized(_this), "contentLoadedActionSent", false);
+
+    _defineProperty(_assertThisInitialized(_this), "allowedCapabilities", new Set());
+
+    _defineProperty(_assertThisInitialized(_this), "allowedEvents", []);
+
+    _defineProperty(_assertThisInitialized(_this), "isStopped", false);
+
+    _defineProperty(_assertThisInitialized(_this), "turnServers", null);
+
+    if (!(iframe !== null && iframe !== void 0 && iframe.contentWindow)) {
+      throw new Error("No iframe supplied");
+    }
+
+    if (!widget) {
+      throw new Error("Invalid widget");
+    }
+
+    if (!driver) {
+      throw new Error("Invalid driver");
+    }
+
+    _this.transport = new _PostmessageTransport.PostmessageTransport(_WidgetApiDirection.WidgetApiDirection.ToWidget, widget.id, iframe.contentWindow, window);
+    _this.transport.targetOrigin = widget.origin;
+
+    _this.transport.on("message", _this.handleMessage.bind(_assertThisInitialized(_this)));
+
+    iframe.addEventListener("load", _this.onIframeLoad.bind(_assertThisInitialized(_this)));
+
+    _this.transport.start();
+
+    return _this;
+  }
+
+  _createClass(ClientWidgetApi, [{
+    key: "hasCapability",
+    value: function hasCapability(capability) {
+      return this.allowedCapabilities.has(capability);
+    }
+  }, {
+    key: "canUseRoomTimeline",
+    value: function canUseRoomTimeline(roomId) {
+      return this.hasCapability("org.matrix.msc2762.timeline:".concat(_Symbols.Symbols.AnyRoom)) || this.hasCapability("org.matrix.msc2762.timeline:".concat(roomId));
+    }
+  }, {
+    key: "canSendRoomEvent",
+    value: function canSendRoomEvent(eventType) {
+      var msgtype = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : null;
+      return this.allowedEvents.some(function (e) {
+        return e.matchesAsRoomEvent(_WidgetEventCapability.EventDirection.Send, eventType, msgtype);
+      });
+    }
+  }, {
+    key: "canSendStateEvent",
+    value: function canSendStateEvent(eventType, stateKey) {
+      return this.allowedEvents.some(function (e) {
+        return e.matchesAsStateEvent(_WidgetEventCapability.EventDirection.Send, eventType, stateKey);
+      });
+    }
+  }, {
+    key: "canSendToDeviceEvent",
+    value: function canSendToDeviceEvent(eventType) {
+      return this.allowedEvents.some(function (e) {
+        return e.matchesAsToDeviceEvent(_WidgetEventCapability.EventDirection.Send, eventType);
+      });
+    }
+  }, {
+    key: "canReceiveRoomEvent",
+    value: function canReceiveRoomEvent(eventType) {
+      var msgtype = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : null;
+      return this.allowedEvents.some(function (e) {
+        return e.matchesAsRoomEvent(_WidgetEventCapability.EventDirection.Receive, eventType, msgtype);
+      });
+    }
+  }, {
+    key: "canReceiveStateEvent",
+    value: function canReceiveStateEvent(eventType, stateKey) {
+      return this.allowedEvents.some(function (e) {
+        return e.matchesAsStateEvent(_WidgetEventCapability.EventDirection.Receive, eventType, stateKey);
+      });
+    }
+  }, {
+    key: "canReceiveToDeviceEvent",
+    value: function canReceiveToDeviceEvent(eventType) {
+      return this.allowedEvents.some(function (e) {
+        return e.matchesAsToDeviceEvent(_WidgetEventCapability.EventDirection.Receive, eventType);
+      });
+    }
+  }, {
+    key: "stop",
+    value: function stop() {
+      this.isStopped = true;
+      this.transport.stop();
+    }
+  }, {
+    key: "beginCapabilities",
+    value: function beginCapabilities() {
+      var _this2 = this;
+
+      // widget has loaded - tell all the listeners that
+      this.emit("preparing");
+      var requestedCaps;
+      this.transport.send(_WidgetApiAction.WidgetApiToWidgetAction.Capabilities, {}).then(function (caps) {
+        requestedCaps = caps.capabilities;
+        return _this2.driver.validateCapabilities(new Set(caps.capabilities));
+      }).then(function (allowedCaps) {
+        console.log("Widget ".concat(_this2.widget.id, " is allowed capabilities:"), Array.from(allowedCaps));
+        _this2.allowedCapabilities = allowedCaps;
+        _this2.allowedEvents = _WidgetEventCapability.WidgetEventCapability.findEventCapabilities(allowedCaps);
+
+        _this2.notifyCapabilities(requestedCaps);
+
+        _this2.emit("ready");
+      });
+    }
+  }, {
+    key: "notifyCapabilities",
+    value: function notifyCapabilities(requested) {
+      var _this3 = this;
+
+      this.transport.send(_WidgetApiAction.WidgetApiToWidgetAction.NotifyCapabilities, {
+        requested: requested,
+        approved: Array.from(this.allowedCapabilities)
+      })["catch"](function (e) {
+        console.warn("non-fatal error notifying widget of approved capabilities:", e);
+      }).then(function () {
+        _this3.emit("capabilitiesNotified");
+      });
+    }
+  }, {
+    key: "onIframeLoad",
+    value: function onIframeLoad(ev) {
+      if (this.widget.waitForIframeLoad) {
+        // If the widget is set to waitForIframeLoad the capabilities immediatly get setup after load.
+        // The client does not wait for the ContentLoaded action.
+        this.beginCapabilities();
+      } else {
+        // Reaching this means, that the Iframe got reloaded/loaded and
+        // the clientApi is awaiting the FIRST ContentLoaded action.
+        this.contentLoadedActionSent = false;
+      }
+    }
+  }, {
+    key: "handleContentLoadedAction",
+    value: function handleContentLoadedAction(action) {
+      if (this.contentLoadedActionSent) {
+        throw new Error("Improper sequence: ContentLoaded Action can only be send once after the widget loaded " + "and should only be used if waitForIframeLoad is false (default=true)");
+      }
+
+      if (this.widget.waitForIframeLoad) {
+        this.transport.reply(action, {
+          error: {
+            message: "Improper sequence: not expecting ContentLoaded event if " + "waitForIframLoad is true (default=true)"
+          }
+        });
+      } else {
+        this.transport.reply(action, {});
+        this.beginCapabilities();
+      }
+
+      this.contentLoadedActionSent = true;
+    }
+  }, {
+    key: "replyVersions",
+    value: function replyVersions(request) {
+      this.transport.reply(request, {
+        supported_versions: _ApiVersion.CurrentApiVersions
+      });
+    }
+  }, {
+    key: "handleCapabilitiesRenegotiate",
+    value: function handleCapabilitiesRenegotiate(request) {
+      var _request$data,
+          _this4 = this;
+
+      // acknowledge first
+      this.transport.reply(request, {});
+      var requested = ((_request$data = request.data) === null || _request$data === void 0 ? void 0 : _request$data.capabilities) || [];
+      var newlyRequested = new Set(requested.filter(function (r) {
+        return !_this4.hasCapability(r);
+      }));
+
+      if (newlyRequested.size === 0) {
+        // Nothing to do - notify capabilities
+        return this.notifyCapabilities([]);
+      }
+
+      this.driver.validateCapabilities(newlyRequested).then(function (allowed) {
+        allowed.forEach(function (c) {
+          return _this4.allowedCapabilities.add(c);
+        });
+
+        var allowedEvents = _WidgetEventCapability.WidgetEventCapability.findEventCapabilities(allowed);
+
+        allowedEvents.forEach(function (c) {
+          return _this4.allowedEvents.push(c);
+        });
+        return _this4.notifyCapabilities(Array.from(newlyRequested));
+      });
+    }
+  }, {
+    key: "handleNavigate",
+    value: function handleNavigate(request) {
+      var _request$data2,
+          _request$data3,
+          _this5 = this;
+
+      if (!this.hasCapability(_Capabilities.MatrixCapabilities.MSC2931Navigate)) {
+        return this.transport.reply(request, {
+          error: {
+            message: "Missing capability"
+          }
+        });
+      }
+
+      if (!((_request$data2 = request.data) !== null && _request$data2 !== void 0 && _request$data2.uri) || !((_request$data3 = request.data) !== null && _request$data3 !== void 0 && _request$data3.uri.toString().startsWith("https://matrix.to/#"))) {
+        return this.transport.reply(request, {
+          error: {
+            message: "Invalid matrix.to URI"
+          }
+        });
+      }
+
+      var onErr = function onErr(e) {
+        console.error("[ClientWidgetApi] Failed to handle navigation: ", e);
+        return _this5.transport.reply(request, {
+          error: {
+            message: "Error handling navigation"
+          }
+        });
+      };
+
+      try {
+        this.driver.navigate(request.data.uri.toString())["catch"](function (e) {
+          return onErr(e);
+        }).then(function () {
+          return _this5.transport.reply(request, {});
+        });
+      } catch (e) {
+        return onErr(e);
+      }
+    }
+  }, {
+    key: "handleOIDC",
+    value: function handleOIDC(request) {
+      var _this6 = this;
+
+      var phase = 1; // 1 = initial request, 2 = after user manual confirmation
+
+      var replyState = function replyState(state, credential) {
+        credential = credential || {};
+
+        if (phase > 1) {
+          return _this6.transport.send(_WidgetApiAction.WidgetApiToWidgetAction.OpenIDCredentials, _objectSpread({
+            state: state,
+            original_request_id: request.requestId
+          }, credential));
+        } else {
+          return _this6.transport.reply(request, _objectSpread({
+            state: state
+          }, credential));
+        }
+      };
+
+      var replyError = function replyError(msg) {
+        console.error("[ClientWidgetApi] Failed to handle OIDC: ", msg);
+
+        if (phase > 1) {
+          // We don't have a way to indicate that a random error happened in this flow, so
+          // just block the attempt.
+          return replyState(_GetOpenIDAction.OpenIDRequestState.Blocked);
+        } else {
+          return _this6.transport.reply(request, {
+            error: {
+              message: msg
+            }
+          });
+        }
+      };
+
+      var observer = new _SimpleObservable.SimpleObservable(function (update) {
+        if (update.state === _GetOpenIDAction.OpenIDRequestState.PendingUserConfirmation && phase > 1) {
+          observer.close();
+          return replyError("client provided out-of-phase response to OIDC flow");
+        }
+
+        if (update.state === _GetOpenIDAction.OpenIDRequestState.PendingUserConfirmation) {
+          replyState(update.state);
+          phase++;
+          return;
+        }
+
+        if (update.state === _GetOpenIDAction.OpenIDRequestState.Allowed && !update.token) {
+          return replyError("client provided invalid OIDC token for an allowed request");
+        }
+
+        if (update.state === _GetOpenIDAction.OpenIDRequestState.Blocked) {
+          update.token = null; // just in case the client did something weird
+        }
+
+        observer.close();
+        return replyState(update.state, update.token);
+      });
+      this.driver.askOpenID(observer);
+    }
+  }, {
+    key: "handleReadEvents",
+    value: function handleReadEvents(request) {
+      var _this7 = this;
+
+      if (!request.data.type) {
+        return this.transport.reply(request, {
+          error: {
+            message: "Invalid request - missing event type"
+          }
+        });
+      }
+
+      if (request.data.limit !== undefined && (!request.data.limit || request.data.limit < 0)) {
+        return this.transport.reply(request, {
+          error: {
+            message: "Invalid request - limit out of range"
+          }
+        });
+      }
+
+      var askRoomIds = null; // null denotes current room only
+
+      if (request.data.room_ids) {
+        askRoomIds = request.data.room_ids;
+
+        if (!Array.isArray(askRoomIds)) {
+          askRoomIds = [askRoomIds];
+        }
+
+        var _iterator2 = _createForOfIteratorHelper(askRoomIds),
+            _step2;
+
+        try {
+          for (_iterator2.s(); !(_step2 = _iterator2.n()).done;) {
+            var roomId = _step2.value;
+
+            if (!this.canUseRoomTimeline(roomId)) {
+              return this.transport.reply(request, {
+                error: {
+                  message: "Unable to access room timeline: ".concat(roomId)
+                }
+              });
+            }
+          }
+        } catch (err) {
+          _iterator2.e(err);
+        } finally {
+          _iterator2.f();
+        }
+      }
+
+      var limit = request.data.limit || 0;
+      var events = Promise.resolve([]);
+
+      if (request.data.state_key !== undefined) {
+        var stateKey = request.data.state_key === true ? undefined : request.data.state_key.toString();
+
+        if (!this.canReceiveStateEvent(request.data.type, stateKey)) {
+          return this.transport.reply(request, {
+            error: {
+              message: "Cannot read state events of this type"
+            }
+          });
+        }
+
+        events = this.driver.readStateEvents(request.data.type, stateKey, limit, askRoomIds);
+      } else {
+        if (!this.canReceiveRoomEvent(request.data.type, request.data.msgtype)) {
+          return this.transport.reply(request, {
+            error: {
+              message: "Cannot read room events of this type"
+            }
+          });
+        }
+
+        events = this.driver.readRoomEvents(request.data.type, request.data.msgtype, limit, askRoomIds);
+      }
+
+      return events.then(function (evs) {
+        return _this7.transport.reply(request, {
+          events: evs
+        });
+      });
+    }
+  }, {
+    key: "handleSendEvent",
+    value: function handleSendEvent(request) {
+      var _this8 = this;
+
+      if (!request.data.type) {
+        return this.transport.reply(request, {
+          error: {
+            message: "Invalid request - missing event type"
+          }
+        });
+      }
+
+      if (!!request.data.room_id && !this.canUseRoomTimeline(request.data.room_id)) {
+        return this.transport.reply(request, {
+          error: {
+            message: "Unable to access room timeline: ".concat(request.data.room_id)
+          }
+        });
+      }
+
+      var isState = request.data.state_key !== null && request.data.state_key !== undefined;
+      var sendEventPromise;
+
+      if (isState) {
+        if (!this.canSendStateEvent(request.data.type, request.data.state_key)) {
+          return this.transport.reply(request, {
+            error: {
+              message: "Cannot send state events of this type"
+            }
+          });
+        }
+
+        sendEventPromise = this.driver.sendEvent(request.data.type, request.data.content || {}, request.data.state_key, request.data.room_id);
+      } else {
+        var content = request.data.content || {};
+        var msgtype = content['msgtype'];
+
+        if (!this.canSendRoomEvent(request.data.type, msgtype)) {
+          return this.transport.reply(request, {
+            error: {
+              message: "Cannot send room events of this type"
+            }
+          });
+        }
+
+        sendEventPromise = this.driver.sendEvent(request.data.type, content, null, // not sending a state event
+        request.data.room_id);
+      }
+
+      sendEventPromise.then(function (sentEvent) {
+        return _this8.transport.reply(request, {
+          room_id: sentEvent.roomId,
+          event_id: sentEvent.eventId
+        });
+      })["catch"](function (e) {
+        console.error("error sending event: ", e);
+        return _this8.transport.reply(request, {
+          error: {
+            message: "Error sending event"
+          }
+        });
+      });
+    }
+  }, {
+    key: "handleSendToDevice",
+    value: function () {
+      var _handleSendToDevice = _asyncToGenerator( /*#__PURE__*/_regeneratorRuntime().mark(function _callee(request) {
+        return _regeneratorRuntime().wrap(function _callee$(_context) {
+          while (1) {
+            switch (_context.prev = _context.next) {
+              case 0:
+                if (request.data.type) {
+                  _context.next = 5;
+                  break;
+                }
+
+                _context.next = 3;
+                return this.transport.reply(request, {
+                  error: {
+                    message: "Invalid request - missing event type"
+                  }
+                });
+
+              case 3:
+                _context.next = 32;
+                break;
+
+              case 5:
+                if (request.data.messages) {
+                  _context.next = 10;
+                  break;
+                }
+
+                _context.next = 8;
+                return this.transport.reply(request, {
+                  error: {
+                    message: "Invalid request - missing event contents"
+                  }
+                });
+
+              case 8:
+                _context.next = 32;
+                break;
+
+              case 10:
+                if (!(typeof request.data.encrypted !== "boolean")) {
+                  _context.next = 15;
+                  break;
+                }
+
+                _context.next = 13;
+                return this.transport.reply(request, {
+                  error: {
+                    message: "Invalid request - missing encryption flag"
+                  }
+                });
+
+              case 13:
+                _context.next = 32;
+                break;
+
+              case 15:
+                if (this.canSendToDeviceEvent(request.data.type)) {
+                  _context.next = 20;
+                  break;
+                }
+
+                _context.next = 18;
+                return this.transport.reply(request, {
+                  error: {
+                    message: "Cannot send to-device events of this type"
+                  }
+                });
+
+              case 18:
+                _context.next = 32;
+                break;
+
+              case 20:
+                _context.prev = 20;
+                _context.next = 23;
+                return this.driver.sendToDevice(request.data.type, request.data.encrypted, request.data.messages);
+
+              case 23:
+                _context.next = 25;
+                return this.transport.reply(request, {});
+
+              case 25:
+                _context.next = 32;
+                break;
+
+              case 27:
+                _context.prev = 27;
+                _context.t0 = _context["catch"](20);
+                console.error("error sending to-device event", _context.t0);
+                _context.next = 32;
+                return this.transport.reply(request, {
+                  error: {
+                    message: "Error sending event"
+                  }
+                });
+
+              case 32:
+              case "end":
+                return _context.stop();
+            }
+          }
+        }, _callee, this, [[20, 27]]);
+      }));
+
+      function handleSendToDevice(_x) {
+        return _handleSendToDevice.apply(this, arguments);
+      }
+
+      return handleSendToDevice;
+    }()
+  }, {
+    key: "pollTurnServers",
+    value: function () {
+      var _pollTurnServers = _asyncToGenerator( /*#__PURE__*/_regeneratorRuntime().mark(function _callee2(turnServers, initialServer) {
+        var _iteratorAbruptCompletion, _didIteratorError, _iteratorError, _iterator, _step, server;
+
+        return _regeneratorRuntime().wrap(function _callee2$(_context2) {
+          while (1) {
+            switch (_context2.prev = _context2.next) {
+              case 0:
+                _context2.prev = 0;
+                _context2.next = 3;
+                return this.transport.send(_WidgetApiAction.WidgetApiToWidgetAction.UpdateTurnServers, initialServer // it's compatible, but missing the index signature
+                );
+
+              case 3:
+                // Pick the generator up where we left off
+                _iteratorAbruptCompletion = false;
+                _didIteratorError = false;
+                _context2.prev = 5;
+                _iterator = _asyncIterator(turnServers);
+
+              case 7:
+                _context2.next = 9;
+                return _iterator.next();
+
+              case 9:
+                if (!(_iteratorAbruptCompletion = !(_step = _context2.sent).done)) {
+                  _context2.next = 16;
+                  break;
+                }
+
+                server = _step.value;
+                _context2.next = 13;
+                return this.transport.send(_WidgetApiAction.WidgetApiToWidgetAction.UpdateTurnServers, server // it's compatible, but missing the index signature
+                );
+
+              case 13:
+                _iteratorAbruptCompletion = false;
+                _context2.next = 7;
+                break;
+
+              case 16:
+                _context2.next = 22;
+                break;
+
+              case 18:
+                _context2.prev = 18;
+                _context2.t0 = _context2["catch"](5);
+                _didIteratorError = true;
+                _iteratorError = _context2.t0;
+
+              case 22:
+                _context2.prev = 22;
+                _context2.prev = 23;
+
+                if (!(_iteratorAbruptCompletion && _iterator["return"] != null)) {
+                  _context2.next = 27;
+                  break;
+                }
+
+                _context2.next = 27;
+                return _iterator["return"]();
+
+              case 27:
+                _context2.prev = 27;
+
+                if (!_didIteratorError) {
+                  _context2.next = 30;
+                  break;
+                }
+
+                throw _iteratorError;
+
+              case 30:
+                return _context2.finish(27);
+
+              case 31:
+                return _context2.finish(22);
+
+              case 32:
+                _context2.next = 37;
+                break;
+
+              case 34:
+                _context2.prev = 34;
+                _context2.t1 = _context2["catch"](0);
+                console.error("error polling for TURN servers", _context2.t1);
+
+              case 37:
+              case "end":
+                return _context2.stop();
+            }
+          }
+        }, _callee2, this, [[0, 34], [5, 18, 22, 32], [23,, 27, 31]]);
+      }));
+
+      function pollTurnServers(_x2, _x3) {
+        return _pollTurnServers.apply(this, arguments);
+      }
+
+      return pollTurnServers;
+    }()
+  }, {
+    key: "handleWatchTurnServers",
+    value: function () {
+      var _handleWatchTurnServers = _asyncToGenerator( /*#__PURE__*/_regeneratorRuntime().mark(function _callee3(request) {
+        var turnServers, _yield$turnServers$ne, done, value;
+
+        return _regeneratorRuntime().wrap(function _callee3$(_context3) {
+          while (1) {
+            switch (_context3.prev = _context3.next) {
+              case 0:
+                if (this.hasCapability(_Capabilities.MatrixCapabilities.MSC3846TurnServers)) {
+                  _context3.next = 5;
+                  break;
+                }
+
+                _context3.next = 3;
+                return this.transport.reply(request, {
+                  error: {
+                    message: "Missing capability"
+                  }
+                });
+
+              case 3:
+                _context3.next = 30;
+                break;
+
+              case 5:
+                if (!this.turnServers) {
+                  _context3.next = 10;
+                  break;
+                }
+
+                _context3.next = 8;
+                return this.transport.reply(request, {});
+
+              case 8:
+                _context3.next = 30;
+                break;
+
+              case 10:
+                _context3.prev = 10;
+                turnServers = this.driver.getTurnServers(); // Peek at the first result, so we can at least verify that the
+                // client isn't banned from getting TURN servers entirely
+
+                _context3.next = 14;
+                return turnServers.next();
+
+              case 14:
+                _yield$turnServers$ne = _context3.sent;
+                done = _yield$turnServers$ne.done;
+                value = _yield$turnServers$ne.value;
+
+                if (!done) {
+                  _context3.next = 19;
+                  break;
+                }
+
+                throw new Error("Client refuses to provide any TURN servers");
+
+              case 19:
+                _context3.next = 21;
+                return this.transport.reply(request, {});
+
+              case 21:
+                // Start the poll loop, sending the widget the initial result
+                this.pollTurnServers(turnServers, value);
+                this.turnServers = turnServers;
+                _context3.next = 30;
+                break;
+
+              case 25:
+                _context3.prev = 25;
+                _context3.t0 = _context3["catch"](10);
+                console.error("error getting first TURN server results", _context3.t0);
+                _context3.next = 30;
+                return this.transport.reply(request, {
+                  error: {
+                    message: "TURN servers not available"
+                  }
+                });
+
+              case 30:
+              case "end":
+                return _context3.stop();
+            }
+          }
+        }, _callee3, this, [[10, 25]]);
+      }));
+
+      function handleWatchTurnServers(_x4) {
+        return _handleWatchTurnServers.apply(this, arguments);
+      }
+
+      return handleWatchTurnServers;
+    }()
+  }, {
+    key: "handleUnwatchTurnServers",
+    value: function () {
+      var _handleUnwatchTurnServers = _asyncToGenerator( /*#__PURE__*/_regeneratorRuntime().mark(function _callee4(request) {
+        return _regeneratorRuntime().wrap(function _callee4$(_context4) {
+          while (1) {
+            switch (_context4.prev = _context4.next) {
+              case 0:
+                if (this.hasCapability(_Capabilities.MatrixCapabilities.MSC3846TurnServers)) {
+                  _context4.next = 5;
+                  break;
+                }
+
+                _context4.next = 3;
+                return this.transport.reply(request, {
+                  error: {
+                    message: "Missing capability"
+                  }
+                });
+
+              case 3:
+                _context4.next = 15;
+                break;
+
+              case 5:
+                if (this.turnServers) {
+                  _context4.next = 10;
+                  break;
+                }
+
+                _context4.next = 8;
+                return this.transport.reply(request, {});
+
+              case 8:
+                _context4.next = 15;
+                break;
+
+              case 10:
+                _context4.next = 12;
+                return this.turnServers["return"](undefined);
+
+              case 12:
+                this.turnServers = null;
+                _context4.next = 15;
+                return this.transport.reply(request, {});
+
+              case 15:
+              case "end":
+                return _context4.stop();
+            }
+          }
+        }, _callee4, this);
+      }));
+
+      function handleUnwatchTurnServers(_x5) {
+        return _handleUnwatchTurnServers.apply(this, arguments);
+      }
+
+      return handleUnwatchTurnServers;
+    }()
+  }, {
+    key: "handleReadRelations",
+    value: function () {
+      var _handleReadRelations = _asyncToGenerator( /*#__PURE__*/_regeneratorRuntime().mark(function _callee5(request) {
+        var _this9 = this;
+
+        var result, chunk;
+        return _regeneratorRuntime().wrap(function _callee5$(_context5) {
+          while (1) {
+            switch (_context5.prev = _context5.next) {
+              case 0:
+                if (request.data.event_id) {
+                  _context5.next = 2;
+                  break;
+                }
+
+                return _context5.abrupt("return", this.transport.reply(request, {
+                  error: {
+                    message: "Invalid request - missing event ID"
+                  }
+                }));
+
+              case 2:
+                if (!(request.data.limit !== undefined && request.data.limit < 0)) {
+                  _context5.next = 4;
+                  break;
+                }
+
+                return _context5.abrupt("return", this.transport.reply(request, {
+                  error: {
+                    message: "Invalid request - limit out of range"
+                  }
+                }));
+
+              case 4:
+                if (!(request.data.room_id !== undefined && !this.canUseRoomTimeline(request.data.room_id))) {
+                  _context5.next = 6;
+                  break;
+                }
+
+                return _context5.abrupt("return", this.transport.reply(request, {
+                  error: {
+                    message: "Unable to access room timeline: ".concat(request.data.room_id)
+                  }
+                }));
+
+              case 6:
+                _context5.prev = 6;
+                _context5.next = 9;
+                return this.driver.readEventRelations(request.data.event_id, request.data.room_id, request.data.rel_type, request.data.event_type, request.data.from, request.data.to, request.data.limit, request.data.direction);
+
+              case 9:
+                result = _context5.sent;
+
+                if (!result.originalEvent) {
+                  _context5.next = 18;
+                  break;
+                }
+
+                if (!(result.originalEvent.state_key !== undefined)) {
+                  _context5.next = 16;
+                  break;
+                }
+
+                if (this.canReceiveStateEvent(result.originalEvent.type, result.originalEvent.state_key)) {
+                  _context5.next = 14;
+                  break;
+                }
+
+                return _context5.abrupt("return", this.transport.reply(request, {
+                  error: {
+                    message: "Cannot read state events of this type"
+                  }
+                }));
+
+              case 14:
+                _context5.next = 18;
+                break;
+
+              case 16:
+                if (this.canReceiveRoomEvent(result.originalEvent.type, result.originalEvent.content['msgtype'])) {
+                  _context5.next = 18;
+                  break;
+                }
+
+                return _context5.abrupt("return", this.transport.reply(request, {
+                  error: {
+                    message: "Cannot read room events of this type"
+                  }
+                }));
+
+              case 18:
+                // only return events that the user has the permission to receive
+                chunk = result.chunk.filter(function (e) {
+                  if (e.state_key !== undefined) {
+                    return _this9.canReceiveStateEvent(e.type, e.state_key);
+                  } else {
+                    return _this9.canReceiveRoomEvent(e.type, e.content['msgtype']);
+                  }
+                });
+                return _context5.abrupt("return", this.transport.reply(request, {
+                  original_event: result.originalEvent,
+                  chunk: chunk,
+                  prev_batch: result.prevBatch,
+                  next_batch: result.nextBatch
+                }));
+
+              case 22:
+                _context5.prev = 22;
+                _context5.t0 = _context5["catch"](6);
+                console.error("error getting the relations", _context5.t0);
+                _context5.next = 27;
+                return this.transport.reply(request, {
+                  error: {
+                    message: "Unexpected error while reading relations"
+                  }
+                });
+
+              case 27:
+              case "end":
+                return _context5.stop();
+            }
+          }
+        }, _callee5, this, [[6, 22]]);
+      }));
+
+      function handleReadRelations(_x6) {
+        return _handleReadRelations.apply(this, arguments);
+      }
+
+      return handleReadRelations;
+    }()
+  }, {
+    key: "handleMessage",
+    value: function handleMessage(ev) {
+      if (this.isStopped) return;
+      var actionEv = new CustomEvent("action:".concat(ev.detail.action), {
+        detail: ev.detail,
+        cancelable: true
+      });
+      this.emit("action:".concat(ev.detail.action), actionEv);
+
+      if (!actionEv.defaultPrevented) {
+        switch (ev.detail.action) {
+          case _WidgetApiAction.WidgetApiFromWidgetAction.ContentLoaded:
+            return this.handleContentLoadedAction(ev.detail);
+
+          case _WidgetApiAction.WidgetApiFromWidgetAction.SupportedApiVersions:
+            return this.replyVersions(ev.detail);
+
+          case _WidgetApiAction.WidgetApiFromWidgetAction.SendEvent:
+            return this.handleSendEvent(ev.detail);
+
+          case _WidgetApiAction.WidgetApiFromWidgetAction.SendToDevice:
+            return this.handleSendToDevice(ev.detail);
+
+          case _WidgetApiAction.WidgetApiFromWidgetAction.GetOpenIDCredentials:
+            return this.handleOIDC(ev.detail);
+
+          case _WidgetApiAction.WidgetApiFromWidgetAction.MSC2931Navigate:
+            return this.handleNavigate(ev.detail);
+
+          case _WidgetApiAction.WidgetApiFromWidgetAction.MSC2974RenegotiateCapabilities:
+            return this.handleCapabilitiesRenegotiate(ev.detail);
+
+          case _WidgetApiAction.WidgetApiFromWidgetAction.MSC2876ReadEvents:
+            return this.handleReadEvents(ev.detail);
+
+          case _WidgetApiAction.WidgetApiFromWidgetAction.WatchTurnServers:
+            return this.handleWatchTurnServers(ev.detail);
+
+          case _WidgetApiAction.WidgetApiFromWidgetAction.UnwatchTurnServers:
+            return this.handleUnwatchTurnServers(ev.detail);
+
+          case _WidgetApiAction.WidgetApiFromWidgetAction.MSC3869ReadRelations:
+            return this.handleReadRelations(ev.detail);
+
+          default:
+            return this.transport.reply(ev.detail, {
+              error: {
+                message: "Unknown or unsupported action: " + ev.detail.action
+              }
+            });
+        }
+      }
+    }
+    /**
+     * Takes a screenshot of the widget.
+     * @returns Resolves to the widget's screenshot.
+     * @throws Throws if there is a problem.
+     */
+
+  }, {
+    key: "takeScreenshot",
+    value: function takeScreenshot() {
+      return this.transport.send(_WidgetApiAction.WidgetApiToWidgetAction.TakeScreenshot, {});
+    }
+    /**
+     * Alerts the widget to whether or not it is currently visible.
+     * @param {boolean} isVisible Whether the widget is visible or not.
+     * @returns {Promise<IWidgetApiResponseData>} Resolves when the widget acknowledges the update.
+     */
+
+  }, {
+    key: "updateVisibility",
+    value: function updateVisibility(isVisible) {
+      return this.transport.send(_WidgetApiAction.WidgetApiToWidgetAction.UpdateVisibility, {
+        visible: isVisible
+      });
+    }
+  }, {
+    key: "sendWidgetConfig",
+    value: function sendWidgetConfig(data) {
+      return this.transport.send(_WidgetApiAction.WidgetApiToWidgetAction.WidgetConfig, data).then();
+    }
+  }, {
+    key: "notifyModalWidgetButtonClicked",
+    value: function notifyModalWidgetButtonClicked(id) {
+      return this.transport.send(_WidgetApiAction.WidgetApiToWidgetAction.ButtonClicked, {
+        id: id
+      }).then();
+    }
+  }, {
+    key: "notifyModalWidgetClose",
+    value: function notifyModalWidgetClose(data) {
+      return this.transport.send(_WidgetApiAction.WidgetApiToWidgetAction.CloseModalWidget, data).then();
+    }
+    /**
+     * Feeds an event to the widget. If the widget is not able to accept the event due to
+     * permissions, this will no-op and return calmly. If the widget failed to handle the
+     * event, this will raise an error.
+     * @param {IRoomEvent} rawEvent The event to (try to) send to the widget.
+     * @param {string} currentViewedRoomId The room ID the user is currently interacting with.
+     * Not the room ID of the event.
+     * @returns {Promise<void>} Resolves when complete, rejects if there was an error sending.
+     */
+
+  }, {
+    key: "feedEvent",
+    value: function () {
+      var _feedEvent = _asyncToGenerator( /*#__PURE__*/_regeneratorRuntime().mark(function _callee6(rawEvent, currentViewedRoomId) {
+        var _rawEvent$content;
+
+        return _regeneratorRuntime().wrap(function _callee6$(_context6) {
+          while (1) {
+            switch (_context6.prev = _context6.next) {
+              case 0:
+                if (!(rawEvent.room_id !== currentViewedRoomId && !this.canUseRoomTimeline(rawEvent.room_id))) {
+                  _context6.next = 2;
+                  break;
+                }
+
+                return _context6.abrupt("return");
+
+              case 2:
+                if (!(rawEvent.state_key !== undefined && rawEvent.state_key !== null)) {
+                  _context6.next = 7;
+                  break;
+                }
+
+                if (this.canReceiveStateEvent(rawEvent.type, rawEvent.state_key)) {
+                  _context6.next = 5;
+                  break;
+                }
+
+                return _context6.abrupt("return");
+
+              case 5:
+                _context6.next = 9;
+                break;
+
+              case 7:
+                if (this.canReceiveRoomEvent(rawEvent.type, (_rawEvent$content = rawEvent.content) === null || _rawEvent$content === void 0 ? void 0 : _rawEvent$content["msgtype"])) {
+                  _context6.next = 9;
+                  break;
+                }
+
+                return _context6.abrupt("return");
+
+              case 9:
+                _context6.next = 11;
+                return this.transport.send(_WidgetApiAction.WidgetApiToWidgetAction.SendEvent, rawEvent // it's compatible, but missing the index signature
+                );
+
+              case 11:
+              case "end":
+                return _context6.stop();
+            }
+          }
+        }, _callee6, this);
+      }));
+
+      function feedEvent(_x7, _x8) {
+        return _feedEvent.apply(this, arguments);
+      }
+
+      return feedEvent;
+    }()
+    /**
+     * Feeds a to-device event to the widget. If the widget is not able to accept the
+     * event due to permissions, this will no-op and return calmly. If the widget failed
+     * to handle the event, this will raise an error.
+     * @param {IRoomEvent} rawEvent The event to (try to) send to the widget.
+     * @param {boolean} encrypted Whether the event contents were encrypted.
+     * @returns {Promise<void>} Resolves when complete, rejects if there was an error sending.
+     */
+
+  }, {
+    key: "feedToDevice",
+    value: function () {
+      var _feedToDevice = _asyncToGenerator( /*#__PURE__*/_regeneratorRuntime().mark(function _callee7(rawEvent, encrypted) {
+        return _regeneratorRuntime().wrap(function _callee7$(_context7) {
+          while (1) {
+            switch (_context7.prev = _context7.next) {
+              case 0:
+                if (!this.canReceiveToDeviceEvent(rawEvent.type)) {
+                  _context7.next = 3;
+                  break;
+                }
+
+                _context7.next = 3;
+                return this.transport.send(_WidgetApiAction.WidgetApiToWidgetAction.SendToDevice, // it's compatible, but missing the index signature
+                _objectSpread(_objectSpread({}, rawEvent), {}, {
+                  encrypted: encrypted
+                }));
+
+              case 3:
+              case "end":
+                return _context7.stop();
+            }
+          }
+        }, _callee7, this);
+      }));
+
+      function feedToDevice(_x9, _x10) {
+        return _feedToDevice.apply(this, arguments);
+      }
+
+      return feedToDevice;
+    }()
+  }]);
+
+  return ClientWidgetApi;
+}(_events.EventEmitter);
+
+exports.ClientWidgetApi = ClientWidgetApi;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/driver/WidgetDriver.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/driver/WidgetDriver.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/driver/WidgetDriver.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/driver/WidgetDriver.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,214 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.WidgetDriver = void 0;
+
+var _ = require("..");
+
+function _classCallCheck(instance, Constructor) { if (!(instance instanceof Constructor)) { throw new TypeError("Cannot call a class as a function"); } }
+
+function _defineProperties(target, props) { for (var i = 0; i < props.length; i++) { var descriptor = props[i]; descriptor.enumerable = descriptor.enumerable || false; descriptor.configurable = true; if ("value" in descriptor) descriptor.writable = true; Object.defineProperty(target, descriptor.key, descriptor); } }
+
+function _createClass(Constructor, protoProps, staticProps) { if (protoProps) _defineProperties(Constructor.prototype, protoProps); if (staticProps) _defineProperties(Constructor, staticProps); Object.defineProperty(Constructor, "prototype", { writable: false }); return Constructor; }
+
+/**
+ * Represents the functions and behaviour the widget-api is unable to
+ * do, such as prompting the user for information or interacting with
+ * the UI. Clients are expected to implement this class and override
+ * any functions they need/want to support.
+ *
+ * This class assumes the client will have a context of a Widget
+ * instance already.
+ */
+var WidgetDriver = /*#__PURE__*/function () {
+  function WidgetDriver() {
+    _classCallCheck(this, WidgetDriver);
+  }
+
+  _createClass(WidgetDriver, [{
+    key: "validateCapabilities",
+    value:
+    /**
+     * Verifies the widget's requested capabilities, returning the ones
+     * it is approved to use. Mutating the requested capabilities will
+     * have no effect.
+     *
+     * This SHOULD result in the user being prompted to approve/deny
+     * capabilities.
+     *
+     * By default this rejects all capabilities (returns an empty set).
+     * @param {Set<Capability>} requested The set of requested capabilities.
+     * @returns {Promise<Set<Capability>>} Resolves to the allowed capabilities.
+     */
+    function validateCapabilities(requested) {
+      return Promise.resolve(new Set());
+    }
+    /**
+     * Sends an event into a room. If `roomId` is falsy, the client should send the event
+     * into the room the user is currently looking at. The widget API will have already
+     * verified that the widget is capable of sending the event to that room.
+     * @param {string} eventType The event type to be sent.
+     * @param {*} content The content for the event.
+     * @param {string|null} stateKey The state key if this is a state event, otherwise null.
+     * May be an empty string.
+     * @param {string|null} roomId The room ID to send the event to. If falsy, the room the
+     * user is currently looking at.
+     * @returns {Promise<ISendEventDetails>} Resolves when the event has been sent with
+     * details of that event.
+     * @throws Rejected when the event could not be sent.
+     */
+
+  }, {
+    key: "sendEvent",
+    value: function sendEvent(eventType, content) {
+      var stateKey = arguments.length > 2 && arguments[2] !== undefined ? arguments[2] : null;
+      var roomId = arguments.length > 3 && arguments[3] !== undefined ? arguments[3] : null;
+      return Promise.reject(new Error("Failed to override function"));
+    }
+    /**
+     * Sends a to-device event. The widget API will have already verified that the widget
+     * is capable of sending the event.
+     * @param {string} eventType The event type to be sent.
+     * @param {boolean} encrypted Whether to encrypt the message contents.
+     * @param {Object} contentMap A map from user ID and device ID to event content.
+     * @returns {Promise<void>} Resolves when the event has been sent.
+     * @throws Rejected when the event could not be sent.
+     */
+
+  }, {
+    key: "sendToDevice",
+    value: function sendToDevice(eventType, encrypted, contentMap) {
+      return Promise.reject(new Error("Failed to override function"));
+    }
+    /**
+     * Reads all events of the given type, and optionally `msgtype` (if applicable/defined),
+     * the user has access to. The widget API will have already verified that the widget is
+     * capable of receiving the events. Less events than the limit are allowed to be returned,
+     * but not more. If `roomIds` is supplied, it may contain `Symbols.AnyRoom` to denote that
+     * `limit` in each of the client's known rooms should be returned. When `null`, only the
+     * room the user is currently looking at should be considered.
+     * @param eventType The event type to be read.
+     * @param msgtype The msgtype of the events to be read, if applicable/defined.
+     * @param limit The maximum number of events to retrieve per room. Will be zero to denote "as many
+     * as possible".
+     * @param roomIds When null, the user's currently viewed room. Otherwise, the list of room IDs
+     * to look within, possibly containing Symbols.AnyRoom to denote all known rooms.
+     * @returns {Promise<IRoomEvent[]>} Resolves to the room events, or an empty array.
+     */
+
+  }, {
+    key: "readRoomEvents",
+    value: function readRoomEvents(eventType, msgtype, limit) {
+      var roomIds = arguments.length > 3 && arguments[3] !== undefined ? arguments[3] : null;
+      return Promise.resolve([]);
+    }
+    /**
+     * Reads all events of the given type, and optionally state key (if applicable/defined),
+     * the user has access to. The widget API will have already verified that the widget is
+     * capable of receiving the events. Less events than the limit are allowed to be returned,
+     * but not more. If `roomIds` is supplied, it may contain `Symbols.AnyRoom` to denote that
+     * `limit` in each of the client's known rooms should be returned. When `null`, only the
+     * room the user is currently looking at should be considered.
+     * @param eventType The event type to be read.
+     * @param stateKey The state key of the events to be read, if applicable/defined.
+     * @param limit The maximum number of events to retrieve. Will be zero to denote "as many
+     * as possible".
+     * @param roomIds When null, the user's currently viewed room. Otherwise, the list of room IDs
+     * to look within, possibly containing Symbols.AnyRoom to denote all known rooms.
+     * @returns {Promise<IRoomEvent[]>} Resolves to the state events, or an empty array.
+     */
+
+  }, {
+    key: "readStateEvents",
+    value: function readStateEvents(eventType, stateKey, limit) {
+      var roomIds = arguments.length > 3 && arguments[3] !== undefined ? arguments[3] : null;
+      return Promise.resolve([]);
+    }
+    /**
+     * Reads all events that are related to a given event. The widget API will
+     * have already verified that the widget is capable of receiving the event,
+     * or will make sure to reject access to events which are returned from this
+     * function, but are not capable of receiving. If `relationType` or `eventType`
+     * are set, the returned events should already be filtered. Less events than
+     * the limit are allowed to be returned, but not more.
+     * @param eventId The id of the parent event to be read.
+     * @param roomId The room to look within. When undefined, the user's
+     * currently viewed room.
+     * @param relationType The relationship type of child events to search for.
+     * When undefined, all relations are returned.
+     * @param eventType The event type of child events to search for. When undefined,
+     * all related events are returned.
+     * @param from The pagination token to start returning results from, as
+     * received from a previous call. If not supplied, results start at the most
+     * recent topological event known to the server.
+     * @param to The pagination token to stop returning results at. If not
+     * supplied, results continue up to limit or until there are no more events.
+     * @param limit The maximum number of events to retrieve per room. If not
+     * supplied, the server will apply a default limit.
+     * @param direction The direction to search for according to MSC3715
+     * @returns Resolves to the room relations.
+     */
+
+  }, {
+    key: "readEventRelations",
+    value: function readEventRelations(eventId, roomId, relationType, eventType, from, to, limit, direction) {
+      return Promise.resolve({
+        chunk: []
+      });
+    }
+    /**
+     * Asks the user for permission to validate their identity through OpenID Connect. The
+     * interface for this function is an observable which accepts the state machine of the
+     * OIDC exchange flow. For example, if the client/user blocks the request then it would
+     * feed back a `{state: Blocked}` into the observable. Similarly, if the user already
+     * approved the widget then a `{state: Allowed}` would be fed into the observable alongside
+     * the token itself. If the client is asking for permission, it should feed in a
+     * `{state: PendingUserConfirmation}` followed by the relevant Allowed or Blocked state.
+     *
+     * The widget API will reject the widget's request with an error if this contract is not
+     * met properly. By default, the widget driver will block all OIDC requests.
+     * @param {SimpleObservable<IOpenIDUpdate>} observer The observable to feed updates into.
+     */
+
+  }, {
+    key: "askOpenID",
+    value: function askOpenID(observer) {
+      observer.update({
+        state: _.OpenIDRequestState.Blocked
+      });
+    }
+    /**
+     * Navigates the client with a matrix.to URI. In future this function will also be provided
+     * with the Matrix URIs once matrix.to is replaced. The given URI will have already been
+     * lightly checked to ensure it looks like a valid URI, though the implementation is recommended
+     * to do further checks on the URI.
+     * @param {string} uri The URI to navigate to.
+     * @returns {Promise<void>} Resolves when complete.
+     * @throws Throws if there's a problem with the navigation, such as invalid format.
+     */
+
+  }, {
+    key: "navigate",
+    value: function navigate(uri) {
+      throw new Error("Navigation is not implemented");
+    }
+    /**
+     * Polls for TURN server data, yielding an initial set of credentials as soon as possible, and
+     * thereafter yielding new credentials whenever the previous ones expire. The widget API will
+     * have already verified that the widget has permission to access TURN servers.
+     * @yields {ITurnServer} The TURN server URIs and credentials currently available to the client.
+     */
+
+  }, {
+    key: "getTurnServers",
+    value: function getTurnServers() {
+      throw new Error("TURN server support is not implemented");
+    }
+  }]);
+
+  return WidgetDriver;
+}();
+
+exports.WidgetDriver = WidgetDriver;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/index.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/index.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/index.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/index.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,603 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+
+var _WidgetApi = require("./WidgetApi");
+
+Object.keys(_WidgetApi).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _WidgetApi[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _WidgetApi[key];
+    }
+  });
+});
+
+var _ClientWidgetApi = require("./ClientWidgetApi");
+
+Object.keys(_ClientWidgetApi).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _ClientWidgetApi[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _ClientWidgetApi[key];
+    }
+  });
+});
+
+var _Symbols = require("./Symbols");
+
+Object.keys(_Symbols).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _Symbols[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _Symbols[key];
+    }
+  });
+});
+
+var _ITransport = require("./transport/ITransport");
+
+Object.keys(_ITransport).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _ITransport[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _ITransport[key];
+    }
+  });
+});
+
+var _PostmessageTransport = require("./transport/PostmessageTransport");
+
+Object.keys(_PostmessageTransport).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _PostmessageTransport[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _PostmessageTransport[key];
+    }
+  });
+});
+
+var _ICustomWidgetData = require("./interfaces/ICustomWidgetData");
+
+Object.keys(_ICustomWidgetData).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _ICustomWidgetData[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _ICustomWidgetData[key];
+    }
+  });
+});
+
+var _IJitsiWidgetData = require("./interfaces/IJitsiWidgetData");
+
+Object.keys(_IJitsiWidgetData).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _IJitsiWidgetData[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _IJitsiWidgetData[key];
+    }
+  });
+});
+
+var _IStickerpickerWidgetData = require("./interfaces/IStickerpickerWidgetData");
+
+Object.keys(_IStickerpickerWidgetData).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _IStickerpickerWidgetData[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _IStickerpickerWidgetData[key];
+    }
+  });
+});
+
+var _IWidget = require("./interfaces/IWidget");
+
+Object.keys(_IWidget).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _IWidget[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _IWidget[key];
+    }
+  });
+});
+
+var _WidgetType = require("./interfaces/WidgetType");
+
+Object.keys(_WidgetType).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _WidgetType[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _WidgetType[key];
+    }
+  });
+});
+
+var _IWidgetApiErrorResponse = require("./interfaces/IWidgetApiErrorResponse");
+
+Object.keys(_IWidgetApiErrorResponse).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _IWidgetApiErrorResponse[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _IWidgetApiErrorResponse[key];
+    }
+  });
+});
+
+var _IWidgetApiRequest = require("./interfaces/IWidgetApiRequest");
+
+Object.keys(_IWidgetApiRequest).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _IWidgetApiRequest[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _IWidgetApiRequest[key];
+    }
+  });
+});
+
+var _IWidgetApiResponse = require("./interfaces/IWidgetApiResponse");
+
+Object.keys(_IWidgetApiResponse).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _IWidgetApiResponse[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _IWidgetApiResponse[key];
+    }
+  });
+});
+
+var _WidgetApiAction = require("./interfaces/WidgetApiAction");
+
+Object.keys(_WidgetApiAction).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _WidgetApiAction[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _WidgetApiAction[key];
+    }
+  });
+});
+
+var _WidgetApiDirection = require("./interfaces/WidgetApiDirection");
+
+Object.keys(_WidgetApiDirection).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _WidgetApiDirection[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _WidgetApiDirection[key];
+    }
+  });
+});
+
+var _ApiVersion = require("./interfaces/ApiVersion");
+
+Object.keys(_ApiVersion).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _ApiVersion[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _ApiVersion[key];
+    }
+  });
+});
+
+var _Capabilities = require("./interfaces/Capabilities");
+
+Object.keys(_Capabilities).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _Capabilities[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _Capabilities[key];
+    }
+  });
+});
+
+var _CapabilitiesAction = require("./interfaces/CapabilitiesAction");
+
+Object.keys(_CapabilitiesAction).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _CapabilitiesAction[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _CapabilitiesAction[key];
+    }
+  });
+});
+
+var _ContentLoadedAction = require("./interfaces/ContentLoadedAction");
+
+Object.keys(_ContentLoadedAction).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _ContentLoadedAction[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _ContentLoadedAction[key];
+    }
+  });
+});
+
+var _ScreenshotAction = require("./interfaces/ScreenshotAction");
+
+Object.keys(_ScreenshotAction).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _ScreenshotAction[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _ScreenshotAction[key];
+    }
+  });
+});
+
+var _StickerAction = require("./interfaces/StickerAction");
+
+Object.keys(_StickerAction).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _StickerAction[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _StickerAction[key];
+    }
+  });
+});
+
+var _StickyAction = require("./interfaces/StickyAction");
+
+Object.keys(_StickyAction).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _StickyAction[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _StickyAction[key];
+    }
+  });
+});
+
+var _SupportedVersionsAction = require("./interfaces/SupportedVersionsAction");
+
+Object.keys(_SupportedVersionsAction).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _SupportedVersionsAction[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _SupportedVersionsAction[key];
+    }
+  });
+});
+
+var _VisibilityAction = require("./interfaces/VisibilityAction");
+
+Object.keys(_VisibilityAction).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _VisibilityAction[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _VisibilityAction[key];
+    }
+  });
+});
+
+var _GetOpenIDAction = require("./interfaces/GetOpenIDAction");
+
+Object.keys(_GetOpenIDAction).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _GetOpenIDAction[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _GetOpenIDAction[key];
+    }
+  });
+});
+
+var _OpenIDCredentialsAction = require("./interfaces/OpenIDCredentialsAction");
+
+Object.keys(_OpenIDCredentialsAction).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _OpenIDCredentialsAction[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _OpenIDCredentialsAction[key];
+    }
+  });
+});
+
+var _WidgetKind = require("./interfaces/WidgetKind");
+
+Object.keys(_WidgetKind).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _WidgetKind[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _WidgetKind[key];
+    }
+  });
+});
+
+var _ModalButtonKind = require("./interfaces/ModalButtonKind");
+
+Object.keys(_ModalButtonKind).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _ModalButtonKind[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _ModalButtonKind[key];
+    }
+  });
+});
+
+var _ModalWidgetActions = require("./interfaces/ModalWidgetActions");
+
+Object.keys(_ModalWidgetActions).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _ModalWidgetActions[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _ModalWidgetActions[key];
+    }
+  });
+});
+
+var _SetModalButtonEnabledAction = require("./interfaces/SetModalButtonEnabledAction");
+
+Object.keys(_SetModalButtonEnabledAction).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _SetModalButtonEnabledAction[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _SetModalButtonEnabledAction[key];
+    }
+  });
+});
+
+var _WidgetConfigAction = require("./interfaces/WidgetConfigAction");
+
+Object.keys(_WidgetConfigAction).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _WidgetConfigAction[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _WidgetConfigAction[key];
+    }
+  });
+});
+
+var _SendEventAction = require("./interfaces/SendEventAction");
+
+Object.keys(_SendEventAction).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _SendEventAction[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _SendEventAction[key];
+    }
+  });
+});
+
+var _SendToDeviceAction = require("./interfaces/SendToDeviceAction");
+
+Object.keys(_SendToDeviceAction).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _SendToDeviceAction[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _SendToDeviceAction[key];
+    }
+  });
+});
+
+var _ReadEventAction = require("./interfaces/ReadEventAction");
+
+Object.keys(_ReadEventAction).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _ReadEventAction[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _ReadEventAction[key];
+    }
+  });
+});
+
+var _IRoomEvent = require("./interfaces/IRoomEvent");
+
+Object.keys(_IRoomEvent).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _IRoomEvent[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _IRoomEvent[key];
+    }
+  });
+});
+
+var _NavigateAction = require("./interfaces/NavigateAction");
+
+Object.keys(_NavigateAction).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _NavigateAction[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _NavigateAction[key];
+    }
+  });
+});
+
+var _TurnServerActions = require("./interfaces/TurnServerActions");
+
+Object.keys(_TurnServerActions).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _TurnServerActions[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _TurnServerActions[key];
+    }
+  });
+});
+
+var _ReadRelationsAction = require("./interfaces/ReadRelationsAction");
+
+Object.keys(_ReadRelationsAction).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _ReadRelationsAction[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _ReadRelationsAction[key];
+    }
+  });
+});
+
+var _WidgetEventCapability = require("./models/WidgetEventCapability");
+
+Object.keys(_WidgetEventCapability).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _WidgetEventCapability[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _WidgetEventCapability[key];
+    }
+  });
+});
+
+var _url = require("./models/validation/url");
+
+Object.keys(_url).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _url[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _url[key];
+    }
+  });
+});
+
+var _utils = require("./models/validation/utils");
+
+Object.keys(_utils).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _utils[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _utils[key];
+    }
+  });
+});
+
+var _Widget = require("./models/Widget");
+
+Object.keys(_Widget).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _Widget[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _Widget[key];
+    }
+  });
+});
+
+var _WidgetParser = require("./models/WidgetParser");
+
+Object.keys(_WidgetParser).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _WidgetParser[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _WidgetParser[key];
+    }
+  });
+});
+
+var _urlTemplate = require("./templating/url-template");
+
+Object.keys(_urlTemplate).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _urlTemplate[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _urlTemplate[key];
+    }
+  });
+});
+
+var _SimpleObservable = require("./util/SimpleObservable");
+
+Object.keys(_SimpleObservable).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _SimpleObservable[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _SimpleObservable[key];
+    }
+  });
+});
+
+var _WidgetDriver = require("./driver/WidgetDriver");
+
+Object.keys(_WidgetDriver).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (key in exports && exports[key] === _WidgetDriver[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function get() {
+      return _WidgetDriver[key];
+    }
+  });
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ApiVersion.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ApiVersion.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ApiVersion.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ApiVersion.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,47 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.UnstableApiVersion = exports.MatrixApiVersion = exports.CurrentApiVersions = void 0;
+
+/*
+ * Copyright 2020 The Matrix.org Foundation C.I.C.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *         http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+var MatrixApiVersion;
+exports.MatrixApiVersion = MatrixApiVersion;
+
+(function (MatrixApiVersion) {
+  MatrixApiVersion["Prerelease1"] = "0.0.1";
+  MatrixApiVersion["Prerelease2"] = "0.0.2";
+})(MatrixApiVersion || (exports.MatrixApiVersion = MatrixApiVersion = {}));
+
+var UnstableApiVersion;
+exports.UnstableApiVersion = UnstableApiVersion;
+
+(function (UnstableApiVersion) {
+  UnstableApiVersion["MSC2762"] = "org.matrix.msc2762";
+  UnstableApiVersion["MSC2871"] = "org.matrix.msc2871";
+  UnstableApiVersion["MSC2931"] = "org.matrix.msc2931";
+  UnstableApiVersion["MSC2974"] = "org.matrix.msc2974";
+  UnstableApiVersion["MSC2876"] = "org.matrix.msc2876";
+  UnstableApiVersion["MSC3819"] = "org.matrix.msc3819";
+  UnstableApiVersion["MSC3846"] = "town.robin.msc3846";
+  UnstableApiVersion["MSC3869"] = "org.matrix.msc3869";
+})(UnstableApiVersion || (exports.UnstableApiVersion = UnstableApiVersion = {}));
+
+var CurrentApiVersions = [MatrixApiVersion.Prerelease1, MatrixApiVersion.Prerelease2, //MatrixApiVersion.V010,
+UnstableApiVersion.MSC2762, UnstableApiVersion.MSC2871, UnstableApiVersion.MSC2931, UnstableApiVersion.MSC2974, UnstableApiVersion.MSC2876, UnstableApiVersion.MSC3819, UnstableApiVersion.MSC3846, UnstableApiVersion.MSC3869];
+exports.CurrentApiVersions = CurrentApiVersions;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/CapabilitiesAction.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/CapabilitiesAction.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/CapabilitiesAction.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/CapabilitiesAction.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/Capabilities.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/Capabilities.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/Capabilities.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/Capabilities.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,73 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.VideoConferenceCapabilities = exports.StickerpickerCapabilities = exports.MatrixCapabilities = void 0;
+exports.getTimelineRoomIDFromCapability = getTimelineRoomIDFromCapability;
+exports.isTimelineCapability = isTimelineCapability;
+exports.isTimelineCapabilityFor = isTimelineCapabilityFor;
+
+/*
+ * Copyright 2020 - 2021 The Matrix.org Foundation C.I.C.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *         http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+var MatrixCapabilities;
+exports.MatrixCapabilities = MatrixCapabilities;
+
+(function (MatrixCapabilities) {
+  MatrixCapabilities["Screenshots"] = "m.capability.screenshot";
+  MatrixCapabilities["StickerSending"] = "m.sticker";
+  MatrixCapabilities["AlwaysOnScreen"] = "m.always_on_screen";
+  MatrixCapabilities["RequiresClient"] = "io.element.requires_client";
+  MatrixCapabilities["MSC2931Navigate"] = "org.matrix.msc2931.navigate";
+  MatrixCapabilities["MSC3846TurnServers"] = "town.robin.msc3846.turn_servers";
+})(MatrixCapabilities || (exports.MatrixCapabilities = MatrixCapabilities = {}));
+
+var StickerpickerCapabilities = [MatrixCapabilities.StickerSending];
+exports.StickerpickerCapabilities = StickerpickerCapabilities;
+var VideoConferenceCapabilities = [MatrixCapabilities.AlwaysOnScreen];
+/**
+ * Determines if a capability is a capability for a timeline.
+ * @param {Capability} capability The capability to test.
+ * @returns {boolean} True if a timeline capability, false otherwise.
+ */
+
+exports.VideoConferenceCapabilities = VideoConferenceCapabilities;
+
+function isTimelineCapability(capability) {
+  // TODO: Change when MSC2762 becomes stable.
+  return capability === null || capability === void 0 ? void 0 : capability.startsWith("org.matrix.msc2762.timeline:");
+}
+/**
+ * Determines if a capability is a timeline capability for the given room.
+ * @param {Capability} capability The capability to test.
+ * @param {string | Symbols.AnyRoom} roomId The room ID, or `Symbols.AnyRoom` for that designation.
+ * @returns {boolean} True if a matching capability, false otherwise.
+ */
+
+
+function isTimelineCapabilityFor(capability, roomId) {
+  return capability === "org.matrix.msc2762.timeline:".concat(roomId);
+}
+/**
+ * Gets the room ID described by a timeline capability.
+ * @param {string} capability The capability to parse.
+ * @returns {string} The room ID.
+ */
+
+
+function getTimelineRoomIDFromCapability(capability) {
+  return capability.substring(capability.indexOf(":") + 1);
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ContentLoadedAction.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ContentLoadedAction.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ContentLoadedAction.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ContentLoadedAction.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/GetOpenIDAction.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/GetOpenIDAction.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/GetOpenIDAction.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/GetOpenIDAction.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,30 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.OpenIDRequestState = void 0;
+
+/*
+ * Copyright 2020 The Matrix.org Foundation C.I.C.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *         http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+var OpenIDRequestState;
+exports.OpenIDRequestState = OpenIDRequestState;
+
+(function (OpenIDRequestState) {
+  OpenIDRequestState["Allowed"] = "allowed";
+  OpenIDRequestState["Blocked"] = "blocked";
+  OpenIDRequestState["PendingUserConfirmation"] = "request";
+})(OpenIDRequestState || (exports.OpenIDRequestState = OpenIDRequestState = {}));
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ICustomWidgetData.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ICustomWidgetData.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ICustomWidgetData.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ICustomWidgetData.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IJitsiWidgetData.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IJitsiWidgetData.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IJitsiWidgetData.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IJitsiWidgetData.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IRoomEvent.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IRoomEvent.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IRoomEvent.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IRoomEvent.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IStickerpickerWidgetData.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IStickerpickerWidgetData.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IStickerpickerWidgetData.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IStickerpickerWidgetData.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IWidgetApiErrorResponse.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IWidgetApiErrorResponse.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IWidgetApiErrorResponse.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IWidgetApiErrorResponse.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,30 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.isErrorResponse = isErrorResponse;
+
+/*
+ * Copyright 2020 The Matrix.org Foundation C.I.C.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *         http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+function isErrorResponse(responseData) {
+  if ("error" in responseData) {
+    var err = responseData;
+    return !!err.error.message;
+  }
+
+  return false;
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IWidgetApiRequest.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IWidgetApiRequest.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IWidgetApiRequest.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IWidgetApiRequest.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IWidgetApiResponse.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IWidgetApiResponse.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IWidgetApiResponse.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IWidgetApiResponse.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IWidget.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IWidget.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IWidget.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/IWidget.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ModalButtonKind.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ModalButtonKind.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ModalButtonKind.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ModalButtonKind.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,32 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.ModalButtonKind = void 0;
+
+/*
+ * Copyright 2020 The Matrix.org Foundation C.I.C.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *         http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+var ModalButtonKind;
+exports.ModalButtonKind = ModalButtonKind;
+
+(function (ModalButtonKind) {
+  ModalButtonKind["Primary"] = "m.primary";
+  ModalButtonKind["Secondary"] = "m.secondary";
+  ModalButtonKind["Warning"] = "m.warning";
+  ModalButtonKind["Danger"] = "m.danger";
+  ModalButtonKind["Link"] = "m.link";
+})(ModalButtonKind || (exports.ModalButtonKind = ModalButtonKind = {}));
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ModalWidgetActions.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ModalWidgetActions.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ModalWidgetActions.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ModalWidgetActions.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,28 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.BuiltInModalButtonID = void 0;
+
+/*
+ * Copyright 2020 The Matrix.org Foundation C.I.C.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *         http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+var BuiltInModalButtonID;
+exports.BuiltInModalButtonID = BuiltInModalButtonID;
+
+(function (BuiltInModalButtonID) {
+  BuiltInModalButtonID["Close"] = "m.close";
+})(BuiltInModalButtonID || (exports.BuiltInModalButtonID = BuiltInModalButtonID = {}));
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/NavigateAction.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/NavigateAction.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/NavigateAction.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/NavigateAction.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/OpenIDCredentialsAction.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/OpenIDCredentialsAction.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/OpenIDCredentialsAction.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/OpenIDCredentialsAction.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ReadEventAction.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ReadEventAction.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ReadEventAction.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ReadEventAction.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ReadRelationsAction.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ReadRelationsAction.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ReadRelationsAction.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ReadRelationsAction.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ScreenshotAction.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ScreenshotAction.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ScreenshotAction.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/ScreenshotAction.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/SendEventAction.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/SendEventAction.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/SendEventAction.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/SendEventAction.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/SendToDeviceAction.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/SendToDeviceAction.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/SendToDeviceAction.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/SendToDeviceAction.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/SetModalButtonEnabledAction.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/SetModalButtonEnabledAction.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/SetModalButtonEnabledAction.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/SetModalButtonEnabledAction.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/StickerAction.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/StickerAction.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/StickerAction.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/StickerAction.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/StickyAction.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/StickyAction.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/StickyAction.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/StickyAction.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/SupportedVersionsAction.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/SupportedVersionsAction.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/SupportedVersionsAction.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/SupportedVersionsAction.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/TurnServerActions.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/TurnServerActions.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/TurnServerActions.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/TurnServerActions.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/VisibilityAction.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/VisibilityAction.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/VisibilityAction.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/VisibilityAction.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/WidgetApiAction.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/WidgetApiAction.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/WidgetApiAction.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/WidgetApiAction.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,61 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.WidgetApiToWidgetAction = exports.WidgetApiFromWidgetAction = void 0;
+
+/*
+ * Copyright 2020 The Matrix.org Foundation C.I.C.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *         http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+var WidgetApiToWidgetAction;
+exports.WidgetApiToWidgetAction = WidgetApiToWidgetAction;
+
+(function (WidgetApiToWidgetAction) {
+  WidgetApiToWidgetAction["SupportedApiVersions"] = "supported_api_versions";
+  WidgetApiToWidgetAction["Capabilities"] = "capabilities";
+  WidgetApiToWidgetAction["NotifyCapabilities"] = "notify_capabilities";
+  WidgetApiToWidgetAction["TakeScreenshot"] = "screenshot";
+  WidgetApiToWidgetAction["UpdateVisibility"] = "visibility";
+  WidgetApiToWidgetAction["OpenIDCredentials"] = "openid_credentials";
+  WidgetApiToWidgetAction["WidgetConfig"] = "widget_config";
+  WidgetApiToWidgetAction["CloseModalWidget"] = "close_modal";
+  WidgetApiToWidgetAction["ButtonClicked"] = "button_clicked";
+  WidgetApiToWidgetAction["SendEvent"] = "send_event";
+  WidgetApiToWidgetAction["SendToDevice"] = "send_to_device";
+  WidgetApiToWidgetAction["UpdateTurnServers"] = "update_turn_servers";
+})(WidgetApiToWidgetAction || (exports.WidgetApiToWidgetAction = WidgetApiToWidgetAction = {}));
+
+var WidgetApiFromWidgetAction;
+exports.WidgetApiFromWidgetAction = WidgetApiFromWidgetAction;
+
+(function (WidgetApiFromWidgetAction) {
+  WidgetApiFromWidgetAction["SupportedApiVersions"] = "supported_api_versions";
+  WidgetApiFromWidgetAction["ContentLoaded"] = "content_loaded";
+  WidgetApiFromWidgetAction["SendSticker"] = "m.sticker";
+  WidgetApiFromWidgetAction["UpdateAlwaysOnScreen"] = "set_always_on_screen";
+  WidgetApiFromWidgetAction["GetOpenIDCredentials"] = "get_openid";
+  WidgetApiFromWidgetAction["CloseModalWidget"] = "close_modal";
+  WidgetApiFromWidgetAction["OpenModalWidget"] = "open_modal";
+  WidgetApiFromWidgetAction["SetModalButtonEnabled"] = "set_button_enabled";
+  WidgetApiFromWidgetAction["SendEvent"] = "send_event";
+  WidgetApiFromWidgetAction["SendToDevice"] = "send_to_device";
+  WidgetApiFromWidgetAction["WatchTurnServers"] = "watch_turn_servers";
+  WidgetApiFromWidgetAction["UnwatchTurnServers"] = "unwatch_turn_servers";
+  WidgetApiFromWidgetAction["MSC2876ReadEvents"] = "org.matrix.msc2876.read_events";
+  WidgetApiFromWidgetAction["MSC2931Navigate"] = "org.matrix.msc2931.navigate";
+  WidgetApiFromWidgetAction["MSC2974RenegotiateCapabilities"] = "org.matrix.msc2974.request_capabilities";
+  WidgetApiFromWidgetAction["MSC3869ReadRelations"] = "org.matrix.msc3869.read_relations";
+})(WidgetApiFromWidgetAction || (exports.WidgetApiFromWidgetAction = WidgetApiFromWidgetAction = {}));
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/WidgetApiDirection.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/WidgetApiDirection.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/WidgetApiDirection.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/WidgetApiDirection.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,40 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.WidgetApiDirection = void 0;
+exports.invertedDirection = invertedDirection;
+
+/*
+ * Copyright 2020 The Matrix.org Foundation C.I.C.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *         http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+var WidgetApiDirection;
+exports.WidgetApiDirection = WidgetApiDirection;
+
+(function (WidgetApiDirection) {
+  WidgetApiDirection["ToWidget"] = "toWidget";
+  WidgetApiDirection["FromWidget"] = "fromWidget";
+})(WidgetApiDirection || (exports.WidgetApiDirection = WidgetApiDirection = {}));
+
+function invertedDirection(dir) {
+  if (dir === WidgetApiDirection.ToWidget) {
+    return WidgetApiDirection.FromWidget;
+  } else if (dir === WidgetApiDirection.FromWidget) {
+    return WidgetApiDirection.ToWidget;
+  } else {
+    throw new Error("Invalid direction");
+  }
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/WidgetConfigAction.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/WidgetConfigAction.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/WidgetConfigAction.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/WidgetConfigAction.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/WidgetKind.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/WidgetKind.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/WidgetKind.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/WidgetKind.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,30 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.WidgetKind = void 0;
+
+/*
+ * Copyright 2020 The Matrix.org Foundation C.I.C.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *         http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+var WidgetKind;
+exports.WidgetKind = WidgetKind;
+
+(function (WidgetKind) {
+  WidgetKind["Room"] = "room";
+  WidgetKind["Account"] = "account";
+  WidgetKind["Modal"] = "modal";
+})(WidgetKind || (exports.WidgetKind = WidgetKind = {}));
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/WidgetType.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/WidgetType.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/WidgetType.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/interfaces/WidgetType.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,30 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.MatrixWidgetType = void 0;
+
+/*
+ * Copyright 2020 The Matrix.org Foundation C.I.C.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *         http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+var MatrixWidgetType;
+exports.MatrixWidgetType = MatrixWidgetType;
+
+(function (MatrixWidgetType) {
+  MatrixWidgetType["Custom"] = "m.custom";
+  MatrixWidgetType["JitsiMeet"] = "m.jitsi";
+  MatrixWidgetType["Stickerpicker"] = "m.stickerpicker";
+})(MatrixWidgetType || (exports.MatrixWidgetType = MatrixWidgetType = {}));
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/LICENSE thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/LICENSE
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/LICENSE	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/LICENSE	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright [yyyy] [name of copyright owner]
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/models/validation/url.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/models/validation/url.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/models/validation/url.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/models/validation/url.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,41 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.isValidUrl = isValidUrl;
+
+/*
+ * Copyright 2020 The Matrix.org Foundation C.I.C.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *         http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+function isValidUrl(val) {
+  if (!val) return false; // easy: not valid if not present
+
+  try {
+    var parsed = new URL(val);
+
+    if (parsed.protocol !== "http" && parsed.protocol !== "https") {
+      return false;
+    }
+
+    return true;
+  } catch (e) {
+    if (e instanceof TypeError) {
+      return false;
+    }
+
+    throw e;
+  }
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/models/validation/utils.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/models/validation/utils.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/models/validation/utils.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/models/validation/utils.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,27 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.assertPresent = assertPresent;
+
+/*
+ * Copyright 2020 The Matrix.org Foundation C.I.C.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *         http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+function assertPresent(obj, key) {
+  if (!obj[key]) {
+    throw new Error("".concat(key, " is required"));
+  }
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/models/WidgetEventCapability.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/models/WidgetEventCapability.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/models/WidgetEventCapability.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/models/WidgetEventCapability.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,253 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.WidgetEventCapability = exports.EventKind = exports.EventDirection = void 0;
+
+function _createForOfIteratorHelper(o, allowArrayLike) { var it = typeof Symbol !== "undefined" && o[Symbol.iterator] || o["@@iterator"]; if (!it) { if (Array.isArray(o) || (it = _unsupportedIterableToArray(o)) || allowArrayLike && o && typeof o.length === "number") { if (it) o = it; var i = 0; var F = function F() {}; return { s: F, n: function n() { if (i >= o.length) return { done: true }; return { done: false, value: o[i++] }; }, e: function e(_e) { throw _e; }, f: F }; } throw new TypeError("Invalid attempt to iterate non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method."); } var normalCompletion = true, didErr = false, err; return { s: function s() { it = it.call(o); }, n: function n() { var step = it.next(); normalCompletion = step.done; return step; }, e: function e(_e2) { didErr = true; err = _e2; }, f: function f() { try { if (!normalCompletion && it["return"] != null) it["return"](); } finally { if (didErr) throw err; } } }; }
+
+function _unsupportedIterableToArray(o, minLen) { if (!o) return; if (typeof o === "string") return _arrayLikeToArray(o, minLen); var n = Object.prototype.toString.call(o).slice(8, -1); if (n === "Object" && o.constructor) n = o.constructor.name; if (n === "Map" || n === "Set") return Array.from(o); if (n === "Arguments" || /^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(n)) return _arrayLikeToArray(o, minLen); }
+
+function _arrayLikeToArray(arr, len) { if (len == null || len > arr.length) len = arr.length; for (var i = 0, arr2 = new Array(len); i < len; i++) { arr2[i] = arr[i]; } return arr2; }
+
+function _classCallCheck(instance, Constructor) { if (!(instance instanceof Constructor)) { throw new TypeError("Cannot call a class as a function"); } }
+
+function _defineProperties(target, props) { for (var i = 0; i < props.length; i++) { var descriptor = props[i]; descriptor.enumerable = descriptor.enumerable || false; descriptor.configurable = true; if ("value" in descriptor) descriptor.writable = true; Object.defineProperty(target, descriptor.key, descriptor); } }
+
+function _createClass(Constructor, protoProps, staticProps) { if (protoProps) _defineProperties(Constructor.prototype, protoProps); if (staticProps) _defineProperties(Constructor, staticProps); Object.defineProperty(Constructor, "prototype", { writable: false }); return Constructor; }
+
+/*
+ * Copyright 2020 The Matrix.org Foundation C.I.C.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *         http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+var EventKind;
+exports.EventKind = EventKind;
+
+(function (EventKind) {
+  EventKind["Event"] = "event";
+  EventKind["State"] = "state_event";
+  EventKind["ToDevice"] = "to_device";
+})(EventKind || (exports.EventKind = EventKind = {}));
+
+var EventDirection;
+exports.EventDirection = EventDirection;
+
+(function (EventDirection) {
+  EventDirection["Send"] = "send";
+  EventDirection["Receive"] = "receive";
+})(EventDirection || (exports.EventDirection = EventDirection = {}));
+
+var WidgetEventCapability = /*#__PURE__*/function () {
+  function WidgetEventCapability(direction, eventType, kind, keyStr, raw) {
+    _classCallCheck(this, WidgetEventCapability);
+
+    this.direction = direction;
+    this.eventType = eventType;
+    this.kind = kind;
+    this.keyStr = keyStr;
+    this.raw = raw;
+  }
+
+  _createClass(WidgetEventCapability, [{
+    key: "matchesAsStateEvent",
+    value: function matchesAsStateEvent(direction, eventType, stateKey) {
+      if (this.kind !== EventKind.State) return false; // not a state event
+
+      if (this.direction !== direction) return false; // direction mismatch
+
+      if (this.eventType !== eventType) return false; // event type mismatch
+
+      if (this.keyStr === null) return true; // all state keys are allowed
+
+      if (this.keyStr === stateKey) return true; // this state key is allowed
+      // Default not allowed
+
+      return false;
+    }
+  }, {
+    key: "matchesAsToDeviceEvent",
+    value: function matchesAsToDeviceEvent(direction, eventType) {
+      if (this.kind !== EventKind.ToDevice) return false; // not a to-device event
+
+      if (this.direction !== direction) return false; // direction mismatch
+
+      if (this.eventType !== eventType) return false; // event type mismatch
+      // Checks passed, the event is allowed
+
+      return true;
+    }
+  }, {
+    key: "matchesAsRoomEvent",
+    value: function matchesAsRoomEvent(direction, eventType) {
+      var msgtype = arguments.length > 2 && arguments[2] !== undefined ? arguments[2] : null;
+      if (this.kind !== EventKind.Event) return false; // not a room event
+
+      if (this.direction !== direction) return false; // direction mismatch
+
+      if (this.eventType !== eventType) return false; // event type mismatch
+
+      if (this.eventType === "m.room.message") {
+        if (this.keyStr === null) return true; // all message types are allowed
+
+        if (this.keyStr === msgtype) return true; // this message type is allowed
+      } else {
+        return true; // already passed the check for if the event is allowed
+      } // Default not allowed
+
+
+      return false;
+    }
+  }], [{
+    key: "forStateEvent",
+    value: function forStateEvent(direction, eventType, stateKey) {
+      // TODO: Enable support for m.* namespace once the MSC lands.
+      // https://github.com/matrix-org/matrix-widget-api/issues/22
+      eventType = eventType.replace(/#/g, '\\#');
+      stateKey = stateKey !== null && stateKey !== undefined ? "#".concat(stateKey) : '';
+      var str = "org.matrix.msc2762.".concat(direction, ".state_event:").concat(eventType).concat(stateKey); // cheat by sending it through the processor
+
+      return WidgetEventCapability.findEventCapabilities([str])[0];
+    }
+  }, {
+    key: "forToDeviceEvent",
+    value: function forToDeviceEvent(direction, eventType) {
+      // TODO: Enable support for m.* namespace once the MSC lands.
+      // https://github.com/matrix-org/matrix-widget-api/issues/56
+      var str = "org.matrix.msc3819.".concat(direction, ".to_device:").concat(eventType); // cheat by sending it through the processor
+
+      return WidgetEventCapability.findEventCapabilities([str])[0];
+    }
+  }, {
+    key: "forRoomEvent",
+    value: function forRoomEvent(direction, eventType) {
+      // TODO: Enable support for m.* namespace once the MSC lands.
+      // https://github.com/matrix-org/matrix-widget-api/issues/22
+      var str = "org.matrix.msc2762.".concat(direction, ".event:").concat(eventType); // cheat by sending it through the processor
+
+      return WidgetEventCapability.findEventCapabilities([str])[0];
+    }
+  }, {
+    key: "forRoomMessageEvent",
+    value: function forRoomMessageEvent(direction, msgtype) {
+      // TODO: Enable support for m.* namespace once the MSC lands.
+      // https://github.com/matrix-org/matrix-widget-api/issues/22
+      msgtype = msgtype === null || msgtype === undefined ? '' : msgtype;
+      var str = "org.matrix.msc2762.".concat(direction, ".event:m.room.message#").concat(msgtype); // cheat by sending it through the processor
+
+      return WidgetEventCapability.findEventCapabilities([str])[0];
+    }
+    /**
+     * Parses a capabilities request to find all the event capability requests.
+     * @param {Iterable<Capability>} capabilities The capabilities requested/to parse.
+     * @returns {WidgetEventCapability[]} An array of event capability requests. May be empty, but never null.
+     */
+
+  }, {
+    key: "findEventCapabilities",
+    value: function findEventCapabilities(capabilities) {
+      var parsed = [];
+
+      var _iterator = _createForOfIteratorHelper(capabilities),
+          _step;
+
+      try {
+        for (_iterator.s(); !(_step = _iterator.n()).done;) {
+          var cap = _step.value;
+          var _direction = null;
+          var eventSegment = void 0;
+          var _kind = null; // TODO: Enable support for m.* namespace once the MSCs land.
+          // https://github.com/matrix-org/matrix-widget-api/issues/22
+          // https://github.com/matrix-org/matrix-widget-api/issues/56
+
+          if (cap.startsWith("org.matrix.msc2762.send.event:")) {
+            _direction = EventDirection.Send;
+            _kind = EventKind.Event;
+            eventSegment = cap.substring("org.matrix.msc2762.send.event:".length);
+          } else if (cap.startsWith("org.matrix.msc2762.send.state_event:")) {
+            _direction = EventDirection.Send;
+            _kind = EventKind.State;
+            eventSegment = cap.substring("org.matrix.msc2762.send.state_event:".length);
+          } else if (cap.startsWith("org.matrix.msc3819.send.to_device:")) {
+            _direction = EventDirection.Send;
+            _kind = EventKind.ToDevice;
+            eventSegment = cap.substring("org.matrix.msc3819.send.to_device:".length);
+          } else if (cap.startsWith("org.matrix.msc2762.receive.event:")) {
+            _direction = EventDirection.Receive;
+            _kind = EventKind.Event;
+            eventSegment = cap.substring("org.matrix.msc2762.receive.event:".length);
+          } else if (cap.startsWith("org.matrix.msc2762.receive.state_event:")) {
+            _direction = EventDirection.Receive;
+            _kind = EventKind.State;
+            eventSegment = cap.substring("org.matrix.msc2762.receive.state_event:".length);
+          } else if (cap.startsWith("org.matrix.msc3819.receive.to_device:")) {
+            _direction = EventDirection.Receive;
+            _kind = EventKind.ToDevice;
+            eventSegment = cap.substring("org.matrix.msc3819.receive.to_device:".length);
+          }
+
+          if (_direction === null || _kind === null) continue; // The capability uses `#` as a separator between event type and state key/msgtype,
+          // so we split on that. However, a # is also valid in either one of those so we
+          // join accordingly.
+          // Eg: `m.room.message##m.text` is "m.room.message" event with msgtype "#m.text".
+
+          var expectingKeyStr = eventSegment.startsWith("m.room.message#") || _kind === EventKind.State;
+
+          var _keyStr = null;
+
+          if (eventSegment.includes('#') && expectingKeyStr) {
+            // Dev note: regex is difficult to write, so instead the rules are manually written
+            // out. This is probably just as understandable as a boring regex though, so win-win?
+            // Test cases:
+            // str                      eventSegment        keyStr
+            // -------------------------------------------------------------
+            // m.room.message#          m.room.message      <empty string>
+            // m.room.message#test      m.room.message      test
+            // m.room.message\#         m.room.message#     test
+            // m.room.message##test     m.room.message      #test
+            // m.room.message\##test    m.room.message#     test
+            // m.room.message\\##test   m.room.message\#    test
+            // m.room.message\\###test  m.room.message\#    #test
+            // First step: explode the string
+            var parts = eventSegment.split('#'); // To form the eventSegment, we'll keep finding parts of the exploded string until
+            // there's one that doesn't end with the escape character (\). We'll then join those
+            // segments together with the exploding character. We have to remember to consume the
+            // escape character as well.
+
+            var idx = parts.findIndex(function (p) {
+              return !p.endsWith("\\");
+            });
+            eventSegment = parts.slice(0, idx + 1).map(function (p) {
+              return p.endsWith('\\') ? p.substring(0, p.length - 1) : p;
+            }).join('#'); // The keyStr is whatever is left over.
+
+            _keyStr = parts.slice(idx + 1).join('#');
+          }
+
+          parsed.push(new WidgetEventCapability(_direction, eventSegment, _kind, _keyStr, cap));
+        }
+      } catch (err) {
+        _iterator.e(err);
+      } finally {
+        _iterator.f();
+      }
+
+      return parsed;
+    }
+  }]);
+
+  return WidgetEventCapability;
+}();
+
+exports.WidgetEventCapability = WidgetEventCapability;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/models/Widget.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/models/Widget.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/models/Widget.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/models/Widget.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,134 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.Widget = void 0;
+
+var _utils = require("./validation/utils");
+
+var _ = require("..");
+
+function _classCallCheck(instance, Constructor) { if (!(instance instanceof Constructor)) { throw new TypeError("Cannot call a class as a function"); } }
+
+function _defineProperties(target, props) { for (var i = 0; i < props.length; i++) { var descriptor = props[i]; descriptor.enumerable = descriptor.enumerable || false; descriptor.configurable = true; if ("value" in descriptor) descriptor.writable = true; Object.defineProperty(target, descriptor.key, descriptor); } }
+
+function _createClass(Constructor, protoProps, staticProps) { if (protoProps) _defineProperties(Constructor.prototype, protoProps); if (staticProps) _defineProperties(Constructor, staticProps); Object.defineProperty(Constructor, "prototype", { writable: false }); return Constructor; }
+
+/**
+ * Represents the barest form of widget.
+ */
+var Widget = /*#__PURE__*/function () {
+  function Widget(definition) {
+    _classCallCheck(this, Widget);
+
+    this.definition = definition;
+    if (!this.definition) throw new Error("Definition is required");
+    (0, _utils.assertPresent)(definition, "id");
+    (0, _utils.assertPresent)(definition, "creatorUserId");
+    (0, _utils.assertPresent)(definition, "type");
+    (0, _utils.assertPresent)(definition, "url");
+  }
+  /**
+   * The user ID who created the widget.
+   */
+
+
+  _createClass(Widget, [{
+    key: "creatorUserId",
+    get: function get() {
+      return this.definition.creatorUserId;
+    }
+    /**
+     * The type of widget.
+     */
+
+  }, {
+    key: "type",
+    get: function get() {
+      return this.definition.type;
+    }
+    /**
+     * The ID of the widget.
+     */
+
+  }, {
+    key: "id",
+    get: function get() {
+      return this.definition.id;
+    }
+    /**
+     * The name of the widget, or null if not set.
+     */
+
+  }, {
+    key: "name",
+    get: function get() {
+      return this.definition.name || null;
+    }
+    /**
+     * The title for the widget, or null if not set.
+     */
+
+  }, {
+    key: "title",
+    get: function get() {
+      return this.rawData.title || null;
+    }
+    /**
+     * The templated URL for the widget.
+     */
+
+  }, {
+    key: "templateUrl",
+    get: function get() {
+      return this.definition.url;
+    }
+    /**
+     * The origin for this widget.
+     */
+
+  }, {
+    key: "origin",
+    get: function get() {
+      return new URL(this.templateUrl).origin;
+    }
+    /**
+     * Whether or not the client should wait for the iframe to load. Defaults
+     * to true.
+     */
+
+  }, {
+    key: "waitForIframeLoad",
+    get: function get() {
+      if (this.definition.waitForIframeLoad === false) return false;
+      if (this.definition.waitForIframeLoad === true) return true;
+      return true; // default true
+    }
+    /**
+     * The raw data for the widget. This will always be defined, though
+     * may be empty.
+     */
+
+  }, {
+    key: "rawData",
+    get: function get() {
+      return this.definition.data || {};
+    }
+    /**
+     * Gets a complete widget URL for the client to render.
+     * @param {ITemplateParams} params The template parameters.
+     * @returns {string} A templated URL.
+     */
+
+  }, {
+    key: "getCompleteUrl",
+    value: function getCompleteUrl(params) {
+      return (0, _.runTemplate)(this.templateUrl, this.definition, params);
+    }
+  }]);
+
+  return Widget;
+}();
+
+exports.Widget = Widget;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/models/WidgetParser.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/models/WidgetParser.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/models/WidgetParser.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/models/WidgetParser.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,150 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.WidgetParser = void 0;
+
+var _Widget = require("./Widget");
+
+var _url = require("./validation/url");
+
+function _createForOfIteratorHelper(o, allowArrayLike) { var it = typeof Symbol !== "undefined" && o[Symbol.iterator] || o["@@iterator"]; if (!it) { if (Array.isArray(o) || (it = _unsupportedIterableToArray(o)) || allowArrayLike && o && typeof o.length === "number") { if (it) o = it; var i = 0; var F = function F() {}; return { s: F, n: function n() { if (i >= o.length) return { done: true }; return { done: false, value: o[i++] }; }, e: function e(_e) { throw _e; }, f: F }; } throw new TypeError("Invalid attempt to iterate non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method."); } var normalCompletion = true, didErr = false, err; return { s: function s() { it = it.call(o); }, n: function n() { var step = it.next(); normalCompletion = step.done; return step; }, e: function e(_e2) { didErr = true; err = _e2; }, f: function f() { try { if (!normalCompletion && it["return"] != null) it["return"](); } finally { if (didErr) throw err; } } }; }
+
+function _unsupportedIterableToArray(o, minLen) { if (!o) return; if (typeof o === "string") return _arrayLikeToArray(o, minLen); var n = Object.prototype.toString.call(o).slice(8, -1); if (n === "Object" && o.constructor) n = o.constructor.name; if (n === "Map" || n === "Set") return Array.from(o); if (n === "Arguments" || /^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(n)) return _arrayLikeToArray(o, minLen); }
+
+function _arrayLikeToArray(arr, len) { if (len == null || len > arr.length) len = arr.length; for (var i = 0, arr2 = new Array(len); i < len; i++) { arr2[i] = arr[i]; } return arr2; }
+
+function _classCallCheck(instance, Constructor) { if (!(instance instanceof Constructor)) { throw new TypeError("Cannot call a class as a function"); } }
+
+function _defineProperties(target, props) { for (var i = 0; i < props.length; i++) { var descriptor = props[i]; descriptor.enumerable = descriptor.enumerable || false; descriptor.configurable = true; if ("value" in descriptor) descriptor.writable = true; Object.defineProperty(target, descriptor.key, descriptor); } }
+
+function _createClass(Constructor, protoProps, staticProps) { if (protoProps) _defineProperties(Constructor.prototype, protoProps); if (staticProps) _defineProperties(Constructor, staticProps); Object.defineProperty(Constructor, "prototype", { writable: false }); return Constructor; }
+
+var WidgetParser = /*#__PURE__*/function () {
+  function WidgetParser() {// private constructor because this is a util class
+
+    _classCallCheck(this, WidgetParser);
+  }
+  /**
+   * Parses widgets from the "m.widgets" account data event. This will always
+   * return an array, though may be empty if no valid widgets were found.
+   * @param {IAccountDataWidgets} content The content of the "m.widgets" account data.
+   * @returns {Widget[]} The widgets in account data, or an empty array.
+   */
+
+
+  _createClass(WidgetParser, null, [{
+    key: "parseAccountData",
+    value: function parseAccountData(content) {
+      if (!content) return [];
+      var result = [];
+
+      for (var _i = 0, _Object$keys = Object.keys(content); _i < _Object$keys.length; _i++) {
+        var _widgetId = _Object$keys[_i];
+        var roughWidget = content[_widgetId];
+        if (!roughWidget) continue;
+        if (roughWidget.type !== "m.widget" && roughWidget.type !== "im.vector.modular.widgets") continue;
+        if (!roughWidget.sender) continue;
+        var probableWidgetId = roughWidget.state_key || roughWidget.id;
+        if (probableWidgetId !== _widgetId) continue;
+        var asStateEvent = {
+          content: roughWidget.content,
+          sender: roughWidget.sender,
+          type: "m.widget",
+          state_key: _widgetId,
+          event_id: "$example",
+          room_id: "!example",
+          origin_server_ts: 1
+        };
+        var widget = WidgetParser.parseRoomWidget(asStateEvent);
+        if (widget) result.push(widget);
+      }
+
+      return result;
+    }
+    /**
+     * Parses all the widgets possible in the given array. This will always return
+     * an array, though may be empty if no widgets could be parsed.
+     * @param {IStateEvent[]} currentState The room state to parse.
+     * @returns {Widget[]} The widgets in the state, or an empty array.
+     */
+
+  }, {
+    key: "parseWidgetsFromRoomState",
+    value: function parseWidgetsFromRoomState(currentState) {
+      if (!currentState) return [];
+      var result = [];
+
+      var _iterator = _createForOfIteratorHelper(currentState),
+          _step;
+
+      try {
+        for (_iterator.s(); !(_step = _iterator.n()).done;) {
+          var state = _step.value;
+          var widget = WidgetParser.parseRoomWidget(state);
+          if (widget) result.push(widget);
+        }
+      } catch (err) {
+        _iterator.e(err);
+      } finally {
+        _iterator.f();
+      }
+
+      return result;
+    }
+    /**
+     * Parses a state event into a widget. If the state event does not represent
+     * a widget (wrong event type, invalid widget, etc) then null is returned.
+     * @param {IStateEvent} stateEvent The state event.
+     * @returns {Widget|null} The widget, or null if invalid
+     */
+
+  }, {
+    key: "parseRoomWidget",
+    value: function parseRoomWidget(stateEvent) {
+      if (!stateEvent) return null; // TODO: [Legacy] Remove legacy support
+
+      if (stateEvent.type !== "m.widget" && stateEvent.type !== "im.vector.modular.widgets") {
+        return null;
+      } // Dev note: Throughout this function we have null safety to ensure that
+      // if the caller did not supply something useful that we don't error. This
+      // is done against the requirements of the interface because not everyone
+      // will have an interface to validate against.
+
+
+      var content = stateEvent.content || {}; // Form our best approximation of a widget with the information we have
+
+      var estimatedWidget = {
+        id: stateEvent.state_key,
+        creatorUserId: content['creatorUserId'] || stateEvent.sender,
+        name: content['name'],
+        type: content['type'],
+        url: content['url'],
+        waitForIframeLoad: content['waitForIframeLoad'],
+        data: content['data']
+      }; // Finally, process that widget
+
+      return WidgetParser.processEstimatedWidget(estimatedWidget);
+    }
+  }, {
+    key: "processEstimatedWidget",
+    value: function processEstimatedWidget(widget) {
+      // Validate that the widget has the best chance of passing as a widget
+      if (!widget.id || !widget.creatorUserId || !widget.type) {
+        return null;
+      }
+
+      if (!(0, _url.isValidUrl)(widget.url)) {
+        return null;
+      } // TODO: Validate data for known widget types
+
+
+      return new _Widget.Widget(widget);
+    }
+  }]);
+
+  return WidgetParser;
+}();
+
+exports.WidgetParser = WidgetParser;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/Symbols.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/Symbols.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/Symbols.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/Symbols.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,28 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.Symbols = void 0;
+
+/*
+ * Copyright 2021 The Matrix.org Foundation C.I.C.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *         http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+var Symbols;
+exports.Symbols = Symbols;
+
+(function (Symbols) {
+  Symbols["AnyRoom"] = "*";
+})(Symbols || (exports.Symbols = Symbols = {}));
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/templating/url-template.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/templating/url-template.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/templating/url-template.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/templating/url-template.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,60 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.runTemplate = runTemplate;
+exports.toString = toString;
+
+/*
+ * Copyright 2020, 2021 The Matrix.org Foundation C.I.C.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *         http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+function runTemplate(url, widget, params) {
+  // Always apply the supplied params over top of data to ensure the data can't lie about them.
+  var variables = Object.assign({}, widget.data, {
+    'matrix_room_id': params.widgetRoomId || "",
+    'matrix_user_id': params.currentUserId,
+    'matrix_display_name': params.userDisplayName || params.currentUserId,
+    'matrix_avatar_url': params.userHttpAvatarUrl || "",
+    'matrix_widget_id': widget.id,
+    // TODO: Convert to stable (https://github.com/matrix-org/matrix-doc/pull/2873)
+    'org.matrix.msc2873.client_id': params.clientId || "",
+    'org.matrix.msc2873.client_theme': params.clientTheme || "",
+    'org.matrix.msc2873.client_language': params.clientLanguage || ""
+  });
+  var result = url;
+
+  for (var _i = 0, _Object$keys = Object.keys(variables); _i < _Object$keys.length; _i++) {
+    var key = _Object$keys[_i];
+    // Regex escape from https://stackoverflow.com/a/6969486/7037379
+    var pattern = "$".concat(key).replace(/[.*+?^${}()|[\]\\]/g, '\\$&'); // $& means the whole matched string
+
+    var rexp = new RegExp(pattern, 'g'); // This is technically not what we're supposed to do for a couple reasons:
+    // 1. We are assuming that there won't later be a $key match after we replace a variable.
+    // 2. We are assuming that the variable is in a place where it can be escaped (eg: path or query string).
+
+    result = result.replace(rexp, encodeURIComponent(toString(variables[key])));
+  }
+
+  return result;
+}
+
+function toString(a) {
+  if (a === null || a === undefined) {
+    return "".concat(a);
+  }
+
+  return a.toString();
+}
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/transport/ITransport.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/transport/ITransport.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/transport/ITransport.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/transport/ITransport.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,5 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/transport/PostmessageTransport.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/transport/PostmessageTransport.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/transport/PostmessageTransport.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/transport/PostmessageTransport.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,258 @@
+"use strict";
+
+function _typeof(obj) { "@babel/helpers - typeof"; return _typeof = "function" == typeof Symbol && "symbol" == typeof Symbol.iterator ? function (obj) { return typeof obj; } : function (obj) { return obj && "function" == typeof Symbol && obj.constructor === Symbol && obj !== Symbol.prototype ? "symbol" : typeof obj; }, _typeof(obj); }
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.PostmessageTransport = void 0;
+
+var _events = require("events");
+
+var _ = require("..");
+
+function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); enumerableOnly && (symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; })), keys.push.apply(keys, symbols); } return keys; }
+
+function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = null != arguments[i] ? arguments[i] : {}; i % 2 ? ownKeys(Object(source), !0).forEach(function (key) { _defineProperty(target, key, source[key]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)) : ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } return target; }
+
+function _classCallCheck(instance, Constructor) { if (!(instance instanceof Constructor)) { throw new TypeError("Cannot call a class as a function"); } }
+
+function _defineProperties(target, props) { for (var i = 0; i < props.length; i++) { var descriptor = props[i]; descriptor.enumerable = descriptor.enumerable || false; descriptor.configurable = true; if ("value" in descriptor) descriptor.writable = true; Object.defineProperty(target, descriptor.key, descriptor); } }
+
+function _createClass(Constructor, protoProps, staticProps) { if (protoProps) _defineProperties(Constructor.prototype, protoProps); if (staticProps) _defineProperties(Constructor, staticProps); Object.defineProperty(Constructor, "prototype", { writable: false }); return Constructor; }
+
+function _inherits(subClass, superClass) { if (typeof superClass !== "function" && superClass !== null) { throw new TypeError("Super expression must either be null or a function"); } subClass.prototype = Object.create(superClass && superClass.prototype, { constructor: { value: subClass, writable: true, configurable: true } }); Object.defineProperty(subClass, "prototype", { writable: false }); if (superClass) _setPrototypeOf(subClass, superClass); }
+
+function _setPrototypeOf(o, p) { _setPrototypeOf = Object.setPrototypeOf ? Object.setPrototypeOf.bind() : function _setPrototypeOf(o, p) { o.__proto__ = p; return o; }; return _setPrototypeOf(o, p); }
+
+function _createSuper(Derived) { var hasNativeReflectConstruct = _isNativeReflectConstruct(); return function _createSuperInternal() { var Super = _getPrototypeOf(Derived), result; if (hasNativeReflectConstruct) { var NewTarget = _getPrototypeOf(this).constructor; result = Reflect.construct(Super, arguments, NewTarget); } else { result = Super.apply(this, arguments); } return _possibleConstructorReturn(this, result); }; }
+
+function _possibleConstructorReturn(self, call) { if (call && (_typeof(call) === "object" || typeof call === "function")) { return call; } else if (call !== void 0) { throw new TypeError("Derived constructors may only return object or undefined"); } return _assertThisInitialized(self); }
+
+function _assertThisInitialized(self) { if (self === void 0) { throw new ReferenceError("this hasn't been initialised - super() hasn't been called"); } return self; }
+
+function _isNativeReflectConstruct() { if (typeof Reflect === "undefined" || !Reflect.construct) return false; if (Reflect.construct.sham) return false; if (typeof Proxy === "function") return true; try { Boolean.prototype.valueOf.call(Reflect.construct(Boolean, [], function () {})); return true; } catch (e) { return false; } }
+
+function _getPrototypeOf(o) { _getPrototypeOf = Object.setPrototypeOf ? Object.getPrototypeOf.bind() : function _getPrototypeOf(o) { return o.__proto__ || Object.getPrototypeOf(o); }; return _getPrototypeOf(o); }
+
+function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+
+/**
+ * Transport for the Widget API over postMessage.
+ */
+var PostmessageTransport = /*#__PURE__*/function (_EventEmitter) {
+  _inherits(PostmessageTransport, _EventEmitter);
+
+  var _super = _createSuper(PostmessageTransport);
+
+  function PostmessageTransport(sendDirection, initialWidgetId, transportWindow, inboundWindow) {
+    var _this;
+
+    _classCallCheck(this, PostmessageTransport);
+
+    _this = _super.call(this);
+    _this.sendDirection = sendDirection;
+    _this.initialWidgetId = initialWidgetId;
+    _this.transportWindow = transportWindow;
+    _this.inboundWindow = inboundWindow;
+
+    _defineProperty(_assertThisInitialized(_this), "strictOriginCheck", void 0);
+
+    _defineProperty(_assertThisInitialized(_this), "targetOrigin", void 0);
+
+    _defineProperty(_assertThisInitialized(_this), "timeoutSeconds", 10);
+
+    _defineProperty(_assertThisInitialized(_this), "_ready", false);
+
+    _defineProperty(_assertThisInitialized(_this), "_widgetId", null);
+
+    _defineProperty(_assertThisInitialized(_this), "outboundRequests", new Map());
+
+    _defineProperty(_assertThisInitialized(_this), "stopController", new AbortController());
+
+    _this._widgetId = initialWidgetId;
+    return _this;
+  }
+
+  _createClass(PostmessageTransport, [{
+    key: "ready",
+    get: function get() {
+      return this._ready;
+    }
+  }, {
+    key: "widgetId",
+    get: function get() {
+      return this._widgetId || null;
+    }
+  }, {
+    key: "nextRequestId",
+    get: function get() {
+      var idBase = "widgetapi-".concat(Date.now());
+      var index = 0;
+      var id = idBase;
+
+      while (this.outboundRequests.has(id)) {
+        id = "".concat(idBase, "-").concat(index++);
+      } // reserve the ID
+
+
+      this.outboundRequests.set(id, null);
+      return id;
+    }
+  }, {
+    key: "sendInternal",
+    value: function sendInternal(message) {
+      var targetOrigin = this.targetOrigin || '*';
+      console.log("[PostmessageTransport] Sending object to ".concat(targetOrigin, ": "), message);
+      this.transportWindow.postMessage(message, targetOrigin);
+    }
+  }, {
+    key: "reply",
+    value: function reply(request, responseData) {
+      return this.sendInternal(_objectSpread(_objectSpread({}, request), {}, {
+        response: responseData
+      }));
+    }
+  }, {
+    key: "send",
+    value: function send(action, data) {
+      return this.sendComplete(action, data).then(function (r) {
+        return r.response;
+      });
+    }
+  }, {
+    key: "sendComplete",
+    value: function sendComplete(action, data) {
+      var _this2 = this;
+
+      if (!this.ready || !this.widgetId) {
+        return Promise.reject(new Error("Not ready or unknown widget ID"));
+      }
+
+      var request = {
+        api: this.sendDirection,
+        widgetId: this.widgetId,
+        requestId: this.nextRequestId,
+        action: action,
+        data: data
+      };
+
+      if (action === _.WidgetApiToWidgetAction.UpdateVisibility) {
+        // XXX: This is for Scalar support
+        // TODO: Fix scalar
+        request['visible'] = data['visible'];
+      }
+
+      return new Promise(function (prResolve, prReject) {
+        var resolve = function resolve(response) {
+          cleanUp();
+          prResolve(response);
+        };
+
+        var reject = function reject(err) {
+          cleanUp();
+          prReject(err);
+        };
+
+        var timerId = setTimeout(function () {
+          return reject(new Error("Request timed out"));
+        }, (_this2.timeoutSeconds || 1) * 1000);
+
+        var onStop = function onStop() {
+          return reject(new Error("Transport stopped"));
+        };
+
+        _this2.stopController.signal.addEventListener("abort", onStop);
+
+        var cleanUp = function cleanUp() {
+          _this2.outboundRequests["delete"](request.requestId);
+
+          clearTimeout(timerId);
+
+          _this2.stopController.signal.removeEventListener("abort", onStop);
+        };
+
+        _this2.outboundRequests.set(request.requestId, {
+          request: request,
+          resolve: resolve,
+          reject: reject
+        });
+
+        _this2.sendInternal(request);
+      });
+    }
+  }, {
+    key: "start",
+    value: function start() {
+      var _this3 = this;
+
+      this.inboundWindow.addEventListener("message", function (ev) {
+        _this3.handleMessage(ev);
+      });
+      this._ready = true;
+    }
+  }, {
+    key: "stop",
+    value: function stop() {
+      this._ready = false;
+      this.stopController.abort();
+    }
+  }, {
+    key: "handleMessage",
+    value: function handleMessage(ev) {
+      if (this.stopController.signal.aborted) return;
+      if (!ev.data) return; // invalid event
+
+      if (this.strictOriginCheck && ev.origin !== window.origin) return; // bad origin
+      // treat the message as a response first, then downgrade to a request
+
+      var response = ev.data;
+      if (!response.action || !response.requestId || !response.widgetId) return; // invalid request/response
+
+      if (!response.response) {
+        // it's a request
+        var request = response;
+        if (request.api !== (0, _.invertedDirection)(this.sendDirection)) return; // wrong direction
+
+        this.handleRequest(request);
+      } else {
+        // it's a response
+        if (response.api !== this.sendDirection) return; // wrong direction
+
+        this.handleResponse(response);
+      }
+    }
+  }, {
+    key: "handleRequest",
+    value: function handleRequest(request) {
+      if (this.widgetId) {
+        if (this.widgetId !== request.widgetId) return; // wrong widget
+      } else {
+        this._widgetId = request.widgetId;
+      }
+
+      this.emit("message", new CustomEvent("message", {
+        detail: request
+      }));
+    }
+  }, {
+    key: "handleResponse",
+    value: function handleResponse(response) {
+      if (response.widgetId !== this.widgetId) return; // wrong widget
+
+      var req = this.outboundRequests.get(response.requestId);
+      if (!req) return; // response to an unknown request
+
+      if ((0, _.isErrorResponse)(response.response)) {
+        var _err = response.response;
+        req.reject(new Error(_err.error.message));
+      } else {
+        req.resolve(response);
+      }
+    }
+  }]);
+
+  return PostmessageTransport;
+}(_events.EventEmitter);
+
+exports.PostmessageTransport = PostmessageTransport;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/util/SimpleObservable.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/util/SimpleObservable.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/util/SimpleObservable.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/util/SimpleObservable.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,78 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.SimpleObservable = void 0;
+
+function _createForOfIteratorHelper(o, allowArrayLike) { var it = typeof Symbol !== "undefined" && o[Symbol.iterator] || o["@@iterator"]; if (!it) { if (Array.isArray(o) || (it = _unsupportedIterableToArray(o)) || allowArrayLike && o && typeof o.length === "number") { if (it) o = it; var i = 0; var F = function F() {}; return { s: F, n: function n() { if (i >= o.length) return { done: true }; return { done: false, value: o[i++] }; }, e: function e(_e) { throw _e; }, f: F }; } throw new TypeError("Invalid attempt to iterate non-iterable instance.\nIn order to be iterable, non-array objects must have a [Symbol.iterator]() method."); } var normalCompletion = true, didErr = false, err; return { s: function s() { it = it.call(o); }, n: function n() { var step = it.next(); normalCompletion = step.done; return step; }, e: function e(_e2) { didErr = true; err = _e2; }, f: function f() { try { if (!normalCompletion && it["return"] != null) it["return"](); } finally { if (didErr) throw err; } } }; }
+
+function _unsupportedIterableToArray(o, minLen) { if (!o) return; if (typeof o === "string") return _arrayLikeToArray(o, minLen); var n = Object.prototype.toString.call(o).slice(8, -1); if (n === "Object" && o.constructor) n = o.constructor.name; if (n === "Map" || n === "Set") return Array.from(o); if (n === "Arguments" || /^(?:Ui|I)nt(?:8|16|32)(?:Clamped)?Array$/.test(n)) return _arrayLikeToArray(o, minLen); }
+
+function _arrayLikeToArray(arr, len) { if (len == null || len > arr.length) len = arr.length; for (var i = 0, arr2 = new Array(len); i < len; i++) { arr2[i] = arr[i]; } return arr2; }
+
+function _classCallCheck(instance, Constructor) { if (!(instance instanceof Constructor)) { throw new TypeError("Cannot call a class as a function"); } }
+
+function _defineProperties(target, props) { for (var i = 0; i < props.length; i++) { var descriptor = props[i]; descriptor.enumerable = descriptor.enumerable || false; descriptor.configurable = true; if ("value" in descriptor) descriptor.writable = true; Object.defineProperty(target, descriptor.key, descriptor); } }
+
+function _createClass(Constructor, protoProps, staticProps) { if (protoProps) _defineProperties(Constructor.prototype, protoProps); if (staticProps) _defineProperties(Constructor, staticProps); Object.defineProperty(Constructor, "prototype", { writable: false }); return Constructor; }
+
+function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+
+/*
+ * Copyright 2020 The Matrix.org Foundation C.I.C.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *         http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+var SimpleObservable = /*#__PURE__*/function () {
+  function SimpleObservable(initialFn) {
+    _classCallCheck(this, SimpleObservable);
+
+    _defineProperty(this, "listeners", []);
+
+    if (initialFn) this.listeners.push(initialFn);
+  }
+
+  _createClass(SimpleObservable, [{
+    key: "onUpdate",
+    value: function onUpdate(fn) {
+      this.listeners.push(fn);
+    }
+  }, {
+    key: "update",
+    value: function update(val) {
+      var _iterator = _createForOfIteratorHelper(this.listeners),
+          _step;
+
+      try {
+        for (_iterator.s(); !(_step = _iterator.n()).done;) {
+          var listener = _step.value;
+          listener(val);
+        }
+      } catch (err) {
+        _iterator.e(err);
+      } finally {
+        _iterator.f();
+      }
+    }
+  }, {
+    key: "close",
+    value: function close() {
+      this.listeners = []; // reset
+    }
+  }]);
+
+  return SimpleObservable;
+}();
+
+exports.SimpleObservable = SimpleObservable;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/WidgetApi.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/WidgetApi.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/matrix-widget-api/WidgetApi.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/matrix-widget-api/WidgetApi.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,872 @@
+"use strict";
+
+function _typeof(obj) { "@babel/helpers - typeof"; return _typeof = "function" == typeof Symbol && "symbol" == typeof Symbol.iterator ? function (obj) { return typeof obj; } : function (obj) { return obj && "function" == typeof Symbol && obj.constructor === Symbol && obj !== Symbol.prototype ? "symbol" : typeof obj; }, _typeof(obj); }
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.WidgetApi = void 0;
+
+var _events = require("events");
+
+var _WidgetApiDirection = require("./interfaces/WidgetApiDirection");
+
+var _ApiVersion = require("./interfaces/ApiVersion");
+
+var _PostmessageTransport = require("./transport/PostmessageTransport");
+
+var _WidgetApiAction = require("./interfaces/WidgetApiAction");
+
+var _GetOpenIDAction = require("./interfaces/GetOpenIDAction");
+
+var _WidgetType = require("./interfaces/WidgetType");
+
+var _ModalWidgetActions = require("./interfaces/ModalWidgetActions");
+
+var _WidgetEventCapability = require("./models/WidgetEventCapability");
+
+var _Symbols = require("./Symbols");
+
+function _regeneratorRuntime() { "use strict"; /*! regenerator-runtime -- Copyright (c) 2014-present, Facebook, Inc. -- license (MIT): https://github.com/facebook/regenerator/blob/main/LICENSE */ _regeneratorRuntime = function _regeneratorRuntime() { return exports; }; var exports = {}, Op = Object.prototype, hasOwn = Op.hasOwnProperty, $Symbol = "function" == typeof Symbol ? Symbol : {}, iteratorSymbol = $Symbol.iterator || "@@iterator", asyncIteratorSymbol = $Symbol.asyncIterator || "@@asyncIterator", toStringTagSymbol = $Symbol.toStringTag || "@@toStringTag"; function define(obj, key, value) { return Object.defineProperty(obj, key, { value: value, enumerable: !0, configurable: !0, writable: !0 }), obj[key]; } try { define({}, ""); } catch (err) { define = function define(obj, key, value) { return obj[key] = value; }; } function wrap(innerFn, outerFn, self, tryLocsList) { var protoGenerator = outerFn && outerFn.prototype instanceof Generator ? outerFn : Generator, generator = Object.create(protoGenerator.prototype), context = new Context(tryLocsList || []); return generator._invoke = function (innerFn, self, context) { var state = "suspendedStart"; return function (method, arg) { if ("executing" === state) throw new Error("Generator is already running"); if ("completed" === state) { if ("throw" === method) throw arg; return doneResult(); } for (context.method = method, context.arg = arg;;) { var delegate = context.delegate; if (delegate) { var delegateResult = maybeInvokeDelegate(delegate, context); if (delegateResult) { if (delegateResult === ContinueSentinel) continue; return delegateResult; } } if ("next" === context.method) context.sent = context._sent = context.arg;else if ("throw" === context.method) { if ("suspendedStart" === state) throw state = "completed", context.arg; context.dispatchException(context.arg); } else "return" === context.method && context.abrupt("return", context.arg); state = "executing"; var record = tryCatch(innerFn, self, context); if ("normal" === record.type) { if (state = context.done ? "completed" : "suspendedYield", record.arg === ContinueSentinel) continue; return { value: record.arg, done: context.done }; } "throw" === record.type && (state = "completed", context.method = "throw", context.arg = record.arg); } }; }(innerFn, self, context), generator; } function tryCatch(fn, obj, arg) { try { return { type: "normal", arg: fn.call(obj, arg) }; } catch (err) { return { type: "throw", arg: err }; } } exports.wrap = wrap; var ContinueSentinel = {}; function Generator() {} function GeneratorFunction() {} function GeneratorFunctionPrototype() {} var IteratorPrototype = {}; define(IteratorPrototype, iteratorSymbol, function () { return this; }); var getProto = Object.getPrototypeOf, NativeIteratorPrototype = getProto && getProto(getProto(values([]))); NativeIteratorPrototype && NativeIteratorPrototype !== Op && hasOwn.call(NativeIteratorPrototype, iteratorSymbol) && (IteratorPrototype = NativeIteratorPrototype); var Gp = GeneratorFunctionPrototype.prototype = Generator.prototype = Object.create(IteratorPrototype); function defineIteratorMethods(prototype) { ["next", "throw", "return"].forEach(function (method) { define(prototype, method, function (arg) { return this._invoke(method, arg); }); }); } function AsyncIterator(generator, PromiseImpl) { function invoke(method, arg, resolve, reject) { var record = tryCatch(generator[method], generator, arg); if ("throw" !== record.type) { var result = record.arg, value = result.value; return value && "object" == _typeof(value) && hasOwn.call(value, "__await") ? PromiseImpl.resolve(value.__await).then(function (value) { invoke("next", value, resolve, reject); }, function (err) { invoke("throw", err, resolve, reject); }) : PromiseImpl.resolve(value).then(function (unwrapped) { result.value = unwrapped, resolve(result); }, function (error) { return invoke("throw", error, resolve, reject); }); } reject(record.arg); } var previousPromise; this._invoke = function (method, arg) { function callInvokeWithMethodAndArg() { return new PromiseImpl(function (resolve, reject) { invoke(method, arg, resolve, reject); }); } return previousPromise = previousPromise ? previousPromise.then(callInvokeWithMethodAndArg, callInvokeWithMethodAndArg) : callInvokeWithMethodAndArg(); }; } function maybeInvokeDelegate(delegate, context) { var method = delegate.iterator[context.method]; if (undefined === method) { if (context.delegate = null, "throw" === context.method) { if (delegate.iterator["return"] && (context.method = "return", context.arg = undefined, maybeInvokeDelegate(delegate, context), "throw" === context.method)) return ContinueSentinel; context.method = "throw", context.arg = new TypeError("The iterator does not provide a 'throw' method"); } return ContinueSentinel; } var record = tryCatch(method, delegate.iterator, context.arg); if ("throw" === record.type) return context.method = "throw", context.arg = record.arg, context.delegate = null, ContinueSentinel; var info = record.arg; return info ? info.done ? (context[delegate.resultName] = info.value, context.next = delegate.nextLoc, "return" !== context.method && (context.method = "next", context.arg = undefined), context.delegate = null, ContinueSentinel) : info : (context.method = "throw", context.arg = new TypeError("iterator result is not an object"), context.delegate = null, ContinueSentinel); } function pushTryEntry(locs) { var entry = { tryLoc: locs[0] }; 1 in locs && (entry.catchLoc = locs[1]), 2 in locs && (entry.finallyLoc = locs[2], entry.afterLoc = locs[3]), this.tryEntries.push(entry); } function resetTryEntry(entry) { var record = entry.completion || {}; record.type = "normal", delete record.arg, entry.completion = record; } function Context(tryLocsList) { this.tryEntries = [{ tryLoc: "root" }], tryLocsList.forEach(pushTryEntry, this), this.reset(!0); } function values(iterable) { if (iterable) { var iteratorMethod = iterable[iteratorSymbol]; if (iteratorMethod) return iteratorMethod.call(iterable); if ("function" == typeof iterable.next) return iterable; if (!isNaN(iterable.length)) { var i = -1, next = function next() { for (; ++i < iterable.length;) { if (hasOwn.call(iterable, i)) return next.value = iterable[i], next.done = !1, next; } return next.value = undefined, next.done = !0, next; }; return next.next = next; } } return { next: doneResult }; } function doneResult() { return { value: undefined, done: !0 }; } return GeneratorFunction.prototype = GeneratorFunctionPrototype, define(Gp, "constructor", GeneratorFunctionPrototype), define(GeneratorFunctionPrototype, "constructor", GeneratorFunction), GeneratorFunction.displayName = define(GeneratorFunctionPrototype, toStringTagSymbol, "GeneratorFunction"), exports.isGeneratorFunction = function (genFun) { var ctor = "function" == typeof genFun && genFun.constructor; return !!ctor && (ctor === GeneratorFunction || "GeneratorFunction" === (ctor.displayName || ctor.name)); }, exports.mark = function (genFun) { return Object.setPrototypeOf ? Object.setPrototypeOf(genFun, GeneratorFunctionPrototype) : (genFun.__proto__ = GeneratorFunctionPrototype, define(genFun, toStringTagSymbol, "GeneratorFunction")), genFun.prototype = Object.create(Gp), genFun; }, exports.awrap = function (arg) { return { __await: arg }; }, defineIteratorMethods(AsyncIterator.prototype), define(AsyncIterator.prototype, asyncIteratorSymbol, function () { return this; }), exports.AsyncIterator = AsyncIterator, exports.async = function (innerFn, outerFn, self, tryLocsList, PromiseImpl) { void 0 === PromiseImpl && (PromiseImpl = Promise); var iter = new AsyncIterator(wrap(innerFn, outerFn, self, tryLocsList), PromiseImpl); return exports.isGeneratorFunction(outerFn) ? iter : iter.next().then(function (result) { return result.done ? result.value : iter.next(); }); }, defineIteratorMethods(Gp), define(Gp, toStringTagSymbol, "Generator"), define(Gp, iteratorSymbol, function () { return this; }), define(Gp, "toString", function () { return "[object Generator]"; }), exports.keys = function (object) { var keys = []; for (var key in object) { keys.push(key); } return keys.reverse(), function next() { for (; keys.length;) { var key = keys.pop(); if (key in object) return next.value = key, next.done = !1, next; } return next.done = !0, next; }; }, exports.values = values, Context.prototype = { constructor: Context, reset: function reset(skipTempReset) { if (this.prev = 0, this.next = 0, this.sent = this._sent = undefined, this.done = !1, this.delegate = null, this.method = "next", this.arg = undefined, this.tryEntries.forEach(resetTryEntry), !skipTempReset) for (var name in this) { "t" === name.charAt(0) && hasOwn.call(this, name) && !isNaN(+name.slice(1)) && (this[name] = undefined); } }, stop: function stop() { this.done = !0; var rootRecord = this.tryEntries[0].completion; if ("throw" === rootRecord.type) throw rootRecord.arg; return this.rval; }, dispatchException: function dispatchException(exception) { if (this.done) throw exception; var context = this; function handle(loc, caught) { return record.type = "throw", record.arg = exception, context.next = loc, caught && (context.method = "next", context.arg = undefined), !!caught; } for (var i = this.tryEntries.length - 1; i >= 0; --i) { var entry = this.tryEntries[i], record = entry.completion; if ("root" === entry.tryLoc) return handle("end"); if (entry.tryLoc <= this.prev) { var hasCatch = hasOwn.call(entry, "catchLoc"), hasFinally = hasOwn.call(entry, "finallyLoc"); if (hasCatch && hasFinally) { if (this.prev < entry.catchLoc) return handle(entry.catchLoc, !0); if (this.prev < entry.finallyLoc) return handle(entry.finallyLoc); } else if (hasCatch) { if (this.prev < entry.catchLoc) return handle(entry.catchLoc, !0); } else { if (!hasFinally) throw new Error("try statement without catch or finally"); if (this.prev < entry.finallyLoc) return handle(entry.finallyLoc); } } } }, abrupt: function abrupt(type, arg) { for (var i = this.tryEntries.length - 1; i >= 0; --i) { var entry = this.tryEntries[i]; if (entry.tryLoc <= this.prev && hasOwn.call(entry, "finallyLoc") && this.prev < entry.finallyLoc) { var finallyEntry = entry; break; } } finallyEntry && ("break" === type || "continue" === type) && finallyEntry.tryLoc <= arg && arg <= finallyEntry.finallyLoc && (finallyEntry = null); var record = finallyEntry ? finallyEntry.completion : {}; return record.type = type, record.arg = arg, finallyEntry ? (this.method = "next", this.next = finallyEntry.finallyLoc, ContinueSentinel) : this.complete(record); }, complete: function complete(record, afterLoc) { if ("throw" === record.type) throw record.arg; return "break" === record.type || "continue" === record.type ? this.next = record.arg : "return" === record.type ? (this.rval = this.arg = record.arg, this.method = "return", this.next = "end") : "normal" === record.type && afterLoc && (this.next = afterLoc), ContinueSentinel; }, finish: function finish(finallyLoc) { for (var i = this.tryEntries.length - 1; i >= 0; --i) { var entry = this.tryEntries[i]; if (entry.finallyLoc === finallyLoc) return this.complete(entry.completion, entry.afterLoc), resetTryEntry(entry), ContinueSentinel; } }, "catch": function _catch(tryLoc) { for (var i = this.tryEntries.length - 1; i >= 0; --i) { var entry = this.tryEntries[i]; if (entry.tryLoc === tryLoc) { var record = entry.completion; if ("throw" === record.type) { var thrown = record.arg; resetTryEntry(entry); } return thrown; } } throw new Error("illegal catch attempt"); }, delegateYield: function delegateYield(iterable, resultName, nextLoc) { return this.delegate = { iterator: values(iterable), resultName: resultName, nextLoc: nextLoc }, "next" === this.method && (this.arg = undefined), ContinueSentinel; } }, exports; }
+
+function asyncGeneratorStep(gen, resolve, reject, _next, _throw, key, arg) { try { var info = gen[key](arg); var value = info.value; } catch (error) { reject(error); return; } if (info.done) { resolve(value); } else { Promise.resolve(value).then(_next, _throw); } }
+
+function _asyncToGenerator(fn) { return function () { var self = this, args = arguments; return new Promise(function (resolve, reject) { var gen = fn.apply(self, args); function _next(value) { asyncGeneratorStep(gen, resolve, reject, _next, _throw, "next", value); } function _throw(err) { asyncGeneratorStep(gen, resolve, reject, _next, _throw, "throw", err); } _next(undefined); }); }; }
+
+function _classCallCheck(instance, Constructor) { if (!(instance instanceof Constructor)) { throw new TypeError("Cannot call a class as a function"); } }
+
+function _defineProperties(target, props) { for (var i = 0; i < props.length; i++) { var descriptor = props[i]; descriptor.enumerable = descriptor.enumerable || false; descriptor.configurable = true; if ("value" in descriptor) descriptor.writable = true; Object.defineProperty(target, descriptor.key, descriptor); } }
+
+function _createClass(Constructor, protoProps, staticProps) { if (protoProps) _defineProperties(Constructor.prototype, protoProps); if (staticProps) _defineProperties(Constructor, staticProps); Object.defineProperty(Constructor, "prototype", { writable: false }); return Constructor; }
+
+function _inherits(subClass, superClass) { if (typeof superClass !== "function" && superClass !== null) { throw new TypeError("Super expression must either be null or a function"); } subClass.prototype = Object.create(superClass && superClass.prototype, { constructor: { value: subClass, writable: true, configurable: true } }); Object.defineProperty(subClass, "prototype", { writable: false }); if (superClass) _setPrototypeOf(subClass, superClass); }
+
+function _setPrototypeOf(o, p) { _setPrototypeOf = Object.setPrototypeOf ? Object.setPrototypeOf.bind() : function _setPrototypeOf(o, p) { o.__proto__ = p; return o; }; return _setPrototypeOf(o, p); }
+
+function _createSuper(Derived) { var hasNativeReflectConstruct = _isNativeReflectConstruct(); return function _createSuperInternal() { var Super = _getPrototypeOf(Derived), result; if (hasNativeReflectConstruct) { var NewTarget = _getPrototypeOf(this).constructor; result = Reflect.construct(Super, arguments, NewTarget); } else { result = Super.apply(this, arguments); } return _possibleConstructorReturn(this, result); }; }
+
+function _possibleConstructorReturn(self, call) { if (call && (_typeof(call) === "object" || typeof call === "function")) { return call; } else if (call !== void 0) { throw new TypeError("Derived constructors may only return object or undefined"); } return _assertThisInitialized(self); }
+
+function _assertThisInitialized(self) { if (self === void 0) { throw new ReferenceError("this hasn't been initialised - super() hasn't been called"); } return self; }
+
+function _isNativeReflectConstruct() { if (typeof Reflect === "undefined" || !Reflect.construct) return false; if (Reflect.construct.sham) return false; if (typeof Proxy === "function") return true; try { Boolean.prototype.valueOf.call(Reflect.construct(Boolean, [], function () {})); return true; } catch (e) { return false; } }
+
+function _getPrototypeOf(o) { _getPrototypeOf = Object.setPrototypeOf ? Object.getPrototypeOf.bind() : function _getPrototypeOf(o) { return o.__proto__ || Object.getPrototypeOf(o); }; return _getPrototypeOf(o); }
+
+function _defineProperty(obj, key, value) { if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+
+function _awaitAsyncGenerator(value) { return new _AwaitValue(value); }
+
+function _wrapAsyncGenerator(fn) { return function () { return new _AsyncGenerator(fn.apply(this, arguments)); }; }
+
+function _AsyncGenerator(gen) { var front, back; function send(key, arg) { return new Promise(function (resolve, reject) { var request = { key: key, arg: arg, resolve: resolve, reject: reject, next: null }; if (back) { back = back.next = request; } else { front = back = request; resume(key, arg); } }); } function resume(key, arg) { try { var result = gen[key](arg); var value = result.value; var wrappedAwait = value instanceof _AwaitValue; Promise.resolve(wrappedAwait ? value.wrapped : value).then(function (arg) { if (wrappedAwait) { resume(key === "return" ? "return" : "next", arg); return; } settle(result.done ? "return" : "normal", arg); }, function (err) { resume("throw", err); }); } catch (err) { settle("throw", err); } } function settle(type, value) { switch (type) { case "return": front.resolve({ value: value, done: true }); break; case "throw": front.reject(value); break; default: front.resolve({ value: value, done: false }); break; } front = front.next; if (front) { resume(front.key, front.arg); } else { back = null; } } this._invoke = send; if (typeof gen["return"] !== "function") { this["return"] = undefined; } }
+
+_AsyncGenerator.prototype[typeof Symbol === "function" && Symbol.asyncIterator || "@@asyncIterator"] = function () { return this; };
+
+_AsyncGenerator.prototype.next = function (arg) { return this._invoke("next", arg); };
+
+_AsyncGenerator.prototype["throw"] = function (arg) { return this._invoke("throw", arg); };
+
+_AsyncGenerator.prototype["return"] = function (arg) { return this._invoke("return", arg); };
+
+function _AwaitValue(value) { this.wrapped = value; }
+
+/**
+ * API handler for widgets. This raises events for each action
+ * received as `action:${action}` (eg: "action:screenshot").
+ * Default handling can be prevented by using preventDefault()
+ * on the raised event. The default handling varies for each
+ * action: ones which the SDK can handle safely are acknowledged
+ * appropriately and ones which are unhandled (custom or require
+ * the widget to do something) are rejected with an error.
+ *
+ * Events which are preventDefault()ed must reply using the
+ * transport. The events raised will have a detail of an
+ * IWidgetApiRequest interface.
+ *
+ * When the WidgetApi is ready to start sending requests, it will
+ * raise a "ready" CustomEvent. After the ready event fires, actions
+ * can be sent and the transport will be ready.
+ */
+var WidgetApi = /*#__PURE__*/function (_EventEmitter) {
+  _inherits(WidgetApi, _EventEmitter);
+
+  var _super = _createSuper(WidgetApi);
+
+  /**
+   * Creates a new API handler for the given widget.
+   * @param {string} widgetId The widget ID to listen for. If not supplied then
+   * the API will use the widget ID from the first valid request it receives.
+   * @param {string} clientOrigin The origin of the client, or null if not known.
+   */
+  function WidgetApi() {
+    var _this2;
+
+    var widgetId = arguments.length > 0 && arguments[0] !== undefined ? arguments[0] : null;
+    var clientOrigin = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : null;
+
+    _classCallCheck(this, WidgetApi);
+
+    _this2 = _super.call(this);
+    _this2.clientOrigin = clientOrigin;
+
+    _defineProperty(_assertThisInitialized(_this2), "transport", void 0);
+
+    _defineProperty(_assertThisInitialized(_this2), "capabilitiesFinished", false);
+
+    _defineProperty(_assertThisInitialized(_this2), "supportsMSC2974Renegotiate", false);
+
+    _defineProperty(_assertThisInitialized(_this2), "requestedCapabilities", []);
+
+    _defineProperty(_assertThisInitialized(_this2), "approvedCapabilities", void 0);
+
+    _defineProperty(_assertThisInitialized(_this2), "cachedClientVersions", void 0);
+
+    _defineProperty(_assertThisInitialized(_this2), "turnServerWatchers", 0);
+
+    if (!window.parent) {
+      throw new Error("No parent window. This widget doesn't appear to be embedded properly.");
+    }
+
+    _this2.transport = new _PostmessageTransport.PostmessageTransport(_WidgetApiDirection.WidgetApiDirection.FromWidget, widgetId, window.parent, window);
+    _this2.transport.targetOrigin = clientOrigin;
+
+    _this2.transport.on("message", _this2.handleMessage.bind(_assertThisInitialized(_this2)));
+
+    return _this2;
+  }
+  /**
+   * Determines if the widget was granted a particular capability. Note that on
+   * clients where the capabilities are not fed back to the widget this function
+   * will rely on requested capabilities instead.
+   * @param {Capability} capability The capability to check for approval of.
+   * @returns {boolean} True if the widget has approval for the given capability.
+   */
+
+
+  _createClass(WidgetApi, [{
+    key: "hasCapability",
+    value: function hasCapability(capability) {
+      if (Array.isArray(this.approvedCapabilities)) {
+        return this.approvedCapabilities.includes(capability);
+      }
+
+      return this.requestedCapabilities.includes(capability);
+    }
+    /**
+     * Request a capability from the client. It is not guaranteed to be allowed,
+     * but will be asked for.
+     * @param {Capability} capability The capability to request.
+     * @throws Throws if the capabilities negotiation has already started and the
+     * widget is unable to request additional capabilities.
+     */
+
+  }, {
+    key: "requestCapability",
+    value: function requestCapability(capability) {
+      if (this.capabilitiesFinished && !this.supportsMSC2974Renegotiate) {
+        throw new Error("Capabilities have already been negotiated");
+      }
+
+      this.requestedCapabilities.push(capability);
+    }
+    /**
+     * Request capabilities from the client. They are not guaranteed to be allowed,
+     * but will be asked for if the negotiation has not already happened.
+     * @param {Capability[]} capabilities The capabilities to request.
+     * @throws Throws if the capabilities negotiation has already started.
+     */
+
+  }, {
+    key: "requestCapabilities",
+    value: function requestCapabilities(capabilities) {
+      var _this3 = this;
+
+      capabilities.forEach(function (cap) {
+        return _this3.requestCapability(cap);
+      });
+    }
+    /**
+     * Requests the capability to interact with rooms other than the user's currently
+     * viewed room. Applies to event receiving and sending.
+     * @param {string | Symbols.AnyRoom} roomId The room ID, or `Symbols.AnyRoom` to
+     * denote all known rooms.
+     */
+
+  }, {
+    key: "requestCapabilityForRoomTimeline",
+    value: function requestCapabilityForRoomTimeline(roomId) {
+      this.requestCapability("org.matrix.msc2762.timeline:".concat(roomId));
+    }
+    /**
+     * Requests the capability to send a given state event with optional explicit
+     * state key. It is not guaranteed to be allowed, but will be asked for if the
+     * negotiation has not already happened.
+     * @param {string} eventType The state event type to ask for.
+     * @param {string} stateKey If specified, the specific state key to request.
+     * Otherwise all state keys will be requested.
+     */
+
+  }, {
+    key: "requestCapabilityToSendState",
+    value: function requestCapabilityToSendState(eventType, stateKey) {
+      this.requestCapability(_WidgetEventCapability.WidgetEventCapability.forStateEvent(_WidgetEventCapability.EventDirection.Send, eventType, stateKey).raw);
+    }
+    /**
+     * Requests the capability to receive a given state event with optional explicit
+     * state key. It is not guaranteed to be allowed, but will be asked for if the
+     * negotiation has not already happened.
+     * @param {string} eventType The state event type to ask for.
+     * @param {string} stateKey If specified, the specific state key to request.
+     * Otherwise all state keys will be requested.
+     */
+
+  }, {
+    key: "requestCapabilityToReceiveState",
+    value: function requestCapabilityToReceiveState(eventType, stateKey) {
+      this.requestCapability(_WidgetEventCapability.WidgetEventCapability.forStateEvent(_WidgetEventCapability.EventDirection.Receive, eventType, stateKey).raw);
+    }
+    /**
+     * Requests the capability to send a given to-device event. It is not
+     * guaranteed to be allowed, but will be asked for if the negotiation has
+     * not already happened.
+     * @param {string} eventType The room event type to ask for.
+     */
+
+  }, {
+    key: "requestCapabilityToSendToDevice",
+    value: function requestCapabilityToSendToDevice(eventType) {
+      this.requestCapability(_WidgetEventCapability.WidgetEventCapability.forToDeviceEvent(_WidgetEventCapability.EventDirection.Send, eventType).raw);
+    }
+    /**
+     * Requests the capability to receive a given to-device event. It is not
+     * guaranteed to be allowed, but will be asked for if the negotiation has
+     * not already happened.
+     * @param {string} eventType The room event type to ask for.
+     */
+
+  }, {
+    key: "requestCapabilityToReceiveToDevice",
+    value: function requestCapabilityToReceiveToDevice(eventType) {
+      this.requestCapability(_WidgetEventCapability.WidgetEventCapability.forToDeviceEvent(_WidgetEventCapability.EventDirection.Receive, eventType).raw);
+    }
+    /**
+     * Requests the capability to send a given room event. It is not guaranteed to be
+     * allowed, but will be asked for if the negotiation has not already happened.
+     * @param {string} eventType The room event type to ask for.
+     */
+
+  }, {
+    key: "requestCapabilityToSendEvent",
+    value: function requestCapabilityToSendEvent(eventType) {
+      this.requestCapability(_WidgetEventCapability.WidgetEventCapability.forRoomEvent(_WidgetEventCapability.EventDirection.Send, eventType).raw);
+    }
+    /**
+     * Requests the capability to receive a given room event. It is not guaranteed to be
+     * allowed, but will be asked for if the negotiation has not already happened.
+     * @param {string} eventType The room event type to ask for.
+     */
+
+  }, {
+    key: "requestCapabilityToReceiveEvent",
+    value: function requestCapabilityToReceiveEvent(eventType) {
+      this.requestCapability(_WidgetEventCapability.WidgetEventCapability.forRoomEvent(_WidgetEventCapability.EventDirection.Receive, eventType).raw);
+    }
+    /**
+     * Requests the capability to send a given message event with optional explicit
+     * `msgtype`. It is not guaranteed to be allowed, but will be asked for if the
+     * negotiation has not already happened.
+     * @param {string} msgtype If specified, the specific msgtype to request.
+     * Otherwise all message types will be requested.
+     */
+
+  }, {
+    key: "requestCapabilityToSendMessage",
+    value: function requestCapabilityToSendMessage(msgtype) {
+      this.requestCapability(_WidgetEventCapability.WidgetEventCapability.forRoomMessageEvent(_WidgetEventCapability.EventDirection.Send, msgtype).raw);
+    }
+    /**
+     * Requests the capability to receive a given message event with optional explicit
+     * `msgtype`. It is not guaranteed to be allowed, but will be asked for if the
+     * negotiation has not already happened.
+     * @param {string} msgtype If specified, the specific msgtype to request.
+     * Otherwise all message types will be requested.
+     */
+
+  }, {
+    key: "requestCapabilityToReceiveMessage",
+    value: function requestCapabilityToReceiveMessage(msgtype) {
+      this.requestCapability(_WidgetEventCapability.WidgetEventCapability.forRoomMessageEvent(_WidgetEventCapability.EventDirection.Receive, msgtype).raw);
+    }
+    /**
+     * Requests an OpenID Connect token from the client for the currently logged in
+     * user. This token can be validated server-side with the federation API. Note
+     * that the widget is responsible for validating the token and caching any results
+     * it needs.
+     * @returns {Promise<IOpenIDCredentials>} Resolves to a token for verification.
+     * @throws Throws if the user rejected the request or the request failed.
+     */
+
+  }, {
+    key: "requestOpenIDConnectToken",
+    value: function requestOpenIDConnectToken() {
+      var _this4 = this;
+
+      return new Promise(function (resolve, reject) {
+        _this4.transport.sendComplete(_WidgetApiAction.WidgetApiFromWidgetAction.GetOpenIDCredentials, {}).then(function (response) {
+          var rdata = response.response;
+
+          if (rdata.state === _GetOpenIDAction.OpenIDRequestState.Allowed) {
+            resolve(rdata);
+          } else if (rdata.state === _GetOpenIDAction.OpenIDRequestState.Blocked) {
+            reject(new Error("User declined to verify their identity"));
+          } else if (rdata.state === _GetOpenIDAction.OpenIDRequestState.PendingUserConfirmation) {
+            var handlerFn = function handlerFn(ev) {
+              ev.preventDefault();
+              var request = ev.detail;
+              if (request.data.original_request_id !== response.requestId) return;
+
+              if (request.data.state === _GetOpenIDAction.OpenIDRequestState.Allowed) {
+                resolve(request.data);
+
+                _this4.transport.reply(request, {}); // ack
+
+              } else if (request.data.state === _GetOpenIDAction.OpenIDRequestState.Blocked) {
+                reject(new Error("User declined to verify their identity"));
+
+                _this4.transport.reply(request, {}); // ack
+
+              } else {
+                reject(new Error("Invalid state on reply: " + rdata.state));
+
+                _this4.transport.reply(request, {
+                  error: {
+                    message: "Invalid state"
+                  }
+                });
+              }
+
+              _this4.off("action:".concat(_WidgetApiAction.WidgetApiToWidgetAction.OpenIDCredentials), handlerFn);
+            };
+
+            _this4.on("action:".concat(_WidgetApiAction.WidgetApiToWidgetAction.OpenIDCredentials), handlerFn);
+          } else {
+            reject(new Error("Invalid state: " + rdata.state));
+          }
+        })["catch"](reject);
+      });
+    }
+    /**
+     * Asks the client for additional capabilities. Capabilities can be queued for this
+     * request with the requestCapability() functions.
+     * @returns {Promise<void>} Resolves when complete. Note that the promise resolves when
+     * the capabilities request has gone through, not when the capabilities are approved/denied.
+     * Use the WidgetApiToWidgetAction.NotifyCapabilities action to detect changes.
+     */
+
+  }, {
+    key: "updateRequestedCapabilities",
+    value: function updateRequestedCapabilities() {
+      return this.transport.send(_WidgetApiAction.WidgetApiFromWidgetAction.MSC2974RenegotiateCapabilities, {
+        capabilities: this.requestedCapabilities
+      }).then();
+    }
+    /**
+     * Tell the client that the content has been loaded.
+     * @returns {Promise} Resolves when the client acknowledges the request.
+     */
+
+  }, {
+    key: "sendContentLoaded",
+    value: function sendContentLoaded() {
+      return this.transport.send(_WidgetApiAction.WidgetApiFromWidgetAction.ContentLoaded, {}).then();
+    }
+    /**
+     * Sends a sticker to the client.
+     * @param {IStickerActionRequestData} sticker The sticker to send.
+     * @returns {Promise} Resolves when the client acknowledges the request.
+     */
+
+  }, {
+    key: "sendSticker",
+    value: function sendSticker(sticker) {
+      return this.transport.send(_WidgetApiAction.WidgetApiFromWidgetAction.SendSticker, sticker).then();
+    }
+    /**
+     * Asks the client to set the always-on-screen status for this widget.
+     * @param {boolean} value The new state to request.
+     * @returns {Promise<boolean>} Resolve with true if the client was able to fulfill
+     * the request, resolves to false otherwise. Rejects if an error occurred.
+     */
+
+  }, {
+    key: "setAlwaysOnScreen",
+    value: function setAlwaysOnScreen(value) {
+      return this.transport.send(_WidgetApiAction.WidgetApiFromWidgetAction.UpdateAlwaysOnScreen, {
+        value: value
+      }).then(function (res) {
+        return res.success;
+      });
+    }
+    /**
+     * Opens a modal widget.
+     * @param {string} url The URL to the modal widget.
+     * @param {string} name The name of the widget.
+     * @param {IModalWidgetOpenRequestDataButton[]} buttons The buttons to have on the widget.
+     * @param {IModalWidgetCreateData} data Data to supply to the modal widget.
+     * @param {WidgetType} type The type of modal widget.
+     * @returns {Promise<void>} Resolves when the modal widget has been opened.
+     */
+
+  }, {
+    key: "openModalWidget",
+    value: function openModalWidget(url, name) {
+      var buttons = arguments.length > 2 && arguments[2] !== undefined ? arguments[2] : [];
+      var data = arguments.length > 3 && arguments[3] !== undefined ? arguments[3] : {};
+      var type = arguments.length > 4 && arguments[4] !== undefined ? arguments[4] : _WidgetType.MatrixWidgetType.Custom;
+      return this.transport.send(_WidgetApiAction.WidgetApiFromWidgetAction.OpenModalWidget, {
+        type: type,
+        url: url,
+        name: name,
+        buttons: buttons,
+        data: data
+      }).then();
+    }
+    /**
+     * Closes the modal widget. The widget's session will be terminated shortly after.
+     * @param {IModalWidgetReturnData} data Optional data to close the modal widget with.
+     * @returns {Promise<void>} Resolves when complete.
+     */
+
+  }, {
+    key: "closeModalWidget",
+    value: function closeModalWidget() {
+      var data = arguments.length > 0 && arguments[0] !== undefined ? arguments[0] : {};
+      return this.transport.send(_WidgetApiAction.WidgetApiFromWidgetAction.CloseModalWidget, data).then();
+    }
+  }, {
+    key: "sendRoomEvent",
+    value: function sendRoomEvent(eventType, content, roomId) {
+      return this.transport.send(_WidgetApiAction.WidgetApiFromWidgetAction.SendEvent, {
+        type: eventType,
+        content: content,
+        room_id: roomId
+      });
+    }
+  }, {
+    key: "sendStateEvent",
+    value: function sendStateEvent(eventType, stateKey, content, roomId) {
+      return this.transport.send(_WidgetApiAction.WidgetApiFromWidgetAction.SendEvent, {
+        type: eventType,
+        content: content,
+        state_key: stateKey,
+        room_id: roomId
+      });
+    }
+    /**
+     * Sends a to-device event.
+     * @param {string} eventType The type of events being sent.
+     * @param {boolean} encrypted Whether to encrypt the message contents.
+     * @param {Object} contentMap A map from user IDs to device IDs to message contents.
+     * @returns {Promise<ISendToDeviceFromWidgetResponseData>} Resolves when complete.
+     */
+
+  }, {
+    key: "sendToDevice",
+    value: function sendToDevice(eventType, encrypted, contentMap) {
+      return this.transport.send(_WidgetApiAction.WidgetApiFromWidgetAction.SendToDevice, {
+        type: eventType,
+        encrypted: encrypted,
+        messages: contentMap
+      });
+    }
+  }, {
+    key: "readRoomEvents",
+    value: function readRoomEvents(eventType, limit, msgtype, roomIds) {
+      var data = {
+        type: eventType,
+        msgtype: msgtype
+      };
+
+      if (limit !== undefined) {
+        data.limit = limit;
+      }
+
+      if (roomIds) {
+        if (roomIds.includes(_Symbols.Symbols.AnyRoom)) {
+          data.room_ids = _Symbols.Symbols.AnyRoom;
+        } else {
+          data.room_ids = roomIds;
+        }
+      }
+
+      return this.transport.send(_WidgetApiAction.WidgetApiFromWidgetAction.MSC2876ReadEvents, data).then(function (r) {
+        return r.events;
+      });
+    }
+    /**
+     * Reads all related events given a known eventId.
+     * @param eventId The id of the parent event to be read.
+     * @param roomId The room to look within. When undefined, the user's currently
+     * viewed room.
+     * @param relationType The relationship type of child events to search for.
+     * When undefined, all relations are returned.
+     * @param eventType The event type of child events to search for. When undefined,
+     * all related events are returned.
+     * @param limit The maximum number of events to retrieve per room. If not
+     * supplied, the server will apply a default limit.
+     * @param from The pagination token to start returning results from, as
+     * received from a previous call. If not supplied, results start at the most
+     * recent topological event known to the server.
+     * @param to The pagination token to stop returning results at. If not
+     * supplied, results continue up to limit or until there are no more events.
+     * @param direction The direction to search for according to MSC3715.
+     * @returns Resolves to the room relations.
+     */
+
+  }, {
+    key: "readEventRelations",
+    value: function () {
+      var _readEventRelations = _asyncToGenerator( /*#__PURE__*/_regeneratorRuntime().mark(function _callee(eventId, roomId, relationType, eventType, limit, from, to, direction) {
+        var versions, data;
+        return _regeneratorRuntime().wrap(function _callee$(_context) {
+          while (1) {
+            switch (_context.prev = _context.next) {
+              case 0:
+                _context.next = 2;
+                return this.getClientVersions();
+
+              case 2:
+                versions = _context.sent;
+
+                if (versions.includes(_ApiVersion.UnstableApiVersion.MSC3869)) {
+                  _context.next = 5;
+                  break;
+                }
+
+                throw new Error("The read_relations action is not supported by the client.");
+
+              case 5:
+                data = {
+                  event_id: eventId,
+                  rel_type: relationType,
+                  event_type: eventType,
+                  room_id: roomId,
+                  to: to,
+                  from: from,
+                  limit: limit,
+                  direction: direction
+                };
+                return _context.abrupt("return", this.transport.send(_WidgetApiAction.WidgetApiFromWidgetAction.MSC3869ReadRelations, data));
+
+              case 7:
+              case "end":
+                return _context.stop();
+            }
+          }
+        }, _callee, this);
+      }));
+
+      function readEventRelations(_x, _x2, _x3, _x4, _x5, _x6, _x7, _x8) {
+        return _readEventRelations.apply(this, arguments);
+      }
+
+      return readEventRelations;
+    }()
+  }, {
+    key: "readStateEvents",
+    value: function readStateEvents(eventType, limit, stateKey, roomIds) {
+      var data = {
+        type: eventType,
+        state_key: stateKey === undefined ? true : stateKey
+      };
+
+      if (limit !== undefined) {
+        data.limit = limit;
+      }
+
+      if (roomIds) {
+        if (roomIds.includes(_Symbols.Symbols.AnyRoom)) {
+          data.room_ids = _Symbols.Symbols.AnyRoom;
+        } else {
+          data.room_ids = roomIds;
+        }
+      }
+
+      return this.transport.send(_WidgetApiAction.WidgetApiFromWidgetAction.MSC2876ReadEvents, data).then(function (r) {
+        return r.events;
+      });
+    }
+    /**
+     * Sets a button as disabled or enabled on the modal widget. Buttons are enabled by default.
+     * @param {ModalButtonID} buttonId The button ID to enable/disable.
+     * @param {boolean} isEnabled Whether or not the button is enabled.
+     * @returns {Promise<void>} Resolves when complete.
+     * @throws Throws if the button cannot be disabled, or the client refuses to disable the button.
+     */
+
+  }, {
+    key: "setModalButtonEnabled",
+    value: function setModalButtonEnabled(buttonId, isEnabled) {
+      if (buttonId === _ModalWidgetActions.BuiltInModalButtonID.Close) {
+        throw new Error("The close button cannot be disabled");
+      }
+
+      return this.transport.send(_WidgetApiAction.WidgetApiFromWidgetAction.SetModalButtonEnabled, {
+        button: buttonId,
+        enabled: isEnabled
+      }).then();
+    }
+    /**
+     * Attempts to navigate the client to the given URI. This can only be called with Matrix URIs
+     * (currently only matrix.to, but in future a Matrix URI scheme will be defined).
+     * @param {string} uri The URI to navigate to.
+     * @returns {Promise<void>} Resolves when complete.
+     * @throws Throws if the URI is invalid or cannot be processed.
+     * @deprecated This currently relies on an unstable MSC (MSC2931).
+     */
+
+  }, {
+    key: "navigateTo",
+    value: function navigateTo(uri) {
+      if (!uri || !uri.startsWith("https://matrix.to/#")) {
+        throw new Error("Invalid matrix.to URI");
+      }
+
+      return this.transport.send(_WidgetApiAction.WidgetApiFromWidgetAction.MSC2931Navigate, {
+        uri: uri
+      }).then();
+    }
+    /**
+     * Starts watching for TURN servers, yielding an initial set of credentials as soon as possible,
+     * and thereafter yielding new credentials whenever the previous ones expire.
+     * @yields {ITurnServer} The TURN server URIs and credentials currently available to the widget.
+     */
+
+  }, {
+    key: "getTurnServers",
+    value: function getTurnServers() {
+      var _this = this;
+
+      return _wrapAsyncGenerator( /*#__PURE__*/_regeneratorRuntime().mark(function _callee3() {
+        var setTurnServer, onUpdateTurnServers;
+        return _regeneratorRuntime().wrap(function _callee3$(_context3) {
+          while (1) {
+            switch (_context3.prev = _context3.next) {
+              case 0:
+                onUpdateTurnServers = /*#__PURE__*/function () {
+                  var _ref = _asyncToGenerator( /*#__PURE__*/_regeneratorRuntime().mark(function _callee2(ev) {
+                    return _regeneratorRuntime().wrap(function _callee2$(_context2) {
+                      while (1) {
+                        switch (_context2.prev = _context2.next) {
+                          case 0:
+                            ev.preventDefault();
+                            setTurnServer(ev.detail.data);
+                            _context2.next = 4;
+                            return _this.transport.reply(ev.detail, {});
+
+                          case 4:
+                          case "end":
+                            return _context2.stop();
+                        }
+                      }
+                    }, _callee2);
+                  }));
+
+                  return function onUpdateTurnServers(_x9) {
+                    return _ref.apply(this, arguments);
+                  };
+                }(); // Start listening for updates before we even start watching, to catch
+                // TURN data that is sent immediately
+
+
+                _this.on("action:".concat(_WidgetApiAction.WidgetApiToWidgetAction.UpdateTurnServers), onUpdateTurnServers); // Only send the 'watch' action if we aren't already watching
+
+
+                if (!(_this.turnServerWatchers === 0)) {
+                  _context3.next = 12;
+                  break;
+                }
+
+                _context3.prev = 3;
+                _context3.next = 6;
+                return _awaitAsyncGenerator(_this.transport.send(_WidgetApiAction.WidgetApiFromWidgetAction.WatchTurnServers, {}));
+
+              case 6:
+                _context3.next = 12;
+                break;
+
+              case 8:
+                _context3.prev = 8;
+                _context3.t0 = _context3["catch"](3);
+
+                _this.off("action:".concat(_WidgetApiAction.WidgetApiToWidgetAction.UpdateTurnServers), onUpdateTurnServers);
+
+                throw _context3.t0;
+
+              case 12:
+                _this.turnServerWatchers++;
+                _context3.prev = 13;
+
+              case 14:
+                if (!true) {
+                  _context3.next = 21;
+                  break;
+                }
+
+                _context3.next = 17;
+                return _awaitAsyncGenerator(new Promise(function (resolve) {
+                  return setTurnServer = resolve;
+                }));
+
+              case 17:
+                _context3.next = 19;
+                return _context3.sent;
+
+              case 19:
+                _context3.next = 14;
+                break;
+
+              case 21:
+                _context3.prev = 21;
+
+                // The loop was broken by the caller - clean up
+                _this.off("action:".concat(_WidgetApiAction.WidgetApiToWidgetAction.UpdateTurnServers), onUpdateTurnServers); // Since sending the 'unwatch' action will end updates for all other
+                // consumers, only send it if we're the only consumer remaining
+
+
+                _this.turnServerWatchers--;
+
+                if (!(_this.turnServerWatchers === 0)) {
+                  _context3.next = 27;
+                  break;
+                }
+
+                _context3.next = 27;
+                return _awaitAsyncGenerator(_this.transport.send(_WidgetApiAction.WidgetApiFromWidgetAction.UnwatchTurnServers, {}));
+
+              case 27:
+                return _context3.finish(21);
+
+              case 28:
+              case "end":
+                return _context3.stop();
+            }
+          }
+        }, _callee3, null, [[3, 8], [13,, 21, 28]]);
+      }))();
+    }
+    /**
+     * Starts the communication channel. This should be done early to ensure
+     * that messages are not missed. Communication can only be stopped by the client.
+     */
+
+  }, {
+    key: "start",
+    value: function start() {
+      var _this5 = this;
+
+      this.transport.start();
+      this.getClientVersions().then(function (v) {
+        if (v.includes(_ApiVersion.UnstableApiVersion.MSC2974)) {
+          _this5.supportsMSC2974Renegotiate = true;
+        }
+      });
+    }
+  }, {
+    key: "handleMessage",
+    value: function handleMessage(ev) {
+      var actionEv = new CustomEvent("action:".concat(ev.detail.action), {
+        detail: ev.detail,
+        cancelable: true
+      });
+      this.emit("action:".concat(ev.detail.action), actionEv);
+
+      if (!actionEv.defaultPrevented) {
+        switch (ev.detail.action) {
+          case _WidgetApiAction.WidgetApiToWidgetAction.SupportedApiVersions:
+            return this.replyVersions(ev.detail);
+
+          case _WidgetApiAction.WidgetApiToWidgetAction.Capabilities:
+            return this.handleCapabilities(ev.detail);
+
+          case _WidgetApiAction.WidgetApiToWidgetAction.UpdateVisibility:
+            return this.transport.reply(ev.detail, {});
+          // ack to avoid error spam
+
+          case _WidgetApiAction.WidgetApiToWidgetAction.NotifyCapabilities:
+            return this.transport.reply(ev.detail, {});
+          // ack to avoid error spam
+
+          default:
+            return this.transport.reply(ev.detail, {
+              error: {
+                message: "Unknown or unsupported action: " + ev.detail.action
+              }
+            });
+        }
+      }
+    }
+  }, {
+    key: "replyVersions",
+    value: function replyVersions(request) {
+      this.transport.reply(request, {
+        supported_versions: _ApiVersion.CurrentApiVersions
+      });
+    }
+  }, {
+    key: "getClientVersions",
+    value: function getClientVersions() {
+      var _this6 = this;
+
+      if (Array.isArray(this.cachedClientVersions)) {
+        return Promise.resolve(this.cachedClientVersions);
+      }
+
+      return this.transport.send(_WidgetApiAction.WidgetApiFromWidgetAction.SupportedApiVersions, {}).then(function (r) {
+        _this6.cachedClientVersions = r.supported_versions;
+        return r.supported_versions;
+      })["catch"](function (e) {
+        console.warn("non-fatal error getting supported client versions: ", e);
+        return [];
+      });
+    }
+  }, {
+    key: "handleCapabilities",
+    value: function handleCapabilities(request) {
+      var _this7 = this;
+
+      if (this.capabilitiesFinished) {
+        return this.transport.reply(request, {
+          error: {
+            message: "Capability negotiation already completed"
+          }
+        });
+      } // See if we can expect a capabilities notification or not
+
+
+      return this.getClientVersions().then(function (v) {
+        if (v.includes(_ApiVersion.UnstableApiVersion.MSC2871)) {
+          _this7.once("action:".concat(_WidgetApiAction.WidgetApiToWidgetAction.NotifyCapabilities), function (ev) {
+            _this7.approvedCapabilities = ev.detail.data.approved;
+
+            _this7.emit("ready");
+          });
+        } else {
+          // if we can't expect notification, we're as done as we can be
+          _this7.emit("ready");
+        } // in either case, reply to that capabilities request
+
+
+        _this7.capabilitiesFinished = true;
+        return _this7.transport.reply(request, {
+          capabilities: _this7.requestedCapabilities
+        });
+      });
+    }
+  }]);
+
+  return WidgetApi;
+}(_events.EventEmitter);
+
+exports.WidgetApi = WidgetApi;
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/moz.build thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/moz.build
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/moz.build	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/moz.build	2023-04-11 06:11:52.000000000 +0000
@@ -10,11 +10,12 @@
     "matrix-sdk/client.js",
     "matrix-sdk/content-helpers.js",
     "matrix-sdk/content-repo.js",
+    "matrix-sdk/embedded.js",
     "matrix-sdk/errors.js",
     "matrix-sdk/event-mapper.js",
+    "matrix-sdk/feature.js",
     "matrix-sdk/filter-component.js",
     "matrix-sdk/filter.js",
-    "matrix-sdk/http-api.js",
     "matrix-sdk/indexeddb-helpers.js",
     "matrix-sdk/indexeddb-worker.js",
     "matrix-sdk/interactive-auth.js",
@@ -42,6 +43,7 @@
     "matrix-sdk/crypto/api.js",
     "matrix-sdk/crypto/backup.js",
     "matrix-sdk/crypto/CrossSigning.js",
+    "matrix-sdk/crypto/crypto.js",
     "matrix-sdk/crypto/dehydration.js",
     "matrix-sdk/crypto/deviceinfo.js",
     "matrix-sdk/crypto/DeviceList.js",
@@ -76,6 +78,7 @@
     "matrix-sdk/crypto/verification/IllegalMethod.js",
     "matrix-sdk/crypto/verification/QRCode.js",
     "matrix-sdk/crypto/verification/SAS.js",
+    "matrix-sdk/crypto/verification/SASDecimal.js",
 ]
 
 EXTRA_JS_MODULES.matrix.matrix_sdk.crypto.verification.request += [
@@ -84,6 +87,26 @@
     "matrix-sdk/crypto/verification/request/VerificationRequest.js",
 ]
 
+EXTRA_JS_MODULES.matrix.matrix_sdk.extensible_events_v1 += [
+     "matrix-sdk/extensible_events_v1/ExtensibleEvent.js",
+     "matrix-sdk/extensible_events_v1/InvalidEventError.js",
+     "matrix-sdk/extensible_events_v1/MessageEvent.js",
+     "matrix-sdk/extensible_events_v1/PollEndEvent.js",
+     "matrix-sdk/extensible_events_v1/PollResponseEvent.js",
+     "matrix-sdk/extensible_events_v1/PollStartEvent.js",
+     "matrix-sdk/extensible_events_v1/utilities.js",
+]
+
+EXTRA_JS_MODULES.matrix.matrix_sdk.http_api += [
+    "matrix-sdk/http-api/errors.js",
+    "matrix-sdk/http-api/fetch.js",
+    "matrix-sdk/http-api/index.js",
+    "matrix-sdk/http-api/interface.js",
+    "matrix-sdk/http-api/method.js",
+    "matrix-sdk/http-api/prefix.js",
+    "matrix-sdk/http-api/utils.js",
+]
+
 EXTRA_JS_MODULES.matrix.matrix_sdk.models += [
     "matrix-sdk/models/beacon.js",
     "matrix-sdk/models/event-context.js",
@@ -94,6 +117,8 @@
     "matrix-sdk/models/invites-ignorer.js",
     "matrix-sdk/models/MSC3089Branch.js",
     "matrix-sdk/models/MSC3089TreeSpace.js",
+    "matrix-sdk/models/poll.js",
+    "matrix-sdk/models/read-receipt.js",
     "matrix-sdk/models/related-relations.js",
     "matrix-sdk/models/relations-container.js",
     "matrix-sdk/models/relations.js",
@@ -107,6 +132,34 @@
     "matrix-sdk/models/user.js",
 ]
 
+EXTRA_JS_MODULES.matrix.matrix_sdk.rendezvous += [
+    "matrix-sdk/rendezvous/index.js",
+    "matrix-sdk/rendezvous/MSC3906Rendezvous.js",
+    "matrix-sdk/rendezvous/RendezvousError.js",
+    "matrix-sdk/rendezvous/RendezvousFailureReason.js",
+    "matrix-sdk/rendezvous/RendezvousIntent.js",
+]
+
+EXTRA_JS_MODULES.matrix.matrix_sdk.rendezvous.channels += [
+    "matrix-sdk/rendezvous/channels/index.js",
+    "matrix-sdk/rendezvous/channels/MSC3903ECDHv2RendezvousChannel.js",
+]
+
+EXTRA_JS_MODULES.matrix.matrix_sdk.rendezvous.transports += [
+    "matrix-sdk/rendezvous/transports/index.js",
+    "matrix-sdk/rendezvous/transports/MSC3886SimpleHttpRendezvousTransport.js",
+]
+
+EXTRA_JS_MODULES.matrix.matrix_sdk.rust_crypto += [
+    "matrix-sdk/rust-crypto/browserify-index.js",
+    "matrix-sdk/rust-crypto/constants.js",
+    "matrix-sdk/rust-crypto/index.js",
+    "matrix-sdk/rust-crypto/KeyClaimManager.js",
+    "matrix-sdk/rust-crypto/OutgoingRequestProcessor.js",
+    "matrix-sdk/rust-crypto/RoomEncryptor.js",
+    "matrix-sdk/rust-crypto/rust-crypto.js",
+]
+
 EXTRA_JS_MODULES.matrix.matrix_sdk.store += [
     "matrix-sdk/store/indexeddb-local-backend.js",
     "matrix-sdk/store/indexeddb-remote-backend.js",
@@ -124,18 +177,23 @@
     "matrix-sdk/@types/extensible_events.js",
     "matrix-sdk/@types/location.js",
     "matrix-sdk/@types/partials.js",
+    "matrix-sdk/@types/polls.js",
     "matrix-sdk/@types/PushRules.js",
     "matrix-sdk/@types/read_receipts.js",
     "matrix-sdk/@types/search.js",
+    "matrix-sdk/@types/sync.js",
     "matrix-sdk/@types/threepids.js",
     "matrix-sdk/@types/topic.js",
 ]
 
 EXTRA_JS_MODULES.matrix.matrix_sdk.webrtc += [
+    "matrix-sdk/webrtc/audioContext.js",
     "matrix-sdk/webrtc/call.js",
     "matrix-sdk/webrtc/callEventHandler.js",
     "matrix-sdk/webrtc/callEventTypes.js",
     "matrix-sdk/webrtc/callFeed.js",
+    "matrix-sdk/webrtc/groupCall.js",
+    "matrix-sdk/webrtc/groupCallEventHandler.js",
     "matrix-sdk/webrtc/mediaHandler.js",
 ]
 
@@ -146,17 +204,12 @@
 EXTRA_JS_MODULES.matrix += [
     "another-json/another-json.js",
     "events/events.js",
-    "qs/dist/qs.js",
 ]
 
 EXTRA_JS_MODULES.matrix.base_x += [
     "base-x/index.js",
 ]
 
-EXTRA_JS_MODULES.matrix.browser_request += [
-    "browser-request/index.js",
-]
-
 EXTRA_JS_MODULES.matrix.bs58 += [
     "bs58/index.js",
 ]
@@ -223,3 +276,57 @@
     "matrix-events-sdk/utility/events.js",
     "matrix-events-sdk/utility/MessageMatchers.js",
 ]
+
+EXTRA_JS_MODULES.matrix.matrix_widget_api += [
+    "matrix-widget-api/ClientWidgetApi.js",
+    "matrix-widget-api/index.js",
+    "matrix-widget-api/Symbols.js",
+    "matrix-widget-api/WidgetApi.js",
+]
+
+EXTRA_JS_MODULES.matrix.matrix_widget_api.driver += [
+    "matrix-widget-api/driver/WidgetDriver.js",
+]
+
+EXTRA_JS_MODULES.matrix.matrix_widget_api.interfaces += [
+    "matrix-widget-api/interfaces/ApiVersion.js",
+    "matrix-widget-api/interfaces/Capabilities.js",
+    "matrix-widget-api/interfaces/GetOpenIDAction.js",
+    "matrix-widget-api/interfaces/IWidgetApiErrorResponse.js",
+    "matrix-widget-api/interfaces/ModalButtonKind.js",
+    "matrix-widget-api/interfaces/ModalWidgetActions.js",
+    "matrix-widget-api/interfaces/WidgetApiAction.js",
+    "matrix-widget-api/interfaces/WidgetApiDirection.js",
+    "matrix-widget-api/interfaces/WidgetKind.js",
+    "matrix-widget-api/interfaces/WidgetType.js",
+]
+
+EXTRA_JS_MODULES.matrix.matrix_widget_api.models += [
+    "matrix-widget-api/models/Widget.js",
+    "matrix-widget-api/models/WidgetEventCapability.js",
+    "matrix-widget-api/models/WidgetParser.js",
+]
+
+EXTRA_JS_MODULES.matrix.matrix_widget_api.models.validation += [
+    "matrix-widget-api/models/validation/url.js",
+    "matrix-widget-api/models/validation/utils.js",
+]
+
+EXTRA_JS_MODULES.matrix.matrix_widget_api.templating += [
+    "matrix-widget-api/templating/url-template.js",
+]
+
+EXTRA_JS_MODULES.matrix.matrix_widget_api.transport += [
+    "matrix-widget-api/transport/PostmessageTransport.js",
+]
+
+EXTRA_JS_MODULES.matrix.matrix_widget_api.util += [
+    "matrix-widget-api/util/SimpleObservable.js",
+]
+
+EXTRA_JS_MODULES.matrix.sdp_transform += [
+    "sdp-transform/grammar.js",
+    "sdp-transform/index.js",
+    "sdp-transform/parser.js",
+    "sdp-transform/writer.js",
+]
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/qs/dist/qs.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/qs/dist/qs.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/qs/dist/qs.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/qs/dist/qs.js	1970-01-01 00:00:00.000000000 +0000
@@ -1,2054 +0,0 @@
-(function(f){if(typeof exports==="object"&&typeof module!=="undefined"){module.exports=f()}else if(typeof define==="function"&&define.amd){define([],f)}else{var g;if(typeof window!=="undefined"){g=window}else if(typeof global!=="undefined"){g=global}else if(typeof self!=="undefined"){g=self}else{g=this}g.Qs = f()}})(function(){var define,module,exports;return (function(){function r(e,n,t){function o(i,f){if(!n[i]){if(!e[i]){var c="function"==typeof require&&require;if(!f&&c)return c(i,!0);if(u)return u(i,!0);var a=new Error("Cannot find module '"+i+"'");throw a.code="MODULE_NOT_FOUND",a}var p=n[i]={exports:{}};e[i][0].call(p.exports,function(r){var n=e[i][1][r];return o(n||r)},p,p.exports,r,e,n,t)}return n[i].exports}for(var u="function"==typeof require&&require,i=0;i<t.length;i++)o(t[i]);return o}return r})()({1:[function(require,module,exports){
-'use strict';
-
-var replace = String.prototype.replace;
-var percentTwenties = /%20/g;
-
-var Format = {
-    RFC1738: 'RFC1738',
-    RFC3986: 'RFC3986'
-};
-
-module.exports = {
-    'default': Format.RFC3986,
-    formatters: {
-        RFC1738: function (value) {
-            return replace.call(value, percentTwenties, '+');
-        },
-        RFC3986: function (value) {
-            return String(value);
-        }
-    },
-    RFC1738: Format.RFC1738,
-    RFC3986: Format.RFC3986
-};
-
-},{}],2:[function(require,module,exports){
-'use strict';
-
-var stringify = require('./stringify');
-var parse = require('./parse');
-var formats = require('./formats');
-
-module.exports = {
-    formats: formats,
-    parse: parse,
-    stringify: stringify
-};
-
-},{"./formats":1,"./parse":3,"./stringify":4}],3:[function(require,module,exports){
-'use strict';
-
-var utils = require('./utils');
-
-var has = Object.prototype.hasOwnProperty;
-var isArray = Array.isArray;
-
-var defaults = {
-    allowDots: false,
-    allowPrototypes: false,
-    allowSparse: false,
-    arrayLimit: 20,
-    charset: 'utf-8',
-    charsetSentinel: false,
-    comma: false,
-    decoder: utils.decode,
-    delimiter: '&',
-    depth: 5,
-    ignoreQueryPrefix: false,
-    interpretNumericEntities: false,
-    parameterLimit: 1000,
-    parseArrays: true,
-    plainObjects: false,
-    strictNullHandling: false
-};
-
-var interpretNumericEntities = function (str) {
-    return str.replace(/&#(\d+);/g, function ($0, numberStr) {
-        return String.fromCharCode(parseInt(numberStr, 10));
-    });
-};
-
-var parseArrayValue = function (val, options) {
-    if (val && typeof val === 'string' && options.comma && val.indexOf(',') > -1) {
-        return val.split(',');
-    }
-
-    return val;
-};
-
-// This is what browsers will submit when the ✓ character occurs in an
-// application/x-www-form-urlencoded body and the encoding of the page containing
-// the form is iso-8859-1, or when the submitted form has an accept-charset
-// attribute of iso-8859-1. Presumably also with other charsets that do not contain
-// the ✓ character, such as us-ascii.
-var isoSentinel = 'utf8=%26%2310003%3B'; // encodeURIComponent('&#10003;')
-
-// These are the percent-encoded utf-8 octets representing a checkmark, indicating that the request actually is utf-8 encoded.
-var charsetSentinel = 'utf8=%E2%9C%93'; // encodeURIComponent('✓')
-
-var parseValues = function parseQueryStringValues(str, options) {
-    var obj = {};
-    var cleanStr = options.ignoreQueryPrefix ? str.replace(/^\?/, '') : str;
-    var limit = options.parameterLimit === Infinity ? undefined : options.parameterLimit;
-    var parts = cleanStr.split(options.delimiter, limit);
-    var skipIndex = -1; // Keep track of where the utf8 sentinel was found
-    var i;
-
-    var charset = options.charset;
-    if (options.charsetSentinel) {
-        for (i = 0; i < parts.length; ++i) {
-            if (parts[i].indexOf('utf8=') === 0) {
-                if (parts[i] === charsetSentinel) {
-                    charset = 'utf-8';
-                } else if (parts[i] === isoSentinel) {
-                    charset = 'iso-8859-1';
-                }
-                skipIndex = i;
-                i = parts.length; // The eslint settings do not allow break;
-            }
-        }
-    }
-
-    for (i = 0; i < parts.length; ++i) {
-        if (i === skipIndex) {
-            continue;
-        }
-        var part = parts[i];
-
-        var bracketEqualsPos = part.indexOf(']=');
-        var pos = bracketEqualsPos === -1 ? part.indexOf('=') : bracketEqualsPos + 1;
-
-        var key, val;
-        if (pos === -1) {
-            key = options.decoder(part, defaults.decoder, charset, 'key');
-            val = options.strictNullHandling ? null : '';
-        } else {
-            key = options.decoder(part.slice(0, pos), defaults.decoder, charset, 'key');
-            val = utils.maybeMap(
-                parseArrayValue(part.slice(pos + 1), options),
-                function (encodedVal) {
-                    return options.decoder(encodedVal, defaults.decoder, charset, 'value');
-                }
-            );
-        }
-
-        if (val && options.interpretNumericEntities && charset === 'iso-8859-1') {
-            val = interpretNumericEntities(val);
-        }
-
-        if (part.indexOf('[]=') > -1) {
-            val = isArray(val) ? [val] : val;
-        }
-
-        if (has.call(obj, key)) {
-            obj[key] = utils.combine(obj[key], val);
-        } else {
-            obj[key] = val;
-        }
-    }
-
-    return obj;
-};
-
-var parseObject = function (chain, val, options, valuesParsed) {
-    var leaf = valuesParsed ? val : parseArrayValue(val, options);
-
-    for (var i = chain.length - 1; i >= 0; --i) {
-        var obj;
-        var root = chain[i];
-
-        if (root === '[]' && options.parseArrays) {
-            obj = [].concat(leaf);
-        } else {
-            obj = options.plainObjects ? Object.create(null) : {};
-            var cleanRoot = root.charAt(0) === '[' && root.charAt(root.length - 1) === ']' ? root.slice(1, -1) : root;
-            var index = parseInt(cleanRoot, 10);
-            if (!options.parseArrays && cleanRoot === '') {
-                obj = { 0: leaf };
-            } else if (
-                !isNaN(index)
-                && root !== cleanRoot
-                && String(index) === cleanRoot
-                && index >= 0
-                && (options.parseArrays && index <= options.arrayLimit)
-            ) {
-                obj = [];
-                obj[index] = leaf;
-            } else if (cleanRoot !== '__proto__') {
-                obj[cleanRoot] = leaf;
-            }
-        }
-
-        leaf = obj;
-    }
-
-    return leaf;
-};
-
-var parseKeys = function parseQueryStringKeys(givenKey, val, options, valuesParsed) {
-    if (!givenKey) {
-        return;
-    }
-
-    // Transform dot notation to bracket notation
-    var key = options.allowDots ? givenKey.replace(/\.([^.[]+)/g, '[$1]') : givenKey;
-
-    // The regex chunks
-
-    var brackets = /(\[[^[\]]*])/;
-    var child = /(\[[^[\]]*])/g;
-
-    // Get the parent
-
-    var segment = options.depth > 0 && brackets.exec(key);
-    var parent = segment ? key.slice(0, segment.index) : key;
-
-    // Stash the parent if it exists
-
-    var keys = [];
-    if (parent) {
-        // If we aren't using plain objects, optionally prefix keys that would overwrite object prototype properties
-        if (!options.plainObjects && has.call(Object.prototype, parent)) {
-            if (!options.allowPrototypes) {
-                return;
-            }
-        }
-
-        keys.push(parent);
-    }
-
-    // Loop through children appending to the array until we hit depth
-
-    var i = 0;
-    while (options.depth > 0 && (segment = child.exec(key)) !== null && i < options.depth) {
-        i += 1;
-        if (!options.plainObjects && has.call(Object.prototype, segment[1].slice(1, -1))) {
-            if (!options.allowPrototypes) {
-                return;
-            }
-        }
-        keys.push(segment[1]);
-    }
-
-    // If there's a remainder, just add whatever is left
-
-    if (segment) {
-        keys.push('[' + key.slice(segment.index) + ']');
-    }
-
-    return parseObject(keys, val, options, valuesParsed);
-};
-
-var normalizeParseOptions = function normalizeParseOptions(opts) {
-    if (!opts) {
-        return defaults;
-    }
-
-    if (opts.decoder !== null && opts.decoder !== undefined && typeof opts.decoder !== 'function') {
-        throw new TypeError('Decoder has to be a function.');
-    }
-
-    if (typeof opts.charset !== 'undefined' && opts.charset !== 'utf-8' && opts.charset !== 'iso-8859-1') {
-        throw new TypeError('The charset option must be either utf-8, iso-8859-1, or undefined');
-    }
-    var charset = typeof opts.charset === 'undefined' ? defaults.charset : opts.charset;
-
-    return {
-        allowDots: typeof opts.allowDots === 'undefined' ? defaults.allowDots : !!opts.allowDots,
-        allowPrototypes: typeof opts.allowPrototypes === 'boolean' ? opts.allowPrototypes : defaults.allowPrototypes,
-        allowSparse: typeof opts.allowSparse === 'boolean' ? opts.allowSparse : defaults.allowSparse,
-        arrayLimit: typeof opts.arrayLimit === 'number' ? opts.arrayLimit : defaults.arrayLimit,
-        charset: charset,
-        charsetSentinel: typeof opts.charsetSentinel === 'boolean' ? opts.charsetSentinel : defaults.charsetSentinel,
-        comma: typeof opts.comma === 'boolean' ? opts.comma : defaults.comma,
-        decoder: typeof opts.decoder === 'function' ? opts.decoder : defaults.decoder,
-        delimiter: typeof opts.delimiter === 'string' || utils.isRegExp(opts.delimiter) ? opts.delimiter : defaults.delimiter,
-        // eslint-disable-next-line no-implicit-coercion, no-extra-parens
-        depth: (typeof opts.depth === 'number' || opts.depth === false) ? +opts.depth : defaults.depth,
-        ignoreQueryPrefix: opts.ignoreQueryPrefix === true,
-        interpretNumericEntities: typeof opts.interpretNumericEntities === 'boolean' ? opts.interpretNumericEntities : defaults.interpretNumericEntities,
-        parameterLimit: typeof opts.parameterLimit === 'number' ? opts.parameterLimit : defaults.parameterLimit,
-        parseArrays: opts.parseArrays !== false,
-        plainObjects: typeof opts.plainObjects === 'boolean' ? opts.plainObjects : defaults.plainObjects,
-        strictNullHandling: typeof opts.strictNullHandling === 'boolean' ? opts.strictNullHandling : defaults.strictNullHandling
-    };
-};
-
-module.exports = function (str, opts) {
-    var options = normalizeParseOptions(opts);
-
-    if (str === '' || str === null || typeof str === 'undefined') {
-        return options.plainObjects ? Object.create(null) : {};
-    }
-
-    var tempObj = typeof str === 'string' ? parseValues(str, options) : str;
-    var obj = options.plainObjects ? Object.create(null) : {};
-
-    // Iterate over the keys and setup the new object
-
-    var keys = Object.keys(tempObj);
-    for (var i = 0; i < keys.length; ++i) {
-        var key = keys[i];
-        var newObj = parseKeys(key, tempObj[key], options, typeof str === 'string');
-        obj = utils.merge(obj, newObj, options);
-    }
-
-    if (options.allowSparse === true) {
-        return obj;
-    }
-
-    return utils.compact(obj);
-};
-
-},{"./utils":5}],4:[function(require,module,exports){
-'use strict';
-
-var getSideChannel = require('side-channel');
-var utils = require('./utils');
-var formats = require('./formats');
-var has = Object.prototype.hasOwnProperty;
-
-var arrayPrefixGenerators = {
-    brackets: function brackets(prefix) {
-        return prefix + '[]';
-    },
-    comma: 'comma',
-    indices: function indices(prefix, key) {
-        return prefix + '[' + key + ']';
-    },
-    repeat: function repeat(prefix) {
-        return prefix;
-    }
-};
-
-var isArray = Array.isArray;
-var split = String.prototype.split;
-var push = Array.prototype.push;
-var pushToArray = function (arr, valueOrArray) {
-    push.apply(arr, isArray(valueOrArray) ? valueOrArray : [valueOrArray]);
-};
-
-var toISO = Date.prototype.toISOString;
-
-var defaultFormat = formats['default'];
-var defaults = {
-    addQueryPrefix: false,
-    allowDots: false,
-    charset: 'utf-8',
-    charsetSentinel: false,
-    delimiter: '&',
-    encode: true,
-    encoder: utils.encode,
-    encodeValuesOnly: false,
-    format: defaultFormat,
-    formatter: formats.formatters[defaultFormat],
-    // deprecated
-    indices: false,
-    serializeDate: function serializeDate(date) {
-        return toISO.call(date);
-    },
-    skipNulls: false,
-    strictNullHandling: false
-};
-
-var isNonNullishPrimitive = function isNonNullishPrimitive(v) {
-    return typeof v === 'string'
-        || typeof v === 'number'
-        || typeof v === 'boolean'
-        || typeof v === 'symbol'
-        || typeof v === 'bigint';
-};
-
-var sentinel = {};
-
-var stringify = function stringify(
-    object,
-    prefix,
-    generateArrayPrefix,
-    commaRoundTrip,
-    strictNullHandling,
-    skipNulls,
-    encoder,
-    filter,
-    sort,
-    allowDots,
-    serializeDate,
-    format,
-    formatter,
-    encodeValuesOnly,
-    charset,
-    sideChannel
-) {
-    var obj = object;
-
-    var tmpSc = sideChannel;
-    var step = 0;
-    var findFlag = false;
-    while ((tmpSc = tmpSc.get(sentinel)) !== void undefined && !findFlag) {
-        // Where object last appeared in the ref tree
-        var pos = tmpSc.get(object);
-        step += 1;
-        if (typeof pos !== 'undefined') {
-            if (pos === step) {
-                throw new RangeError('Cyclic object value');
-            } else {
-                findFlag = true; // Break while
-            }
-        }
-        if (typeof tmpSc.get(sentinel) === 'undefined') {
-            step = 0;
-        }
-    }
-
-    if (typeof filter === 'function') {
-        obj = filter(prefix, obj);
-    } else if (obj instanceof Date) {
-        obj = serializeDate(obj);
-    } else if (generateArrayPrefix === 'comma' && isArray(obj)) {
-        obj = utils.maybeMap(obj, function (value) {
-            if (value instanceof Date) {
-                return serializeDate(value);
-            }
-            return value;
-        });
-    }
-
-    if (obj === null) {
-        if (strictNullHandling) {
-            return encoder && !encodeValuesOnly ? encoder(prefix, defaults.encoder, charset, 'key', format) : prefix;
-        }
-
-        obj = '';
-    }
-
-    if (isNonNullishPrimitive(obj) || utils.isBuffer(obj)) {
-        if (encoder) {
-            var keyValue = encodeValuesOnly ? prefix : encoder(prefix, defaults.encoder, charset, 'key', format);
-            if (generateArrayPrefix === 'comma' && encodeValuesOnly) {
-                var valuesArray = split.call(String(obj), ',');
-                var valuesJoined = '';
-                for (var i = 0; i < valuesArray.length; ++i) {
-                    valuesJoined += (i === 0 ? '' : ',') + formatter(encoder(valuesArray[i], defaults.encoder, charset, 'value', format));
-                }
-                return [formatter(keyValue) + (commaRoundTrip && isArray(obj) && valuesArray.length === 1 ? '[]' : '') + '=' + valuesJoined];
-            }
-            return [formatter(keyValue) + '=' + formatter(encoder(obj, defaults.encoder, charset, 'value', format))];
-        }
-        return [formatter(prefix) + '=' + formatter(String(obj))];
-    }
-
-    var values = [];
-
-    if (typeof obj === 'undefined') {
-        return values;
-    }
-
-    var objKeys;
-    if (generateArrayPrefix === 'comma' && isArray(obj)) {
-        // we need to join elements in
-        objKeys = [{ value: obj.length > 0 ? obj.join(',') || null : void undefined }];
-    } else if (isArray(filter)) {
-        objKeys = filter;
-    } else {
-        var keys = Object.keys(obj);
-        objKeys = sort ? keys.sort(sort) : keys;
-    }
-
-    var adjustedPrefix = commaRoundTrip && isArray(obj) && obj.length === 1 ? prefix + '[]' : prefix;
-
-    for (var j = 0; j < objKeys.length; ++j) {
-        var key = objKeys[j];
-        var value = typeof key === 'object' && typeof key.value !== 'undefined' ? key.value : obj[key];
-
-        if (skipNulls && value === null) {
-            continue;
-        }
-
-        var keyPrefix = isArray(obj)
-            ? typeof generateArrayPrefix === 'function' ? generateArrayPrefix(adjustedPrefix, key) : adjustedPrefix
-            : adjustedPrefix + (allowDots ? '.' + key : '[' + key + ']');
-
-        sideChannel.set(object, step);
-        var valueSideChannel = getSideChannel();
-        valueSideChannel.set(sentinel, sideChannel);
-        pushToArray(values, stringify(
-            value,
-            keyPrefix,
-            generateArrayPrefix,
-            commaRoundTrip,
-            strictNullHandling,
-            skipNulls,
-            encoder,
-            filter,
-            sort,
-            allowDots,
-            serializeDate,
-            format,
-            formatter,
-            encodeValuesOnly,
-            charset,
-            valueSideChannel
-        ));
-    }
-
-    return values;
-};
-
-var normalizeStringifyOptions = function normalizeStringifyOptions(opts) {
-    if (!opts) {
-        return defaults;
-    }
-
-    if (opts.encoder !== null && typeof opts.encoder !== 'undefined' && typeof opts.encoder !== 'function') {
-        throw new TypeError('Encoder has to be a function.');
-    }
-
-    var charset = opts.charset || defaults.charset;
-    if (typeof opts.charset !== 'undefined' && opts.charset !== 'utf-8' && opts.charset !== 'iso-8859-1') {
-        throw new TypeError('The charset option must be either utf-8, iso-8859-1, or undefined');
-    }
-
-    var format = formats['default'];
-    if (typeof opts.format !== 'undefined') {
-        if (!has.call(formats.formatters, opts.format)) {
-            throw new TypeError('Unknown format option provided.');
-        }
-        format = opts.format;
-    }
-    var formatter = formats.formatters[format];
-
-    var filter = defaults.filter;
-    if (typeof opts.filter === 'function' || isArray(opts.filter)) {
-        filter = opts.filter;
-    }
-
-    return {
-        addQueryPrefix: typeof opts.addQueryPrefix === 'boolean' ? opts.addQueryPrefix : defaults.addQueryPrefix,
-        allowDots: typeof opts.allowDots === 'undefined' ? defaults.allowDots : !!opts.allowDots,
-        charset: charset,
-        charsetSentinel: typeof opts.charsetSentinel === 'boolean' ? opts.charsetSentinel : defaults.charsetSentinel,
-        delimiter: typeof opts.delimiter === 'undefined' ? defaults.delimiter : opts.delimiter,
-        encode: typeof opts.encode === 'boolean' ? opts.encode : defaults.encode,
-        encoder: typeof opts.encoder === 'function' ? opts.encoder : defaults.encoder,
-        encodeValuesOnly: typeof opts.encodeValuesOnly === 'boolean' ? opts.encodeValuesOnly : defaults.encodeValuesOnly,
-        filter: filter,
-        format: format,
-        formatter: formatter,
-        serializeDate: typeof opts.serializeDate === 'function' ? opts.serializeDate : defaults.serializeDate,
-        skipNulls: typeof opts.skipNulls === 'boolean' ? opts.skipNulls : defaults.skipNulls,
-        sort: typeof opts.sort === 'function' ? opts.sort : null,
-        strictNullHandling: typeof opts.strictNullHandling === 'boolean' ? opts.strictNullHandling : defaults.strictNullHandling
-    };
-};
-
-module.exports = function (object, opts) {
-    var obj = object;
-    var options = normalizeStringifyOptions(opts);
-
-    var objKeys;
-    var filter;
-
-    if (typeof options.filter === 'function') {
-        filter = options.filter;
-        obj = filter('', obj);
-    } else if (isArray(options.filter)) {
-        filter = options.filter;
-        objKeys = filter;
-    }
-
-    var keys = [];
-
-    if (typeof obj !== 'object' || obj === null) {
-        return '';
-    }
-
-    var arrayFormat;
-    if (opts && opts.arrayFormat in arrayPrefixGenerators) {
-        arrayFormat = opts.arrayFormat;
-    } else if (opts && 'indices' in opts) {
-        arrayFormat = opts.indices ? 'indices' : 'repeat';
-    } else {
-        arrayFormat = 'indices';
-    }
-
-    var generateArrayPrefix = arrayPrefixGenerators[arrayFormat];
-    if (opts && 'commaRoundTrip' in opts && typeof opts.commaRoundTrip !== 'boolean') {
-        throw new TypeError('`commaRoundTrip` must be a boolean, or absent');
-    }
-    var commaRoundTrip = generateArrayPrefix === 'comma' && opts && opts.commaRoundTrip;
-
-    if (!objKeys) {
-        objKeys = Object.keys(obj);
-    }
-
-    if (options.sort) {
-        objKeys.sort(options.sort);
-    }
-
-    var sideChannel = getSideChannel();
-    for (var i = 0; i < objKeys.length; ++i) {
-        var key = objKeys[i];
-
-        if (options.skipNulls && obj[key] === null) {
-            continue;
-        }
-        pushToArray(keys, stringify(
-            obj[key],
-            key,
-            generateArrayPrefix,
-            commaRoundTrip,
-            options.strictNullHandling,
-            options.skipNulls,
-            options.encode ? options.encoder : null,
-            options.filter,
-            options.sort,
-            options.allowDots,
-            options.serializeDate,
-            options.format,
-            options.formatter,
-            options.encodeValuesOnly,
-            options.charset,
-            sideChannel
-        ));
-    }
-
-    var joined = keys.join(options.delimiter);
-    var prefix = options.addQueryPrefix === true ? '?' : '';
-
-    if (options.charsetSentinel) {
-        if (options.charset === 'iso-8859-1') {
-            // encodeURIComponent('&#10003;'), the "numeric entity" representation of a checkmark
-            prefix += 'utf8=%26%2310003%3B&';
-        } else {
-            // encodeURIComponent('✓')
-            prefix += 'utf8=%E2%9C%93&';
-        }
-    }
-
-    return joined.length > 0 ? prefix + joined : '';
-};
-
-},{"./formats":1,"./utils":5,"side-channel":16}],5:[function(require,module,exports){
-'use strict';
-
-var formats = require('./formats');
-
-var has = Object.prototype.hasOwnProperty;
-var isArray = Array.isArray;
-
-var hexTable = (function () {
-    var array = [];
-    for (var i = 0; i < 256; ++i) {
-        array.push('%' + ((i < 16 ? '0' : '') + i.toString(16)).toUpperCase());
-    }
-
-    return array;
-}());
-
-var compactQueue = function compactQueue(queue) {
-    while (queue.length > 1) {
-        var item = queue.pop();
-        var obj = item.obj[item.prop];
-
-        if (isArray(obj)) {
-            var compacted = [];
-
-            for (var j = 0; j < obj.length; ++j) {
-                if (typeof obj[j] !== 'undefined') {
-                    compacted.push(obj[j]);
-                }
-            }
-
-            item.obj[item.prop] = compacted;
-        }
-    }
-};
-
-var arrayToObject = function arrayToObject(source, options) {
-    var obj = options && options.plainObjects ? Object.create(null) : {};
-    for (var i = 0; i < source.length; ++i) {
-        if (typeof source[i] !== 'undefined') {
-            obj[i] = source[i];
-        }
-    }
-
-    return obj;
-};
-
-var merge = function merge(target, source, options) {
-    /* eslint no-param-reassign: 0 */
-    if (!source) {
-        return target;
-    }
-
-    if (typeof source !== 'object') {
-        if (isArray(target)) {
-            target.push(source);
-        } else if (target && typeof target === 'object') {
-            if ((options && (options.plainObjects || options.allowPrototypes)) || !has.call(Object.prototype, source)) {
-                target[source] = true;
-            }
-        } else {
-            return [target, source];
-        }
-
-        return target;
-    }
-
-    if (!target || typeof target !== 'object') {
-        return [target].concat(source);
-    }
-
-    var mergeTarget = target;
-    if (isArray(target) && !isArray(source)) {
-        mergeTarget = arrayToObject(target, options);
-    }
-
-    if (isArray(target) && isArray(source)) {
-        source.forEach(function (item, i) {
-            if (has.call(target, i)) {
-                var targetItem = target[i];
-                if (targetItem && typeof targetItem === 'object' && item && typeof item === 'object') {
-                    target[i] = merge(targetItem, item, options);
-                } else {
-                    target.push(item);
-                }
-            } else {
-                target[i] = item;
-            }
-        });
-        return target;
-    }
-
-    return Object.keys(source).reduce(function (acc, key) {
-        var value = source[key];
-
-        if (has.call(acc, key)) {
-            acc[key] = merge(acc[key], value, options);
-        } else {
-            acc[key] = value;
-        }
-        return acc;
-    }, mergeTarget);
-};
-
-var assign = function assignSingleSource(target, source) {
-    return Object.keys(source).reduce(function (acc, key) {
-        acc[key] = source[key];
-        return acc;
-    }, target);
-};
-
-var decode = function (str, decoder, charset) {
-    var strWithoutPlus = str.replace(/\+/g, ' ');
-    if (charset === 'iso-8859-1') {
-        // unescape never throws, no try...catch needed:
-        return strWithoutPlus.replace(/%[0-9a-f]{2}/gi, unescape);
-    }
-    // utf-8
-    try {
-        return decodeURIComponent(strWithoutPlus);
-    } catch (e) {
-        return strWithoutPlus;
-    }
-};
-
-var encode = function encode(str, defaultEncoder, charset, kind, format) {
-    // This code was originally written by Brian White (mscdex) for the io.js core querystring library.
-    // It has been adapted here for stricter adherence to RFC 3986
-    if (str.length === 0) {
-        return str;
-    }
-
-    var string = str;
-    if (typeof str === 'symbol') {
-        string = Symbol.prototype.toString.call(str);
-    } else if (typeof str !== 'string') {
-        string = String(str);
-    }
-
-    if (charset === 'iso-8859-1') {
-        return escape(string).replace(/%u[0-9a-f]{4}/gi, function ($0) {
-            return '%26%23' + parseInt($0.slice(2), 16) + '%3B';
-        });
-    }
-
-    var out = '';
-    for (var i = 0; i < string.length; ++i) {
-        var c = string.charCodeAt(i);
-
-        if (
-            c === 0x2D // -
-            || c === 0x2E // .
-            || c === 0x5F // _
-            || c === 0x7E // ~
-            || (c >= 0x30 && c <= 0x39) // 0-9
-            || (c >= 0x41 && c <= 0x5A) // a-z
-            || (c >= 0x61 && c <= 0x7A) // A-Z
-            || (format === formats.RFC1738 && (c === 0x28 || c === 0x29)) // ( )
-        ) {
-            out += string.charAt(i);
-            continue;
-        }
-
-        if (c < 0x80) {
-            out = out + hexTable[c];
-            continue;
-        }
-
-        if (c < 0x800) {
-            out = out + (hexTable[0xC0 | (c >> 6)] + hexTable[0x80 | (c & 0x3F)]);
-            continue;
-        }
-
-        if (c < 0xD800 || c >= 0xE000) {
-            out = out + (hexTable[0xE0 | (c >> 12)] + hexTable[0x80 | ((c >> 6) & 0x3F)] + hexTable[0x80 | (c & 0x3F)]);
-            continue;
-        }
-
-        i += 1;
-        c = 0x10000 + (((c & 0x3FF) << 10) | (string.charCodeAt(i) & 0x3FF));
-        /* eslint operator-linebreak: [2, "before"] */
-        out += hexTable[0xF0 | (c >> 18)]
-            + hexTable[0x80 | ((c >> 12) & 0x3F)]
-            + hexTable[0x80 | ((c >> 6) & 0x3F)]
-            + hexTable[0x80 | (c & 0x3F)];
-    }
-
-    return out;
-};
-
-var compact = function compact(value) {
-    var queue = [{ obj: { o: value }, prop: 'o' }];
-    var refs = [];
-
-    for (var i = 0; i < queue.length; ++i) {
-        var item = queue[i];
-        var obj = item.obj[item.prop];
-
-        var keys = Object.keys(obj);
-        for (var j = 0; j < keys.length; ++j) {
-            var key = keys[j];
-            var val = obj[key];
-            if (typeof val === 'object' && val !== null && refs.indexOf(val) === -1) {
-                queue.push({ obj: obj, prop: key });
-                refs.push(val);
-            }
-        }
-    }
-
-    compactQueue(queue);
-
-    return value;
-};
-
-var isRegExp = function isRegExp(obj) {
-    return Object.prototype.toString.call(obj) === '[object RegExp]';
-};
-
-var isBuffer = function isBuffer(obj) {
-    if (!obj || typeof obj !== 'object') {
-        return false;
-    }
-
-    return !!(obj.constructor && obj.constructor.isBuffer && obj.constructor.isBuffer(obj));
-};
-
-var combine = function combine(a, b) {
-    return [].concat(a, b);
-};
-
-var maybeMap = function maybeMap(val, fn) {
-    if (isArray(val)) {
-        var mapped = [];
-        for (var i = 0; i < val.length; i += 1) {
-            mapped.push(fn(val[i]));
-        }
-        return mapped;
-    }
-    return fn(val);
-};
-
-module.exports = {
-    arrayToObject: arrayToObject,
-    assign: assign,
-    combine: combine,
-    compact: compact,
-    decode: decode,
-    encode: encode,
-    isBuffer: isBuffer,
-    isRegExp: isRegExp,
-    maybeMap: maybeMap,
-    merge: merge
-};
-
-},{"./formats":1}],6:[function(require,module,exports){
-
-},{}],7:[function(require,module,exports){
-'use strict';
-
-var GetIntrinsic = require('get-intrinsic');
-
-var callBind = require('./');
-
-var $indexOf = callBind(GetIntrinsic('String.prototype.indexOf'));
-
-module.exports = function callBoundIntrinsic(name, allowMissing) {
-	var intrinsic = GetIntrinsic(name, !!allowMissing);
-	if (typeof intrinsic === 'function' && $indexOf(name, '.prototype.') > -1) {
-		return callBind(intrinsic);
-	}
-	return intrinsic;
-};
-
-},{"./":8,"get-intrinsic":11}],8:[function(require,module,exports){
-'use strict';
-
-var bind = require('function-bind');
-var GetIntrinsic = require('get-intrinsic');
-
-var $apply = GetIntrinsic('%Function.prototype.apply%');
-var $call = GetIntrinsic('%Function.prototype.call%');
-var $reflectApply = GetIntrinsic('%Reflect.apply%', true) || bind.call($call, $apply);
-
-var $gOPD = GetIntrinsic('%Object.getOwnPropertyDescriptor%', true);
-var $defineProperty = GetIntrinsic('%Object.defineProperty%', true);
-var $max = GetIntrinsic('%Math.max%');
-
-if ($defineProperty) {
-	try {
-		$defineProperty({}, 'a', { value: 1 });
-	} catch (e) {
-		// IE 8 has a broken defineProperty
-		$defineProperty = null;
-	}
-}
-
-module.exports = function callBind(originalFunction) {
-	var func = $reflectApply(bind, $call, arguments);
-	if ($gOPD && $defineProperty) {
-		var desc = $gOPD(func, 'length');
-		if (desc.configurable) {
-			// original length, plus the receiver, minus any additional arguments (after the receiver)
-			$defineProperty(
-				func,
-				'length',
-				{ value: 1 + $max(0, originalFunction.length - (arguments.length - 1)) }
-			);
-		}
-	}
-	return func;
-};
-
-var applyBind = function applyBind() {
-	return $reflectApply(bind, $apply, arguments);
-};
-
-if ($defineProperty) {
-	$defineProperty(module.exports, 'apply', { value: applyBind });
-} else {
-	module.exports.apply = applyBind;
-}
-
-},{"function-bind":10,"get-intrinsic":11}],9:[function(require,module,exports){
-'use strict';
-
-/* eslint no-invalid-this: 1 */
-
-var ERROR_MESSAGE = 'Function.prototype.bind called on incompatible ';
-var slice = Array.prototype.slice;
-var toStr = Object.prototype.toString;
-var funcType = '[object Function]';
-
-module.exports = function bind(that) {
-    var target = this;
-    if (typeof target !== 'function' || toStr.call(target) !== funcType) {
-        throw new TypeError(ERROR_MESSAGE + target);
-    }
-    var args = slice.call(arguments, 1);
-
-    var bound;
-    var binder = function () {
-        if (this instanceof bound) {
-            var result = target.apply(
-                this,
-                args.concat(slice.call(arguments))
-            );
-            if (Object(result) === result) {
-                return result;
-            }
-            return this;
-        } else {
-            return target.apply(
-                that,
-                args.concat(slice.call(arguments))
-            );
-        }
-    };
-
-    var boundLength = Math.max(0, target.length - args.length);
-    var boundArgs = [];
-    for (var i = 0; i < boundLength; i++) {
-        boundArgs.push('$' + i);
-    }
-
-    bound = Function('binder', 'return function (' + boundArgs.join(',') + '){ return binder.apply(this,arguments); }')(binder);
-
-    if (target.prototype) {
-        var Empty = function Empty() {};
-        Empty.prototype = target.prototype;
-        bound.prototype = new Empty();
-        Empty.prototype = null;
-    }
-
-    return bound;
-};
-
-},{}],10:[function(require,module,exports){
-'use strict';
-
-var implementation = require('./implementation');
-
-module.exports = Function.prototype.bind || implementation;
-
-},{"./implementation":9}],11:[function(require,module,exports){
-'use strict';
-
-var undefined;
-
-var $SyntaxError = SyntaxError;
-var $Function = Function;
-var $TypeError = TypeError;
-
-// eslint-disable-next-line consistent-return
-var getEvalledConstructor = function (expressionSyntax) {
-	try {
-		return $Function('"use strict"; return (' + expressionSyntax + ').constructor;')();
-	} catch (e) {}
-};
-
-var $gOPD = Object.getOwnPropertyDescriptor;
-if ($gOPD) {
-	try {
-		$gOPD({}, '');
-	} catch (e) {
-		$gOPD = null; // this is IE 8, which has a broken gOPD
-	}
-}
-
-var throwTypeError = function () {
-	throw new $TypeError();
-};
-var ThrowTypeError = $gOPD
-	? (function () {
-		try {
-			// eslint-disable-next-line no-unused-expressions, no-caller, no-restricted-properties
-			arguments.callee; // IE 8 does not throw here
-			return throwTypeError;
-		} catch (calleeThrows) {
-			try {
-				// IE 8 throws on Object.getOwnPropertyDescriptor(arguments, '')
-				return $gOPD(arguments, 'callee').get;
-			} catch (gOPDthrows) {
-				return throwTypeError;
-			}
-		}
-	}())
-	: throwTypeError;
-
-var hasSymbols = require('has-symbols')();
-
-var getProto = Object.getPrototypeOf || function (x) { return x.__proto__; }; // eslint-disable-line no-proto
-
-var needsEval = {};
-
-var TypedArray = typeof Uint8Array === 'undefined' ? undefined : getProto(Uint8Array);
-
-var INTRINSICS = {
-	'%AggregateError%': typeof AggregateError === 'undefined' ? undefined : AggregateError,
-	'%Array%': Array,
-	'%ArrayBuffer%': typeof ArrayBuffer === 'undefined' ? undefined : ArrayBuffer,
-	'%ArrayIteratorPrototype%': hasSymbols ? getProto([][Symbol.iterator]()) : undefined,
-	'%AsyncFromSyncIteratorPrototype%': undefined,
-	'%AsyncFunction%': needsEval,
-	'%AsyncGenerator%': needsEval,
-	'%AsyncGeneratorFunction%': needsEval,
-	'%AsyncIteratorPrototype%': needsEval,
-	'%Atomics%': typeof Atomics === 'undefined' ? undefined : Atomics,
-	'%BigInt%': typeof BigInt === 'undefined' ? undefined : BigInt,
-	'%Boolean%': Boolean,
-	'%DataView%': typeof DataView === 'undefined' ? undefined : DataView,
-	'%Date%': Date,
-	'%decodeURI%': decodeURI,
-	'%decodeURIComponent%': decodeURIComponent,
-	'%encodeURI%': encodeURI,
-	'%encodeURIComponent%': encodeURIComponent,
-	'%Error%': Error,
-	'%eval%': eval, // eslint-disable-line no-eval
-	'%EvalError%': EvalError,
-	'%Float32Array%': typeof Float32Array === 'undefined' ? undefined : Float32Array,
-	'%Float64Array%': typeof Float64Array === 'undefined' ? undefined : Float64Array,
-	'%FinalizationRegistry%': typeof FinalizationRegistry === 'undefined' ? undefined : FinalizationRegistry,
-	'%Function%': $Function,
-	'%GeneratorFunction%': needsEval,
-	'%Int8Array%': typeof Int8Array === 'undefined' ? undefined : Int8Array,
-	'%Int16Array%': typeof Int16Array === 'undefined' ? undefined : Int16Array,
-	'%Int32Array%': typeof Int32Array === 'undefined' ? undefined : Int32Array,
-	'%isFinite%': isFinite,
-	'%isNaN%': isNaN,
-	'%IteratorPrototype%': hasSymbols ? getProto(getProto([][Symbol.iterator]())) : undefined,
-	'%JSON%': typeof JSON === 'object' ? JSON : undefined,
-	'%Map%': typeof Map === 'undefined' ? undefined : Map,
-	'%MapIteratorPrototype%': typeof Map === 'undefined' || !hasSymbols ? undefined : getProto(new Map()[Symbol.iterator]()),
-	'%Math%': Math,
-	'%Number%': Number,
-	'%Object%': Object,
-	'%parseFloat%': parseFloat,
-	'%parseInt%': parseInt,
-	'%Promise%': typeof Promise === 'undefined' ? undefined : Promise,
-	'%Proxy%': typeof Proxy === 'undefined' ? undefined : Proxy,
-	'%RangeError%': RangeError,
-	'%ReferenceError%': ReferenceError,
-	'%Reflect%': typeof Reflect === 'undefined' ? undefined : Reflect,
-	'%RegExp%': RegExp,
-	'%Set%': typeof Set === 'undefined' ? undefined : Set,
-	'%SetIteratorPrototype%': typeof Set === 'undefined' || !hasSymbols ? undefined : getProto(new Set()[Symbol.iterator]()),
-	'%SharedArrayBuffer%': typeof SharedArrayBuffer === 'undefined' ? undefined : SharedArrayBuffer,
-	'%String%': String,
-	'%StringIteratorPrototype%': hasSymbols ? getProto(''[Symbol.iterator]()) : undefined,
-	'%Symbol%': hasSymbols ? Symbol : undefined,
-	'%SyntaxError%': $SyntaxError,
-	'%ThrowTypeError%': ThrowTypeError,
-	'%TypedArray%': TypedArray,
-	'%TypeError%': $TypeError,
-	'%Uint8Array%': typeof Uint8Array === 'undefined' ? undefined : Uint8Array,
-	'%Uint8ClampedArray%': typeof Uint8ClampedArray === 'undefined' ? undefined : Uint8ClampedArray,
-	'%Uint16Array%': typeof Uint16Array === 'undefined' ? undefined : Uint16Array,
-	'%Uint32Array%': typeof Uint32Array === 'undefined' ? undefined : Uint32Array,
-	'%URIError%': URIError,
-	'%WeakMap%': typeof WeakMap === 'undefined' ? undefined : WeakMap,
-	'%WeakRef%': typeof WeakRef === 'undefined' ? undefined : WeakRef,
-	'%WeakSet%': typeof WeakSet === 'undefined' ? undefined : WeakSet
-};
-
-var doEval = function doEval(name) {
-	var value;
-	if (name === '%AsyncFunction%') {
-		value = getEvalledConstructor('async function () {}');
-	} else if (name === '%GeneratorFunction%') {
-		value = getEvalledConstructor('function* () {}');
-	} else if (name === '%AsyncGeneratorFunction%') {
-		value = getEvalledConstructor('async function* () {}');
-	} else if (name === '%AsyncGenerator%') {
-		var fn = doEval('%AsyncGeneratorFunction%');
-		if (fn) {
-			value = fn.prototype;
-		}
-	} else if (name === '%AsyncIteratorPrototype%') {
-		var gen = doEval('%AsyncGenerator%');
-		if (gen) {
-			value = getProto(gen.prototype);
-		}
-	}
-
-	INTRINSICS[name] = value;
-
-	return value;
-};
-
-var LEGACY_ALIASES = {
-	'%ArrayBufferPrototype%': ['ArrayBuffer', 'prototype'],
-	'%ArrayPrototype%': ['Array', 'prototype'],
-	'%ArrayProto_entries%': ['Array', 'prototype', 'entries'],
-	'%ArrayProto_forEach%': ['Array', 'prototype', 'forEach'],
-	'%ArrayProto_keys%': ['Array', 'prototype', 'keys'],
-	'%ArrayProto_values%': ['Array', 'prototype', 'values'],
-	'%AsyncFunctionPrototype%': ['AsyncFunction', 'prototype'],
-	'%AsyncGenerator%': ['AsyncGeneratorFunction', 'prototype'],
-	'%AsyncGeneratorPrototype%': ['AsyncGeneratorFunction', 'prototype', 'prototype'],
-	'%BooleanPrototype%': ['Boolean', 'prototype'],
-	'%DataViewPrototype%': ['DataView', 'prototype'],
-	'%DatePrototype%': ['Date', 'prototype'],
-	'%ErrorPrototype%': ['Error', 'prototype'],
-	'%EvalErrorPrototype%': ['EvalError', 'prototype'],
-	'%Float32ArrayPrototype%': ['Float32Array', 'prototype'],
-	'%Float64ArrayPrototype%': ['Float64Array', 'prototype'],
-	'%FunctionPrototype%': ['Function', 'prototype'],
-	'%Generator%': ['GeneratorFunction', 'prototype'],
-	'%GeneratorPrototype%': ['GeneratorFunction', 'prototype', 'prototype'],
-	'%Int8ArrayPrototype%': ['Int8Array', 'prototype'],
-	'%Int16ArrayPrototype%': ['Int16Array', 'prototype'],
-	'%Int32ArrayPrototype%': ['Int32Array', 'prototype'],
-	'%JSONParse%': ['JSON', 'parse'],
-	'%JSONStringify%': ['JSON', 'stringify'],
-	'%MapPrototype%': ['Map', 'prototype'],
-	'%NumberPrototype%': ['Number', 'prototype'],
-	'%ObjectPrototype%': ['Object', 'prototype'],
-	'%ObjProto_toString%': ['Object', 'prototype', 'toString'],
-	'%ObjProto_valueOf%': ['Object', 'prototype', 'valueOf'],
-	'%PromisePrototype%': ['Promise', 'prototype'],
-	'%PromiseProto_then%': ['Promise', 'prototype', 'then'],
-	'%Promise_all%': ['Promise', 'all'],
-	'%Promise_reject%': ['Promise', 'reject'],
-	'%Promise_resolve%': ['Promise', 'resolve'],
-	'%RangeErrorPrototype%': ['RangeError', 'prototype'],
-	'%ReferenceErrorPrototype%': ['ReferenceError', 'prototype'],
-	'%RegExpPrototype%': ['RegExp', 'prototype'],
-	'%SetPrototype%': ['Set', 'prototype'],
-	'%SharedArrayBufferPrototype%': ['SharedArrayBuffer', 'prototype'],
-	'%StringPrototype%': ['String', 'prototype'],
-	'%SymbolPrototype%': ['Symbol', 'prototype'],
-	'%SyntaxErrorPrototype%': ['SyntaxError', 'prototype'],
-	'%TypedArrayPrototype%': ['TypedArray', 'prototype'],
-	'%TypeErrorPrototype%': ['TypeError', 'prototype'],
-	'%Uint8ArrayPrototype%': ['Uint8Array', 'prototype'],
-	'%Uint8ClampedArrayPrototype%': ['Uint8ClampedArray', 'prototype'],
-	'%Uint16ArrayPrototype%': ['Uint16Array', 'prototype'],
-	'%Uint32ArrayPrototype%': ['Uint32Array', 'prototype'],
-	'%URIErrorPrototype%': ['URIError', 'prototype'],
-	'%WeakMapPrototype%': ['WeakMap', 'prototype'],
-	'%WeakSetPrototype%': ['WeakSet', 'prototype']
-};
-
-var bind = require('function-bind');
-var hasOwn = require('has');
-var $concat = bind.call(Function.call, Array.prototype.concat);
-var $spliceApply = bind.call(Function.apply, Array.prototype.splice);
-var $replace = bind.call(Function.call, String.prototype.replace);
-var $strSlice = bind.call(Function.call, String.prototype.slice);
-
-/* adapted from https://github.com/lodash/lodash/blob/4.17.15/dist/lodash.js#L6735-L6744 */
-var rePropName = /[^%.[\]]+|\[(?:(-?\d+(?:\.\d+)?)|(["'])((?:(?!\2)[^\\]|\\.)*?)\2)\]|(?=(?:\.|\[\])(?:\.|\[\]|%$))/g;
-var reEscapeChar = /\\(\\)?/g; /** Used to match backslashes in property paths. */
-var stringToPath = function stringToPath(string) {
-	var first = $strSlice(string, 0, 1);
-	var last = $strSlice(string, -1);
-	if (first === '%' && last !== '%') {
-		throw new $SyntaxError('invalid intrinsic syntax, expected closing `%`');
-	} else if (last === '%' && first !== '%') {
-		throw new $SyntaxError('invalid intrinsic syntax, expected opening `%`');
-	}
-	var result = [];
-	$replace(string, rePropName, function (match, number, quote, subString) {
-		result[result.length] = quote ? $replace(subString, reEscapeChar, '$1') : number || match;
-	});
-	return result;
-};
-/* end adaptation */
-
-var getBaseIntrinsic = function getBaseIntrinsic(name, allowMissing) {
-	var intrinsicName = name;
-	var alias;
-	if (hasOwn(LEGACY_ALIASES, intrinsicName)) {
-		alias = LEGACY_ALIASES[intrinsicName];
-		intrinsicName = '%' + alias[0] + '%';
-	}
-
-	if (hasOwn(INTRINSICS, intrinsicName)) {
-		var value = INTRINSICS[intrinsicName];
-		if (value === needsEval) {
-			value = doEval(intrinsicName);
-		}
-		if (typeof value === 'undefined' && !allowMissing) {
-			throw new $TypeError('intrinsic ' + name + ' exists, but is not available. Please file an issue!');
-		}
-
-		return {
-			alias: alias,
-			name: intrinsicName,
-			value: value
-		};
-	}
-
-	throw new $SyntaxError('intrinsic ' + name + ' does not exist!');
-};
-
-module.exports = function GetIntrinsic(name, allowMissing) {
-	if (typeof name !== 'string' || name.length === 0) {
-		throw new $TypeError('intrinsic name must be a non-empty string');
-	}
-	if (arguments.length > 1 && typeof allowMissing !== 'boolean') {
-		throw new $TypeError('"allowMissing" argument must be a boolean');
-	}
-
-	var parts = stringToPath(name);
-	var intrinsicBaseName = parts.length > 0 ? parts[0] : '';
-
-	var intrinsic = getBaseIntrinsic('%' + intrinsicBaseName + '%', allowMissing);
-	var intrinsicRealName = intrinsic.name;
-	var value = intrinsic.value;
-	var skipFurtherCaching = false;
-
-	var alias = intrinsic.alias;
-	if (alias) {
-		intrinsicBaseName = alias[0];
-		$spliceApply(parts, $concat([0, 1], alias));
-	}
-
-	for (var i = 1, isOwn = true; i < parts.length; i += 1) {
-		var part = parts[i];
-		var first = $strSlice(part, 0, 1);
-		var last = $strSlice(part, -1);
-		if (
-			(
-				(first === '"' || first === "'" || first === '`')
-				|| (last === '"' || last === "'" || last === '`')
-			)
-			&& first !== last
-		) {
-			throw new $SyntaxError('property names with quotes must have matching quotes');
-		}
-		if (part === 'constructor' || !isOwn) {
-			skipFurtherCaching = true;
-		}
-
-		intrinsicBaseName += '.' + part;
-		intrinsicRealName = '%' + intrinsicBaseName + '%';
-
-		if (hasOwn(INTRINSICS, intrinsicRealName)) {
-			value = INTRINSICS[intrinsicRealName];
-		} else if (value != null) {
-			if (!(part in value)) {
-				if (!allowMissing) {
-					throw new $TypeError('base intrinsic for ' + name + ' exists, but the property is not available.');
-				}
-				return void undefined;
-			}
-			if ($gOPD && (i + 1) >= parts.length) {
-				var desc = $gOPD(value, part);
-				isOwn = !!desc;
-
-				// By convention, when a data property is converted to an accessor
-				// property to emulate a data property that does not suffer from
-				// the override mistake, that accessor's getter is marked with
-				// an `originalValue` property. Here, when we detect this, we
-				// uphold the illusion by pretending to see that original data
-				// property, i.e., returning the value rather than the getter
-				// itself.
-				if (isOwn && 'get' in desc && !('originalValue' in desc.get)) {
-					value = desc.get;
-				} else {
-					value = value[part];
-				}
-			} else {
-				isOwn = hasOwn(value, part);
-				value = value[part];
-			}
-
-			if (isOwn && !skipFurtherCaching) {
-				INTRINSICS[intrinsicRealName] = value;
-			}
-		}
-	}
-	return value;
-};
-
-},{"function-bind":10,"has":14,"has-symbols":12}],12:[function(require,module,exports){
-'use strict';
-
-var origSymbol = typeof Symbol !== 'undefined' && Symbol;
-var hasSymbolSham = require('./shams');
-
-module.exports = function hasNativeSymbols() {
-	if (typeof origSymbol !== 'function') { return false; }
-	if (typeof Symbol !== 'function') { return false; }
-	if (typeof origSymbol('foo') !== 'symbol') { return false; }
-	if (typeof Symbol('bar') !== 'symbol') { return false; }
-
-	return hasSymbolSham();
-};
-
-},{"./shams":13}],13:[function(require,module,exports){
-'use strict';
-
-/* eslint complexity: [2, 18], max-statements: [2, 33] */
-module.exports = function hasSymbols() {
-	if (typeof Symbol !== 'function' || typeof Object.getOwnPropertySymbols !== 'function') { return false; }
-	if (typeof Symbol.iterator === 'symbol') { return true; }
-
-	var obj = {};
-	var sym = Symbol('test');
-	var symObj = Object(sym);
-	if (typeof sym === 'string') { return false; }
-
-	if (Object.prototype.toString.call(sym) !== '[object Symbol]') { return false; }
-	if (Object.prototype.toString.call(symObj) !== '[object Symbol]') { return false; }
-
-	// temp disabled per https://github.com/ljharb/object.assign/issues/17
-	// if (sym instanceof Symbol) { return false; }
-	// temp disabled per https://github.com/WebReflection/get-own-property-symbols/issues/4
-	// if (!(symObj instanceof Symbol)) { return false; }
-
-	// if (typeof Symbol.prototype.toString !== 'function') { return false; }
-	// if (String(sym) !== Symbol.prototype.toString.call(sym)) { return false; }
-
-	var symVal = 42;
-	obj[sym] = symVal;
-	for (sym in obj) { return false; } // eslint-disable-line no-restricted-syntax, no-unreachable-loop
-	if (typeof Object.keys === 'function' && Object.keys(obj).length !== 0) { return false; }
-
-	if (typeof Object.getOwnPropertyNames === 'function' && Object.getOwnPropertyNames(obj).length !== 0) { return false; }
-
-	var syms = Object.getOwnPropertySymbols(obj);
-	if (syms.length !== 1 || syms[0] !== sym) { return false; }
-
-	if (!Object.prototype.propertyIsEnumerable.call(obj, sym)) { return false; }
-
-	if (typeof Object.getOwnPropertyDescriptor === 'function') {
-		var descriptor = Object.getOwnPropertyDescriptor(obj, sym);
-		if (descriptor.value !== symVal || descriptor.enumerable !== true) { return false; }
-	}
-
-	return true;
-};
-
-},{}],14:[function(require,module,exports){
-'use strict';
-
-var bind = require('function-bind');
-
-module.exports = bind.call(Function.call, Object.prototype.hasOwnProperty);
-
-},{"function-bind":10}],15:[function(require,module,exports){
-var hasMap = typeof Map === 'function' && Map.prototype;
-var mapSizeDescriptor = Object.getOwnPropertyDescriptor && hasMap ? Object.getOwnPropertyDescriptor(Map.prototype, 'size') : null;
-var mapSize = hasMap && mapSizeDescriptor && typeof mapSizeDescriptor.get === 'function' ? mapSizeDescriptor.get : null;
-var mapForEach = hasMap && Map.prototype.forEach;
-var hasSet = typeof Set === 'function' && Set.prototype;
-var setSizeDescriptor = Object.getOwnPropertyDescriptor && hasSet ? Object.getOwnPropertyDescriptor(Set.prototype, 'size') : null;
-var setSize = hasSet && setSizeDescriptor && typeof setSizeDescriptor.get === 'function' ? setSizeDescriptor.get : null;
-var setForEach = hasSet && Set.prototype.forEach;
-var hasWeakMap = typeof WeakMap === 'function' && WeakMap.prototype;
-var weakMapHas = hasWeakMap ? WeakMap.prototype.has : null;
-var hasWeakSet = typeof WeakSet === 'function' && WeakSet.prototype;
-var weakSetHas = hasWeakSet ? WeakSet.prototype.has : null;
-var hasWeakRef = typeof WeakRef === 'function' && WeakRef.prototype;
-var weakRefDeref = hasWeakRef ? WeakRef.prototype.deref : null;
-var booleanValueOf = Boolean.prototype.valueOf;
-var objectToString = Object.prototype.toString;
-var functionToString = Function.prototype.toString;
-var $match = String.prototype.match;
-var $slice = String.prototype.slice;
-var $replace = String.prototype.replace;
-var $toUpperCase = String.prototype.toUpperCase;
-var $toLowerCase = String.prototype.toLowerCase;
-var $test = RegExp.prototype.test;
-var $concat = Array.prototype.concat;
-var $join = Array.prototype.join;
-var $arrSlice = Array.prototype.slice;
-var $floor = Math.floor;
-var bigIntValueOf = typeof BigInt === 'function' ? BigInt.prototype.valueOf : null;
-var gOPS = Object.getOwnPropertySymbols;
-var symToString = typeof Symbol === 'function' && typeof Symbol.iterator === 'symbol' ? Symbol.prototype.toString : null;
-var hasShammedSymbols = typeof Symbol === 'function' && typeof Symbol.iterator === 'object';
-// ie, `has-tostringtag/shams
-var toStringTag = typeof Symbol === 'function' && Symbol.toStringTag && (typeof Symbol.toStringTag === hasShammedSymbols ? 'object' : 'symbol')
-    ? Symbol.toStringTag
-    : null;
-var isEnumerable = Object.prototype.propertyIsEnumerable;
-
-var gPO = (typeof Reflect === 'function' ? Reflect.getPrototypeOf : Object.getPrototypeOf) || (
-    [].__proto__ === Array.prototype // eslint-disable-line no-proto
-        ? function (O) {
-            return O.__proto__; // eslint-disable-line no-proto
-        }
-        : null
-);
-
-function addNumericSeparator(num, str) {
-    if (
-        num === Infinity
-        || num === -Infinity
-        || num !== num
-        || (num && num > -1000 && num < 1000)
-        || $test.call(/e/, str)
-    ) {
-        return str;
-    }
-    var sepRegex = /[0-9](?=(?:[0-9]{3})+(?![0-9]))/g;
-    if (typeof num === 'number') {
-        var int = num < 0 ? -$floor(-num) : $floor(num); // trunc(num)
-        if (int !== num) {
-            var intStr = String(int);
-            var dec = $slice.call(str, intStr.length + 1);
-            return $replace.call(intStr, sepRegex, '$&_') + '.' + $replace.call($replace.call(dec, /([0-9]{3})/g, '$&_'), /_$/, '');
-        }
-    }
-    return $replace.call(str, sepRegex, '$&_');
-}
-
-var utilInspect = require('./util.inspect');
-var inspectCustom = utilInspect.custom;
-var inspectSymbol = isSymbol(inspectCustom) ? inspectCustom : null;
-
-module.exports = function inspect_(obj, options, depth, seen) {
-    var opts = options || {};
-
-    if (has(opts, 'quoteStyle') && (opts.quoteStyle !== 'single' && opts.quoteStyle !== 'double')) {
-        throw new TypeError('option "quoteStyle" must be "single" or "double"');
-    }
-    if (
-        has(opts, 'maxStringLength') && (typeof opts.maxStringLength === 'number'
-            ? opts.maxStringLength < 0 && opts.maxStringLength !== Infinity
-            : opts.maxStringLength !== null
-        )
-    ) {
-        throw new TypeError('option "maxStringLength", if provided, must be a positive integer, Infinity, or `null`');
-    }
-    var customInspect = has(opts, 'customInspect') ? opts.customInspect : true;
-    if (typeof customInspect !== 'boolean' && customInspect !== 'symbol') {
-        throw new TypeError('option "customInspect", if provided, must be `true`, `false`, or `\'symbol\'`');
-    }
-
-    if (
-        has(opts, 'indent')
-        && opts.indent !== null
-        && opts.indent !== '\t'
-        && !(parseInt(opts.indent, 10) === opts.indent && opts.indent > 0)
-    ) {
-        throw new TypeError('option "indent" must be "\\t", an integer > 0, or `null`');
-    }
-    if (has(opts, 'numericSeparator') && typeof opts.numericSeparator !== 'boolean') {
-        throw new TypeError('option "numericSeparator", if provided, must be `true` or `false`');
-    }
-    var numericSeparator = opts.numericSeparator;
-
-    if (typeof obj === 'undefined') {
-        return 'undefined';
-    }
-    if (obj === null) {
-        return 'null';
-    }
-    if (typeof obj === 'boolean') {
-        return obj ? 'true' : 'false';
-    }
-
-    if (typeof obj === 'string') {
-        return inspectString(obj, opts);
-    }
-    if (typeof obj === 'number') {
-        if (obj === 0) {
-            return Infinity / obj > 0 ? '0' : '-0';
-        }
-        var str = String(obj);
-        return numericSeparator ? addNumericSeparator(obj, str) : str;
-    }
-    if (typeof obj === 'bigint') {
-        var bigIntStr = String(obj) + 'n';
-        return numericSeparator ? addNumericSeparator(obj, bigIntStr) : bigIntStr;
-    }
-
-    var maxDepth = typeof opts.depth === 'undefined' ? 5 : opts.depth;
-    if (typeof depth === 'undefined') { depth = 0; }
-    if (depth >= maxDepth && maxDepth > 0 && typeof obj === 'object') {
-        return isArray(obj) ? '[Array]' : '[Object]';
-    }
-
-    var indent = getIndent(opts, depth);
-
-    if (typeof seen === 'undefined') {
-        seen = [];
-    } else if (indexOf(seen, obj) >= 0) {
-        return '[Circular]';
-    }
-
-    function inspect(value, from, noIndent) {
-        if (from) {
-            seen = $arrSlice.call(seen);
-            seen.push(from);
-        }
-        if (noIndent) {
-            var newOpts = {
-                depth: opts.depth
-            };
-            if (has(opts, 'quoteStyle')) {
-                newOpts.quoteStyle = opts.quoteStyle;
-            }
-            return inspect_(value, newOpts, depth + 1, seen);
-        }
-        return inspect_(value, opts, depth + 1, seen);
-    }
-
-    if (typeof obj === 'function' && !isRegExp(obj)) { // in older engines, regexes are callable
-        var name = nameOf(obj);
-        var keys = arrObjKeys(obj, inspect);
-        return '[Function' + (name ? ': ' + name : ' (anonymous)') + ']' + (keys.length > 0 ? ' { ' + $join.call(keys, ', ') + ' }' : '');
-    }
-    if (isSymbol(obj)) {
-        var symString = hasShammedSymbols ? $replace.call(String(obj), /^(Symbol\(.*\))_[^)]*$/, '$1') : symToString.call(obj);
-        return typeof obj === 'object' && !hasShammedSymbols ? markBoxed(symString) : symString;
-    }
-    if (isElement(obj)) {
-        var s = '<' + $toLowerCase.call(String(obj.nodeName));
-        var attrs = obj.attributes || [];
-        for (var i = 0; i < attrs.length; i++) {
-            s += ' ' + attrs[i].name + '=' + wrapQuotes(quote(attrs[i].value), 'double', opts);
-        }
-        s += '>';
-        if (obj.childNodes && obj.childNodes.length) { s += '...'; }
-        s += '</' + $toLowerCase.call(String(obj.nodeName)) + '>';
-        return s;
-    }
-    if (isArray(obj)) {
-        if (obj.length === 0) { return '[]'; }
-        var xs = arrObjKeys(obj, inspect);
-        if (indent && !singleLineValues(xs)) {
-            return '[' + indentedJoin(xs, indent) + ']';
-        }
-        return '[ ' + $join.call(xs, ', ') + ' ]';
-    }
-    if (isError(obj)) {
-        var parts = arrObjKeys(obj, inspect);
-        if (!('cause' in Error.prototype) && 'cause' in obj && !isEnumerable.call(obj, 'cause')) {
-            return '{ [' + String(obj) + '] ' + $join.call($concat.call('[cause]: ' + inspect(obj.cause), parts), ', ') + ' }';
-        }
-        if (parts.length === 0) { return '[' + String(obj) + ']'; }
-        return '{ [' + String(obj) + '] ' + $join.call(parts, ', ') + ' }';
-    }
-    if (typeof obj === 'object' && customInspect) {
-        if (inspectSymbol && typeof obj[inspectSymbol] === 'function' && utilInspect) {
-            return utilInspect(obj, { depth: maxDepth - depth });
-        } else if (customInspect !== 'symbol' && typeof obj.inspect === 'function') {
-            return obj.inspect();
-        }
-    }
-    if (isMap(obj)) {
-        var mapParts = [];
-        mapForEach.call(obj, function (value, key) {
-            mapParts.push(inspect(key, obj, true) + ' => ' + inspect(value, obj));
-        });
-        return collectionOf('Map', mapSize.call(obj), mapParts, indent);
-    }
-    if (isSet(obj)) {
-        var setParts = [];
-        setForEach.call(obj, function (value) {
-            setParts.push(inspect(value, obj));
-        });
-        return collectionOf('Set', setSize.call(obj), setParts, indent);
-    }
-    if (isWeakMap(obj)) {
-        return weakCollectionOf('WeakMap');
-    }
-    if (isWeakSet(obj)) {
-        return weakCollectionOf('WeakSet');
-    }
-    if (isWeakRef(obj)) {
-        return weakCollectionOf('WeakRef');
-    }
-    if (isNumber(obj)) {
-        return markBoxed(inspect(Number(obj)));
-    }
-    if (isBigInt(obj)) {
-        return markBoxed(inspect(bigIntValueOf.call(obj)));
-    }
-    if (isBoolean(obj)) {
-        return markBoxed(booleanValueOf.call(obj));
-    }
-    if (isString(obj)) {
-        return markBoxed(inspect(String(obj)));
-    }
-    if (!isDate(obj) && !isRegExp(obj)) {
-        var ys = arrObjKeys(obj, inspect);
-        var isPlainObject = gPO ? gPO(obj) === Object.prototype : obj instanceof Object || obj.constructor === Object;
-        var protoTag = obj instanceof Object ? '' : 'null prototype';
-        var stringTag = !isPlainObject && toStringTag && Object(obj) === obj && toStringTag in obj ? $slice.call(toStr(obj), 8, -1) : protoTag ? 'Object' : '';
-        var constructorTag = isPlainObject || typeof obj.constructor !== 'function' ? '' : obj.constructor.name ? obj.constructor.name + ' ' : '';
-        var tag = constructorTag + (stringTag || protoTag ? '[' + $join.call($concat.call([], stringTag || [], protoTag || []), ': ') + '] ' : '');
-        if (ys.length === 0) { return tag + '{}'; }
-        if (indent) {
-            return tag + '{' + indentedJoin(ys, indent) + '}';
-        }
-        return tag + '{ ' + $join.call(ys, ', ') + ' }';
-    }
-    return String(obj);
-};
-
-function wrapQuotes(s, defaultStyle, opts) {
-    var quoteChar = (opts.quoteStyle || defaultStyle) === 'double' ? '"' : "'";
-    return quoteChar + s + quoteChar;
-}
-
-function quote(s) {
-    return $replace.call(String(s), /"/g, '&quot;');
-}
-
-function isArray(obj) { return toStr(obj) === '[object Array]' && (!toStringTag || !(typeof obj === 'object' && toStringTag in obj)); }
-function isDate(obj) { return toStr(obj) === '[object Date]' && (!toStringTag || !(typeof obj === 'object' && toStringTag in obj)); }
-function isRegExp(obj) { return toStr(obj) === '[object RegExp]' && (!toStringTag || !(typeof obj === 'object' && toStringTag in obj)); }
-function isError(obj) { return toStr(obj) === '[object Error]' && (!toStringTag || !(typeof obj === 'object' && toStringTag in obj)); }
-function isString(obj) { return toStr(obj) === '[object String]' && (!toStringTag || !(typeof obj === 'object' && toStringTag in obj)); }
-function isNumber(obj) { return toStr(obj) === '[object Number]' && (!toStringTag || !(typeof obj === 'object' && toStringTag in obj)); }
-function isBoolean(obj) { return toStr(obj) === '[object Boolean]' && (!toStringTag || !(typeof obj === 'object' && toStringTag in obj)); }
-
-// Symbol and BigInt do have Symbol.toStringTag by spec, so that can't be used to eliminate false positives
-function isSymbol(obj) {
-    if (hasShammedSymbols) {
-        return obj && typeof obj === 'object' && obj instanceof Symbol;
-    }
-    if (typeof obj === 'symbol') {
-        return true;
-    }
-    if (!obj || typeof obj !== 'object' || !symToString) {
-        return false;
-    }
-    try {
-        symToString.call(obj);
-        return true;
-    } catch (e) {}
-    return false;
-}
-
-function isBigInt(obj) {
-    if (!obj || typeof obj !== 'object' || !bigIntValueOf) {
-        return false;
-    }
-    try {
-        bigIntValueOf.call(obj);
-        return true;
-    } catch (e) {}
-    return false;
-}
-
-var hasOwn = Object.prototype.hasOwnProperty || function (key) { return key in this; };
-function has(obj, key) {
-    return hasOwn.call(obj, key);
-}
-
-function toStr(obj) {
-    return objectToString.call(obj);
-}
-
-function nameOf(f) {
-    if (f.name) { return f.name; }
-    var m = $match.call(functionToString.call(f), /^function\s*([\w$]+)/);
-    if (m) { return m[1]; }
-    return null;
-}
-
-function indexOf(xs, x) {
-    if (xs.indexOf) { return xs.indexOf(x); }
-    for (var i = 0, l = xs.length; i < l; i++) {
-        if (xs[i] === x) { return i; }
-    }
-    return -1;
-}
-
-function isMap(x) {
-    if (!mapSize || !x || typeof x !== 'object') {
-        return false;
-    }
-    try {
-        mapSize.call(x);
-        try {
-            setSize.call(x);
-        } catch (s) {
-            return true;
-        }
-        return x instanceof Map; // core-js workaround, pre-v2.5.0
-    } catch (e) {}
-    return false;
-}
-
-function isWeakMap(x) {
-    if (!weakMapHas || !x || typeof x !== 'object') {
-        return false;
-    }
-    try {
-        weakMapHas.call(x, weakMapHas);
-        try {
-            weakSetHas.call(x, weakSetHas);
-        } catch (s) {
-            return true;
-        }
-        return x instanceof WeakMap; // core-js workaround, pre-v2.5.0
-    } catch (e) {}
-    return false;
-}
-
-function isWeakRef(x) {
-    if (!weakRefDeref || !x || typeof x !== 'object') {
-        return false;
-    }
-    try {
-        weakRefDeref.call(x);
-        return true;
-    } catch (e) {}
-    return false;
-}
-
-function isSet(x) {
-    if (!setSize || !x || typeof x !== 'object') {
-        return false;
-    }
-    try {
-        setSize.call(x);
-        try {
-            mapSize.call(x);
-        } catch (m) {
-            return true;
-        }
-        return x instanceof Set; // core-js workaround, pre-v2.5.0
-    } catch (e) {}
-    return false;
-}
-
-function isWeakSet(x) {
-    if (!weakSetHas || !x || typeof x !== 'object') {
-        return false;
-    }
-    try {
-        weakSetHas.call(x, weakSetHas);
-        try {
-            weakMapHas.call(x, weakMapHas);
-        } catch (s) {
-            return true;
-        }
-        return x instanceof WeakSet; // core-js workaround, pre-v2.5.0
-    } catch (e) {}
-    return false;
-}
-
-function isElement(x) {
-    if (!x || typeof x !== 'object') { return false; }
-    if (typeof HTMLElement !== 'undefined' && x instanceof HTMLElement) {
-        return true;
-    }
-    return typeof x.nodeName === 'string' && typeof x.getAttribute === 'function';
-}
-
-function inspectString(str, opts) {
-    if (str.length > opts.maxStringLength) {
-        var remaining = str.length - opts.maxStringLength;
-        var trailer = '... ' + remaining + ' more character' + (remaining > 1 ? 's' : '');
-        return inspectString($slice.call(str, 0, opts.maxStringLength), opts) + trailer;
-    }
-    // eslint-disable-next-line no-control-regex
-    var s = $replace.call($replace.call(str, /(['\\])/g, '\\$1'), /[\x00-\x1f]/g, lowbyte);
-    return wrapQuotes(s, 'single', opts);
-}
-
-function lowbyte(c) {
-    var n = c.charCodeAt(0);
-    var x = {
-        8: 'b',
-        9: 't',
-        10: 'n',
-        12: 'f',
-        13: 'r'
-    }[n];
-    if (x) { return '\\' + x; }
-    return '\\x' + (n < 0x10 ? '0' : '') + $toUpperCase.call(n.toString(16));
-}
-
-function markBoxed(str) {
-    return 'Object(' + str + ')';
-}
-
-function weakCollectionOf(type) {
-    return type + ' { ? }';
-}
-
-function collectionOf(type, size, entries, indent) {
-    var joinedEntries = indent ? indentedJoin(entries, indent) : $join.call(entries, ', ');
-    return type + ' (' + size + ') {' + joinedEntries + '}';
-}
-
-function singleLineValues(xs) {
-    for (var i = 0; i < xs.length; i++) {
-        if (indexOf(xs[i], '\n') >= 0) {
-            return false;
-        }
-    }
-    return true;
-}
-
-function getIndent(opts, depth) {
-    var baseIndent;
-    if (opts.indent === '\t') {
-        baseIndent = '\t';
-    } else if (typeof opts.indent === 'number' && opts.indent > 0) {
-        baseIndent = $join.call(Array(opts.indent + 1), ' ');
-    } else {
-        return null;
-    }
-    return {
-        base: baseIndent,
-        prev: $join.call(Array(depth + 1), baseIndent)
-    };
-}
-
-function indentedJoin(xs, indent) {
-    if (xs.length === 0) { return ''; }
-    var lineJoiner = '\n' + indent.prev + indent.base;
-    return lineJoiner + $join.call(xs, ',' + lineJoiner) + '\n' + indent.prev;
-}
-
-function arrObjKeys(obj, inspect) {
-    var isArr = isArray(obj);
-    var xs = [];
-    if (isArr) {
-        xs.length = obj.length;
-        for (var i = 0; i < obj.length; i++) {
-            xs[i] = has(obj, i) ? inspect(obj[i], obj) : '';
-        }
-    }
-    var syms = typeof gOPS === 'function' ? gOPS(obj) : [];
-    var symMap;
-    if (hasShammedSymbols) {
-        symMap = {};
-        for (var k = 0; k < syms.length; k++) {
-            symMap['$' + syms[k]] = syms[k];
-        }
-    }
-
-    for (var key in obj) { // eslint-disable-line no-restricted-syntax
-        if (!has(obj, key)) { continue; } // eslint-disable-line no-restricted-syntax, no-continue
-        if (isArr && String(Number(key)) === key && key < obj.length) { continue; } // eslint-disable-line no-restricted-syntax, no-continue
-        if (hasShammedSymbols && symMap['$' + key] instanceof Symbol) {
-            // this is to prevent shammed Symbols, which are stored as strings, from being included in the string key section
-            continue; // eslint-disable-line no-restricted-syntax, no-continue
-        } else if ($test.call(/[^\w$]/, key)) {
-            xs.push(inspect(key, obj) + ': ' + inspect(obj[key], obj));
-        } else {
-            xs.push(key + ': ' + inspect(obj[key], obj));
-        }
-    }
-    if (typeof gOPS === 'function') {
-        for (var j = 0; j < syms.length; j++) {
-            if (isEnumerable.call(obj, syms[j])) {
-                xs.push('[' + inspect(syms[j]) + ']: ' + inspect(obj[syms[j]], obj));
-            }
-        }
-    }
-    return xs;
-}
-
-},{"./util.inspect":6}],16:[function(require,module,exports){
-'use strict';
-
-var GetIntrinsic = require('get-intrinsic');
-var callBound = require('call-bind/callBound');
-var inspect = require('object-inspect');
-
-var $TypeError = GetIntrinsic('%TypeError%');
-var $WeakMap = GetIntrinsic('%WeakMap%', true);
-var $Map = GetIntrinsic('%Map%', true);
-
-var $weakMapGet = callBound('WeakMap.prototype.get', true);
-var $weakMapSet = callBound('WeakMap.prototype.set', true);
-var $weakMapHas = callBound('WeakMap.prototype.has', true);
-var $mapGet = callBound('Map.prototype.get', true);
-var $mapSet = callBound('Map.prototype.set', true);
-var $mapHas = callBound('Map.prototype.has', true);
-
-/*
- * This function traverses the list returning the node corresponding to the
- * given key.
- *
- * That node is also moved to the head of the list, so that if it's accessed
- * again we don't need to traverse the whole list. By doing so, all the recently
- * used nodes can be accessed relatively quickly.
- */
-var listGetNode = function (list, key) { // eslint-disable-line consistent-return
-	for (var prev = list, curr; (curr = prev.next) !== null; prev = curr) {
-		if (curr.key === key) {
-			prev.next = curr.next;
-			curr.next = list.next;
-			list.next = curr; // eslint-disable-line no-param-reassign
-			return curr;
-		}
-	}
-};
-
-var listGet = function (objects, key) {
-	var node = listGetNode(objects, key);
-	return node && node.value;
-};
-var listSet = function (objects, key, value) {
-	var node = listGetNode(objects, key);
-	if (node) {
-		node.value = value;
-	} else {
-		// Prepend the new node to the beginning of the list
-		objects.next = { // eslint-disable-line no-param-reassign
-			key: key,
-			next: objects.next,
-			value: value
-		};
-	}
-};
-var listHas = function (objects, key) {
-	return !!listGetNode(objects, key);
-};
-
-module.exports = function getSideChannel() {
-	var $wm;
-	var $m;
-	var $o;
-	var channel = {
-		assert: function (key) {
-			if (!channel.has(key)) {
-				throw new $TypeError('Side channel does not contain ' + inspect(key));
-			}
-		},
-		get: function (key) { // eslint-disable-line consistent-return
-			if ($WeakMap && key && (typeof key === 'object' || typeof key === 'function')) {
-				if ($wm) {
-					return $weakMapGet($wm, key);
-				}
-			} else if ($Map) {
-				if ($m) {
-					return $mapGet($m, key);
-				}
-			} else {
-				if ($o) { // eslint-disable-line no-lonely-if
-					return listGet($o, key);
-				}
-			}
-		},
-		has: function (key) {
-			if ($WeakMap && key && (typeof key === 'object' || typeof key === 'function')) {
-				if ($wm) {
-					return $weakMapHas($wm, key);
-				}
-			} else if ($Map) {
-				if ($m) {
-					return $mapHas($m, key);
-				}
-			} else {
-				if ($o) { // eslint-disable-line no-lonely-if
-					return listHas($o, key);
-				}
-			}
-			return false;
-		},
-		set: function (key, value) {
-			if ($WeakMap && key && (typeof key === 'object' || typeof key === 'function')) {
-				if (!$wm) {
-					$wm = new $WeakMap();
-				}
-				$weakMapSet($wm, key, value);
-			} else if ($Map) {
-				if (!$m) {
-					$m = new $Map();
-				}
-				$mapSet($m, key, value);
-			} else {
-				if (!$o) {
-					/*
-					 * Initialize the linked list as an empty node, so that we don't have
-					 * to special-case handling of the first node: we can always refer to
-					 * it as (previous node).next, instead of something like (list).head
-					 */
-					$o = { key: {}, next: null };
-				}
-				listSet($o, key, value);
-			}
-		}
-	};
-	return channel;
-};
-
-},{"call-bind/callBound":7,"get-intrinsic":11,"object-inspect":15}]},{},[2])(2)
-});
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/qs/LICENSE.md thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/qs/LICENSE.md
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/qs/LICENSE.md	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/qs/LICENSE.md	1970-01-01 00:00:00.000000000 +0000
@@ -1,29 +0,0 @@
-BSD 3-Clause License
-
-Copyright (c) 2014, Nathan LaFreniere and other [contributors](https://github.com/ljharb/qs/graphs/contributors)
-All rights reserved.
-
-Redistribution and use in source and binary forms, with or without
-modification, are permitted provided that the following conditions are met:
-
-1. Redistributions of source code must retain the above copyright notice, this
-   list of conditions and the following disclaimer.
-
-2. Redistributions in binary form must reproduce the above copyright notice,
-   this list of conditions and the following disclaimer in the documentation
-   and/or other materials provided with the distribution.
-
-3. Neither the name of the copyright holder nor the names of its
-   contributors may be used to endorse or promote products derived from
-   this software without specific prior written permission.
-
-THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
-AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
-IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
-DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
-FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
-DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
-SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
-CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
-OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/README.md thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/README.md
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/README.md	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/README.md	2023-04-11 06:11:52.000000000 +0000
@@ -1,19 +1,19 @@
 This directory contains the Matrix Client-Server SDK for Javascript available
-at https://github.com/matrix-org/matrix-js-sdk/. Current version is v20.0.0.
+at https://github.com/matrix-org/matrix-js-sdk/. Current version is v24.0.0.
 
 The following npm dependencies are included:
 
-* @matrix-org/olm: https://gitlab.matrix.org/matrix-org/olm/-/packages/10 v3.2.12
+* @matrix-org/olm: https://gitlab.matrix.org/matrix-org/olm/-/packages?type=npm v3.2.14
 * another-json: https://www.npmjs.com/package/another-json/ v0.2.0
 * base-x: https://www.npmjs.com/package/base-x v4.0.0
-* browser-request: https://www.npmjs.com/package/browser-request v0.3.3
 * bs58: https://www.npmjs.com/package/bs58 v5.0.0
-* content-type: https://www.npmjs.com/package/content-type v1.0.4
+* content-type: https://www.npmjs.com/package/content-type v1.0.5
 * events: https://www.npmjs.com/package/events v3.3.0
-* matrix-events-sdk: https://www.npmjs.com/package/matrix-events-sdk v0.0.1-beta.7
+* matrix-events-sdk: https://www.npmjs.com/package/matrix-events-sdk v0.0.1
+* matrix-widget-api: https://www.npmjs.com/package/matrix-widget-api v1.1.1
 * p-retry: https://www.npmjs.com/package/p-retry v4.6.2
-* qs: https://www.npmjs.com/package/qs v6.11.0
 * retry: https://www.npmjs.com/package/retry v0.13.1
+* sdp-transform: https://www.npmjs.com/package/sdp-transform v2.14.1
 * unhomoglyph: https://www.npmjs.com/package/unhomoglyph v1.0.6
 
 The following npm dependencies are shimmed:
@@ -21,7 +21,7 @@
 * loglevel: The chat framework's logging methods are used internally.
 * safe-buffer: A buffer shim, initially modeled after the safe-buffer NPM package,
     now used to provide a Buffer object to the crypto stack.
-* url: The global URL object is used directly.
+* uuid: Only the v4 is provided via cryto.randomUUID().
 
 There is not any automated way to update the libraries.
 
@@ -29,31 +29,32 @@
 using yarn to obtain the dependencies), and then compiling the SDK using Babel.
 
 To make the whole thing work, some file paths and global variables are defined
-in chat/protocols/matrix/matrix-sdk.jsm.
+in `chat/protocols/matrix/matrix-sdk.sys.mjs`.
 
 ## Updating matrix-js-sdk
 
 1.  Download the matrix-js-sdk repository from https://github.com/matrix-org/matrix-js-sdk/.
 2.  Modify `.babelrc` (see below).
-3.  Run yarn install
-4.  Run Babel in the matrix-js-sdk checkout:
+3.  (If this is an old checkout, remove any previous artifacts. Run `rm -r lib; rm -r node_modules`.)
+4.  Run `yarn install`.
+5.  Run Babel in the matrix-js-sdk checkout:
     `./node_modules/.bin/babel --source-maps false -d lib --extensions ".ts,.js" src`
     (at time of writing identical to `yarn build:compile`)
-5.  The following commands assume you're in mozilla-central/comm and that the
+6.  The following commands assume you're in mozilla-central/comm and that the
     matrix-js-sdk is checked out next to mozilla-central.
-6.  Remove the old SDK files `hg rm chat/protocols/matrix/lib/matrix-sdk`
-7.  Undo the removal of the license: `hg revert chat/protocols/matrix/lib/matrix-sdk/LICENSE`
-8.  Copy the Babel-ified JavaScript files from the matrix-js-sdk to vendored
+7.  Remove the old SDK files `hg rm chat/protocols/matrix/lib/matrix-sdk`
+9.  Undo the removal of the license: `hg revert chat/protocols/matrix/lib/matrix-sdk/LICENSE`
+0.  Copy the Babel-ified JavaScript files from the matrix-js-sdk to vendored
     location: `cp -r ../../matrix-js-sdk/lib/* chat/protocols/matrix/lib/matrix-sdk`
-9.  Add the files back to Mercurial: `hg add chat/protocols/matrix/lib/matrix-sdk`
-10. Modify `moz.build` to add/remove/rename modified files. Note that some
-    modules that have no actual contents (just an empty export) are not
-    currently included.
-11. Modify `matrix-sdk.jsm` to add/remove/rename modified files.
+10. Add the files back to Mercurial: `hg add chat/protocols/matrix/lib/matrix-sdk`
+11. Modify `chat/protocols/matrix/lib/moz.build` to add/remove/rename modified
+    files. Note that some modules that have no actual contents (just an empty
+    export) are not currently included.
+12. Modify `matrix-sdk.sys.mjs` to add/remove/rename any changed modules.
 
 ### Custom `.babelrc`
 
-By default the matrix-js-sdk targets a version of ECMAScript that is far below
+By default, the matrix-js-sdk targets a version of ECMAScript that is far below
 what Gecko supports, this causes lots of additional processing to occur (e.g.
 converting async functions, etc.) To disable this, a custom `.babelrc` file is
 used:
@@ -96,10 +97,12 @@
 named for the package or named index.js. This should get copied to the proper
 sub-directory.
 
-### Updating browser-request
-
-Follow the directions for updating single file dependencies, then modify the
-index.js file so that the `is_crossDomain` always returns `false`.
+```
+cp ../../matrix-js-sdk/node_modules/another-json/another-json.js chat/protocols/matrix/lib/another-json
+cp ../../matrix-js-sdk/node_modules/base-x/src/index.js chat/protocols/matrix/lib/base-x
+cp ../../matrix-js-sdk/node_modules/bs58/index.js chat/protocols/matrix/lib/bs58
+cp ../../matrix-js-sdk/node_modules/content-type/index.js chat/protocols/matrix/lib/content-type
+```
 
 ### Updating events
 
@@ -112,19 +115,32 @@
 We only want the JS modules. So we want all the js files in `lib/**/*.js`
 from the package.
 
-### Updating qs
+### Updating matrix-widget-api
+
+The matrix-widget-api includes raw JS modules and Typescript definition files.
+We only want the JS modules. So we want all the js files in `lib/**/*.js`
+from the package.
+
+### Updating sdp-transform
+
+The sdp-transform package includes raw JS modules, so we want all the js files
+under `lib/*.js`.
 
-The qs package comes with two valid entry points, `dist/qs.js` and
-`lib/index.js`. The `dist` one is already prepared for use in browsers
-but still supports being loaded as commonJS module and it is only a single
-file, so we prefer that one.
+```
+cp ../../matrix-js-sdk/node_modules/sdp-transform/lib/*.js chat/protocols/matrix/lib/sdp-transform
+```
 
 ### Updating unhomoglyph
 
-This is simlar to the single file dependencies, but also has a JSON data file.
+This is similar to the single file dependencies, but also has a JSON data file.
 Both of these files should be copied to the unhomoglyph directory.
 
-### Updating loglevel, safe-buffer, url
+```
+cp ../../matrix-js-sdk/node_modules/unhomoglyph/index.js chat/protocols/matrix/lib/unhomoglyph
+cp ../../matrix-js-sdk/node_modules/unhomoglyph/data.json chat/protocols/matrix/lib/unhomoglyph
+```
+
+### Updating loglevel, safe-buffer, uuid
 
 These packages have an alternate implementation in the `../shims` directory and
 thus are not included here.
@@ -132,7 +148,8 @@
 ### Updating olm
 
 The package is published on the Matrix gitlab. To update the library, download
-the latest `.tgz` bundle and replace the files in the `@matrix-org/olm` folder.
+the latest `.tgz` bundle and replace the `olm.js` and `olm.wasm` files in the
+`@matrix-org/olm` folder.
 
 ### Updating p-retry
 
@@ -140,3 +157,9 @@
 the `retry` package, which consists of three files, and `index.js` and two
 modules in the `lib` folder. All four files should be mirrored over into this
 folder into a `p-retry` and `retry` folder respectively.
+
+```
+cp ../../matrix-js-sdk/node_modules/p-retry/index.js chat/protocols/matrix/lib/p-retry/
+cp ../../matrix-js-sdk/node_modules/retry/index.js chat/protocols/matrix/lib/retry
+cp ../../matrix-js-sdk/node_modules/retry/lib/*.js chat/protocols/matrix/lib/retry/lib
+```
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/sdp-transform/grammar.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/sdp-transform/grammar.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/sdp-transform/grammar.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/sdp-transform/grammar.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,494 @@
+var grammar = module.exports = {
+  v: [{
+    name: 'version',
+    reg: /^(\d*)$/
+  }],
+  o: [{
+    // o=- 20518 0 IN IP4 203.0.113.1
+    // NB: sessionId will be a String in most cases because it is huge
+    name: 'origin',
+    reg: /^(\S*) (\d*) (\d*) (\S*) IP(\d) (\S*)/,
+    names: ['username', 'sessionId', 'sessionVersion', 'netType', 'ipVer', 'address'],
+    format: '%s %s %d %s IP%d %s'
+  }],
+  // default parsing of these only (though some of these feel outdated)
+  s: [{ name: 'name' }],
+  i: [{ name: 'description' }],
+  u: [{ name: 'uri' }],
+  e: [{ name: 'email' }],
+  p: [{ name: 'phone' }],
+  z: [{ name: 'timezones' }], // TODO: this one can actually be parsed properly...
+  r: [{ name: 'repeats' }],   // TODO: this one can also be parsed properly
+  // k: [{}], // outdated thing ignored
+  t: [{
+    // t=0 0
+    name: 'timing',
+    reg: /^(\d*) (\d*)/,
+    names: ['start', 'stop'],
+    format: '%d %d'
+  }],
+  c: [{
+    // c=IN IP4 10.47.197.26
+    name: 'connection',
+    reg: /^IN IP(\d) (\S*)/,
+    names: ['version', 'ip'],
+    format: 'IN IP%d %s'
+  }],
+  b: [{
+    // b=AS:4000
+    push: 'bandwidth',
+    reg: /^(TIAS|AS|CT|RR|RS):(\d*)/,
+    names: ['type', 'limit'],
+    format: '%s:%s'
+  }],
+  m: [{
+    // m=video 51744 RTP/AVP 126 97 98 34 31
+    // NB: special - pushes to session
+    // TODO: rtp/fmtp should be filtered by the payloads found here?
+    reg: /^(\w*) (\d*) ([\w/]*)(?: (.*))?/,
+    names: ['type', 'port', 'protocol', 'payloads'],
+    format: '%s %d %s %s'
+  }],
+  a: [
+    {
+      // a=rtpmap:110 opus/48000/2
+      push: 'rtp',
+      reg: /^rtpmap:(\d*) ([\w\-.]*)(?:\s*\/(\d*)(?:\s*\/(\S*))?)?/,
+      names: ['payload', 'codec', 'rate', 'encoding'],
+      format: function (o) {
+        return (o.encoding)
+          ? 'rtpmap:%d %s/%s/%s'
+          : o.rate
+            ? 'rtpmap:%d %s/%s'
+            : 'rtpmap:%d %s';
+      }
+    },
+    {
+      // a=fmtp:108 profile-level-id=24;object=23;bitrate=64000
+      // a=fmtp:111 minptime=10; useinbandfec=1
+      push: 'fmtp',
+      reg: /^fmtp:(\d*) ([\S| ]*)/,
+      names: ['payload', 'config'],
+      format: 'fmtp:%d %s'
+    },
+    {
+      // a=control:streamid=0
+      name: 'control',
+      reg: /^control:(.*)/,
+      format: 'control:%s'
+    },
+    {
+      // a=rtcp:65179 IN IP4 193.84.77.194
+      name: 'rtcp',
+      reg: /^rtcp:(\d*)(?: (\S*) IP(\d) (\S*))?/,
+      names: ['port', 'netType', 'ipVer', 'address'],
+      format: function (o) {
+        return (o.address != null)
+          ? 'rtcp:%d %s IP%d %s'
+          : 'rtcp:%d';
+      }
+    },
+    {
+      // a=rtcp-fb:98 trr-int 100
+      push: 'rtcpFbTrrInt',
+      reg: /^rtcp-fb:(\*|\d*) trr-int (\d*)/,
+      names: ['payload', 'value'],
+      format: 'rtcp-fb:%s trr-int %d'
+    },
+    {
+      // a=rtcp-fb:98 nack rpsi
+      push: 'rtcpFb',
+      reg: /^rtcp-fb:(\*|\d*) ([\w-_]*)(?: ([\w-_]*))?/,
+      names: ['payload', 'type', 'subtype'],
+      format: function (o) {
+        return (o.subtype != null)
+          ? 'rtcp-fb:%s %s %s'
+          : 'rtcp-fb:%s %s';
+      }
+    },
+    {
+      // a=extmap:2 urn:ietf:params:rtp-hdrext:toffset
+      // a=extmap:1/recvonly URI-gps-string
+      // a=extmap:3 urn:ietf:params:rtp-hdrext:encrypt urn:ietf:params:rtp-hdrext:smpte-tc 25@600/24
+      push: 'ext',
+      reg: /^extmap:(\d+)(?:\/(\w+))?(?: (urn:ietf:params:rtp-hdrext:encrypt))? (\S*)(?: (\S*))?/,
+      names: ['value', 'direction', 'encrypt-uri', 'uri', 'config'],
+      format: function (o) {
+        return (
+          'extmap:%d' +
+          (o.direction ? '/%s' : '%v') +
+          (o['encrypt-uri'] ? ' %s' : '%v') +
+          ' %s' +
+          (o.config ? ' %s' : '')
+        );
+      }
+    },
+    {
+      // a=extmap-allow-mixed
+      name: 'extmapAllowMixed',
+      reg: /^(extmap-allow-mixed)/
+    },
+    {
+      // a=crypto:1 AES_CM_128_HMAC_SHA1_80 inline:PS1uQCVeeCFCanVmcjkpPywjNWhcYD0mXXtxaVBR|2^20|1:32
+      push: 'crypto',
+      reg: /^crypto:(\d*) ([\w_]*) (\S*)(?: (\S*))?/,
+      names: ['id', 'suite', 'config', 'sessionConfig'],
+      format: function (o) {
+        return (o.sessionConfig != null)
+          ? 'crypto:%d %s %s %s'
+          : 'crypto:%d %s %s';
+      }
+    },
+    {
+      // a=setup:actpass
+      name: 'setup',
+      reg: /^setup:(\w*)/,
+      format: 'setup:%s'
+    },
+    {
+      // a=connection:new
+      name: 'connectionType',
+      reg: /^connection:(new|existing)/,
+      format: 'connection:%s'
+    },
+    {
+      // a=mid:1
+      name: 'mid',
+      reg: /^mid:([^\s]*)/,
+      format: 'mid:%s'
+    },
+    {
+      // a=msid:0c8b064d-d807-43b4-b434-f92a889d8587 98178685-d409-46e0-8e16-7ef0db0db64a
+      name: 'msid',
+      reg: /^msid:(.*)/,
+      format: 'msid:%s'
+    },
+    {
+      // a=ptime:20
+      name: 'ptime',
+      reg: /^ptime:(\d*(?:\.\d*)*)/,
+      format: 'ptime:%d'
+    },
+    {
+      // a=maxptime:60
+      name: 'maxptime',
+      reg: /^maxptime:(\d*(?:\.\d*)*)/,
+      format: 'maxptime:%d'
+    },
+    {
+      // a=sendrecv
+      name: 'direction',
+      reg: /^(sendrecv|recvonly|sendonly|inactive)/
+    },
+    {
+      // a=ice-lite
+      name: 'icelite',
+      reg: /^(ice-lite)/
+    },
+    {
+      // a=ice-ufrag:F7gI
+      name: 'iceUfrag',
+      reg: /^ice-ufrag:(\S*)/,
+      format: 'ice-ufrag:%s'
+    },
+    {
+      // a=ice-pwd:x9cml/YzichV2+XlhiMu8g
+      name: 'icePwd',
+      reg: /^ice-pwd:(\S*)/,
+      format: 'ice-pwd:%s'
+    },
+    {
+      // a=fingerprint:SHA-1 00:11:22:33:44:55:66:77:88:99:AA:BB:CC:DD:EE:FF:00:11:22:33
+      name: 'fingerprint',
+      reg: /^fingerprint:(\S*) (\S*)/,
+      names: ['type', 'hash'],
+      format: 'fingerprint:%s %s'
+    },
+    {
+      // a=candidate:0 1 UDP 2113667327 203.0.113.1 54400 typ host
+      // a=candidate:1162875081 1 udp 2113937151 192.168.34.75 60017 typ host generation 0 network-id 3 network-cost 10
+      // a=candidate:3289912957 2 udp 1845501695 193.84.77.194 60017 typ srflx raddr 192.168.34.75 rport 60017 generation 0 network-id 3 network-cost 10
+      // a=candidate:229815620 1 tcp 1518280447 192.168.150.19 60017 typ host tcptype active generation 0 network-id 3 network-cost 10
+      // a=candidate:3289912957 2 tcp 1845501695 193.84.77.194 60017 typ srflx raddr 192.168.34.75 rport 60017 tcptype passive generation 0 network-id 3 network-cost 10
+      push:'candidates',
+      reg: /^candidate:(\S*) (\d*) (\S*) (\d*) (\S*) (\d*) typ (\S*)(?: raddr (\S*) rport (\d*))?(?: tcptype (\S*))?(?: generation (\d*))?(?: network-id (\d*))?(?: network-cost (\d*))?/,
+      names: ['foundation', 'component', 'transport', 'priority', 'ip', 'port', 'type', 'raddr', 'rport', 'tcptype', 'generation', 'network-id', 'network-cost'],
+      format: function (o) {
+        var str = 'candidate:%s %d %s %d %s %d typ %s';
+
+        str += (o.raddr != null) ? ' raddr %s rport %d' : '%v%v';
+
+        // NB: candidate has three optional chunks, so %void middles one if it's missing
+        str += (o.tcptype != null) ? ' tcptype %s' : '%v';
+
+        if (o.generation != null) {
+          str += ' generation %d';
+        }
+
+        str += (o['network-id'] != null) ? ' network-id %d' : '%v';
+        str += (o['network-cost'] != null) ? ' network-cost %d' : '%v';
+        return str;
+      }
+    },
+    {
+      // a=end-of-candidates (keep after the candidates line for readability)
+      name: 'endOfCandidates',
+      reg: /^(end-of-candidates)/
+    },
+    {
+      // a=remote-candidates:1 203.0.113.1 54400 2 203.0.113.1 54401 ...
+      name: 'remoteCandidates',
+      reg: /^remote-candidates:(.*)/,
+      format: 'remote-candidates:%s'
+    },
+    {
+      // a=ice-options:google-ice
+      name: 'iceOptions',
+      reg: /^ice-options:(\S*)/,
+      format: 'ice-options:%s'
+    },
+    {
+      // a=ssrc:2566107569 cname:t9YU8M1UxTF8Y1A1
+      push: 'ssrcs',
+      reg: /^ssrc:(\d*) ([\w_-]*)(?::(.*))?/,
+      names: ['id', 'attribute', 'value'],
+      format: function (o) {
+        var str = 'ssrc:%d';
+        if (o.attribute != null) {
+          str += ' %s';
+          if (o.value != null) {
+            str += ':%s';
+          }
+        }
+        return str;
+      }
+    },
+    {
+      // a=ssrc-group:FEC 1 2
+      // a=ssrc-group:FEC-FR 3004364195 1080772241
+      push: 'ssrcGroups',
+      // token-char = %x21 / %x23-27 / %x2A-2B / %x2D-2E / %x30-39 / %x41-5A / %x5E-7E
+      reg: /^ssrc-group:([\x21\x23\x24\x25\x26\x27\x2A\x2B\x2D\x2E\w]*) (.*)/,
+      names: ['semantics', 'ssrcs'],
+      format: 'ssrc-group:%s %s'
+    },
+    {
+      // a=msid-semantic: WMS Jvlam5X3SX1OP6pn20zWogvaKJz5Hjf9OnlV
+      name: 'msidSemantic',
+      reg: /^msid-semantic:\s?(\w*) (\S*)/,
+      names: ['semantic', 'token'],
+      format: 'msid-semantic: %s %s' // space after ':' is not accidental
+    },
+    {
+      // a=group:BUNDLE audio video
+      push: 'groups',
+      reg: /^group:(\w*) (.*)/,
+      names: ['type', 'mids'],
+      format: 'group:%s %s'
+    },
+    {
+      // a=rtcp-mux
+      name: 'rtcpMux',
+      reg: /^(rtcp-mux)/
+    },
+    {
+      // a=rtcp-rsize
+      name: 'rtcpRsize',
+      reg: /^(rtcp-rsize)/
+    },
+    {
+      // a=sctpmap:5000 webrtc-datachannel 1024
+      name: 'sctpmap',
+      reg: /^sctpmap:([\w_/]*) (\S*)(?: (\S*))?/,
+      names: ['sctpmapNumber', 'app', 'maxMessageSize'],
+      format: function (o) {
+        return (o.maxMessageSize != null)
+          ? 'sctpmap:%s %s %s'
+          : 'sctpmap:%s %s';
+      }
+    },
+    {
+      // a=x-google-flag:conference
+      name: 'xGoogleFlag',
+      reg: /^x-google-flag:([^\s]*)/,
+      format: 'x-google-flag:%s'
+    },
+    {
+      // a=rid:1 send max-width=1280;max-height=720;max-fps=30;depend=0
+      push: 'rids',
+      reg: /^rid:([\d\w]+) (\w+)(?: ([\S| ]*))?/,
+      names: ['id', 'direction', 'params'],
+      format: function (o) {
+        return (o.params) ? 'rid:%s %s %s' : 'rid:%s %s';
+      }
+    },
+    {
+      // a=imageattr:97 send [x=800,y=640,sar=1.1,q=0.6] [x=480,y=320] recv [x=330,y=250]
+      // a=imageattr:* send [x=800,y=640] recv *
+      // a=imageattr:100 recv [x=320,y=240]
+      push: 'imageattrs',
+      reg: new RegExp(
+        // a=imageattr:97
+        '^imageattr:(\\d+|\\*)' +
+        // send [x=800,y=640,sar=1.1,q=0.6] [x=480,y=320]
+        '[\\s\\t]+(send|recv)[\\s\\t]+(\\*|\\[\\S+\\](?:[\\s\\t]+\\[\\S+\\])*)' +
+        // recv [x=330,y=250]
+        '(?:[\\s\\t]+(recv|send)[\\s\\t]+(\\*|\\[\\S+\\](?:[\\s\\t]+\\[\\S+\\])*))?'
+      ),
+      names: ['pt', 'dir1', 'attrs1', 'dir2', 'attrs2'],
+      format: function (o) {
+        return 'imageattr:%s %s %s' + (o.dir2 ? ' %s %s' : '');
+      }
+    },
+    {
+      // a=simulcast:send 1,2,3;~4,~5 recv 6;~7,~8
+      // a=simulcast:recv 1;4,5 send 6;7
+      name: 'simulcast',
+      reg: new RegExp(
+        // a=simulcast:
+        '^simulcast:' +
+        // send 1,2,3;~4,~5
+        '(send|recv) ([a-zA-Z0-9\\-_~;,]+)' +
+        // space + recv 6;~7,~8
+        '(?:\\s?(send|recv) ([a-zA-Z0-9\\-_~;,]+))?' +
+        // end
+        '$'
+      ),
+      names: ['dir1', 'list1', 'dir2', 'list2'],
+      format: function (o) {
+        return 'simulcast:%s %s' + (o.dir2 ? ' %s %s' : '');
+      }
+    },
+    {
+      // old simulcast draft 03 (implemented by Firefox)
+      //   https://tools.ietf.org/html/draft-ietf-mmusic-sdp-simulcast-03
+      // a=simulcast: recv pt=97;98 send pt=97
+      // a=simulcast: send rid=5;6;7 paused=6,7
+      name: 'simulcast_03',
+      reg: /^simulcast:[\s\t]+([\S+\s\t]+)$/,
+      names: ['value'],
+      format: 'simulcast: %s'
+    },
+    {
+      // a=framerate:25
+      // a=framerate:29.97
+      name: 'framerate',
+      reg: /^framerate:(\d+(?:$|\.\d+))/,
+      format: 'framerate:%s'
+    },
+    {
+      // RFC4570
+      // a=source-filter: incl IN IP4 239.5.2.31 10.1.15.5
+      name: 'sourceFilter',
+      reg: /^source-filter: *(excl|incl) (\S*) (IP4|IP6|\*) (\S*) (.*)/,
+      names: ['filterMode', 'netType', 'addressTypes', 'destAddress', 'srcList'],
+      format: 'source-filter: %s %s %s %s %s'
+    },
+    {
+      // a=bundle-only
+      name: 'bundleOnly',
+      reg: /^(bundle-only)/
+    },
+    {
+      // a=label:1
+      name: 'label',
+      reg: /^label:(.+)/,
+      format: 'label:%s'
+    },
+    {
+      // RFC version 26 for SCTP over DTLS
+      // https://tools.ietf.org/html/draft-ietf-mmusic-sctp-sdp-26#section-5
+      name: 'sctpPort',
+      reg: /^sctp-port:(\d+)$/,
+      format: 'sctp-port:%s'
+    },
+    {
+      // RFC version 26 for SCTP over DTLS
+      // https://tools.ietf.org/html/draft-ietf-mmusic-sctp-sdp-26#section-6
+      name: 'maxMessageSize',
+      reg: /^max-message-size:(\d+)$/,
+      format: 'max-message-size:%s'
+    },
+    {
+      // RFC7273
+      // a=ts-refclk:ptp=IEEE1588-2008:39-A7-94-FF-FE-07-CB-D0:37
+      push:'tsRefClocks',
+      reg: /^ts-refclk:([^\s=]*)(?:=(\S*))?/,
+      names: ['clksrc', 'clksrcExt'],
+      format: function (o) {
+        return 'ts-refclk:%s' + (o.clksrcExt != null ? '=%s' : '');
+      }
+    },
+    {
+      // RFC7273
+      // a=mediaclk:direct=963214424
+      name:'mediaClk',
+      reg: /^mediaclk:(?:id=(\S*))? *([^\s=]*)(?:=(\S*))?(?: *rate=(\d+)\/(\d+))?/,
+      names: ['id', 'mediaClockName', 'mediaClockValue', 'rateNumerator', 'rateDenominator'],
+      format: function (o) {
+        var str = 'mediaclk:';
+        str += (o.id != null ? 'id=%s %s' : '%v%s');
+        str += (o.mediaClockValue != null ? '=%s' : '');
+        str += (o.rateNumerator != null ? ' rate=%s' : '');
+        str += (o.rateDenominator != null ? '/%s' : '');
+        return str;
+      }
+    },
+    {
+      // a=keywds:keywords
+      name: 'keywords',
+      reg: /^keywds:(.+)$/,
+      format: 'keywds:%s'
+    },
+    {
+      // a=content:main
+      name: 'content',
+      reg: /^content:(.+)/,
+      format: 'content:%s'
+    },
+    // BFCP https://tools.ietf.org/html/rfc4583
+    {
+      // a=floorctrl:c-s
+      name: 'bfcpFloorCtrl',
+      reg: /^floorctrl:(c-only|s-only|c-s)/,
+      format: 'floorctrl:%s'
+    },
+    {
+      // a=confid:1
+      name: 'bfcpConfId',
+      reg: /^confid:(\d+)/,
+      format: 'confid:%s'
+    },
+    {
+      // a=userid:1
+      name: 'bfcpUserId',
+      reg: /^userid:(\d+)/,
+      format: 'userid:%s'
+    },
+    {
+      // a=floorid:1
+      name: 'bfcpFloorId',
+      reg: /^floorid:(.+) (?:m-stream|mstrm):(.+)/,
+      names: ['id', 'mStream'],
+      format: 'floorid:%s mstrm:%s'
+    },
+    {
+      // any a= that we don't understand is kept verbatim on media.invalid
+      push: 'invalid',
+      names: ['value']
+    }
+  ]
+};
+
+// set sensible defaults to avoid polluting the grammar with boring details
+Object.keys(grammar).forEach(function (key) {
+  var objs = grammar[key];
+  objs.forEach(function (obj) {
+    if (!obj.reg) {
+      obj.reg = /(.*)/;
+    }
+    if (!obj.format) {
+      obj.format = '%s';
+    }
+  });
+});
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/sdp-transform/index.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/sdp-transform/index.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/sdp-transform/index.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/sdp-transform/index.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,11 @@
+var parser = require('./parser');
+var writer = require('./writer');
+
+exports.write = writer;
+exports.parse = parser.parse;
+exports.parseParams = parser.parseParams;
+exports.parseFmtpConfig = parser.parseFmtpConfig; // Alias of parseParams().
+exports.parsePayloads = parser.parsePayloads;
+exports.parseRemoteCandidates = parser.parseRemoteCandidates;
+exports.parseImageAttributes = parser.parseImageAttributes;
+exports.parseSimulcastStreamList = parser.parseSimulcastStreamList;
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/sdp-transform/LICENSE thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/sdp-transform/LICENSE
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/sdp-transform/LICENSE	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/sdp-transform/LICENSE	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,22 @@
+(The MIT License)
+
+Copyright (c) 2013 Eirik Albrigtsen
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+'Software'), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED 'AS IS', WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
+IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY
+CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT,
+TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE
+SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/sdp-transform/parser.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/sdp-transform/parser.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/sdp-transform/parser.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/sdp-transform/parser.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,124 @@
+var toIntIfInt = function (v) {
+  return String(Number(v)) === v ? Number(v) : v;
+};
+
+var attachProperties = function (match, location, names, rawName) {
+  if (rawName && !names) {
+    location[rawName] = toIntIfInt(match[1]);
+  }
+  else {
+    for (var i = 0; i < names.length; i += 1) {
+      if (match[i+1] != null) {
+        location[names[i]] = toIntIfInt(match[i+1]);
+      }
+    }
+  }
+};
+
+var parseReg = function (obj, location, content) {
+  var needsBlank = obj.name && obj.names;
+  if (obj.push && !location[obj.push]) {
+    location[obj.push] = [];
+  }
+  else if (needsBlank && !location[obj.name]) {
+    location[obj.name] = {};
+  }
+  var keyLocation = obj.push ?
+    {} :  // blank object that will be pushed
+    needsBlank ? location[obj.name] : location; // otherwise, named location or root
+
+  attachProperties(content.match(obj.reg), keyLocation, obj.names, obj.name);
+
+  if (obj.push) {
+    location[obj.push].push(keyLocation);
+  }
+};
+
+var grammar = require('./grammar');
+var validLine = RegExp.prototype.test.bind(/^([a-z])=(.*)/);
+
+exports.parse = function (sdp) {
+  var session = {}
+    , media = []
+    , location = session; // points at where properties go under (one of the above)
+
+  // parse lines we understand
+  sdp.split(/(\r\n|\r|\n)/).filter(validLine).forEach(function (l) {
+    var type = l[0];
+    var content = l.slice(2);
+    if (type === 'm') {
+      media.push({rtp: [], fmtp: []});
+      location = media[media.length-1]; // point at latest media line
+    }
+
+    for (var j = 0; j < (grammar[type] || []).length; j += 1) {
+      var obj = grammar[type][j];
+      if (obj.reg.test(content)) {
+        return parseReg(obj, location, content);
+      }
+    }
+  });
+
+  session.media = media; // link it up
+  return session;
+};
+
+var paramReducer = function (acc, expr) {
+  var s = expr.split(/=(.+)/, 2);
+  if (s.length === 2) {
+    acc[s[0]] = toIntIfInt(s[1]);
+  } else if (s.length === 1 && expr.length > 1) {
+    acc[s[0]] = undefined;
+  }
+  return acc;
+};
+
+exports.parseParams = function (str) {
+  return str.split(/;\s?/).reduce(paramReducer, {});
+};
+
+// For backward compatibility - alias will be removed in 3.0.0
+exports.parseFmtpConfig = exports.parseParams;
+
+exports.parsePayloads = function (str) {
+  return str.toString().split(' ').map(Number);
+};
+
+exports.parseRemoteCandidates = function (str) {
+  var candidates = [];
+  var parts = str.split(' ').map(toIntIfInt);
+  for (var i = 0; i < parts.length; i += 3) {
+    candidates.push({
+      component: parts[i],
+      ip: parts[i + 1],
+      port: parts[i + 2]
+    });
+  }
+  return candidates;
+};
+
+exports.parseImageAttributes = function (str) {
+  return str.split(' ').map(function (item) {
+    return item.substring(1, item.length-1).split(',').reduce(paramReducer, {});
+  });
+};
+
+exports.parseSimulcastStreamList = function (str) {
+  return str.split(';').map(function (stream) {
+    return stream.split(',').map(function (format) {
+      var scid, paused = false;
+
+      if (format[0] !== '~') {
+        scid = toIntIfInt(format);
+      } else {
+        scid = toIntIfInt(format.substring(1, format.length));
+        paused = true;
+      }
+
+      return {
+        scid: scid,
+        paused: paused
+      };
+    });
+  });
+};
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/sdp-transform/writer.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/sdp-transform/writer.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/lib/sdp-transform/writer.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/lib/sdp-transform/writer.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,114 @@
+var grammar = require('./grammar');
+
+// customized util.format - discards excess arguments and can void middle ones
+var formatRegExp = /%[sdv%]/g;
+var format = function (formatStr) {
+  var i = 1;
+  var args = arguments;
+  var len = args.length;
+  return formatStr.replace(formatRegExp, function (x) {
+    if (i >= len) {
+      return x; // missing argument
+    }
+    var arg = args[i];
+    i += 1;
+    switch (x) {
+    case '%%':
+      return '%';
+    case '%s':
+      return String(arg);
+    case '%d':
+      return Number(arg);
+    case '%v':
+      return '';
+    }
+  });
+  // NB: we discard excess arguments - they are typically undefined from makeLine
+};
+
+var makeLine = function (type, obj, location) {
+  var str = obj.format instanceof Function ?
+    (obj.format(obj.push ? location : location[obj.name])) :
+    obj.format;
+
+  var args = [type + '=' + str];
+  if (obj.names) {
+    for (var i = 0; i < obj.names.length; i += 1) {
+      var n = obj.names[i];
+      if (obj.name) {
+        args.push(location[obj.name][n]);
+      }
+      else { // for mLine and push attributes
+        args.push(location[obj.names[i]]);
+      }
+    }
+  }
+  else {
+    args.push(location[obj.name]);
+  }
+  return format.apply(null, args);
+};
+
+// RFC specified order
+// TODO: extend this with all the rest
+var defaultOuterOrder = [
+  'v', 'o', 's', 'i',
+  'u', 'e', 'p', 'c',
+  'b', 't', 'r', 'z', 'a'
+];
+var defaultInnerOrder = ['i', 'c', 'b', 'a'];
+
+
+module.exports = function (session, opts) {
+  opts = opts || {};
+  // ensure certain properties exist
+  if (session.version == null) {
+    session.version = 0; // 'v=0' must be there (only defined version atm)
+  }
+  if (session.name == null) {
+    session.name = ' '; // 's= ' must be there if no meaningful name set
+  }
+  session.media.forEach(function (mLine) {
+    if (mLine.payloads == null) {
+      mLine.payloads = '';
+    }
+  });
+
+  var outerOrder = opts.outerOrder || defaultOuterOrder;
+  var innerOrder = opts.innerOrder || defaultInnerOrder;
+  var sdp = [];
+
+  // loop through outerOrder for matching properties on session
+  outerOrder.forEach(function (type) {
+    grammar[type].forEach(function (obj) {
+      if (obj.name in session && session[obj.name] != null) {
+        sdp.push(makeLine(type, obj, session));
+      }
+      else if (obj.push in session && session[obj.push] != null) {
+        session[obj.push].forEach(function (el) {
+          sdp.push(makeLine(type, obj, el));
+        });
+      }
+    });
+  });
+
+  // then for each media line, follow the innerOrder
+  session.media.forEach(function (mLine) {
+    sdp.push(makeLine('m', grammar.m[0], mLine));
+
+    innerOrder.forEach(function (type) {
+      grammar[type].forEach(function (obj) {
+        if (obj.name in mLine && mLine[obj.name] != null) {
+          sdp.push(makeLine(type, obj, mLine));
+        }
+        else if (obj.push in mLine && mLine[obj.push] != null) {
+          mLine[obj.push].forEach(function (el) {
+            sdp.push(makeLine(type, obj, el));
+          });
+        }
+      });
+    });
+  });
+
+  return sdp.join('\r\n') + '\r\n';
+};
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/matrixMessageContent.jsm thunderbird-102.10.0+build2/comm/chat/protocols/matrix/matrixMessageContent.jsm
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/matrixMessageContent.jsm	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/matrixMessageContent.jsm	2023-04-11 06:11:52.000000000 +0000
@@ -7,9 +7,7 @@
 var { XPCOMUtils, l10nHelper } = ChromeUtils.import(
   "resource:///modules/imXPCOMUtils.jsm"
 );
-const { MatrixSDK, getHttpUriForMxc } = ChromeUtils.import(
-  "resource:///modules/matrix-sdk.jsm"
-);
+const { MatrixSDK } = ChromeUtils.import("resource:///modules/matrix-sdk.jsm");
 XPCOMUtils.defineLazyModuleGetters(this, {
   getMatrixTextForEvent: "resource:///modules/matrixTextForEvent.jsm",
 });
@@ -45,14 +43,14 @@
  */
 function getAttachmentUrl(content, homeserverUrl) {
   if (content.file?.v == "v2") {
-    return getHttpUriForMxc(homeserverUrl, content.file.url);
+    return MatrixSDK.getHttpUriForMxc(homeserverUrl, content.file.url);
     //TODO Actually handle encrypted file contents.
   }
   if (!content.url.startsWith("mxc:")) {
     // Ignore content not served by the homeserver's media repo
     return "";
   }
-  return getHttpUriForMxc(homeserverUrl, content.url);
+  return MatrixSDK.getHttpUriForMxc(homeserverUrl, content.url);
 }
 
 /**
@@ -215,7 +213,7 @@
     if (image.alt) {
       if (image.src.startsWith("mxc:")) {
         const link = parsedBody.createElement("a");
-        link.href = getHttpUriForMxc(homeserverUrl, image.src);
+        link.href = MatrixSDK.getHttpUriForMxc(homeserverUrl, image.src);
         link.textContent = image.alt;
         if (image.title) {
           link.title = image.title;
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/matrix-sdk.jsm thunderbird-102.10.0+build2/comm/chat/protocols/matrix/matrix-sdk.jsm
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/matrix-sdk.jsm	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/matrix-sdk.jsm	2023-04-11 06:11:52.000000000 +0000
@@ -14,7 +14,7 @@
 );
 const { Services } = ChromeUtils.import("resource://gre/modules/Services.jsm");
 
-const { Loader, Require, Module } = ChromeUtils.import(
+const { Loader, Require } = ChromeUtils.import(
   "resource://devtools/shared/loader/base-loader.js"
 );
 
@@ -22,7 +22,6 @@
 
 const EXPORTED_SYMBOLS = [
   "MatrixSDK",
-  "getHttpUriForMxc",
   "MatrixCrypto",
   "SyncState",
   "OlmLib",
@@ -30,14 +29,30 @@
   "ReceiptType",
 ];
 
+/**
+ * Set of packages that have a top level index.js. This makes it so we don't
+ * even try to require them as a js file directly and just fall through to the
+ * index.js logic. These are paths without matrixPath in front.
+ *
+ * @type {Set<string>}
+ */
+const KNOWN_INDEX_JS = new Set([
+  "matrix_events_sdk",
+  "p_retry",
+  "retry",
+  "sdp_transform",
+  "unhomoglyph",
+  "matrix_sdk/crypto",
+  "matrix_sdk/crypto/algorithms",
+  "matrix_sdk/http_api",
+  "matrix_sdk/rendezvous",
+  "matrix_sdk/rendezvous/channels",
+  "matrix_sdk/rendezvous/transports",
+  "matrix_widget_api",
+]);
+
 // Set-up loading so require works properly in CommonJS modules.
-//
-// These are organized in a somewhat funky way:
-// * First they're ordered by module.
-// * Then they're ordered alphabetically by the destination file (e.g. this
-//   keeps all references to utils.js next to each other).
-// * They're then ordered by source, with the bare name first, then prefixed by
-//   ., then prefixed by .., etc.
+
 let matrixPath = "resource:///modules/matrix/";
 
 let globals = {
@@ -45,36 +60,29 @@
   btoa,
   crypto,
   console,
-  XMLHttpRequest,
+  fetch,
   setTimeout,
   clearTimeout,
   setInterval,
   clearInterval,
+  AbortController,
   TextEncoder,
   TextDecoder,
-  location: { href: "" }, // workaround for browser-request's is_crossDomain
+  URL,
+  URLSearchParams,
+  IDBKeyRange,
+  get window() {
+    return globals;
+  },
 
   // Necessary for interacting with the logging framework.
   scriptError,
   imIDebugMessage: Ci.imIDebugMessage,
-  URL,
-  URLSearchParams,
-  IDBKeyRange,
 };
 let loaderGlobal = {
-  /**
-   * We want a minimal window to make sure the SDK stays in non-browser mode
-   * for the most part.
-   */
   get window() {
-    return {
-      crypto,
-    };
+    return globals;
   },
-  /**
-   * Global should not hold a self-reference to avoid |global.window| from
-   * being defined, so the SDK doesn't think it's running in a website.
-   */
   get global() {
     return globals;
   },
@@ -83,191 +91,98 @@
 let loader = Loader({
   paths: {
     // Matrix SDK files.
-    "": matrixPath + "matrix_sdk/",
-    matrix: matrixPath + "matrix_sdk/matrix.js",
-    "../matrix": matrixPath + "matrix_sdk/matrix.js",
-    "../client": matrixPath + "matrix_sdk/client.js",
-    "../content-repo": matrixPath + "matrix_sdk/content-repo.js",
-    "../../errors": matrixPath + "matrix_sdk/errors.js",
-    "../errors": matrixPath + "matrix_sdk/errors.js",
-    "../indexeddb-helpers": matrixPath + "matrix_sdk/indexeddb-helpers.js",
-    "../../indexeddb-helpers": matrixPath + "matrix_sdk/indexeddb-helpers.js",
-    "../http-api": matrixPath + "matrix_sdk/http-api.js",
-    "../logger": matrixPath + "matrix_sdk/logger.js",
-    "../../logger": matrixPath + "matrix_sdk/logger.js",
-    "../NamespacedValue": matrixPath + "matrix_sdk/NamespacedValue.js",
-    "../randomstring": matrixPath + "matrix_sdk/randomstring.js",
-    "../ReEmitter": matrixPath + "matrix_sdk/ReEmitter.js",
-    "../sync-accumulator": matrixPath + "matrix_sdk/sync-accumulator.js",
-    "../utils": matrixPath + "matrix_sdk/utils.js",
-    "../utils.js": matrixPath + "matrix_sdk/utils.js",
-    "../../utils": matrixPath + "matrix_sdk/utils.js",
-
-    // @types
-    "@types/auth": matrixPath + "matrix_sdk/types/auth.js",
-    "@types/beacon": matrixPath + "matrix_sdk/types/beacon.js",
-    "@types/event": matrixPath + "matrix_sdk/types/event.js",
-    "../@types/event": matrixPath + "matrix_sdk/types/event.js",
-    "../../@types/event": matrixPath + "matrix_sdk/types/event.js",
-    "@types/extensible_events":
-      matrixPath + "matrix_sdk/types/extensible_events.js",
-    "@types/location": matrixPath + "matrix_sdk/types/location.js",
-    "@types/partials": matrixPath + "matrix_sdk/types/partials.js",
-    "@types/PushRules": matrixPath + "matrix_sdk/types/PushRules.js",
-    "@types/read_receipts": matrixPath + "matrix_sdk/types/read_receipts.js",
-    "@types/requests": matrixPath + "empty.js",
-    "@types/search": matrixPath + "matrix_sdk/types/search.js",
-    "@types/topic": matrixPath + "matrix_sdk/types/topic.js",
-
-    // crypto
-    index: matrixPath + "matrix_sdk/crypto/index.js",
-    "crypto/api": matrixPath + "matrix_sdk/crypto/api.js",
-    backup: matrixPath + "matrix_sdk/crypto/backup.js",
-    "crypto/backup": matrixPath + "matrix_sdk/crypto/backup.js",
-    deviceinfo: matrixPath + "matrix_sdk/crypto/deviceinfo.js",
-    "../deviceinfo": matrixPath + "matrix_sdk/crypto/deviceinfo.js",
-    DeviceList: matrixPath + "matrix_sdk/crypto/DeviceList.js",
-    "../DeviceList": matrixPath + "matrix_sdk/crypto/DeviceList.js",
-    crypto: matrixPath + "matrix_sdk/crypto/index.js",
-    olmlib: matrixPath + "matrix_sdk/crypto/olmlib.js",
-    "../olmlib": matrixPath + "matrix_sdk/crypto/olmlib.js",
-    "crypto/olmlib": matrixPath + "matrix_sdk/crypto/olmlib.js",
-    OlmDevice: matrixPath + "matrix_sdk/crypto/OlmDevice.js",
-    "../OlmDevice": matrixPath + "matrix_sdk/crypto/OlmDevice.js",
-    "crypto/recoverykey": matrixPath + "matrix_sdk/crypto/recoverykey.js",
-    recoverykey: matrixPath + "matrix_sdk/crypto/recoverykey.js",
-    OutgoingRoomKeyRequestManager:
-      matrixPath + "matrix_sdk/crypto/OutgoingRoomKeyRequestManager.js",
-    "../OutgoingRoomKeyRequestManager":
-      matrixPath + "matrix_sdk/crypto/OutgoingRoomKeyRequestManager.js",
-    "crypto/RoomList": matrixPath + "matrix_sdk/crypto/RoomList.js",
-    "crypto/CrossSigning": matrixPath + "matrix_sdk/crypto/CrossSigning.js",
-    CrossSigning: matrixPath + "matrix_sdk/crypto/CrossSigning.js",
-    EncryptionSetup: matrixPath + "matrix_sdk/crypto/EncryptionSetup.js",
-    SecretStorage: matrixPath + "matrix_sdk/crypto/SecretStorage.js",
-    aes: matrixPath + "matrix_sdk/crypto/aes.js",
-    dehydration: matrixPath + "matrix_sdk/crypto/dehydration.js",
-    "crypto/dehydration": matrixPath + "matrix_sdk/crypto/dehydration.js",
-    key_passphrase: matrixPath + "matrix_sdk/crypto/key_passphrase.js",
-    "crypto/key_passphrase": matrixPath + "matrix_sdk/crypto/key_passphrase.js",
-
-    // crypto/algorithms
-    base: matrixPath + "matrix_sdk/crypto/algorithms/base.js",
-    algorithms: matrixPath + "matrix_sdk/crypto/algorithms/index.js",
-    megolm: matrixPath + "matrix_sdk/crypto/algorithms/megolm.js",
-    "crypto/algorithms/megolm":
-      matrixPath + "matrix_sdk/crypto/algorithms/megolm.js",
-    olm: matrixPath + "matrix_sdk/crypto/algorithms/olm.js",
-
-    // crypto/store
-    "store/indexeddb-crypto-store":
-      matrixPath + "matrix_sdk/crypto/store/indexeddb-crypto-store.js",
-    "crypto/store/indexeddb-crypto-store":
-      matrixPath + "matrix_sdk/crypto/store/indexeddb-crypto-store.js",
-    "../crypto/store/indexeddb-crypto-store":
-      matrixPath + "matrix_sdk/crypto/store/indexeddb-crypto-store.js",
-    "crypto/store/indexeddb-crypto-store-backend":
-      matrixPath + "matrix_sdk/crypto/store/indexeddb-crypto-store-backend.js",
-    "crypto/store/localStorage-crypto-store":
-      matrixPath + "matrix_sdk/crypto/store/localStorage-crypto-store.js",
-    "crypto/store/memory-crypto-store":
-      matrixPath + "matrix_sdk/crypto/store/memory-crypto-store.js",
-
-    // crypto/verification
-    Base: matrixPath + "matrix_sdk/crypto/verification/Base.js",
-    Error: matrixPath + "matrix_sdk/crypto/verification/Error.js",
-    "verification/Base": matrixPath + "matrix_sdk/crypto/verification/Base.js",
-    "verification/Error":
-      matrixPath + "matrix_sdk/crypto/verification/Error.js",
-    "verification/QRCode":
-      matrixPath + "matrix_sdk/crypto/verification/QRCode.js",
-    "verification/SAS": matrixPath + "matrix_sdk/crypto/verification/SAS.js",
-    "crypto/verification/SAS":
-      matrixPath + "matrix_sdk/crypto/verification/SAS.js",
-    "verification/IllegalMethod":
-      matrixPath + "matrix_sdk/crypto/verification/IllegalMethod.js",
-
-    // crypto/verification/request
-    "verification/request/InRoomChannel":
-      matrixPath + "matrix_sdk/crypto/verification/request/InRoomChannel.js",
-    "verification/request/ToDeviceChannel":
-      matrixPath + "matrix_sdk/crypto/verification/request/ToDeviceChannel.js",
-    "verification/request/VerificationRequest":
-      matrixPath +
-      "matrix_sdk/crypto/verification/request/VerificationRequest.js",
-
-    // models
-    "../models/event": matrixPath + "matrix_sdk/models/event.js",
-    "../../models/event": matrixPath + "matrix_sdk/models/event.js",
-    "../lib/models/event": matrixPath + "matrix_sdk/models/event.js",
-    "../../lib/models/event": matrixPath + "matrix_sdk/models/event.js",
-    "../models/room": matrixPath + "matrix_sdk/models/room.js",
-    "../models/room-member": matrixPath + "matrix_sdk/models/room-member.js",
-    "../models/typed-event-emitter":
-      matrixPath + "matrix_sdk/models/typed-event-emitter.js",
-    "../models/user": matrixPath + "matrix_sdk/models/user.js",
+    "matrix-sdk": matrixPath + "matrix_sdk",
+    "matrix-sdk/@types": matrixPath + "matrix_sdk/types",
+    "matrix-sdk/@types/requests": matrixPath + "empty.js",
+    "matrix-sdk/http-api": matrixPath + "matrix_sdk/http_api",
+    "matrix-sdk/rust-crypto": matrixPath + "matrix_sdk/rust_crypto",
 
     // Simple (one-file) dependencies.
     "another-json": matrixPath + "another-json.js",
     "base-x": matrixPath + "base_x/index.js",
-    "browser-request": matrixPath + "browser_request/index.js",
     bs58: matrixPath + "bs58/index.js",
     "content-type": matrixPath + "content_type/index.js",
-    qs: matrixPath + "qs.js",
 
     // unhomoglyph
-    unhomoglyph: matrixPath + "unhomoglyph/index.js",
-    "data.json": matrixPath + "unhomoglyph/data.json",
+    unhomoglyph: matrixPath + "unhomoglyph",
 
     // p-retry
-    "p-retry": matrixPath + "p_retry/index.js",
-    retry: matrixPath + "retry/index.js",
-    "lib/retry": matrixPath + "retry/lib/retry.js",
-    "lib/retry_operation": matrixPath + "retry/lib/retry_operation.js",
+    "p-retry": matrixPath + "p_retry",
+    retry: matrixPath + "retry",
 
     // matrix-events-sdk
-    "matrix-events-sdk": matrixPath + "matrix_events_sdk/index.js",
-    ExtensibleEvents: matrixPath + "matrix_events_sdk/ExtensibleEvents.js",
-    InvalidEventError: matrixPath + "matrix_events_sdk/InvalidEventError.js",
-    IPartialEvent: matrixPath + "empty.js",
-    types: matrixPath + "matrix_events_sdk/types.js",
-    NamespacedMap: matrixPath + "matrix_events_sdk/NamespacedMap.js",
-    "events/EmoteEvent": matrixPath + "matrix_events_sdk/events/EmoteEvent.js",
-    "events/ExtensibleEvent":
-      matrixPath + "matrix_events_sdk/events/ExtensibleEvent.js",
-    "events/MessageEvent":
-      matrixPath + "matrix_events_sdk/events/MessageEvent.js",
-    "events/message_types":
-      matrixPath + "matrix_events_sdk/events/message_types.js",
-    "events/NoticeEvent":
-      matrixPath + "matrix_events_sdk/events/NoticeEvent.js",
-    "events/poll_types": matrixPath + "matrix_events_sdk/events/poll_types.js",
-    "events/PollEndEvent":
-      matrixPath + "matrix_events_sdk/events/PollEndEvent.js",
-    "events/PollResponseEvent":
-      matrixPath + "matrix_events_sdk/events/PollResponseEvent.js",
-    "events/PollStartEvent":
-      matrixPath + "matrix_events_sdk/events/PollStartEvent.js",
-    "events/relationship_types":
-      matrixPath + "matrix_events_sdk/events/relationship_types.js",
-    "interpreters/legacy/MRoomMessage":
-      matrixPath + "matrix_events_sdk/interpreters/legacy/MRoomMessage.js",
-    "interpreters/modern/MMessage":
-      matrixPath + "matrix_events_sdk/interpreters/modern/MMessage.js",
-    "interpreters/modern/MPoll":
-      matrixPath + "matrix_events_sdk/interpreters/modern/MPoll.js",
-    "utility/events": matrixPath + "matrix_events_sdk/utility/events.js",
-    "utility/MessageMatchers":
-      matrixPath + "matrix_events_sdk/utility/MessageMatchers.js",
+    "matrix-events-sdk": matrixPath + "matrix_events_sdk",
+    "matrix-events-sdk/IPartialEvent": matrixPath + "empty.js",
+
+    // matrix-widget-api
+    "matrix-widget-api": matrixPath + "matrix_widget_api",
+    "matrix-widget-api/interfaces/CapabilitiesAction": matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/ContentLoadedAction": matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/ICustomWidgetData": matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/IJitsiWidgetData": matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/IRoomEvent": matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/IStickerpickerWidgetData":
+      matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/IWidget": matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/IWidgetApiRequest": matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/IWidgetApiResponse": matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/NavigateAction": matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/OpenIDCredentialsAction":
+      matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/ReadEventAction": matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/ReadRelationsAction": matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/ScreenshotAction": matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/SetModalButtonEnabledAction":
+      matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/SendAction": matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/SendEventAction": matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/SendToDeviceAction": matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/StickerAction": matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/StickyAction": matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/SupportedVersionsAction":
+      matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/TurnServerActions": matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/VisibilityAction": matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/WidgetAction": matrixPath + "empty.js",
+    "matrix-widget-api/interfaces/WidgetConfigAction": matrixPath + "empty.js",
+    "matrix-widget-api/transport/ITransport": matrixPath + "empty.js",
+
+    // sdp-transform
+    "sdp-transform": matrixPath + "sdp_transform",
 
     // Packages that are not included, but an alternate implementation is given.
     events: matrixPath + "events.js",
     loglevel: matrixPath + "loglevel.js",
     "safe-buffer": matrixPath + "safe-buffer.js",
-    url: matrixPath + "url.js",
+    uuid: matrixPath + "uuid.js",
   },
   globals: loaderGlobal,
   sandboxName: "Matrix SDK",
+  // Custom require hook to support loading */index.js without explicitly
+  // including it in the require path.
+  requireHook: (id, require) => {
+    try {
+      // Get resolved path without matrixPath prefix and .js extension.
+      const resolved = require.resolve(id).slice(matrixPath.length, -3);
+      if (KNOWN_INDEX_JS.has(resolved)) {
+        throw new Error("Must require index.js for module " + id);
+      }
+      return require(id);
+    } catch (error) {
+      // Make sure we only try to look for index.js on the initial failure and
+      // not in requires earlier in the tree.
+      if (!error.rethrown && !id.endsWith("/index.js")) {
+        try {
+          return require(id + "/index.js");
+        } catch (indexError) {
+          indexError.rethrown = true;
+          throw indexError;
+        }
+      }
+      error.rethrown = true;
+      throw error;
+    }
+  },
 });
 
 // Load olm library in a browser-like environment. This allows it to load its
@@ -299,25 +214,18 @@
 loader.globals.Olm = olmScope.Olm;
 globals.Olm = olmScope.Olm;
 
-let requirer = Module("matrix-module", "");
-let require = Require(loader, requirer);
+let require = Require(loader, { id: "matrix-module" });
 
 // Load the buffer shim into the global commonJS scope
 loader.globals.Buffer = require("safe-buffer").Buffer;
 globals.Buffer = loader.globals.Buffer;
 
 // The main entry point into the Matrix client.
-let MatrixSDK = require("browser-index.js");
-
-// Helper functions.
-let getHttpUriForMxc = require("../content-repo").getHttpUriForMxc;
-
-let MatrixCrypto = require("./crypto");
-
-let { SyncState } = require("./sync");
-
-let OlmLib = require("./crypto/olmlib");
-
-let { SasEvent } = require("./crypto/verification/SAS");
+let MatrixSDK = require("matrix-sdk/browser-index.js");
 
-let { ReceiptType } = require("@types/read_receipts");
+// Helper enums not exposed on MatrixSDK.
+let MatrixCrypto = require("matrix-sdk/crypto");
+let { SyncState } = require("matrix-sdk/sync");
+let OlmLib = require("matrix-sdk/crypto/olmlib");
+let { SasEvent } = require("matrix-sdk/crypto/verification/SAS");
+let { ReceiptType } = require("matrix-sdk/@types/read_receipts");
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/shims/moz.build thunderbird-102.10.0+build2/comm/chat/protocols/matrix/shims/moz.build
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/shims/moz.build	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/shims/moz.build	2023-04-11 06:11:52.000000000 +0000
@@ -10,5 +10,5 @@
     "empty.js",
     "loglevel.js",
     "safe-buffer.js",
-    "url.js",
+    "uuid.js",
 ]
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/shims/url.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/shims/url.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/shims/url.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/shims/url.js	1970-01-01 00:00:00.000000000 +0000
@@ -1,15 +0,0 @@
-/* This Source Code Form is subject to the terms of the Mozilla Public
- * License, v. 2.0. If a copy of the MPL was not distributed with this
- * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
-
-"use strict";
-
-/* globals module */
-
-function parse(u) {
-  return new URL(u);
-}
-
-module.exports = {
-  parse,
-};
diff -Nru thunderbird-102.9.0+build1/comm/chat/protocols/matrix/shims/uuid.js thunderbird-102.10.0+build2/comm/chat/protocols/matrix/shims/uuid.js
--- thunderbird-102.9.0+build1/comm/chat/protocols/matrix/shims/uuid.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/chat/protocols/matrix/shims/uuid.js	2023-04-11 06:11:52.000000000 +0000
@@ -0,0 +1,13 @@
+/* This Source Code Form is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
+
+"use strict";
+
+/* globals module */
+
+const v4 = () => crypto.randomUUID();
+
+module.exports = {
+  v4,
+};
diff -Nru thunderbird-102.9.0+build1/comm/.gecko_rev.yml thunderbird-102.10.0+build2/comm/.gecko_rev.yml
--- thunderbird-102.9.0+build1/comm/.gecko_rev.yml	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/.gecko_rev.yml	2023-04-11 06:11:52.000000000 +0000
@@ -1,8 +1,8 @@
 ---
 GECKO_BASE_REPOSITORY: https://hg.mozilla.org/mozilla-unified
 GECKO_HEAD_REPOSITORY: https://hg.mozilla.org/releases/mozilla-esr102
-GECKO_HEAD_REF: FIREFOX_102_9_0esr_BUILD2
-GECKO_HEAD_REV: e26ff04290d095dac006a3710b07077ee5d20f31
+GECKO_HEAD_REF: FIREFOX_102_10_0esr_BUILD1
+GECKO_HEAD_REV: 737a5c36e0f939b688ff1d6fb75b139cfdf60ae9
 
 ### For comm-central
 # GECKO_BASE_REPOSITORY: https://hg.mozilla.org/mozilla-unified
diff -Nru thunderbird-102.9.0+build1/comm/mail/base/content/overrides/app-license-body.html thunderbird-102.10.0+build2/comm/mail/base/content/overrides/app-license-body.html
--- thunderbird-102.9.0+build1/comm/mail/base/content/overrides/app-license-body.html	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mail/base/content/overrides/app-license-body.html	2023-04-11 06:11:52.000000000 +0000
@@ -4,6 +4,198 @@
 
     <hr>
 
+    <h1><a id="tb-apache"></a>Apache License 2.0</h1>
+
+    <p>This license applies to the following files:
+    <ul>
+        <li><code>chat/protocols/matrix/lib/@matrix-org/olm</code></li>
+        <li><code>chat/protocols/matrix/lib/another-json</code></li>
+        <li><code>chat/protocols/matrix/lib/matrix-events-sdk</code></li>
+        <li><code>chat/protocols/matrix/lib/matrix-sdk</code></li>
+        <li><code>chat/protocols/matrix/lib/matrix-widget-api</code></li>
+    </ul>
+    </p>
+
+<pre>
+
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+</pre>
+
     <h1><a id="tb-bsd3clause"></a>BSD-3-Clause License</h1>
 
     <p>This license applies to the following files:
@@ -17,9 +209,9 @@
     </ul>
     </p>
 
-<pre>
-  Copyright (c) 2012, Intel Corporation
+    See the individual LICENSE files for copyright owners.
 
+<pre>
   All rights reserved.
 
   Redistribution and use in source and binary forms, with or without
@@ -693,7 +885,7 @@
 CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
     </pre>
 
-    <h2>getopt.c License</h2>
+    <h1><a id="tb-getopt">getopt.c License</a></h1>
     <p>This license applies to the following files:</p>
     <ul>
       <li><code>third_party/niwcompat/getopt.c</code></li>
@@ -727,3 +919,305 @@
 ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
 POSSIBILITY OF SUCH DAMAGE.
     </pre>
+
+    <h1><a id="tb-base-x">base-x License</a></h1>
+    <p>This license applies to the following files:</p>
+    <ul>
+      <li><code>chat/protocols/matrix/lib/base-x</code></li>
+    </ul>
+    <pre>
+The MIT License (MIT)
+
+Copyright (c) 2018 base-x contributors
+Copyright (c) 2014-2018 The Bitcoin Core developers
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
+    </pre>
+
+
+    <h1><a id="tb-bs58">bs58 License</a></h1>
+    <p>This license applies to the following files:</p>
+    <ul>
+      <li><code>chat/protocols/matrix/lib/bs58</code></li>
+    </ul>
+    <pre>
+MIT License
+
+Copyright (c) 2018 cryptocoinjs
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
+    </pre>
+
+
+    <h1><a id="tb-content-type">content-type License</a></h1>
+    <p>This license applies to the following files:</p>
+    <ul>
+      <li><code>chat/protocols/matrix/lib/content-type</code></li>
+    </ul>
+    <pre>
+(The MIT License)
+
+Copyright (c) 2015 Douglas Christopher Wilson
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+'Software'), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED 'AS IS', WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
+IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY
+CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT,
+TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE
+SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+    </pre>
+
+
+    <h1><a id="tb-events">events License</a></h1>
+    <p>This license applies to the following files:</p>
+    <ul>
+      <li><code>chat/protocols/matrix/lib/events</code></li>
+    </ul>
+    <pre>
+MIT
+
+Copyright Joyent, Inc. and other Node contributors.
+
+Permission is hereby granted, free of charge, to any person obtaining a
+copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to permit
+persons to whom the Software is furnished to do so, subject to the
+following conditions:
+
+The above copyright notice and this permission notice shall be included
+in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
+OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
+NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
+DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
+OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
+USE OR OTHER DEALINGS IN THE SOFTWARE.
+    </pre>
+
+
+    <h1><a id="tb-p-retry">p-retry License</a></h1>
+    <p>This license applies to the following files:</p>
+    <ul>
+      <li><code>chat/protocols/matrix/lib/p-retry</code></li>
+    </ul>
+    <pre>
+MIT License
+
+Copyright (c) Sindre Sorhus <sindresorhus@gmail.com> (sindresorhus.com)
+
+Permission is hereby granted, free of charge, to any person obtaining a
+copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to permit
+persons to whom the Software is furnished to do so, subject to the
+following conditions:
+
+The above copyright notice and this permission notice shall be included
+in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
+OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
+NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
+DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
+OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
+USE OR OTHER DEALINGS IN THE SOFTWARE.
+    </pre>
+
+    <h1><a id="tb-retry">retry License</a></h1>
+    <p>This license applies to the following files:</p>
+    <ul>
+      <li><code>chat/protocols/matrix/lib/retry</code></li>
+    </ul>
+    <pre>
+Copyright (c) 2011:
+Tim Koschützki (tim@debuggable.com)
+Felix Geisendörfer (felix@debuggable.com)
+
+ Permission is hereby granted, free of charge, to any person obtaining a copy
+ of this software and associated documentation files (the "Software"), to deal
+ in the Software without restriction, including without limitation the rights
+ to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+ copies of the Software, and to permit persons to whom the Software is
+ furnished to do so, subject to the following conditions:
+
+ The above copyright notice and this permission notice shall be included in
+ all copies or substantial portions of the Software.
+
+ THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+ IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+ FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+ AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+ LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+ OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+ THE SOFTWARE.
+    </pre>
+
+    <h1><a id="tb-unhomoglyph">unhomoglyph License</a></h1>
+    <p>This license applies to the following files:</p>
+    <ul>
+      <li><code>chat/protocols/matrix/lib/unhomoglyph</code></li>
+    </ul>
+    <pre>
+Copyright (c) 2016 Vitaly Puzrin.
+
+Permission is hereby granted, free of charge, to any person
+obtaining a copy of this software and associated documentation
+files (the "Software"), to deal in the Software without
+restriction, including without limitation the rights to use,
+copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the
+Software is furnished to do so, subject to the following
+conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES
+OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT
+HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY,
+WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
+FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR
+OTHER DEALINGS IN THE SOFTWARE.
+    </pre>
+
+    <h1><a id="tb-sax">sax License</a></h1>
+    <p>This license applies to the following files:</p>
+    <ul>
+      <li><code>chat/protocols/xmpp/lib/sax</code></li>
+    </ul>
+    <pre>
+The ISC License
+
+Copyright (c) Isaac Z. Schlueter and Contributors
+
+Permission to use, copy, modify, and/or distribute this software for any
+purpose with or without fee is hereby granted, provided that the above
+copyright notice and this permission notice appear in all copies.
+
+THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
+WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
+MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
+ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
+WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
+ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR
+IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
+
+====
+
+`String.fromCodePoint` by Mathias Bynens used according to terms of MIT
+License, as follows:
+
+    Copyright Mathias Bynens <https://mathiasbynens.be/>
+
+    Permission is hereby granted, free of charge, to any person obtaining
+    a copy of this software and associated documentation files (the
+    "Software"), to deal in the Software without restriction, including
+    without limitation the rights to use, copy, modify, merge, publish,
+    distribute, sublicense, and/or sell copies of the Software, and to
+    permit persons to whom the Software is furnished to do so, subject to
+    the following conditions:
+
+    The above copyright notice and this permission notice shall be
+    included in all copies or substantial portions of the Software.
+
+    THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+    EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+    MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+    NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+    LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+    OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+    WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+    </pre>
+
+    <h1><a id="tb-lgpl">GNU Lesser General Public License 2.1</a></h1>
+    <p>This product contains code from the following LGPLed libraries:</p>
+    <ul>
+      <li><a href="https://www.gnupg.org/ftp/gcrypt/libgcrypt/">libgcrypt</a></li>
+      <li><a href="https://www.gnupg.org/ftp/gcrypt/libgpg-error/">gpg-error</a></li>
+      <li><a href="https://otr.cypherpunks.ca/">libotr</a></li>
+    </ul>
+
+    (These libraries only ship in some versions of this product.)
+    <a href="#lgpl">Read the license above.</a>
+
+    <h1><a id="tb-sdp-transform">sdp-transform License</a></h1>
+    <p>This license applies to the following files:</p>
+    <ul>
+      <li><code>chat/protocols/matrix/lib/sdp-transform</code></li>
+    </ul>
+    <pre>
+(The MIT License)
+
+Copyright (c) 2013 Eirik Albrigtsen
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+'Software'), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED 'AS IS', WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
+IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY
+CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT,
+TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE
+SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+    </pre>
diff -Nru thunderbird-102.9.0+build1/comm/mail/base/content/overrides/app-license-list.html thunderbird-102.10.0+build2/comm/mail/base/content/overrides/app-license-list.html
--- thunderbird-102.9.0+build1/comm/mail/base/content/overrides/app-license-list.html	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mail/base/content/overrides/app-license-list.html	2023-04-11 06:11:52.000000000 +0000
@@ -5,6 +5,7 @@
 <br>
 
     <ul>
+      <li><a href="about:license#tb-apache">Apache License 2.0</a></li>
       <li><a href="about:license#tb-bsd3clause">BSD-3-Clause License</a></li>
       <li><a href="about:license#tb-xlicense">X License</a></li>
       <li><a href="about:license#tb-publicdomain">Public domain</a></li>
@@ -16,4 +17,14 @@
       <li><a href="about:license#tb-direntlicense">Dirent License</a></li>
       <li><a href="about:license#tb-mapiheaders">MAPI Headers License</a></li>
       <li><a href="about:license#tb-getopt">Getopt.c License</a></li>
+      <li><a href="about:license#tb-base-x">base-x License</a></li>
+      <li><a href="about:license#tb-bs58">bs58 License</a></li>
+      <li><a href="about:license#tb-content-type">content-type License</a></li>
+      <li><a href="about:license#tb-events">events License</a></li>
+      <li><a href="about:license#tb-p-retry">p-retry License</a></li>
+      <li><a href="about:license#tb-retry">retry License</a></li>
+      <li><a href="about:license#tb-unhomoglyph">unhomoglyph License</a></li>
+      <li><a href="about:license#tb-sax">sax License</a></li>
+      <li><a href="about:license#tb-lgpl">GNU Lesser General Public License 2.1</a></li>
+      <li><a href="about:license#tb-sdp-transform">sdp-transform License</a></li>
     </ul>
diff -Nru thunderbird-102.9.0+build1/comm/mail/components/compose/content/MsgComposeCommands.js thunderbird-102.10.0+build2/comm/mail/components/compose/content/MsgComposeCommands.js
--- thunderbird-102.9.0+build1/comm/mail/components/compose/content/MsgComposeCommands.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mail/components/compose/content/MsgComposeCommands.js	2023-04-11 06:11:52.000000000 +0000
@@ -170,7 +170,8 @@
 // gSMFields separate allows switching as needed.
 var gSMFields = null;
 
-var gSMCertsMap = new Map();
+var gSMPendingCertLookupSet = new Set();
+var gSMCertsAlreadyLookedUpInLDAP = new Set();
 
 var gSelectedTechnologyIsPGP = false;
 
@@ -316,13 +317,13 @@
 };
 
 const keyObserver = {
-  observe: (subject, topic, data) => {
+  observe: async (subject, topic, data) => {
     switch (topic) {
       case "openpgp-key-change":
         EnigmailKeyRing.clearCache();
       // fall through
       case "openpgp-acceptance-change":
-        checkRecipientKeys();
+        await checkRecipientKeys();
         gKeyAssistant.onExternalKeyChange();
         break;
       default:
@@ -1865,6 +1866,7 @@
         isEncryptionCertAvailable:
           gCurrentIdentity.getUnicharAttribute("encryption_cert_name") != "",
         currentIdentity: gCurrentIdentity,
+        recipients: getEncryptionCompatibleRecipients(),
       }
     );
   }
@@ -3107,7 +3109,7 @@
   gLoadingComplete = true;
   // Automatic checking is disabled while composer is loading,
   // perform the check for encryption status now.
-  checkRecipientKeys();
+  checkRecipientKeysAndCerts();
 }
 
 // checks if the passed in string is a mailto url, if it is, generates nsIMsgComposeParams
@@ -3359,6 +3361,11 @@
   });
 }
 
+async function checkRecipientKeysAndCerts() {
+  await checkRecipientKeys();
+  checkRecipientCerts();
+}
+
 async function checkRecipientKeys() {
   if (!gLoadingComplete) {
     // Let's not do this while we're still loading the composer window,
@@ -3369,13 +3376,10 @@
     return;
   }
 
-  let remindSMime = Services.prefs.getBoolPref(
-    "mail.smime.remind_encryption_possible"
-  );
   let remindOpenPGP = Services.prefs.getBoolPref(
     "mail.openpgp.remind_encryption_possible"
   );
-  if (!remindSMime && !remindOpenPGP) {
+  if (!remindOpenPGP) {
     return;
   }
 
@@ -3386,9 +3390,6 @@
   // undecided key, or the 1st expired key, or the 1st rejected key, in this
   // order.
 
-  let emailsWithMissingCerts = [];
-  let haveAllCerts = false;
-
   let emailsWithMissingKeys = [];
   let haveAllKeys = false;
 
@@ -3412,76 +3413,174 @@
     }
   }
 
-  if (remindSMime && (gSendEncrypted || isSmimeEncryptionConfigured())) {
-    let compFields = Cc[
-      "@mozilla.org/messengercompose/composefields;1"
-    ].createInstance(Ci.nsIMsgCompFields);
-    Recipients2CompFields(compFields);
-    let helper = Cc[
-      "@mozilla.org/messenger-smime/smimejshelper;1"
-    ].createInstance(Ci.nsISMimeJSHelper);
-
-    let outEmailAddresses = {};
-
-    helper.getRecipients(compFields, outEmailAddresses);
+  if (!gSendEncrypted) {
+    if (recipients.length && haveAllKeys) {
+      updateEncryptionTechReminder("OpenPGP");
+    } else {
+      updateEncryptionTechReminder(null);
+    }
 
-    for (let i = 0; i < outEmailAddresses.value.length; i++) {
-      let email = outEmailAddresses.value[i];
+    updateKeyNotifications([]);
+    return;
+  }
 
-      let certFromCache = gSMCertsMap.get(email);
-      if (certFromCache) {
-        continue;
-      }
+  if (gSelectedTechnologyIsPGP) {
+    updateEncryptionTechReminder(null);
+    updateKeyNotifications(emailsWithMissingKeys);
+  }
+}
 
-      let outCertIssuedInfo = {};
-      let outCertExpiresInfo = {};
-      let outCert = {};
-
-      helper.getValidCertInfo(
-        email,
-        outCertIssuedInfo,
-        outCertExpiresInfo,
-        outCert
-      );
+/**
+ * S/MIME. Callers cannot wait for this to complete. Cert verification
+ * involves OCSP, which must run on a background thread.
+ * Calling this function will result in a delayed UI update as soon
+ * as necessary background activity has been completed. Calling this
+ * function multiple times pending OCSP is safe, because we're tracking
+ * pending requests. As soon as all are done, processing will continue
+ * by calling continueCheckRecipientCerts().
+ */
+function checkRecipientCerts() {
+  async function continueCheckRecipientCerts() {
+    if (!Services.prefs.getBoolPref("mail.smime.remind_encryption_possible")) {
+      // No UI updates necessary, our processing did the necessary
+      // filling of the OCSP cache.
+      return;
+    }
 
-      if (outCert.value) {
-        gSMCertsMap.set(email, outCert.value);
+    let recipients = getEncryptionCompatibleRecipients();
+    let emailsWithMissingCerts = recipients.filter(
+      email => !gSMFields.haveValidCertForEmail(email)
+    );
+    let haveAllCerts = !emailsWithMissingCerts.length;
+
+    if (!gSendEncrypted) {
+      if (recipients.length && haveAllCerts) {
+        updateEncryptionTechReminder("SMIME");
       } else {
-        emailsWithMissingCerts.push(email);
-        continue;
+        updateEncryptionTechReminder(null);
       }
+
+      updateKeyNotifications([]);
+      return;
     }
 
-    if (!emailsWithMissingCerts.length) {
-      haveAllCerts = true;
+    if (!gSelectedTechnologyIsPGP) {
+      updateEncryptionTechReminder(null);
+      updateKeyNotifications(emailsWithMissingCerts);
     }
   }
 
-  if (!gSendEncrypted) {
-    if (recipients.length && (haveAllCerts || haveAllKeys)) {
-      await updateEncryptionReminder(haveAllKeys, haveAllCerts);
-    } else {
-      await updateEncryptionReminder(false, false);
-    }
+  if (!gLoadingComplete) {
+    // Let's not do this while we're still loading the composer window,
+    // it can have side effects, see bug 1777683.
+    // Also, if multiple recipients are added to an email automatically
+    // e.g. during reply-all, it doesn't make sense to execute this
+    // function every time after one of them gets added.
+    return;
+  }
 
-    updateKeyNotifications([]);
+  if (!isSmimeEncryptionConfigured()) {
     return;
   }
 
-  await updateEncryptionReminder(false, false);
-  updateKeyNotifications(
-    gSelectedTechnologyIsPGP ? emailsWithMissingKeys : emailsWithMissingCerts
-  );
+  let recipients = getEncryptionCompatibleRecipients();
+  // Calculate key notifications.
+  // 1 notification at most per email address that has no valid key.
+  // If an email address has several invalid keys, we notify only about the 1st
+  // undecided key, or the 1st expired key, or the 1st rejected key, in this
+  // order.
+
+  /** @implements {nsIDoneFindCertForEmailCallback} */
+  let doneFindCertForEmailCallback = {
+    QueryInterface: ChromeUtils.generateQI(["nsIDoneFindCertForEmailCallback"]),
+
+    findCertDone(email, cert) {
+      let isStaleResult = !gSMPendingCertLookupSet.has(email);
+      // isStaleResult true means, this recipient was removed by the
+      // user while we were looking for the cert in the background.
+      // Let's remember the result, but don't trigger any actions
+      // based on it.
+
+      if (cert) {
+        gSMFields.cacheValidCertForEmail(email, cert ? cert.dbKey : "");
+      }
+      if (isStaleResult) {
+        return;
+      }
+      gSMPendingCertLookupSet.delete(email);
+      if (!cert && !gSMCertsAlreadyLookedUpInLDAP.has(email)) {
+        let autocompleteLdap = Services.prefs.getBoolPref(
+          "ldap_2.autoComplete.useDirectory"
+        );
+
+        if (autocompleteLdap) {
+          gSMCertsAlreadyLookedUpInLDAP.add(email);
+
+          let autocompleteDirectory = null;
+          if (gCurrentIdentity.overrideGlobalPref) {
+            autocompleteDirectory = gCurrentIdentity.directoryServer;
+          } else {
+            autocompleteDirectory = Services.prefs.getCharPref(
+              "ldap_2.autoComplete.directoryServer"
+            );
+          }
+
+          if (autocompleteDirectory) {
+            window.openDialog(
+              "chrome://messenger-smime/content/certFetchingStatus.xhtml",
+              "",
+              "chrome,resizable=1,modal=1,dialog=1",
+              autocompleteDirectory,
+              [email]
+            );
+          }
+
+          gSMPendingCertLookupSet.add(email);
+          gSMFields.asyncFindCertByEmailAddr(
+            email,
+            doneFindCertForEmailCallback
+          );
+        }
+      }
+
+      if (gSMPendingCertLookupSet.size) {
+        // must continue to wait for more calls to this function
+        return;
+      }
+
+      // No more lookups pending.
+      continueCheckRecipientCerts();
+    },
+  };
+
+  for (let email of recipients) {
+    if (gSMFields.haveValidCertForEmail(email)) {
+      continue;
+    }
+
+    if (gSMPendingCertLookupSet.has(email)) {
+      // lookup already currently running for this email
+      continue;
+    }
+
+    gSMPendingCertLookupSet.add(email);
+    gSMFields.asyncFindCertByEmailAddr(email, doneFindCertForEmailCallback);
+  }
+
+  if (!gSMPendingCertLookupSet.size) {
+    // immediately continue
+    continueCheckRecipientCerts();
+  }
 }
 
 /**
  * Display (or hide) the notification that informs the user that
  * encryption is possible (but currently not enabled).
  *
- * @param {boolean} canEnableOpenPGP - If OpenPGP encryption is possible
- * @param {boolean} canEnableSMIME - If S/MIME encryption is possible
+ * @param {string} technology - The technology that is possible,
+ *   ("OpenPGP" or "SMIME"), or null if none is possible.
  */
-async function updateEncryptionReminder(canEnableOpenPGP, canEnableSMIME) {
+function updateEncryptionTechReminder(technology) {
   let enableNotification = gComposeNotification.getNotificationWithValue(
     "enableNotification"
   );
@@ -3489,13 +3588,14 @@
     gComposeNotification.removeNotification(enableNotification);
   }
 
-  if (!canEnableOpenPGP && !canEnableSMIME) {
+  if (!technology || (technology != "OpenPGP" && technology != "SMIME")) {
     return;
   }
 
-  let labelId = canEnableOpenPGP
-    ? "can-encrypt-openpgp-notification"
-    : "can-encrypt-smime-notification";
+  let labelId =
+    technology == "OpenPGP"
+      ? "can-encrypt-openpgp-notification"
+      : "can-encrypt-smime-notification";
 
   gComposeNotification.appendNotification(
     "enableNotification",
@@ -3507,10 +3607,14 @@
       {
         "l10n-id": "can-e2e-encrypt-button",
         callback() {
-          gSelectedTechnologyIsPGP = canEnableOpenPGP;
+          gSelectedTechnologyIsPGP = technology == "OpenPGP";
           updateE2eeOptions(true);
           updateEncryptionOptions();
-          checkRecipientKeys();
+          if (technology == "OpenPGP") {
+            checkRecipientKeys();
+          } else {
+            checkRecipientCerts();
+          }
           return true;
         },
       },
@@ -4741,7 +4845,7 @@
   });
   window.addEventListener("sendencryptedchange", checkEncryptedBccRecipients);
 
-  gRecipientKeysObserver = new MutationObserver(checkRecipientKeys);
+  gRecipientKeysObserver = new MutationObserver(checkRecipientKeysAndCerts);
   gRecipientKeysObserver.observe(document.getElementById("toAddrContainer"), {
     childList: true,
   });
@@ -4751,7 +4855,7 @@
   gRecipientKeysObserver.observe(document.getElementById("bccAddrContainer"), {
     childList: true,
   });
-  window.addEventListener("sendencryptedchange", checkRecipientKeys);
+  window.addEventListener("sendencryptedchange", checkRecipientKeysAndCerts);
 }
 /* eslint-enable complexity */
 
@@ -4871,7 +4975,14 @@
     // For identities without any e2ee setup, we want a good default
     // technology selection. Avoid a technology that isn't configured
     // anywhere.
-    gSelectedTechnologyIsPGP = isOpenPGPAvailable;
+
+    if (configuredOpenPGP) {
+      gSelectedTechnologyIsPGP = true;
+    } else if (configuredSMIME) {
+      gSelectedTechnologyIsPGP = false;
+    } else {
+      gSelectedTechnologyIsPGP = isOpenPGPAvailable;
+    }
 
     if (configuredOpenPGP) {
       if (!configuredSMIME) {
@@ -5363,7 +5474,7 @@
         gSelectedTechnologyIsPGP = false;
         updateEncryptionOptions();
         updateEncryptedSubject();
-        checkRecipientKeys();
+        checkRecipientCerts();
       }
       break;
 
@@ -5508,9 +5619,11 @@
       return;
     }
 
-    emailAddresses = Cc["@mozilla.org/messenger-smime/smimejshelper;1"]
-      .createInstance(Ci.nsISMimeJSHelper)
-      .getNoCertAddresses(gMsgCompose.compFields);
+    for (let email of getEncryptionCompatibleRecipients()) {
+      if (!gSMFields.haveValidCertForEmail(email)) {
+        emailAddresses.push(email);
+      }
+    }
   } catch (e) {
     return;
   }
diff -Nru thunderbird-102.9.0+build1/comm/mail/components/extensions/ExtensionPopups.jsm thunderbird-102.10.0+build2/comm/mail/components/extensions/ExtensionPopups.jsm
--- thunderbird-102.9.0+build1/comm/mail/components/extensions/ExtensionPopups.jsm	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mail/components/extensions/ExtensionPopups.jsm	2023-04-11 06:11:52.000000000 +0000
@@ -441,10 +441,15 @@
       return panel;
     };
 
-    // Create a temporary panel to hold the browser while it pre-loads its
-    // content. This panel will never be shown, but the browser's docShell will
-    // be swapped with the browser in the real panel when it's ready. For remote
-    // extensions, this popup is shared between all extensions.
+    // Firefox creates a temporary panel to hold the browser while it pre-loads
+    // its content (starting on mouseover already). This panel will never be shown,
+    // but the browser's docShell will be swapped with the browser in the real
+    // panel when it's ready (in ViewPopup.attach()).
+    // For remote extensions, Firefox shares this temporary panel between all
+    // extensions.
+
+    // NOTE: Thunderbird currently does not pre-load the popup and really uses
+    //       the "temporary" panel when displaying the popup to the user.
     let panel;
     if (extension.remote) {
       panel = document.getElementById(REMOTE_PANEL_ID);
@@ -472,6 +477,8 @@
    * Attaches the pre-loaded browser to the given view node, and reserves a
    * promise which resolves when the browser is ready.
    *
+   * NOTE: Not used by Thunderbird.
+   *
    * @param {Element} viewNode
    *        The node to attach the browser to.
    * @returns {Promise<boolean>}
@@ -602,9 +609,15 @@
 
   removeTempPanel() {
     if (this.tempPanel) {
-      if (this.tempPanel.id !== REMOTE_PANEL_ID) {
-        this.tempPanel.remove();
-      }
+      // NOTE: Thunderbird currently does not pre-load the popup into a temporary
+      //       panel as Firefox is doing it. We therefore do not have to "save"
+      //       the temporary panel for later re-use, but really have to remove it.
+      //       See Bug 1451058 for why Firefox uses the following conditional
+      //       remove().
+
+      // if (this.tempPanel.id !== REMOTE_PANEL_ID) {
+      this.tempPanel.remove();
+      // }
       this.tempPanel = null;
     }
     if (this.tempBrowser) {
diff -Nru thunderbird-102.9.0+build1/comm/mail/components/MessengerContentHandler.jsm thunderbird-102.10.0+build2/comm/mail/components/MessengerContentHandler.jsm
--- thunderbird-102.9.0+build1/comm/mail/components/MessengerContentHandler.jsm	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mail/components/MessengerContentHandler.jsm	2023-04-11 06:11:52.000000000 +0000
@@ -398,6 +398,11 @@
       }
     }
     if (uri) {
+      if (/^file:/i.test(uri)) {
+        // Turn file URL into a file path so `resolveFile()` will work.
+        let fileURL = cmdLine.resolveURI(uri);
+        uri = fileURL.QueryInterface(Ci.nsIFileURL).file.path;
+      }
       // Check for protocols first then look at the file ending.
       // Protocols are able to contain file endings like '.ics'.
       if (/^https?:/i.test(uri)) {
diff -Nru thunderbird-102.9.0+build1/comm/mail/config/version_display.txt thunderbird-102.10.0+build2/comm/mail/config/version_display.txt
--- thunderbird-102.9.0+build1/comm/mail/config/version_display.txt	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mail/config/version_display.txt	2023-04-11 06:11:52.000000000 +0000
@@ -1 +1 @@
-102.9.0
+102.10.0
diff -Nru thunderbird-102.9.0+build1/comm/mail/config/version.txt thunderbird-102.10.0+build2/comm/mail/config/version.txt
--- thunderbird-102.9.0+build1/comm/mail/config/version.txt	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mail/config/version.txt	2023-04-11 06:11:52.000000000 +0000
@@ -1 +1 @@
-102.9.0
+102.10.0
diff -Nru thunderbird-102.9.0+build1/comm/mail/extensions/openpgp/content/ui/enigmailMsgComposeOverlay.js thunderbird-102.10.0+build2/comm/mail/extensions/openpgp/content/ui/enigmailMsgComposeOverlay.js
--- thunderbird-102.9.0+build1/comm/mail/extensions/openpgp/content/ui/enigmailMsgComposeOverlay.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mail/extensions/openpgp/content/ui/enigmailMsgComposeOverlay.js	2023-04-11 06:11:52.000000000 +0000
@@ -991,61 +991,7 @@
 
     no return value
   */
-  processFinalState(sendFlags) {
-    /*
-    EnigmailLog.DEBUG("enigmailMsgComposeOverlay.js: Enigmail.msg.processFinalState()\n");
-
-    const SIGN = EnigmailConstants.SEND_SIGNED;
-    const ENCRYPT = EnigmailConstants.SEND_ENCRYPTED;
-
-
-    let encReason = "";
-    let signReason = "";
-    let pgpEnabled = Enigmail.msg.wasEnigmailEnabledForIdentity();
-    let smimeEnabled = Enigmail.msg.isSmimeEnabled();
-
-    // ------ 1. process OpenPGP status ------
-
-    //pgpEnabled
-    //smimeEnabled
-
-
-
-    // ------ 2. Process S/MIME status  ------
-    if (gSMFields) {
-
-        //gSMFields.requireEncryptMessage = false;
-        //gSMFields.signMessage = false;
-
-        if (!encryptSmime) {
-          if (autoSendEncrypted === 1) {
-            if (this.isSmimeEncryptionPossible()) {
-              if (this.mimePreferOpenPGP === 0) {
-                // S/MIME is preferred and encryption is possible
-                encryptSmime = true;
-              }
-            }
-          }
-        }
-        //gSMFields.requireEncryptMessage = true;
-        //gSMFields.signMessage = true;
-
-      // smime policy
-      //if (this.identity.encryptionPolicy > 0)
-
-      // update the S/MIME GUI elements
-      try {
-        setSecuritySettings("1");
-      }
-      catch (ex) {}
-
-      try {
-        setSecuritySettings("2");
-      }
-      catch (ex) {}
-    }
-    */
-  },
+  processFinalState(sendFlags) {},
 
   /* check if encryption is possible (have keys for everyone or not)
    */
@@ -1227,30 +1173,6 @@
   },
   */
 
-  /**
-   * check if S/MIME encryption can be enabled
-   *
-   * @return: Boolean - true: keys for all recipients are available
-   */
-  isSmimeEncryptionPossible() {
-    if (!gCurrentIdentity.getUnicharAttribute("encryption_cert_name")) {
-      return false;
-    }
-
-    // Enable encryption if keys for all recipients are available.
-    try {
-      if (!gMsgCompose.compFields.hasRecipients) {
-        return false;
-      }
-      let addresses = Cc["@mozilla.org/messenger-smime/smimejshelper;1"]
-        .createInstance(Ci.nsISMimeJSHelper)
-        .getNoCertAddresses(gMsgCompose.compFields);
-      return addresses.length == 0;
-    } catch (e) {
-      return false;
-    }
-  },
-
   /* Manage the wrapping of inline signed mails
    *
    * @wrapresultObj: Result:
diff -Nru thunderbird-102.9.0+build1/comm/mail/themes/linux/mail/compose/messengercompose.css thunderbird-102.10.0+build2/comm/mail/themes/linux/mail/compose/messengercompose.css
--- thunderbird-102.9.0+build1/comm/mail/themes/linux/mail/compose/messengercompose.css	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mail/themes/linux/mail/compose/messengercompose.css	2023-04-11 06:11:52.000000000 +0000
@@ -132,26 +132,6 @@
   margin-inline-start: 3px;
 }
 
-/* ..... fg/bg color picker ..... */
-
-.color-button {
-  border: 1px inset ThreeDFace;
-  padding: 0;
-  width: 14px;
-  height: 12px;
-  margin: 2px;
-}
-
-.color-button:hover {
-  border: 1px solid ThreeDDarkShadow;
-}
-
-.color-button[disabled="true"],
-.color-button[disabled="true"]:hover {
-  border: 1px inset ThreeDFace;
-  opacity: 0.5;
-}
-
 /* ::::: address book sidebar ::::: */
 
 #contactsBrowser {
diff -Nru thunderbird-102.9.0+build1/comm/mail/themes/osx/mail/compose/messengercompose.css thunderbird-102.10.0+build2/comm/mail/themes/osx/mail/compose/messengercompose.css
--- thunderbird-102.9.0+build1/comm/mail/themes/osx/mail/compose/messengercompose.css	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mail/themes/osx/mail/compose/messengercompose.css	2023-04-11 06:11:52.000000000 +0000
@@ -179,27 +179,6 @@
    max-width: 15em;
 }
 
-#ColorButtons {
-  margin-block: 0;
-  margin-inline: 3px 5px;
-}
-
-/* ..... fg/bg color picker ..... */
-
-.color-button {
-  border: 1px solid #a0a0a0;
-  padding: 0;
-  width: 20px;
-  height: 13px;
-  margin: 2px;
-}
-
-.color-button[disabled="true"],
-.color-button[disabled="true"]:hover {
-  border: 1px inset #a0a0a0;
-  opacity: 0.5;
-}
-
 /* ::::: address book sidebar ::::: */
 
 #contactsBrowserTitle {
diff -Nru thunderbird-102.9.0+build1/comm/mail/themes/shared/mail/messengercompose.css thunderbird-102.10.0+build2/comm/mail/themes/shared/mail/messengercompose.css
--- thunderbird-102.9.0+build1/comm/mail/themes/shared/mail/messengercompose.css	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mail/themes/shared/mail/messengercompose.css	2023-04-11 06:11:52.000000000 +0000
@@ -665,6 +665,22 @@
 
 /* ..... fg/bg color picker ..... */
 
+#ColorButtons {
+  margin-inline: 3px 4px;
+}
+
+.color-button {
+  border: 1px solid var(--toolbarbutton-active-bordercolor);
+  padding: 0;
+  width: 18px;
+  height: 15px;
+  margin: 2px;
+}
+
+.color-button[disabled="true"] {
+  opacity: 0.5;
+}
+
 .ColorPickerLabel {
   border: 1px inset ThreeDFace;
   margin: 0;
diff -Nru thunderbird-102.9.0+build1/comm/mail/themes/windows/mail/compose/messengercompose.css thunderbird-102.10.0+build2/comm/mail/themes/windows/mail/compose/messengercompose.css
--- thunderbird-102.9.0+build1/comm/mail/themes/windows/mail/compose/messengercompose.css	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mail/themes/windows/mail/compose/messengercompose.css	2023-04-11 06:11:52.000000000 +0000
@@ -162,26 +162,6 @@
   margin: 1px;
 }
 
-/* ..... fg/bg color picker ..... */
-
-.color-button {
-  border: 1px inset ThreeDFace;
-  padding: 0;
-  width: 14px;
-  height: 12px;
-  margin: 2px;
-}
-
-.color-button:hover {
-  border: 1px solid ThreeDDarkShadow;
-}
-
-.color-button[disabled="true"],
-.color-button[disabled="true"]:hover {
-  border: 1px inset ThreeDFace;
-  opacity: 0.5;
-}
-
 /* ::::: address book sidebar ::::: */
 
 #compose-toolbox {
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/base/src/nsNewMailnewsURI.cpp thunderbird-102.10.0+build2/comm/mailnews/base/src/nsNewMailnewsURI.cpp
--- thunderbird-102.9.0+build1/comm/mailnews/base/src/nsNewMailnewsURI.cpp	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/base/src/nsNewMailnewsURI.cpp	2023-04-11 06:11:53.000000000 +0000
@@ -42,16 +42,25 @@
     if (NS_FAILED(rv)) return rv;
   }
 
+  // Creating IMAP/mailbox URIs off the main thread can lead to crashes.
+  // Seems to happen when viewing PDFs.
   if (scheme.EqualsLiteral("mailbox") ||
       scheme.EqualsLiteral("mailbox-message")) {
-    return nsMailboxService::NewURI(aSpec, aCharset, aBaseURI, aURI);
+    if (NS_IsMainThread()) {
+      return nsMailboxService::NewURI(aSpec, aCharset, aBaseURI, aURI);
+    }
+    auto NewURI = [&aSpec, &aCharset, &aBaseURI, aURI, &rv ]() -> auto{
+      rv = nsMailboxService::NewURI(aSpec, aCharset, aBaseURI, aURI);
+    };
+    nsCOMPtr<nsIRunnable> task = NS_NewRunnableFunction("NewURI", NewURI);
+    mozilla::SyncRunnable::DispatchToThread(
+        mozilla::GetMainThreadSerialEventTarget(), task);
+    return rv;
   }
   if (scheme.EqualsLiteral("imap") || scheme.EqualsLiteral("imap-message")) {
     if (NS_IsMainThread()) {
       return nsImapService::NewURI(aSpec, aCharset, aBaseURI, aURI);
     }
-    // Creating IMAP URIs off the main thread can lead to crashes.
-    // Seems to happen when viewing PDFs.
     auto NewURI = [&aSpec, &aCharset, &aBaseURI, aURI, &rv ]() -> auto{
       rv = nsImapService::NewURI(aSpec, aCharset, aBaseURI, aURI);
     };
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/base/src/OAuth2.jsm thunderbird-102.10.0+build2/comm/mailnews/base/src/OAuth2.jsm
--- thunderbird-102.9.0+build1/comm/mailnews/base/src/OAuth2.jsm	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/base/src/OAuth2.jsm	2023-04-11 06:11:52.000000000 +0000
@@ -167,7 +167,8 @@
           onStateChange(aWebProgress, aRequest, aStateFlags, aStatus) {
             const wpl = Ci.nsIWebProgressListener;
             if (aStateFlags & (wpl.STATE_START | wpl.STATE_IS_NETWORK)) {
-              this._checkForRedirect(aRequest.name);
+              let channel = aRequest.QueryInterface(Ci.nsIChannel);
+              this._checkForRedirect(channel.URI.spec);
             }
           },
           onLocationChange(aWebProgress, aRequest, aLocation) {
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/build/nsMailModule.cpp thunderbird-102.10.0+build2/comm/mailnews/build/nsMailModule.cpp
--- thunderbird-102.9.0+build1/comm/mailnews/build/nsMailModule.cpp	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/build/nsMailModule.cpp	2023-04-11 06:11:52.000000000 +0000
@@ -242,7 +242,6 @@
 #include "nsCertPicker.h"
 #include "nsMsgSMIMECID.h"
 #include "nsMsgComposeSecure.h"
-#include "nsSMimeJSHelper.h"
 #include "nsEncryptedSMIMEURIsService.h"
 
 ///////////////////////////////////////////////////////////////////////////////
@@ -595,7 +594,6 @@
 // smime factories
 ////////////////////////////////////////////////////////////////////////////////
 NS_GENERIC_FACTORY_CONSTRUCTOR(nsMsgComposeSecure)
-NS_GENERIC_FACTORY_CONSTRUCTOR(nsSMimeJSHelper)
 NS_GENERIC_FACTORY_CONSTRUCTOR(nsEncryptedSMIMEURIsService)
 NS_GENERIC_FACTORY_CONSTRUCTOR_INIT(nsCMSDecoder, Init)
 NS_GENERIC_FACTORY_CONSTRUCTOR_INIT(nsCMSDecoderJS, Init)
@@ -605,7 +603,6 @@
 NS_GENERIC_FACTORY_CONSTRUCTOR_INIT(nsCertPicker, Init)
 
 NS_DEFINE_NAMED_CID(NS_MSGCOMPOSESECURE_CID);
-NS_DEFINE_NAMED_CID(NS_SMIMEJSJELPER_CID);
 NS_DEFINE_NAMED_CID(NS_SMIMEENCRYPTURISERVICE_CID);
 NS_DEFINE_NAMED_CID(NS_CMSDECODER_CID);
 NS_DEFINE_NAMED_CID(NS_CMSDECODERJS_CID);
@@ -821,7 +818,6 @@
     {&kNS_MSGMDNGENERATOR_CID, false, NULL, nsMsgMdnGeneratorConstructor},
     // SMime Entries
     {&kNS_MSGCOMPOSESECURE_CID, false, NULL, nsMsgComposeSecureConstructor},
-    {&kNS_SMIMEJSJELPER_CID, false, NULL, nsSMimeJSHelperConstructor},
     {&kNS_SMIMEENCRYPTURISERVICE_CID, false, NULL,
      nsEncryptedSMIMEURIsServiceConstructor},
     {&kNS_CMSDECODER_CID, false, NULL, nsCMSDecoderConstructor},
@@ -1016,7 +1012,6 @@
     {NS_MSGMDNGENERATOR_CONTRACTID, &kNS_MSGMDNGENERATOR_CID},
     // SMime Entries
     {NS_MSGCOMPOSESECURE_CONTRACTID, &kNS_MSGCOMPOSESECURE_CID},
-    {NS_SMIMEJSHELPER_CONTRACTID, &kNS_SMIMEJSJELPER_CID},
     {NS_SMIMEENCRYPTURISERVICE_CONTRACTID, &kNS_SMIMEENCRYPTURISERVICE_CID},
     {NS_CMSSECUREMESSAGE_CONTRACTID, &kNS_CMSSECUREMESSAGE_CID},
     {NS_CMSDECODER_CONTRACTID, &kNS_CMSDECODER_CID},
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/compose/public/nsIMsgComposeSecure.idl thunderbird-102.10.0+build2/comm/mailnews/compose/public/nsIMsgComposeSecure.idl
--- thunderbird-102.9.0+build1/comm/mailnews/compose/public/nsIMsgComposeSecure.idl	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/compose/public/nsIMsgComposeSecure.idl	2023-04-11 06:11:53.000000000 +0000
@@ -12,7 +12,30 @@
 interface nsIOutputStream;
 interface nsIX509Cert;
 
-/* Security interface */
+/**
+ * Callback type for use with asyncFindCertByEmailAddr.
+ */
+[scriptable, function, uuid(6149d7d3-14bf-4280-8451-60fb48263894)]
+interface nsIDoneFindCertForEmailCallback : nsISupports {
+  /**
+   * Called after a searching for a certificate is done.
+   *
+   * @param emailAddress     - The email address that was used as the key
+   *                           to find this certificate.
+   * @param cert             - The valid certificate that was found,
+   *                           or null, if no valid cert was found.
+   */
+  void findCertDone(in AUTF8String emailAddress,
+                    in nsIX509Cert cert);
+};
+
+/**
+ * An instance of this type is related to exactly one email message
+ * while the user is composing it.
+ * Besides remembering flags and providing helper code, it is used to
+ * cache information about valid S/MIME encryption certificates that
+ * were found and which may be used at send time.
+ */
 [scriptable, uuid(245f2adc-410e-4bdb-91e2-a7bb42d61787)]
 interface nsIMsgComposeSecure : nsISupports
 {
@@ -73,21 +96,50 @@
     void finishCryptoEncapsulation(in boolean aAbort, in nsIMsgSendReport sendReport);
 
     /**
-     *  Find a certificate by email address.
+     * Is information about a valid encryption certificate for the given
+     * email address already available in the cache?
+     *
+     * @param emailAddress     - The email address to check.
+     *
+     * @return - True if a valid cert is known by the cache.
+     */
+    boolean haveValidCertForEmail(in AUTF8String emailAddress);
+
+    /**
+     * If a valid encryption certificate for the given email address
+     * is already known by the cache, then return the NSS database
+     * key of that certificate.
      *
-     *  (Note: This function is used primarily for testing purposes. It runs
-     *   on the main thread, which may cause nested event loop spinning.)
-     *  (TODO: A better place for this might be nsISMimeJSHelper.idl,
-     *   but it would require to move the C++ implementation.)
-     *
-     *  @param aEmailAddress     - The email address to be used as the key
-     *                           - to find the certificate.
-     *  @param aRequireValidCert - Set to False, to search for any certificate with a matching email address.
-     *                             Set to True, if the returned certificate must be currently valid
-     *                                          and usable for email security.
+     * @param emailAddress     - The email address to check.
+     *
+     * @return - NSS db key of the valid cert.
+     */
+    ACString getCertDBKeyForEmail(in AUTF8String emailAddress);
+
+    /**
+     * Remember the given certificate database key in our cache. The
+     * given certDBey (as used with nsIX509CertDB) must reference a
+     * valid encryption certificate for the given email address.
+     *
+     * @param emailAddress     - The email address that is related to
+     *                           the given certDBKey.
+     * @param certDBKey        - The certificate database key.
+     */
+    void cacheValidCertForEmail(in AUTF8String emailAddress,
+                                in ACString certDBKey);
+
+    /*
+     * Asynchronously find an encryption certificate by email address. Calls
+     * `findCertDone` function on the provided `nsIDoneFindCertForEmailCallback`
+     * with the results of the operation.
      *
-     *  @return The matching certificate if found.
+     *  @param emailAddress     - The email address to be used as the key
+     *                            to find the certificate.
+     *  @param callback         - A callback of type nsIDoneFindCertForEmailCallback,
+     *                            function findCertDone will be called with
+     *                            the result of the operation.
      */
     [must_use]
-    nsIX509Cert findCertByEmailAddress(in ACString aEmailAddress, in boolean aRequireValidCert);
+    void asyncFindCertByEmailAddr(in AUTF8String emailAddress,
+                                  in nsIDoneFindCertForEmailCallback callback);
 };
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/extensions/bayesian-spam-filter/nsBayesianFilter.cpp thunderbird-102.10.0+build2/comm/mailnews/extensions/bayesian-spam-filter/nsBayesianFilter.cpp
--- thunderbird-102.9.0+build1/comm/mailnews/extensions/bayesian-spam-filter/nsBayesianFilter.cpp	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/extensions/bayesian-spam-filter/nsBayesianFilter.cpp	2023-04-11 06:11:53.000000000 +0000
@@ -461,19 +461,19 @@
 
           // extract the charset parameter
           nsCString parameterValue;
-          mimehdrpar->GetParameterInternal(headerValue.get(), "charset",
-                                           nullptr, nullptr,
+          mimehdrpar->GetParameterInternal(headerValue, "charset", nullptr,
+                                           nullptr,
                                            getter_Copies(parameterValue));
           addTokenForHeader("charset", parameterValue);
 
           // create a token containing just the content type
-          mimehdrpar->GetParameterInternal(headerValue.get(), "type", nullptr,
+          mimehdrpar->GetParameterInternal(headerValue, "type", nullptr,
                                            nullptr,
                                            getter_Copies(parameterValue));
           if (!parameterValue.Length())
             mimehdrpar->GetParameterInternal(
-                headerValue.get(), nullptr /* use first unnamed param */,
-                nullptr, nullptr, getter_Copies(parameterValue));
+                headerValue, nullptr /* use first unnamed param */, nullptr,
+                nullptr, getter_Copies(parameterValue));
           addTokenForHeader("content-type/type", parameterValue);
 
           // XXX: should we add a token for the entire content-type header as
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/moz.build thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/moz.build
--- thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/moz.build	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/moz.build	2023-04-11 06:11:53.000000000 +0000
@@ -13,7 +13,6 @@
     "nsICMSSecureMessage.idl",
     "nsIEncryptedSMIMEURIsSrvc.idl",
     "nsIMsgSMIMEHeaderSink.idl",
-    "nsISMimeJSHelper.idl",
     "nsIUserCertPicker.idl",
 ]
 
@@ -25,7 +24,6 @@
     "nsCMSSecureMessage.cpp",
     "nsEncryptedSMIMEURIsService.cpp",
     "nsMsgComposeSecure.cpp",
-    "nsSMimeJSHelper.cpp",
 ]
 
 FINAL_LIBRARY = "mail"
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/msgCompSecurityInfo.js thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/msgCompSecurityInfo.js
--- thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/msgCompSecurityInfo.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/msgCompSecurityInfo.js	2023-04-11 06:11:53.000000000 +0000
@@ -8,7 +8,7 @@
 var gViewButton;
 var gBundle;
 
-var gCerts;
+var gCerts = [];
 
 window.addEventListener("DOMContentLoaded", onLoad);
 window.addEventListener("resize", resizeColumns);
@@ -19,204 +19,47 @@
     return;
   }
 
-  let helper = Cc[
-    "@mozilla.org/messenger-smime/smimejshelper;1"
-  ].createInstance(Ci.nsISMimeJSHelper);
-
   gListBox = document.getElementById("infolist");
   gViewButton = document.getElementById("viewCertButton");
   gBundle = document.getElementById("bundle_smime_comp_info");
 
-  let allow_ldap_cert_fetching =
-    params.compFields.composeSecure.requireEncryptMessage;
-
-  let emailAddresses = [];
-  let certIssuedInfos = [];
-  let certExpiresInfos = [];
-  let certs = [];
-  let canEncrypt = false;
-
-  while (true) {
-    try {
-      // Out parameters - must be objects.
-      let outEmailAddresses = {};
-      let outCertIssuedInfos = {};
-      let outCertExpiresInfos = {};
-      let outCerts = {};
-      let outCanEncrypt = {};
-      helper.getRecipientCertsInfo(
-        params.compFields,
-        outEmailAddresses,
-        outCertIssuedInfos,
-        outCertExpiresInfos,
-        outCerts,
-        outCanEncrypt
-      );
-      // Unwrap to the actual values.
-      emailAddresses = outEmailAddresses.value;
-      certIssuedInfos = outCertIssuedInfos.value;
-      certExpiresInfos = outCertExpiresInfos.value;
-      gCerts = certs = outCerts.value;
-      canEncrypt = outCanEncrypt.value;
-    } catch (e) {
-      dump(e);
-      return;
-    }
-
-    if (!allow_ldap_cert_fetching) {
-      break;
-    }
-    allow_ldap_cert_fetching = false;
-
-    let missing = [];
-    for (let i = 0; i < emailAddresses.length; i++) {
-      if (!certs[i]) {
-        missing.push(emailAddresses[i]);
-      }
-    }
+  let certdb = Cc["@mozilla.org/security/x509certdb;1"].getService(
+    Ci.nsIX509CertDB
+  );
 
-    if (missing.length > 0) {
-      var autocompleteLdap = Services.prefs.getBoolPref(
-        "ldap_2.autoComplete.useDirectory"
-      );
-
-      if (autocompleteLdap) {
-        var autocompleteDirectory = null;
-        if (params.currentIdentity.overrideGlobalPref) {
-          autocompleteDirectory = params.currentIdentity.directoryServer;
-        } else {
-          autocompleteDirectory = Services.prefs.getCharPref(
-            "ldap_2.autoComplete.directoryServer"
-          );
-        }
-
-        if (autocompleteDirectory) {
-          window.openDialog(
-            "chrome://messenger-smime/content/certFetchingStatus.xhtml",
-            "",
-            "chrome,resizable=1,modal=1,dialog=1",
-            autocompleteDirectory,
-            missing
-          );
-        }
-      }
-    }
-  }
+  let missing = [];
+  for (let i = 0; i < params.recipients.length; i++) {
+    let email = params.recipients[i];
+    let dbKey = params.compFields.composeSecure.getCertDBKeyForEmail(email);
 
-  let signedElement = document.getElementById("signed");
-  let encryptedElement = document.getElementById("encrypted");
-  if (params.compFields.composeSecure.requireEncryptMessage) {
-    if (params.isEncryptionCertAvailable && canEncrypt) {
-      encryptedElement.value = gBundle.getString("StatusYes");
+    if (dbKey) {
+      gCerts.push(certdb.findCertByDBKey(dbKey));
     } else {
-      encryptedElement.value = gBundle.getString("StatusNotPossible");
+      gCerts.push(null);
     }
-  } else {
-    encryptedElement.value = gBundle.getString("StatusNo");
-  }
 
-  if (params.compFields.composeSecure.signMessage) {
-    if (params.isSigningCertAvailable) {
-      signedElement.value = gBundle.getString("StatusYes");
-    } else {
-      signedElement.value = gBundle.getString("StatusNotPossible");
+    if (!gCerts[i]) {
+      missing.push(params.recipients[i]);
     }
-  } else {
-    signedElement.value = gBundle.getString("StatusNo");
   }
 
-  for (let i = 0; i < emailAddresses.length; ++i) {
+  for (let i = 0; i < params.recipients.length; ++i) {
     let email = document.createXULElement("label");
-    email.setAttribute("value", emailAddresses[i]);
+    email.setAttribute("value", params.recipients[i]);
     email.setAttribute("crop", "end");
     email.setAttribute("style", "width: var(--recipientWidth)");
 
     let listitem = document.createXULElement("richlistitem");
     listitem.appendChild(email);
 
-    if (!certs[i]) {
-      let notFound = document.createXULElement("label");
-      notFound.setAttribute("value", gBundle.getString("StatusNotFound"));
-      notFound.setAttribute("style", "width: var(--statusWidth)");
-      listitem.appendChild(notFound);
-    } else {
-      let status = document.createXULElement("label");
-      status.setAttribute("value", "?"); // temporary placeholder
-      status.setAttribute("crop", "end");
-      status.setAttribute("style", "width: var(--statusWidth)");
-      listitem.appendChild(status);
-
-      let issued = document.createXULElement("label");
-      issued.setAttribute("value", certIssuedInfos[i]);
-      issued.setAttribute("crop", "end");
-      issued.setAttribute("style", "width: var(--issuedWidth)");
-      listitem.appendChild(issued);
-
-      let expire = document.createXULElement("label");
-      expire.setAttribute("value", certExpiresInfos[i]);
-      expire.setAttribute("crop", "end");
-      expire.setAttribute("style", "width: var(--expireWidth)");
-      listitem.appendChild(expire);
-
-      asyncDetermineUsages(certs[i]).then(results => {
-        let someError = results.some(
-          result => result.errorCode !== PRErrorCodeSuccess
-        );
-        if (!someError) {
-          status.setAttribute("value", gBundle.getString("StatusValid"));
-          return;
-        }
-
-        // Keep in sync with certViewer.js.
-        const SEC_ERROR_BASE = Ci.nsINSSErrorsService.NSS_SEC_ERROR_BASE;
-        const SEC_ERROR_EXPIRED_CERTIFICATE = SEC_ERROR_BASE + 11;
-        const SEC_ERROR_REVOKED_CERTIFICATE = SEC_ERROR_BASE + 12;
-        const SEC_ERROR_UNKNOWN_ISSUER = SEC_ERROR_BASE + 13;
-        const SEC_ERROR_UNTRUSTED_ISSUER = SEC_ERROR_BASE + 20;
-        const SEC_ERROR_UNTRUSTED_CERT = SEC_ERROR_BASE + 21;
-        const SEC_ERROR_EXPIRED_ISSUER_CERTIFICATE = SEC_ERROR_BASE + 30;
-        const SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED =
-          SEC_ERROR_BASE + 176;
-
-        const errorRankings = [
-          {
-            error: SEC_ERROR_REVOKED_CERTIFICATE,
-            bundleString: "StatusRevoked",
-          },
-          { error: SEC_ERROR_UNTRUSTED_CERT, bundleString: "StatusUntrusted" },
-          {
-            error: SEC_ERROR_UNTRUSTED_ISSUER,
-            bundleString: "StatusUntrusted",
-          },
-          {
-            error: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED,
-            bundleString: "StatusInvalid",
-          },
-          {
-            error: SEC_ERROR_EXPIRED_CERTIFICATE,
-            bundleString: "StatusExpired",
-          },
-          {
-            error: SEC_ERROR_EXPIRED_ISSUER_CERTIFICATE,
-            bundleString: "StatusExpired",
-          },
-          { error: SEC_ERROR_UNKNOWN_ISSUER, bundleString: "StatusUntrusted" },
-        ];
-
-        let bs = "StatusInvalid";
-        for (let errorRanking of errorRankings) {
-          let errorPresent = results.some(
-            result => result.errorCode == errorRanking.error
-          );
-          if (errorPresent) {
-            bs = errorRanking.bundleString;
-            break;
-          }
-        }
-
-        status.setAttribute("value", gBundle.getString(bs));
-      });
-    }
+    let cert = gCerts[i];
+    let statusItem = document.createXULElement("label");
+    statusItem.setAttribute(
+      "value",
+      gBundle.getString(cert ? "StatusValid" : "StatusNotFound")
+    );
+    statusItem.setAttribute("style", "width: var(--statusWidth)");
+    listitem.appendChild(statusItem);
 
     gListBox.appendChild(listitem);
   }
@@ -255,37 +98,6 @@
   certificateUsageEmailRecipient,
 };
 
-function asyncDetermineUsages(cert) {
-  let promises = [];
-  let now = Date.now() / 1000;
-  let certdb = Cc["@mozilla.org/security/x509certdb;1"].getService(
-    Ci.nsIX509CertDB
-  );
-  Object.keys(certificateUsages).forEach(usageString => {
-    promises.push(
-      new Promise((resolve, reject) => {
-        let usage = certificateUsages[usageString];
-        certdb.asyncVerifyCertAtTime(
-          cert,
-          usage,
-          0,
-          null,
-          now,
-          (aPRErrorCode, aVerifiedChain, aHasEVPolicy) => {
-            resolve({
-              usageString,
-              errorCode: aPRErrorCode,
-              chain: aVerifiedChain,
-            });
-          }
-        );
-      })
-    );
-  });
-  return Promise.all(promises);
-}
-// --- /borrowed from pippki.js ---
-
 function onSelectionChange(event) {
   gViewButton.disabled = !(
     gListBox.selectedItems.length == 1 && certForRow(gListBox.selectedIndex)
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/msgCompSecurityInfo.xhtml thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/msgCompSecurityInfo.xhtml
--- thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/msgCompSecurityInfo.xhtml	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/msgCompSecurityInfo.xhtml	2023-04-11 06:11:53.000000000 +0000
@@ -22,20 +22,6 @@
 <dialog buttons="accept">
   <stringbundle id="bundle_smime_comp_info" src="chrome://messenger-smime/locale/msgCompSecurityInfo.properties"/>
 
-  <description>&subject.plaintextWarning;</description>
-  <separator class="thin"/>
-  <description>&status.heading;</description>
-  <hbox>
-    <vbox>
-      <label value="&status.signed;"/>
-      <label value="&status.encrypted;"/>
-    </vbox>
-    <vbox>
-      <label id="signed"/>
-      <label id="encrypted"/>
-    </vbox>
-  </hbox>
-
   <separator class="thin"/>
   <label value="&status.certificates;" control="infolist"/>
 
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/nsCMS.cpp thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/nsCMS.cpp
--- thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/nsCMS.cpp	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/nsCMS.cpp	2023-04-11 06:11:53.000000000 +0000
@@ -598,25 +598,50 @@
   virtual nsresult CalculateResult() override {
     MOZ_ASSERT(!NS_IsMainThread());
 
-    mozilla::StaticMutexAutoLock lock(sMutex);
+    nsCOMPtr<nsICMSMessage> message;
+    {
+      mozilla::StaticMutexAutoLock lock(sMutex);
+      mMessage.swap(message);
+    }
+
     nsresult rv;
     if (mDigestData.IsEmpty()) {
-      rv = mMessage->VerifySignature();
+      rv = message->VerifySignature();
     } else {
-      rv = mMessage->VerifyDetachedSignature(mDigestData, mDigestType);
+      rv = message->VerifyDetachedSignature(mDigestData, mDigestType);
+    }
+
+    {
+      mozilla::StaticMutexAutoLock lock(sMutex);
+      mMessage.swap(message);
     }
 
     return rv;
   }
   virtual void CallCallback(nsresult rv) override {
     MOZ_ASSERT(NS_IsMainThread());
-    mListener->Notify(mMessage, rv);
+    nsCOMPtr<nsICMSMessage> message;
+    nsCOMPtr<nsISMimeVerificationListener> listener;
+    // Don't call Notify while we're holding the mutex, because it's
+    // a shared mutex across all thread, and holding it for longer can
+    // cause a deadlock.
+    // Also we won't need these objects after leaving this function,
+    // so let's release them early.
+    {
+      mozilla::StaticMutexAutoLock lock(sMutex);
+      if (!mListener) {
+        return;
+      }
+      mListener.swap(listener);
+      mMessage.swap(message);
+    }
+    listener->Notify(message, rv);
   }
 
   nsCOMPtr<nsICMSMessage> mMessage;
   nsCOMPtr<nsISMimeVerificationListener> mListener;
-  nsTArray<uint8_t> mDigestData;
-  int16_t mDigestType;
+  const nsTArray<uint8_t> mDigestData;
+  const int16_t mDigestType;
 
   static mozilla::StaticMutex sMutex;
 };
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/nsCMSSecureMessage.cpp thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/nsCMSSecureMessage.cpp
--- thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/nsCMSSecureMessage.cpp	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/nsCMSSecureMessage.cpp	2023-04-11 06:11:53.000000000 +0000
@@ -70,6 +70,8 @@
   NS_ENSURE_TRUE(certVerifier, NS_ERROR_UNEXPECTED);
 
   nsTArray<nsTArray<uint8_t>> unusedBuiltChain;
+  // It's fine to skip OCSP, because this is called only from code
+  // for selecting the user's own configured cert.
   if (certVerifier->VerifyCert(certBytes, aUsage, mozilla::pkix::Now(), nullptr,
                                nullptr, unusedBuiltChain,
                                CertVerifier::FLAG_LOCAL_ONLY) ==
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/nsISMimeJSHelper.idl thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/nsISMimeJSHelper.idl
--- thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/nsISMimeJSHelper.idl	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/nsISMimeJSHelper.idl	1970-01-01 00:00:00.000000000 +0000
@@ -1,57 +0,0 @@
-/* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
-/* This Source Code Form is subject to the terms of the Mozilla Public
- * License, v. 2.0. If a copy of the MPL was not distributed with this
- * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
-
-/* This is a private interface used exclusively by SMIME.
-   It provides functionality to the JS UI code,
-   that is only accessible from C++.
-*/
-
-#include "nsISupports.idl"
-
-interface nsIMsgCompFields;
-interface nsIX509Cert;
-
-[scriptable, uuid(a54e3c8f-a000-4901-898f-fafb297b1546)]
-interface nsISMimeJSHelper : nsISupports
-{
-  /**
-   * Obtains detailed information about the certificate availability
-   * status of email recipients.
-   * The returned certificates have NOT been checked for validity yet
-   *
-   * @param compFields - Attributes of the composed message.
-   * @param emailAddresses - The list of all recipient email addresses
-   * @param certIssuedInfos - If a recipient cert was found, when has it been issued?
-   * @param certExpiredInfos - If a recipient cert was found, when will it expire?
-   * @param certs - The recipient certificates, which can contain null for not found
-   * @param canEncrypt - whether valid certificates have been found for all recipients
-   */
-  void getRecipientCertsInfo(in nsIMsgCompFields compFields,
-                             out Array<AString> emailAddresses,
-                             out Array<AString> certIssuedInfos,
-                             out Array<AString> certExpiresInfos,
-                             out Array<nsIX509Cert> certs,
-                             out boolean canEncrypt);
-
-  void getRecipients(in nsIMsgCompFields compFields,
-                     out Array<AString> emailAddresses);
-
-  /**
-   * Only a VALID certificate will be returned.
-   */
-  void getValidCertInfo(in AString email,
-                        out AString certIssuedInfo,
-                        out AString certExpiresInfo,
-                        out nsIX509Cert cert);
-
-  /**
-   * Obtains a list of email addresses where valid email recipient certificates
-   * are not yet available.
-   *
-   * @param compFields - Attributes of the composed message
-   * @returns The list of email addresses without valid certs
-   */
-  Array<AString> getNoCertAddresses(in nsIMsgCompFields compFields);
-};
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/nsMsgComposeSecure.cpp thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/nsMsgComposeSecure.cpp
--- thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/nsMsgComposeSecure.cpp	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/nsMsgComposeSecure.cpp	2023-04-11 06:11:53.000000000 +0000
@@ -29,6 +29,7 @@
 #include "mozpkix/Result.h"
 #include "nsNSSCertificate.h"
 #include "nsNSSHelper.h"
+#include "CryptoTask.h"
 
 using namespace mozilla::mailnews;
 using namespace mozilla;
@@ -332,6 +333,16 @@
   mErrorAlreadyReported = false;
   nsresult rv = NS_OK;
 
+  // CryptoEncapsulation should be synchronous, therefore it must
+  // avoid cert verification or looking up certs, which often involves
+  // async OCSP. The message composer should already have looked up
+  // and verified certificates whenever the user modified the recipient
+  // list, and should have used CacheValidCertForEmail to make those
+  // certificates known to us.
+  // (That code may use the AsyncFindCertByEmailAddr API which allows
+  // lookup and validation to be performed on a background thread,
+  // which is required when using OCSP.)
+
   bool encryptMessages = false;
   bool signMessage = false;
   ExtractEncryptionState(aIdentity, aCompFields, &signMessage,
@@ -817,6 +828,7 @@
               certBytes, certificateUsageEmailRecipient, mozilla::pkix::Now(),
               nullptr, nullptr, builtChain,
               // Only local checks can run on the main thread.
+              // Skipping OCSP for the user's own cert seems accaptable.
               CertVerifier::FLAG_LOCAL_ONLY) != mozilla::pkix::Success) {
         // not suitable for encryption, so unset cert and clear pref
         mSelfEncryptionCert = nullptr;
@@ -840,6 +852,7 @@
               certBytes, certificateUsageEmailSigner, mozilla::pkix::Now(),
               nullptr, nullptr, builtChain,
               // Only local checks can run on the main thread.
+              // Skipping OCSP for the user's own cert seems accaptable.
               CertVerifier::FLAG_LOCAL_ONLY) != mozilla::pkix::Success) {
         // not suitable for signing, so unset cert and clear pref
         mSelfSigningCert = nullptr;
@@ -886,15 +899,18 @@
       nsCString mailbox_lowercase;
       ToLowerCase(mailboxes[i], mailbox_lowercase);
       nsCOMPtr<nsIX509Cert> cert;
-      // TODO: allow user to override and go ahead with an invalid certificate
-      res =
-          FindCertByEmailAddress(mailbox_lowercase, true, getter_AddRefs(cert));
-      if (NS_FAILED(res)) {
+
+      nsCString dbKey;
+      res = GetCertDBKeyForEmail(mailbox_lowercase, dbKey);
+      if (NS_SUCCEEDED(res)) {
+        res = certdb->FindCertByDBKey(dbKey, getter_AddRefs(cert));
+      }
+
+      if (NS_FAILED(res) || !cert) {
         // Failure to find a valid encryption cert is fatal.
         // Here I assume that mailbox is ascii rather than utf8.
         SetErrorWithParam(sendReport, "MissingRecipientEncryptionCert",
                           mailboxes[i].get());
-
         return res;
       }
 
@@ -1100,10 +1116,56 @@
   return state->MimeCryptoWriteBlock(bufWithNull.get(), size);
 }
 
-NS_IMETHODIMP
-nsMsgComposeSecure::FindCertByEmailAddress(const nsACString& aEmailAddress,
-                                           bool aRequireValidCert,
-                                           nsIX509Cert** _retval) {
+class FindSMimeCertTask final : public CryptoTask {
+ public:
+  FindSMimeCertTask(const nsACString& email,
+                    nsIDoneFindCertForEmailCallback* listener)
+      : mEmail(email), mListener(listener) {
+    MOZ_ASSERT(NS_IsMainThread());
+  }
+  ~FindSMimeCertTask();
+
+ private:
+  virtual nsresult CalculateResult() override;
+  virtual void CallCallback(nsresult rv) override;
+
+  const nsCString mEmail;
+  nsCOMPtr<nsIX509Cert> mCert;
+  nsCOMPtr<nsIDoneFindCertForEmailCallback> mListener;
+
+  static mozilla::StaticMutex sMutex;
+};
+
+mozilla::StaticMutex FindSMimeCertTask::sMutex;
+
+void FindSMimeCertTask::CallCallback(nsresult rv) {
+  MOZ_ASSERT(NS_IsMainThread());
+  nsCOMPtr<nsIX509Cert> cert;
+  nsCOMPtr<nsIDoneFindCertForEmailCallback> listener;
+  {
+    mozilla::StaticMutexAutoLock lock(sMutex);
+    if (!mListener) {
+      return;
+    }
+    // We won't need these objects after leaving this function, so let's
+    // destroy them early. Also has the benefit that we're already
+    // on the main thread. By destroying the listener here, we avoid
+    // dispatching in the destructor.
+    mCert.swap(cert);
+    mListener.swap(listener);
+  }
+  listener->FindCertDone(mEmail, cert);
+}
+
+/*
+called by:
+  GetValidCertInfo
+  GetRecipientCertsInfo
+  GetNoCertAddresses
+*/
+nsresult FindSMimeCertTask::CalculateResult() {
+  MOZ_ASSERT(!NS_IsMainThread());
+
   nsresult rv = BlockUntilLoadableCertsLoaded();
   if (NS_FAILED(rv)) {
     return rv;
@@ -1112,7 +1174,7 @@
   RefPtr<SharedCertVerifier> certVerifier(GetDefaultCertVerifier());
   NS_ENSURE_TRUE(certVerifier, NS_ERROR_UNEXPECTED);
 
-  const nsCString& flatEmailAddress = PromiseFlatCString(aEmailAddress);
+  const nsCString& flatEmailAddress = PromiseFlatCString(mEmail);
   UniqueCERTCertList certlist(
       PK11_FindCertsFromEmailAddress(flatEmailAddress.get(), nullptr));
   if (!certlist) return NS_ERROR_FAILURE;
@@ -1133,24 +1195,84 @@
 
     mozilla::pkix::Result result = certVerifier->VerifyCert(
         certBytes, certificateUsageEmailRecipient, mozilla::pkix::Now(),
-        nullptr /*XXX pinarg*/, nullptr /*hostname*/, unusedCertChain,
-        // Only local checks can run on the main thread.
-        CertVerifier::FLAG_LOCAL_ONLY);
+        nullptr /*XXX pinarg*/, nullptr /*hostname*/, unusedCertChain);
     if (result == mozilla::pkix::Success) {
+      mozilla::StaticMutexAutoLock lock(sMutex);
+      mCert = new nsNSSCertificate(node->cert);
       break;
     }
   }
 
-  if (CERT_LIST_END(node, certlist)) {  // no valid cert found
-    if (aRequireValidCert) return NS_ERROR_FAILURE;
+  return NS_OK;
+}
+
+/*
+ * We need to ensure that the callback is destroyed on the main thread.
+ */
+class ProxyListenerDestructor final : public mozilla::Runnable {
+ public:
+  explicit ProxyListenerDestructor(
+      nsCOMPtr<nsIDoneFindCertForEmailCallback>&& aListener)
+      : mozilla::Runnable("ProxyListenerDestructor"),
+        mListener(std::move(aListener)) {}
+
+  NS_IMETHODIMP
+  Run() override {
+    MOZ_ASSERT(NS_IsMainThread());
+    // Release the object referenced by mListener.
+    mListener = nullptr;
+    return NS_OK;
+  }
 
-    // Get the first non-valid then.
-    node = CERT_LIST_HEAD(certlist);
+ private:
+  nsCOMPtr<nsIDoneFindCertForEmailCallback> mListener;
+};
+
+FindSMimeCertTask::~FindSMimeCertTask() {
+  // Unless we already cleaned up inside CallCallback, we must release
+  // the listener on the main thread.
+  if (mListener && !NS_IsMainThread()) {
+    RefPtr<ProxyListenerDestructor> runnable =
+        new ProxyListenerDestructor(std::move(mListener));
+    MOZ_ALWAYS_SUCCEEDS(NS_DispatchToMainThread(runnable));
   }
+}
 
-  // |node| now contains the first valid (if aRequireValidCert true)
-  // certificate with correct usage.
-  RefPtr<nsNSSCertificate> nssCert = new nsNSSCertificate(node->cert);
-  nssCert.forget(_retval);
+NS_IMETHODIMP
+nsMsgComposeSecure::CacheValidCertForEmail(const nsACString& email,
+                                           const nsACString& certDBKey) {
+  mozilla::StaticMutexAutoLock lock(sMutex);
+  mValidCertForEmailAddr.InsertOrUpdate(email, certDBKey);
+  return NS_OK;
+}
+
+NS_IMETHODIMP
+nsMsgComposeSecure::HaveValidCertForEmail(const nsACString& email,
+                                          bool* _retval) {
+  mozilla::StaticMutexAutoLock lock(sMutex);
+  *_retval = mValidCertForEmailAddr.Get(email, nullptr);
   return NS_OK;
 }
+
+NS_IMETHODIMP
+nsMsgComposeSecure::GetCertDBKeyForEmail(const nsACString& email,
+                                         nsACString& _retval) {
+  mozilla::StaticMutexAutoLock lock(sMutex);
+  nsCString dbKey;
+  bool found = mValidCertForEmailAddr.Get(email, &dbKey);
+  if (found) {
+    _retval = dbKey;
+  } else {
+    _retval.Truncate();
+  }
+  return NS_OK;
+}
+
+NS_IMETHODIMP
+nsMsgComposeSecure::AsyncFindCertByEmailAddr(
+    const nsACString& email, nsIDoneFindCertForEmailCallback* callback) {
+  RefPtr<CryptoTask> task = new FindSMimeCertTask(email, callback);
+  return task->Dispatch();
+}
+
+mozilla::StaticMutex nsMsgComposeSecure::sMutex;
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/nsMsgComposeSecure.h thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/nsMsgComposeSecure.h
--- thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/nsMsgComposeSecure.h	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/nsMsgComposeSecure.h	2023-04-11 06:11:53.000000000 +0000
@@ -14,8 +14,10 @@
 #include "nsICryptoHash.h"
 #include "nsICMSMessage.h"
 #include "nsString.h"
+#include "nsTHashMap.h"
 #include "nsIOutputStream.h"
 #include "mozilla/UniquePtr.h"
+#include "mozilla/StaticMutex.h"
 
 class nsIMsgCompFields;
 namespace mozilla {
@@ -81,6 +83,10 @@
   nsCOMPtr<nsICMSEncoder> mEncryptionContext;
   nsCOMPtr<nsIStringBundle> mSMIMEBundle;
 
+  // Maps email address to nsIX509Cert.dbKey of a verified certificate.
+  nsTHashMap<nsCStringHashKey, nsCString> mValidCertForEmailAddr;
+  static mozilla::StaticMutex sMutex;
+
   mozilla::UniquePtr<MimeEncoder> mCryptoEncoder;
   bool mIsDraft;
 
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/nsMsgSMIMECID.h thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/nsMsgSMIMECID.h
--- thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/nsMsgSMIMECID.h	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/nsMsgSMIMECID.h	2023-04-11 06:11:53.000000000 +0000
@@ -13,16 +13,6 @@
     }                                                \
   }
 
-#define NS_SMIMEJSHELPER_CONTRACTID \
-  "@mozilla.org/messenger-smime/smimejshelper;1"
-
-#define NS_SMIMEJSJELPER_CID                         \
-  { /* d57d928c-60e4-4f81-999d-5c762e611205 */       \
-    0xd57d928c, 0x60e4, 0x4f81, {                    \
-      0x99, 0x9d, 0x5c, 0x76, 0x2e, 0x61, 0x12, 0x05 \
-    }                                                \
-  }
-
 #define NS_CMSDECODERJS_CONTRACTID "@mozilla.org/nsCMSDecoderJS;1"
 
 #define NS_CMSDECODERJS_CID                          \
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/nsSMimeJSHelper.cpp thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/nsSMimeJSHelper.cpp
--- thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/nsSMimeJSHelper.cpp	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/nsSMimeJSHelper.cpp	1970-01-01 00:00:00.000000000 +0000
@@ -1,254 +0,0 @@
-/* -*- Mode: C++; tab-width: 2; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
-/* This Source Code Form is subject to the terms of the Mozilla Public
- * License, v. 2.0. If a copy of the MPL was not distributed with this
- * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
-
-#include "mozilla/mailnews/MimeHeaderParser.h"
-#include "nspr.h"
-#include "nsSMimeJSHelper.h"
-#include "nsMsgComposeSecure.h"
-#include "nsMsgCompCID.h"
-#include "nsCOMPtr.h"
-#include "nsMemory.h"
-#include "nsString.h"
-#include "nsIX509CertDB.h"
-#include "nsIX509CertValidity.h"
-#include "nsServiceManagerUtils.h"
-#include "nsCRTGlue.h"
-#include "mozilla/Maybe.h"
-#include "mozilla/intl/AppDateTimeFormat.h"
-#include "mozilla/Maybe.h"
-#include "mozilla/Unused.h"
-#include "mozilla/intl/AppDateTimeFormat.h"
-
-using namespace mozilla::mailnews;
-
-NS_IMPL_ISUPPORTS(nsSMimeJSHelper, nsISMimeJSHelper)
-
-nsSMimeJSHelper::nsSMimeJSHelper() {}
-
-nsSMimeJSHelper::~nsSMimeJSHelper() {}
-
-// Copied from security/manager/ssl/nsCertTree.cpp
-static void PRTimeToLocalDateString(PRTime time, nsAString& result) {
-  PRExplodedTime explodedTime;
-  PR_ExplodeTime(time, PR_LocalTimeParameters, &explodedTime);
-  mozilla::intl::DateTimeFormat::StyleBag style;
-  style.date = mozilla::Some(mozilla::intl::DateTimeFormat::Style::Long);
-  style.time = mozilla::Nothing();
-  mozilla::Unused << mozilla::intl::AppDateTimeFormat::Format(
-      style, &explodedTime, result);
-}
-
-NS_IMETHODIMP nsSMimeJSHelper::GetRecipients(
-    nsIMsgCompFields* compFields, nsTArray<nsString>& emailAddresses) {
-  nsTArray<nsCString> mailboxes;
-  nsresult rv = getMailboxList(compFields, mailboxes);
-  NS_ENSURE_SUCCESS(rv, rv);
-
-  uint32_t mailbox_count = mailboxes.Length();
-
-  emailAddresses.ClearAndRetainStorage();
-  emailAddresses.SetCapacity(mailbox_count);
-
-  rv = NS_OK;
-
-  for (uint32_t i = 0; i < mailbox_count; ++i) {
-    const nsCString& email = mailboxes[i];
-
-    nsCString email_lowercase;
-    ToLowerCase(email, email_lowercase);
-
-    emailAddresses.AppendElement(NS_ConvertUTF8toUTF16(email));
-  }
-  return NS_OK;
-}
-
-NS_IMETHODIMP nsSMimeJSHelper::GetValidCertInfo(const nsAString& email,
-                                                nsAString& certIssuedInfo,
-                                                nsAString& certExpiresInfo,
-                                                nsIX509Cert** cert) {
-  nsCOMPtr<nsIX509CertDB> certdb = do_GetService(NS_X509CERTDB_CONTRACTID);
-
-  *cert = nullptr;
-  nsresult rv = NS_OK;
-
-  nsCOMPtr<nsIMsgComposeSecure> composeSecure =
-      do_CreateInstance("@mozilla.org/messengercompose/composesecure;1", &rv);
-  NS_ENSURE_SUCCESS(rv, rv);
-
-  NS_ConvertUTF16toUTF8 emailC(email);
-
-  nsCString email_lowercase;
-  ToLowerCase(emailC, email_lowercase);
-
-  // Find only valid certificate.
-  if (NS_SUCCEEDED(
-          composeSecure->FindCertByEmailAddress(email_lowercase, true, cert))) {
-    nsCOMPtr<nsIX509CertValidity> validity;
-    rv = (*cert)->GetValidity(getter_AddRefs(validity));
-    if (NS_SUCCEEDED(rv)) {
-      PRTime notBefore;
-      rv = validity->GetNotBefore(&notBefore);
-      if (NS_SUCCEEDED(rv)) {
-        PRTimeToLocalDateString(notBefore, certIssuedInfo);
-      }
-      PRTime notAfter;
-      rv = validity->GetNotAfter(&notAfter);
-      if (NS_SUCCEEDED(rv)) {
-        PRTimeToLocalDateString(notAfter, certExpiresInfo);
-      }
-    }
-  }
-
-  return NS_OK;
-}
-
-NS_IMETHODIMP nsSMimeJSHelper::GetRecipientCertsInfo(
-    nsIMsgCompFields* compFields, nsTArray<nsString>& emailAddresses,
-    nsTArray<nsString>& certIssuedInfos, nsTArray<nsString>& certExpiresInfos,
-    nsTArray<RefPtr<nsIX509Cert>>& certs, bool* canEncrypt) {
-  NS_ENSURE_ARG_POINTER(canEncrypt);
-
-  nsTArray<nsCString> mailboxes;
-  nsresult rv = getMailboxList(compFields, mailboxes);
-  NS_ENSURE_SUCCESS(rv, rv);
-
-  uint32_t mailbox_count = mailboxes.Length();
-
-  emailAddresses.ClearAndRetainStorage();
-  certIssuedInfos.ClearAndRetainStorage();
-  certExpiresInfos.ClearAndRetainStorage();
-  certs.ClearAndRetainStorage();
-  emailAddresses.SetCapacity(mailbox_count);
-  certIssuedInfos.SetCapacity(mailbox_count);
-  certExpiresInfos.SetCapacity(mailbox_count);
-  certs.SetCapacity(mailbox_count);
-
-  nsCOMPtr<nsIX509CertDB> certdb = do_GetService(NS_X509CERTDB_CONTRACTID);
-
-  *canEncrypt = true;
-  rv = NS_OK;
-
-  nsCOMPtr<nsIMsgComposeSecure> composeSecure =
-      do_CreateInstance(NS_MSGCOMPOSESECURE_CONTRACTID, &rv);
-  NS_ENSURE_SUCCESS(rv, rv);
-
-  for (uint32_t i = 0; i < mailbox_count; ++i) {
-    const nsCString& email = mailboxes[i];
-    nsCOMPtr<nsIX509Cert> cert;
-    nsString certIssuedInfo;
-    nsString certExpiresInfo;
-
-    nsCString email_lowercase;
-    ToLowerCase(email, email_lowercase);
-
-    // Find certificate regardless of validity.
-    if (NS_SUCCEEDED(composeSecure->FindCertByEmailAddress(
-            email_lowercase, false, getter_AddRefs(cert)))) {
-      nsCOMPtr<nsIX509CertValidity> validity;
-      rv = cert->GetValidity(getter_AddRefs(validity));
-      if (NS_SUCCEEDED(rv)) {
-        PRTime notBefore;
-        rv = validity->GetNotBefore(&notBefore);
-        if (NS_SUCCEEDED(rv)) {
-          PRTimeToLocalDateString(notBefore, certIssuedInfo);
-        }
-        PRTime notAfter;
-        rv = validity->GetNotAfter(&notAfter);
-        if (NS_SUCCEEDED(rv)) {
-          PRTimeToLocalDateString(notAfter, certExpiresInfo);
-        }
-      }
-    } else {
-      *canEncrypt = false;
-    }
-    emailAddresses.AppendElement(NS_ConvertUTF8toUTF16(email));
-    certIssuedInfos.AppendElement(certIssuedInfo);
-    certExpiresInfos.AppendElement(certExpiresInfo);
-    certs.AppendElement(cert);
-  }
-  return NS_OK;
-}
-
-NS_IMETHODIMP nsSMimeJSHelper::GetNoCertAddresses(
-    nsIMsgCompFields* compFields, nsTArray<nsString>& emailAddresses) {
-  NS_ENSURE_ARG_POINTER(compFields);
-  emailAddresses.ClearAndRetainStorage();
-
-  nsTArray<nsCString> mailboxes;
-  nsresult rv = getMailboxList(compFields, mailboxes);
-  NS_ENSURE_SUCCESS(rv, rv);
-
-  uint32_t mailbox_count = mailboxes.Length();
-
-  if (!mailbox_count) {
-    return NS_OK;
-  }
-
-  emailAddresses.SetCapacity(mailbox_count);
-
-  nsCOMPtr<nsIMsgComposeSecure> composeSecure =
-      do_CreateInstance(NS_MSGCOMPOSESECURE_CONTRACTID, &rv);
-  NS_ENSURE_SUCCESS(rv, rv);
-
-  for (uint32_t i = 0; i < mailbox_count; ++i) {
-    nsCString email_lowercase;
-    ToLowerCase(mailboxes[i], email_lowercase);
-
-    nsCOMPtr<nsIX509Cert> cert;
-    if (NS_FAILED(composeSecure->FindCertByEmailAddress(
-            email_lowercase, true, getter_AddRefs(cert)))) {
-      // No cert found for this address.
-      emailAddresses.AppendElement(NS_ConvertUTF8toUTF16(mailboxes[i]));
-    }
-  }
-
-  return NS_OK;
-}
-
-nsresult nsSMimeJSHelper::getMailboxList(nsIMsgCompFields* compFields,
-                                         nsTArray<nsCString>& mailboxes) {
-  if (!compFields) return NS_ERROR_INVALID_ARG;
-
-  nsresult res;
-  nsString to, cc, bcc, ng;
-
-  res = compFields->GetTo(to);
-  if (NS_FAILED(res)) return res;
-
-  res = compFields->GetCc(cc);
-  if (NS_FAILED(res)) return res;
-
-  res = compFields->GetBcc(bcc);
-  if (NS_FAILED(res)) return res;
-
-  res = compFields->GetNewsgroups(ng);
-  if (NS_FAILED(res)) return res;
-
-  {
-    nsCString all_recipients;
-
-    if (!to.IsEmpty()) {
-      all_recipients.Append(NS_ConvertUTF16toUTF8(to));
-      all_recipients.Append(',');
-    }
-
-    if (!cc.IsEmpty()) {
-      all_recipients.Append(NS_ConvertUTF16toUTF8(cc));
-      all_recipients.Append(',');
-    }
-
-    if (!bcc.IsEmpty()) {
-      all_recipients.Append(NS_ConvertUTF16toUTF8(bcc));
-      all_recipients.Append(',');
-    }
-
-    if (!ng.IsEmpty()) all_recipients.Append(NS_ConvertUTF16toUTF8(ng));
-
-    ExtractEmails(EncodedHeader(all_recipients),
-                  UTF16ArrayAdapter<>(mailboxes));
-  }
-
-  return NS_OK;
-}
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/nsSMimeJSHelper.h thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/nsSMimeJSHelper.h
--- thunderbird-102.9.0+build1/comm/mailnews/extensions/smime/nsSMimeJSHelper.h	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/extensions/smime/nsSMimeJSHelper.h	1970-01-01 00:00:00.000000000 +0000
@@ -1,24 +0,0 @@
-/* This Source Code Form is subject to the terms of the Mozilla Public
- * License, v. 2.0. If a copy of the MPL was not distributed with this
- * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
-
-#ifndef _nsSMimeJSHelper_H_
-#define _nsSMimeJSHelper_H_
-
-#include "nsISMimeJSHelper.h"
-#include "nsIMsgCompFields.h"
-
-class nsSMimeJSHelper : public nsISMimeJSHelper {
- public:
-  NS_DECL_ISUPPORTS
-  NS_DECL_NSISMIMEJSHELPER
-
-  nsSMimeJSHelper();
-
- private:
-  virtual ~nsSMimeJSHelper();
-  nsresult getMailboxList(nsIMsgCompFields* compFields,
-                          nsTArray<nsCString>& mailboxes);
-};
-
-#endif
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/imap/src/nsImapProtocol.cpp thunderbird-102.10.0+build2/comm/mailnews/imap/src/nsImapProtocol.cpp
--- thunderbird-102.9.0+build1/comm/mailnews/imap/src/nsImapProtocol.cpp	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/imap/src/nsImapProtocol.cpp	2023-04-11 06:11:53.000000000 +0000
@@ -802,9 +802,10 @@
   nsresult rv = NS_ERROR_FAILURE;
   NS_ASSERTION(aURL, "null URL passed into Imap Protocol");
   if (aURL) {
-    m_runningUrl = do_QueryInterface(aURL, &rv);
+    nsCOMPtr<nsIImapUrl> imapURL = do_QueryInterface(aURL, &rv);
+    NS_ENSURE_SUCCESS(rv, rv);
+    m_runningUrl = imapURL;
     m_runningUrlLatest = m_runningUrl;
-    if (NS_FAILED(rv)) return rv;
 
     nsCOMPtr<nsIMsgMailNewsUrl> mailnewsUrl = do_QueryInterface(m_runningUrl);
     nsCOMPtr<nsIMsgIncomingServer> server = do_QueryReferent(m_server);
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/imap/test/unit/test_imapStatusCloseDBs.js thunderbird-102.10.0+build2/comm/mailnews/imap/test/unit/test_imapStatusCloseDBs.js
--- thunderbird-102.9.0+build1/comm/mailnews/imap/test/unit/test_imapStatusCloseDBs.js	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/imap/test/unit/test_imapStatusCloseDBs.js	2023-04-11 06:11:53.000000000 +0000
@@ -13,6 +13,7 @@
 
 add_task(function setupTest() {
   Services.prefs.setBoolPref("mail.check_all_imap_folders_for_new", true);
+  Services.prefs.setIntPref("mail.server.server1.max_cached_connections", 2);
 
   setupIMAPPump();
 
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/import/src/nsImportMail.cpp thunderbird-102.10.0+build2/comm/mailnews/import/src/nsImportMail.cpp
--- thunderbird-102.9.0+build1/comm/mailnews/import/src/nsImportMail.cpp	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/import/src/nsImportMail.cpp	2023-04-11 06:11:53.000000000 +0000
@@ -959,6 +959,7 @@
 }
 
 nsresult ProxyCreateSubfolder(nsIMsgFolder* aFolder, const nsAString& aName) {
+  NS_ENSURE_ARG_POINTER(aFolder);
   RefPtr<CreateSubfolderRunnable> createSubfolder =
       new CreateSubfolderRunnable(aFolder, aName);
   nsresult rv = NS_DispatchToMainThread(createSubfolder, NS_DISPATCH_SYNC);
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/mime/src/mimecms.cpp thunderbird-102.10.0+build2/comm/mailnews/mime/src/mimecms.cpp
--- thunderbird-102.9.0+build1/comm/mailnews/mime/src/mimecms.cpp	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/mime/src/mimecms.cpp	2023-04-11 06:11:53.000000000 +0000
@@ -362,8 +362,13 @@
       signature_status = nsICMSMessageErrors::SUCCESS;
   }
 
-  ProxySignedStatus(mHeaderSink, mMimeNestingLevel, signature_status,
-                    signerCert, mMsgNeckoURL);
+  if (NS_IsMainThread()) {
+    mHeaderSink->SignedStatus(mMimeNestingLevel, signature_status,
+                      signerCert, mMsgNeckoURL);
+  } else {
+    ProxySignedStatus(mHeaderSink, mMimeNestingLevel, signature_status,
+                      signerCert, mMsgNeckoURL);
+  }
 
   return NS_OK;
 }
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/mime/src/mimehdrs.cpp thunderbird-102.10.0+build2/comm/mailnews/mime/src/mimehdrs.cpp
--- thunderbird-102.9.0+build1/comm/mailnews/mime/src/mimehdrs.cpp	2023-03-11 11:25:08.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/mime/src/mimehdrs.cpp	2023-04-11 06:11:53.000000000 +0000
@@ -445,7 +445,8 @@
   if (NS_FAILED(rv)) return nullptr;
 
   nsCString result;
-  rv = mimehdrpar->GetParameterInternal(header_value, parm_name, charset,
+  nsDependentCString headerValue(header_value);
+  rv = mimehdrpar->GetParameterInternal(headerValue, parm_name, charset,
                                         language, getter_Copies(result));
   return NS_SUCCEEDED(rv) ? PL_strdup(result.get()) : nullptr;
 }
diff -Nru thunderbird-102.9.0+build1/comm/mailnews/mime/test/unit/test_smime_decrypt.js thunderbird-102.10.0+build2/comm/mailnews/mime/test/unit/test_smime_decrypt.js
--- thunderbird-102.9.0+build1/comm/mailnews/mime/test/unit/test_smime_decrypt.js	2023-03-11 11:25:09.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/mailnews/mime/test/unit/test_smime_decrypt.js	2023-04-11 06:11:53.000000000 +0000
@@ -21,41 +21,6 @@
   "resource://testing-common/mailnews/smimeUtils.jsm"
 );
 
-let gCertValidityResult = 0;
-
-/**
- * @implements nsICertVerificationCallback
- */
-class CertVerificationResultCallback {
-  constructor(callback) {
-    this.callback = callback;
-  }
-  verifyCertFinished(prErrorCode, verifiedChain, hasEVPolicy) {
-    gCertValidityResult = prErrorCode;
-    this.callback();
-  }
-}
-
-function testCertValidity(cert, date) {
-  let prom = new Promise((resolve, reject) => {
-    const certificateUsageEmailRecipient = 0x0020;
-    let result = new CertVerificationResultCallback(resolve);
-    let flags = Ci.nsIX509CertDB.FLAG_LOCAL_ONLY;
-    const certdb = Cc["@mozilla.org/security/x509certdb;1"].getService(
-      Ci.nsIX509CertDB
-    );
-    certdb.asyncVerifyCertAtTime(
-      cert,
-      certificateUsageEmailRecipient,
-      flags,
-      "Alice@example.com",
-      date,
-      result
-    );
-  });
-  return prom;
-}
-
 add_task(function setupTest() {
   let messageInjection = new MessageInjection({ mode: "local" });
   gInbox = messageInjection.getInboxFolder();
@@ -75,43 +40,33 @@
 });
 
 add_task(async function verifyTestCertsStillValid() {
+  // implementation of nsIDoneFindCertForEmailCallback
+  var doneFindCertForEmailCallback = {
+    findCertDone(email, cert) {
+      Assert.notEqual(cert, null);
+      if (!cert) {
+        Assert.ok(
+          false,
+          "The S/MIME test certificates are invalid today.\n" +
+            "Please look at the expiration date in file comm/mailnews/test/data/smime/expiration.txt\n" +
+            "If that date is in the past, new certificates need to be generated and committed.\n" +
+            "Follow the instructions in comm/mailnews/test/data/smime/README.md\n" +
+            "If that date is in the future, the test failure is unrelated to expiration and indicates " +
+            "an error in certificate validation."
+        );
+      }
+    },
+
+    QueryInterface: ChromeUtils.generateQI(["nsIDoneFindCertForEmailCallback"]),
+  };
+
   let composeSecure = Cc[
     "@mozilla.org/messengercompose/composesecure;1"
   ].createInstance(Ci.nsIMsgComposeSecure);
-  let cert = composeSecure.findCertByEmailAddress("Alice@example.com", false);
-  Assert.notEqual(cert, null);
-
-  let now = Date.now() / 1000;
-
-  let prom = testCertValidity(cert, now);
-  await prom;
-
-  if (gCertValidityResult != 0) {
-    // Either certs have expired, or something else is going wrong.
-    // Let's test if they were valid a week ago, for a better guess.
-
-    let oneWeekAgo = now - 7 * 24 * 60 * 60;
-    prom = testCertValidity(cert, oneWeekAgo);
-    await prom;
-
-    if (gCertValidityResult == 0) {
-      Assert.ok(
-        false,
-        "The S/MIME test certificates are invalid today, but were valid one week ago. " +
-          "Most likely they have expired and new certificates need to be generated and committed. " +
-          "Follow the instructions in comm/mailnews/test/data/smime/README.md"
-      );
-    } else {
-      Assert.ok(
-        false,
-        "The S/MIME test certificates are invalid today, but were also invalid one week ago. " +
-          "If this error is first appearing today, the reason might be unrelated to expiration, " +
-          "and could indicate a general error in certificate validation. Nevertheless, if you'd " +
-          "like to attempt a refresh of certificates: " +
-          "Follow the instructions in comm/mailnews/test/data/smime/README.md"
-      );
-    }
-  }
+  composeSecure.asyncFindCertByEmailAddr(
+    "Alice@example.com",
+    doneFindCertForEmailCallback
+  );
 });
 
 var gInbox;
diff -Nru thunderbird-102.9.0+build1/comm/python/l10n/l10n_clone/l10n_clone.py thunderbird-102.10.0+build2/comm/python/l10n/l10n_clone/l10n_clone.py
--- thunderbird-102.9.0+build1/comm/python/l10n/l10n_clone/l10n_clone.py	2023-03-11 11:25:09.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/python/l10n/l10n_clone/l10n_clone.py	2023-04-11 06:11:53.000000000 +0000
@@ -65,7 +65,9 @@
         l10n_central.mkdir()
         central_path = l10n_central / locale
         central_revision = get_revision("browser", locale)
-        update_mercurial_repo("hg", central_url, central_path, revision=central_revision)
+        update_mercurial_repo(
+            "hg", central_url, central_path, revision=central_revision
+        )
 
         comm_l10n = Path(tmproot) / "comm-l10n"
         comm_revision = get_revision("mail", locale)
diff -Nru thunderbird-102.9.0+build1/comm/SOURCE_CHANGESET thunderbird-102.10.0+build2/comm/SOURCE_CHANGESET
--- thunderbird-102.9.0+build1/comm/SOURCE_CHANGESET	2023-03-11 11:25:10.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/SOURCE_CHANGESET	2023-04-11 06:11:54.000000000 +0000
@@ -1 +1 @@
-db735c436e680abf21cc67f9a29b42fdf30d416d
\ No newline at end of file
+d8df3bebc4b529388b62b9cb4df152f13910fbe3
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/comm/taskcluster/ci/beetmover-strings-source/kind.yml thunderbird-102.10.0+build2/comm/taskcluster/ci/beetmover-strings-source/kind.yml
--- thunderbird-102.9.0+build1/comm/taskcluster/ci/beetmover-strings-source/kind.yml	2023-03-11 11:25:09.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/taskcluster/ci/beetmover-strings-source/kind.yml	2023-04-11 06:11:53.000000000 +0000
@@ -15,5 +15,6 @@
 
 job-template:
     shipping-phase: promote
+    shipping-product: thunderbird
     attributes:
         artifact_map: comm/taskcluster/comm_taskgraph/manifests/strings_source.yml
diff -Nru thunderbird-102.9.0+build1/comm/taskcluster/ci/release-notify-promote/kind.yml thunderbird-102.10.0+build2/comm/taskcluster/ci/release-notify-promote/kind.yml
--- thunderbird-102.9.0+build1/comm/taskcluster/ci/release-notify-promote/kind.yml	2023-03-11 11:25:09.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/taskcluster/ci/release-notify-promote/kind.yml	2023-04-11 06:11:53.000000000 +0000
@@ -13,6 +13,7 @@
     - post-beetmover-dummy
     - release-generate-checksums-beetmover
     - release-bouncer-sub
+    - beetmover-strings-source
 
 job-defaults:
     name: notify-release-drivers-promote
diff -Nru thunderbird-102.9.0+build1/comm/taskcluster/ci/shippable-l10n-pre/kind.yml thunderbird-102.10.0+build2/comm/taskcluster/ci/shippable-l10n-pre/kind.yml
--- thunderbird-102.9.0+build1/comm/taskcluster/ci/shippable-l10n-pre/kind.yml	2023-03-11 11:25:09.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/taskcluster/ci/shippable-l10n-pre/kind.yml	2023-04-11 06:11:53.000000000 +0000
@@ -16,6 +16,7 @@
 
 job-defaults:
     shipping-phase: promote
+    shipping-product: thunderbird
     treeherder:
         symbol: L10n-pre-S
     worker-type: b-linux
diff -Nru thunderbird-102.9.0+build1/comm/third_party/README.rnp thunderbird-102.10.0+build2/comm/third_party/README.rnp
--- thunderbird-102.9.0+build1/comm/third_party/README.rnp	2023-03-11 11:25:09.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/third_party/README.rnp	2023-04-11 06:11:53.000000000 +0000
@@ -3,6 +3,10 @@
 
 [commit 298ad98b9ba2fb58e6eadec3c226f8184b41ab98]
 
+If MZLA applied patches on top, the version number in file
+third_party/rnp/src/lib/version.h will contain a suffix that lists
+the upstream pull request IDs.
+
 For licensing information, please refer to the included documentation.
 
 To update this copy, run "update_rnp.sh" in this directory from this directory
diff -Nru thunderbird-102.9.0+build1/comm/third_party/rnp/src/lib/version.h thunderbird-102.10.0+build2/comm/third_party/rnp/src/lib/version.h
--- thunderbird-102.9.0+build1/comm/third_party/rnp/src/lib/version.h	2023-03-11 11:25:09.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/third_party/rnp/src/lib/version.h	2023-04-11 06:11:53.000000000 +0000
@@ -28,7 +28,7 @@
 #define RNP_VERSION_PATCH 2
 
 #define RNP_VERSION_STRING "0.16.2"
-#define RNP_VERSION_STRING_FULL "0.16.2+git20220922.298ad98b.MZLA"
+#define RNP_VERSION_STRING_FULL "0.16.2+git20220922.298ad98b.MZLA+PR2034"
 
 #define RNP_VERSION_COMMIT_TIMESTAMP 1663838874
 
diff -Nru thunderbird-102.9.0+build1/comm/third_party/rnp/src/librepgp/stream-parse.cpp thunderbird-102.10.0+build2/comm/third_party/rnp/src/librepgp/stream-parse.cpp
--- thunderbird-102.9.0+build1/comm/third_party/rnp/src/librepgp/stream-parse.cpp	2023-03-11 11:25:09.000000000 +0000
+++ thunderbird-102.10.0+build2/comm/third_party/rnp/src/librepgp/stream-parse.cpp	2023-04-11 06:11:53.000000000 +0000
@@ -1919,9 +1919,10 @@
     int ptype;
     /* Reading pk/sk encrypted session key(s) */
     try {
-        bool stop = false;
+        size_t errors = 0;
+        bool   stop = false;
         while (!stop) {
-            if (param->pubencs.size() + param->symencs.size() > MAX_RECIPIENTS) {
+            if (param->pubencs.size() + param->symencs.size() + errors > MAX_RECIPIENTS) {
                 RNP_LOG("Too many recipients of the encrypted message. Aborting.");
                 return RNP_ERROR_BAD_STATE;
             }
@@ -1935,8 +1936,13 @@
             case PGP_PKT_SK_SESSION_KEY: {
                 pgp_sk_sesskey_t skey;
                 rnp_result_t     ret = skey.parse(*param->pkt.readsrc);
+                if (ret == RNP_ERROR_READ) {
+                    RNP_LOG("SKESK: Premature end of data.");
+                    return ret;
+                }
                 if (ret) {
                     RNP_LOG("Failed to parse SKESK, skipping.");
+                    errors++;
                     continue;
                 }
                 param->symencs.push_back(skey);
@@ -1945,8 +1951,13 @@
             case PGP_PKT_PK_SESSION_KEY: {
                 pgp_pk_sesskey_t pkey;
                 rnp_result_t     ret = pkey.parse(*param->pkt.readsrc);
+                if (ret == RNP_ERROR_READ) {
+                    RNP_LOG("PKESK: Premature end of data.");
+                    return ret;
+                }
                 if (ret) {
                     RNP_LOG("Failed to parse PKESK, skipping.");
+                    errors++;
                     continue;
                 }
                 param->pubencs.push_back(pkey);
Binary files /tmp/tmp13iql_nk/uWLg1t1GOh/thunderbird-102.9.0+build1/config/external/icu/data/icudt71l.dat and /tmp/tmp13iql_nk/XrrXVw2m11/thunderbird-102.10.0+build2/config/external/icu/data/icudt71l.dat differ
diff -Nru thunderbird-102.9.0+build1/config/milestone.txt thunderbird-102.10.0+build2/config/milestone.txt
--- thunderbird-102.9.0+build1/config/milestone.txt	2023-03-11 11:24:07.000000000 +0000
+++ thunderbird-102.10.0+build2/config/milestone.txt	2023-04-11 06:11:36.000000000 +0000
@@ -10,4 +10,4 @@
 # hardcoded milestones in the tree from these two files.
 #--------------------------------------------------------
 
-102.9.0
+102.10.0
diff -Nru thunderbird-102.9.0+build1/.cron.yml thunderbird-102.10.0+build2/.cron.yml
--- thunderbird-102.9.0+build1/.cron.yml	2023-03-11 11:24:06.000000000 +0000
+++ thunderbird-102.10.0+build2/.cron.yml	2023-04-11 06:10:53.000000000 +0000
@@ -149,19 +149,6 @@
       when:
           - {hour: 2, minute: 0}
 
-    - name: updatebot-cron-job
-      job:
-          type: decision-task
-          treeherder-symbol: updatebot
-          target-tasks-method: updatebot_cron
-      run-on-projects:
-          - mozilla-central
-      when:
-          - {hour: 0, minute: 0}
-          - {hour: 6, minute: 0}
-          - {hour: 12, minute: 0}
-          - {hour: 18, minute: 0}
-
     - name: customv8-update
       job:
           type: decision-task
diff -Nru thunderbird-102.9.0+build1/debian/changelog thunderbird-102.10.0+build2/debian/changelog
--- thunderbird-102.9.0+build1/debian/changelog	2023-03-22 10:17:43.000000000 +0000
+++ thunderbird-102.10.0+build2/debian/changelog	2023-04-12 13:39:27.000000000 +0000
@@ -1,3 +1,9 @@
+thunderbird (1:102.10.0+build2-0ubuntu0.20.04.1) focal; urgency=medium
+
+  * New upstream stable release (102.10.0+build2)
+
+ -- Sebastien Bacher <seb128@ubuntu.com>  Wed, 12 Apr 2023 15:39:27 +0200
+
 thunderbird (1:102.9.0+build1-0ubuntu0.20.04.1) focal; urgency=medium
 
   * New upstream stable release (102.9.0+build1)
diff -Nru thunderbird-102.9.0+build1/debian/control thunderbird-102.10.0+build2/debian/control
--- thunderbird-102.9.0+build1/debian/control	2023-03-22 10:17:43.000000000 +0000
+++ thunderbird-102.10.0+build2/debian/control	2023-04-12 13:39:27.000000000 +0000
@@ -3,7 +3,8 @@
 Section: web
 Priority: optional
 Maintainer: Ubuntu Mozilla Team <ubuntu-mozillateam@lists.ubuntu.com>
-Vcs-Bzr: https://code.launchpad.net/~mozillateam/thunderbird/thunderbird.focal
+Vcs-Git: https://git.launchpad.net/~mozillateam/thunderbird -b focal
+Vcs-Browser: https://git.launchpad.net/~mozillateam/thunderbird
 Build-Depends: cdbs,
 	debhelper (>= 9),
 	autotools-dev,
diff -Nru thunderbird-102.9.0+build1/debian/control.in thunderbird-102.10.0+build2/debian/control.in
--- thunderbird-102.9.0+build1/debian/control.in	2023-03-22 10:17:43.000000000 +0000
+++ thunderbird-102.10.0+build2/debian/control.in	2023-04-12 13:39:27.000000000 +0000
@@ -3,7 +3,8 @@
 Section: web
 Priority: optional
 Maintainer: Ubuntu Mozilla Team <ubuntu-mozillateam@lists.ubuntu.com>
-Vcs-Bzr: https://code.launchpad.net/~mozillateam/thunderbird/thunderbird.focal
+Vcs-Git: https://git.launchpad.net/~mozillateam/thunderbird -b focal
+Vcs-Browser: https://git.launchpad.net/~mozillateam/thunderbird
 Build-Depends: cdbs,
 	debhelper (>= 9),
 	autotools-dev,
diff -Nru thunderbird-102.9.0+build1/docshell/base/nsDocShell.cpp thunderbird-102.10.0+build2/docshell/base/nsDocShell.cpp
--- thunderbird-102.9.0+build1/docshell/base/nsDocShell.cpp	2023-03-11 11:24:08.000000000 +0000
+++ thunderbird-102.10.0+build2/docshell/base/nsDocShell.cpp	2023-04-11 06:10:55.000000000 +0000
@@ -4130,6 +4130,7 @@
     MOZ_LOG(gSHLog, LogLevel::Debug, ("nsDocShell %p Reload", this));
     bool forceReload = IsForceReloadType(loadType);
     if (!XRE_IsParentProcess()) {
+      ++mPendingReloadCount;
       RefPtr<nsDocShell> docShell(this);
       nsCOMPtr<nsIContentViewer> cv(mContentViewer);
       NS_ENSURE_STATE(cv);
@@ -4164,6 +4165,12 @@
                 loadGroup->RemoveRequest(stopDetector, nullptr, NS_OK);
               }
             });
+
+            // Decrease mPendingReloadCount before any other early returns!
+            if (--(docShell->mPendingReloadCount) > 0) {
+              return;
+            }
+
             if (stopDetector->Canceled()) {
               return;
             }
diff -Nru thunderbird-102.9.0+build1/docshell/base/nsDocShell.h thunderbird-102.10.0+build2/docshell/base/nsDocShell.h
--- thunderbird-102.9.0+build1/docshell/base/nsDocShell.h	2023-03-11 11:24:08.000000000 +0000
+++ thunderbird-102.10.0+build2/docshell/base/nsDocShell.h	2023-04-11 06:10:55.000000000 +0000
@@ -1295,6 +1295,8 @@
 
   uint64_t mChannelToDisconnectOnPageHide;
 
+  uint32_t mPendingReloadCount = 0;
+
   // The following two fields cannot be declared as bit fields
   // because of uses with AutoRestore.
   bool mCreatingDocument;  // (should be) debugging only
diff -Nru thunderbird-102.9.0+build1/docshell/test/mochitest/test_load_during_reload.html thunderbird-102.10.0+build2/docshell/test/mochitest/test_load_during_reload.html
--- thunderbird-102.9.0+build1/docshell/test/mochitest/test_load_during_reload.html	2023-03-11 11:24:09.000000000 +0000
+++ thunderbird-102.10.0+build2/docshell/test/mochitest/test_load_during_reload.html	2023-04-11 06:10:55.000000000 +0000
@@ -25,6 +25,20 @@
       win.close();
     });
 
+    add_task(async function runTest2() {
+      let win = window.open("file_load_during_reload.html");
+      await promiseForLoad();
+
+      win.history.replaceState("", "", "?1");
+      win.location.reload();
+      win.history.pushState("", "", "?2");
+      win.location.reload();
+      await promiseForLoad();
+
+      ok(win.location.href.includes("2"), "Should have loaded the second page.");
+      win.close();
+    });
+
   </script>
 </head>
 <body>
diff -Nru thunderbird-102.9.0+build1/dom/base/nsFocusManager.cpp thunderbird-102.10.0+build2/dom/base/nsFocusManager.cpp
--- thunderbird-102.9.0+build1/dom/base/nsFocusManager.cpp	2023-03-11 11:24:09.000000000 +0000
+++ thunderbird-102.10.0+build2/dom/base/nsFocusManager.cpp	2023-04-11 06:10:55.000000000 +0000
@@ -1616,10 +1616,10 @@
 
   // Exit fullscreen if a website focuses another window
   if (StaticPrefs::full_screen_api_exit_on_windowRaise() &&
-      !isElementInActiveWindow && (aFlags & FLAG_RAISE) &&
-      (aFlags & FLAG_NONSYSTEMCALLER)) {
+      !isElementInActiveWindow && (aFlags & FLAG_RAISE)) {
     if (XRE_IsParentProcess()) {
       if (Document* doc = mActiveWindow ? mActiveWindow->GetDoc() : nullptr) {
+        Document::ClearPendingFullscreenRequests(doc);
         if (doc->GetFullscreenElement()) {
           LogWarningFullscreenWindowRaise(mFocusedElement);
           Document::AsyncExitFullscreen(doc);
@@ -1630,9 +1630,11 @@
       if (activeBrowsingContext) {
         nsIDocShell* shell = activeBrowsingContext->GetDocShell();
         if (shell) {
-          Document* doc = shell->GetDocument();
-          if (doc && doc->GetFullscreenElement()) {
-            Document::AsyncExitFullscreen(doc);
+          if (Document* doc = shell->GetDocument()) {
+            Document::ClearPendingFullscreenRequests(doc);
+            if (doc->GetFullscreenElement()) {
+              Document::AsyncExitFullscreen(doc);
+            }
           }
         } else {
           mozilla::dom::ContentChild* contentChild =
diff -Nru thunderbird-102.9.0+build1/dom/canvas/WebGLShaderValidator.cpp thunderbird-102.10.0+build2/dom/canvas/WebGLShaderValidator.cpp
--- thunderbird-102.9.0+build1/dom/canvas/WebGLShaderValidator.cpp	2023-03-11 11:24:09.000000000 +0000
+++ thunderbird-102.10.0+build2/dom/canvas/WebGLShaderValidator.cpp	2023-04-11 06:10:56.000000000 +0000
@@ -43,22 +43,23 @@
 #endif
 
   if (gl->WorkAroundDriverBugs()) {
-#ifdef XP_MACOSX
-    // Work around https://bugs.webkit.org/show_bug.cgi?id=124684,
-    // https://chromium.googlesource.com/angle/angle/+/5e70cf9d0b1bb
-    options |= SH_UNFOLD_SHORT_CIRCUIT;
+    if (kIsMacOS) {
+      // Work around https://bugs.webkit.org/show_bug.cgi?id=124684,
+      // https://chromium.googlesource.com/angle/angle/+/5e70cf9d0b1bb
+      options |= SH_UNFOLD_SHORT_CIRCUIT;
 
-    // Work around that Mac drivers handle struct scopes incorrectly.
-    options |= SH_REGENERATE_STRUCT_NAMES;
-    options |= SH_INIT_OUTPUT_VARIABLES;
+      // Work around that Mac drivers handle struct scopes incorrectly.
+      options |= SH_REGENERATE_STRUCT_NAMES;
+      options |= SH_INIT_OUTPUT_VARIABLES;
+      options |= SH_INIT_GL_POINT_SIZE;
 
-    if (gl->Vendor() == gl::GLVendor::Intel) {
-      // Work around that Intel drivers on Mac OSX handle for-loop incorrectly.
-      options |= SH_ADD_AND_TRUE_TO_LOOP_CONDITION;
+      if (gl->Vendor() == gl::GLVendor::Intel) {
+        // Work around that Intel drivers on Mac OSX handle for-loop incorrectly.
+        options |= SH_ADD_AND_TRUE_TO_LOOP_CONDITION;
 
-      options |= SH_REWRITE_TEXELFETCHOFFSET_TO_TEXELFETCH;
+        options |= SH_REWRITE_TEXELFETCHOFFSET_TO_TEXELFETCH;
+      }
     }
-#endif
 
     if (!gl->IsANGLE() && gl->Vendor() == gl::GLVendor::Intel) {
       // Failures on at least Windows+Intel+OGL on:
diff -Nru thunderbird-102.9.0+build1/dom/indexedDB/test/mochitest.ini thunderbird-102.10.0+build2/dom/indexedDB/test/mochitest.ini
--- thunderbird-102.9.0+build1/dom/indexedDB/test/mochitest.ini	2023-03-11 11:24:10.000000000 +0000
+++ thunderbird-102.10.0+build2/dom/indexedDB/test/mochitest.ini	2023-04-11 06:11:36.000000000 +0000
@@ -220,7 +220,9 @@
 [test_message_manager_ipc.html]
 [test_multientry.html]
 [test_names_sorted.html]
-skip-if = (xorigin && !debug) # Hangs
+skip-if = 
+  (xorigin && !debug) # Hangs
+  os == "linux" && bits == 64 && !debug # Bug 1602927
 [test_objectCursors.html]
 [test_objectStore_getAllKeys.html]
 [test_objectStore_inline_autoincrement_key_added_on_put.html]
diff -Nru thunderbird-102.9.0+build1/dom/media/gmp/ChromiumCDMChild.cpp thunderbird-102.10.0+build2/dom/media/gmp/ChromiumCDMChild.cpp
--- thunderbird-102.9.0+build1/dom/media/gmp/ChromiumCDMChild.cpp	2023-03-11 11:24:10.000000000 +0000
+++ thunderbird-102.10.0+build2/dom/media/gmp/ChromiumCDMChild.cpp	2023-04-11 06:10:57.000000000 +0000
@@ -176,6 +176,10 @@
 void ChromiumCDMChild::CallOnMessageLoopThread(const char* const aName,
                                                MethodType aMethod,
                                                ParamType&&... aParams) {
+  if (NS_WARN_IF(!mPlugin)) {
+    return;
+  }
+
   if (IsOnMessageLoopThread()) {
     CallMethod(aMethod, std::forward<ParamType>(aParams)...);
   } else {
@@ -371,6 +375,10 @@
   return mPlugin && mPlugin->GMPMessageLoop() == MessageLoop::current();
 }
 
+void ChromiumCDMChild::ActorDestroy(ActorDestroyReason aReason) {
+  mPlugin = nullptr;
+}
+
 void ChromiumCDMChild::PurgeShmems() {
   for (ipc::Shmem& shmem : mBuffers) {
     DeallocShmem(shmem);
diff -Nru thunderbird-102.9.0+build1/dom/media/gmp/ChromiumCDMChild.h thunderbird-102.10.0+build2/dom/media/gmp/ChromiumCDMChild.h
--- thunderbird-102.9.0+build1/dom/media/gmp/ChromiumCDMChild.h	2023-03-11 11:24:10.000000000 +0000
+++ thunderbird-102.10.0+build2/dom/media/gmp/ChromiumCDMChild.h	2023-04-11 06:10:57.000000000 +0000
@@ -72,6 +72,8 @@
 
   bool IsOnMessageLoopThread();
 
+  void ActorDestroy(ActorDestroyReason aReason) override;
+
   ipc::IPCResult RecvGiveBuffer(ipc::Shmem&& aShmem) override;
   ipc::IPCResult RecvPurgeShmems() override;
   void PurgeShmems();
diff -Nru thunderbird-102.9.0+build1/dom/media/gmp/GMPParent.cpp thunderbird-102.10.0+build2/dom/media/gmp/GMPParent.cpp
--- thunderbird-102.9.0+build1/dom/media/gmp/GMPParent.cpp	2023-03-11 11:24:10.000000000 +0000
+++ thunderbird-102.10.0+build2/dom/media/gmp/GMPParent.cpp	2023-04-11 06:10:57.000000000 +0000
@@ -36,6 +36,7 @@
 #include "ProfilerParent.h"
 #include "runnable_utils.h"
 #ifdef XP_WIN
+#  include "mozilla/FileUtilsWin.h"
 #  include "WMFDecoderModule.h"
 #endif
 #if defined(MOZ_WIDGET_ANDROID)
@@ -73,7 +74,7 @@
       mGMPContentChildCount(0),
       mChildPid(0),
       mHoldingSelfRef(false),
-#if defined(XP_MACOSX) && defined(__aarch64__)
+#ifdef ALLOW_GECKO_CHILD_PROCESS_ARCH
       mChildLaunchArch(base::PROCESS_ARCH_INVALID),
 #endif
       mMainThread(GetMainThreadSerialEventTarget()) {
@@ -105,19 +106,21 @@
   }
   mAdapter = aOther->mAdapter;
 
-#if defined(XP_MACOSX) && defined(__aarch64__)
+#ifdef ALLOW_GECKO_CHILD_PROCESS_ARCH
   mChildLaunchArch = aOther->mChildLaunchArch;
 #endif
 }
 
-#if defined(XP_MACOSX)
+#if defined(XP_WIN) || defined(XP_MACOSX)
 nsresult GMPParent::GetPluginFileArch(nsIFile* aPluginDir,
-                                      nsAutoString& aLeafName,
+                                      const nsString& aBaseName,
                                       uint32_t& aArchSet) {
   // Build up the plugin filename
-  nsAutoString baseName;
-  baseName = Substring(aLeafName, 4, aLeafName.Length() - 1);
-  nsAutoString pluginFileName = u"lib"_ns + baseName + u".dylib"_ns;
+#  if defined(XP_MACOSX)
+  nsAutoString pluginFileName = u"lib"_ns + aBaseName + u".dylib"_ns;
+#  elif defined(XP_WIN)
+  nsAutoString pluginFileName = aBaseName + u".dll"_ns;
+#  endif
   GMP_PARENT_LOG_DEBUG("%s: pluginFileName: %s", __FUNCTION__,
                        NS_LossyConvertUTF16toASCII(pluginFileName).get());
 
@@ -127,8 +130,9 @@
   NS_ENSURE_SUCCESS(rv, rv);
   pluginFile->AppendRelativePath(pluginFileName);
 
+#  if defined(XP_MACOSX)
   // Get the full plugin path
-  nsCString pluginPath;
+  nsAutoCString pluginPath;
   rv = pluginFile->GetNativePath(pluginPath);
   NS_ENSURE_SUCCESS(rv, rv);
   GMP_PARENT_LOG_DEBUG("%s: pluginPath: %s", __FUNCTION__, pluginPath.get());
@@ -136,13 +140,26 @@
   rv = nsMacUtilsImpl::GetArchitecturesForBinary(pluginPath.get(), &aArchSet);
   NS_ENSURE_SUCCESS(rv, rv);
 
-#  if defined(__aarch64__)
+#    if defined(__aarch64__)
   mPluginFilePath = pluginPath;
+#    endif
+#  elif defined(XP_WIN)
+  // Get the full plugin path
+  nsAutoString pluginPath;
+  rv = pluginFile->GetTarget(pluginPath);
+  NS_ENSURE_SUCCESS(rv, rv);
+  GMP_PARENT_LOG_DEBUG("%s: pluginPath: %s", __FUNCTION__,
+                       NS_LossyConvertUTF16toASCII(pluginPath).get());
+
+  aArchSet = GetExecutableArchitecture(pluginPath.get());
+  if (aArchSet == base::PROCESS_ARCH_INVALID) {
+    return NS_ERROR_FAILURE;
+  }
 #  endif
 
   return NS_OK;
 }
-#endif  // defined(XP_MACOSX)
+#endif  // defined(XP_WIN) || defined(XP_MACOSX)
 
 RefPtr<GenericPromise> GMPParent::Init(GeckoMediaPluginServiceParent* aService,
                                        nsIFile* aPluginDir) {
@@ -171,18 +188,20 @@
   MOZ_ASSERT(parentLeafName.Length() > 4);
   mName = Substring(parentLeafName, 4);
 
-#if defined(XP_MACOSX)
-  uint32_t pluginArch = 0;
-  rv = GetPluginFileArch(aPluginDir, parentLeafName, pluginArch);
+#if defined(XP_WIN) || defined(XP_MACOSX)
+  uint32_t pluginArch = base::PROCESS_ARCH_INVALID;
+  rv = GetPluginFileArch(aPluginDir, mName, pluginArch);
   if (NS_FAILED(rv)) {
     GMP_PARENT_LOG_DEBUG("%s: Plugin arch error: %d", __FUNCTION__, rv);
   } else {
     GMP_PARENT_LOG_DEBUG("%s: Plugin arch: 0x%x", __FUNCTION__, pluginArch);
   }
 
-  uint32_t x86 = base::PROCESS_ARCH_X86_64 | base::PROCESS_ARCH_I386;
-#  if defined(__aarch64__)
-  uint32_t arm64 = base::PROCESS_ARCH_ARM_64;
+  const uint32_t x86 = base::PROCESS_ARCH_X86_64 | base::PROCESS_ARCH_I386;
+#  ifdef ALLOW_GECKO_CHILD_PROCESS_ARCH
+  const uint32_t arm64 = base::PROCESS_ARCH_ARM_64;
+
+  mChildLaunchArch = pluginArch;
   // When executing in an ARM64 process, if the library is x86 or x64,
   // set |mChildLaunchArch| to x64 and allow the library to be used as long
   // as this process is a universal binary.
@@ -193,18 +212,23 @@
     bool isH264 = parentLeafName.Find("openh264") != kNotFound;
     bool isH264Allowed =
         StaticPrefs::media_gmp_gmpopenh264_allow_x64_plugin_on_arm64();
+    bool isClearkey = parentLeafName.Find(u"clearkey") != kNotFound;
+    bool isClearkeyAllowed =
+        StaticPrefs::media_gmp_gmpclearkey_allow_x64_plugin_on_arm64();
 
-    // Only allow x64 child GMP processes for Widevine and OpenH264
-    if (!isWidevine && !isH264) {
+    // Only allow x64 child GMP processes for Widevine, OpenH264 and Clearkey
+    if (!isWidevine && !isH264 && !isClearkey) {
       return GenericPromise::CreateAndReject(NS_ERROR_NOT_IMPLEMENTED,
                                              __func__);
     }
     // And only if prefs permit it.
-    if ((isWidevine && !isWidevineAllowed) || (isH264 && !isH264Allowed)) {
+    if ((isWidevine && !isWidevineAllowed) || (isH264 && !isH264Allowed) ||
+        (isClearkey && !isClearkeyAllowed)) {
       return GenericPromise::CreateAndReject(NS_ERROR_PLUGIN_DISABLED,
                                              __func__);
     }
 
+#    ifdef XP_MACOSX
     // We have an x64 library. Get the bundle architecture to determine
     // if we are a universal binary and hence if we can launch an x64
     // child process to host this plugin.
@@ -226,6 +250,7 @@
       return GenericPromise::CreateAndReject(NS_ERROR_NOT_IMPLEMENTED,
                                              __func__);
     }
+#    endif
   }
 #  else
   // When executing in a non-ARM process, if the library is not x86 or x64,
@@ -238,8 +263,8 @@
     aPluginDir->Remove(true);
     return GenericPromise::CreateAndReject(NS_ERROR_NOT_IMPLEMENTED, __func__);
   }
-#  endif  // defined(__aarch64__)
-#endif    // defined(XP_MACOSX)
+#  endif  // defined(ALLOW_GECKO_CHILD_PROCESS_ARCH)
+#endif    // defined(XP_WIN) || defined(XP_MACOSX)
 
   return ReadGMPMetaData();
 }
@@ -300,7 +325,7 @@
     mProcess->SetRequiresWindowServer(mAdapter.EqualsLiteral("chromium"));
 #endif
 
-#if defined(XP_MACOSX) && defined(__aarch64__)
+#ifdef ALLOW_GECKO_CHILD_PROCESS_ARCH
     mProcess->SetLaunchArchitecture(mChildLaunchArch);
 #endif
 
diff -Nru thunderbird-102.9.0+build1/dom/media/gmp/GMPParent.h thunderbird-102.10.0+build2/dom/media/gmp/GMPParent.h
--- thunderbird-102.9.0+build1/dom/media/gmp/GMPParent.h	2023-03-11 11:24:10.000000000 +0000
+++ thunderbird-102.10.0+build2/dom/media/gmp/GMPParent.h	2023-04-11 06:10:57.000000000 +0000
@@ -189,8 +189,8 @@
   void PreTranslateBinsWorker();
 #endif
 
-#if defined(XP_MACOSX)
-  nsresult GetPluginFileArch(nsIFile* aPluginDir, nsAutoString& aLeafName,
+#if defined(XP_WIN) || defined(XP_MACOSX)
+  nsresult GetPluginFileArch(nsIFile* aPluginDir, const nsString& aBaseName,
                              uint32_t& aArchSet);
 #endif
 
@@ -233,9 +233,11 @@
   // to terminate gracefully.
   bool mHoldingSelfRef;
 
-#if defined(XP_MACOSX) && defined(__aarch64__)
+#ifdef ALLOW_GECKO_CHILD_PROCESS_ARCH
   // The child process architecture to use.
   uint32_t mChildLaunchArch;
+#endif
+#if defined(XP_MACOSX) && defined(__aarch64__)
   nsCString mPluginFilePath;
 #endif
 
diff -Nru thunderbird-102.9.0+build1/dom/media/gmp/GMPProcessParent.cpp thunderbird-102.10.0+build2/dom/media/gmp/GMPProcessParent.cpp
--- thunderbird-102.9.0+build1/dom/media/gmp/GMPProcessParent.cpp	2023-03-11 11:24:10.000000000 +0000
+++ thunderbird-102.10.0+build2/dom/media/gmp/GMPProcessParent.cpp	2023-04-11 06:10:57.000000000 +0000
@@ -70,10 +70,6 @@
       ,
       mRequiresWindowServer(false)
 #endif
-#if defined(XP_MACOSX) && defined(__aarch64__)
-      ,
-      mChildLaunchArch(base::PROCESS_ARCH_INVALID)
-#endif
 {
   MOZ_COUNT_CTOR(GMPProcessParent);
 #if defined(XP_MACOSX) && defined(MOZ_SANDBOX)
@@ -87,13 +83,14 @@
 bool GMPProcessParent::Launch(int32_t aTimeoutMs) {
   vector<string> args;
 
-#if defined(XP_MACOSX) && defined(__aarch64__)
-  GMP_LOG_DEBUG("GMPProcessParent::Launch() mChildLaunchArch: %d",
-                mChildLaunchArch);
-  mLaunchOptions->arch = mChildLaunchArch;
-  if (mChildLaunchArch == base::PROCESS_ARCH_X86_64) {
+#ifdef ALLOW_GECKO_CHILD_PROCESS_ARCH
+  GMP_LOG_DEBUG("GMPProcessParent::Launch() mLaunchArch: %d", mLaunchArch);
+#  if defined(XP_MACOSX)
+  mLaunchOptions->arch = mLaunchArch;
+  if (mLaunchArch == base::PROCESS_ARCH_X86_64) {
     mLaunchOptions->env_map["MOZ_SHMEM_PAGESIZE_16K"] = 1;
   }
+#  endif
 #endif
 
 #if defined(XP_WIN) && defined(MOZ_SANDBOX)
diff -Nru thunderbird-102.9.0+build1/dom/media/gmp/GMPProcessParent.h thunderbird-102.10.0+build2/dom/media/gmp/GMPProcessParent.h
--- thunderbird-102.9.0+build1/dom/media/gmp/GMPProcessParent.h	2023-03-11 11:24:10.000000000 +0000
+++ thunderbird-102.10.0+build2/dom/media/gmp/GMPProcessParent.h	2023-04-11 06:10:57.000000000 +0000
@@ -53,10 +53,6 @@
   static MacSandboxType GetMacSandboxType() { return MacSandboxType_GMP; };
 #endif
 
-#if defined(XP_MACOSX) && defined(__aarch64__)
-  void SetLaunchArchitecture(uint32_t aArch) { mChildLaunchArch = aArch; }
-#endif
-
   using mozilla::ipc::GeckoChildProcessHost::GetChannel;
   using mozilla::ipc::GeckoChildProcessHost::GetChildProcessHandle;
 
@@ -98,10 +94,6 @@
 #  endif
 #endif
 
-#if defined(XP_MACOSX) && defined(__aarch64__)
-  uint32_t mChildLaunchArch;
-#endif
-
   DISALLOW_COPY_AND_ASSIGN(GMPProcessParent);
 };
 
diff -Nru thunderbird-102.9.0+build1/dom/media/ipc/RDDProcessManager.cpp thunderbird-102.10.0+build2/dom/media/ipc/RDDProcessManager.cpp
--- thunderbird-102.9.0+build1/dom/media/ipc/RDDProcessManager.cpp	2023-03-11 11:24:10.000000000 +0000
+++ thunderbird-102.10.0+build2/dom/media/ipc/RDDProcessManager.cpp	2023-04-11 06:10:57.000000000 +0000
@@ -29,11 +29,11 @@
 
 static StaticAutoPtr<RDDProcessManager> sRDDSingleton;
 
-static bool sXPCOMShutdown = false;
+static bool sRDDProcessShutdown = false;
 
 bool RDDProcessManager::IsShutdown() const {
   MOZ_ASSERT(NS_IsMainThread());
-  return sXPCOMShutdown || !sRDDSingleton;
+  return sRDDProcessShutdown || !sRDDSingleton;
 }
 
 RDDProcessManager* RDDProcessManager::Get() { return sRDDSingleton; }
@@ -45,6 +45,14 @@
 
 void RDDProcessManager::Shutdown() { sRDDSingleton = nullptr; }
 
+void RDDProcessManager::RDDProcessShutdown() {
+  MOZ_ASSERT(NS_IsMainThread());
+  sRDDProcessShutdown = true;
+  if (sRDDSingleton) {
+    sRDDSingleton->DestroyProcess();
+  }
+}
+
 RDDProcessManager::RDDProcessManager()
     : mObserver(new Observer(this)), mTaskFactory(this) {
   MOZ_COUNT_CTOR(RDDProcessManager);
@@ -80,10 +88,8 @@
 
 void RDDProcessManager::OnXPCOMShutdown() {
   MOZ_ASSERT(NS_IsMainThread());
-  sXPCOMShutdown = true;
   nsContentUtils::UnregisterShutdownObserver(mObserver);
   Preferences::RemoveObserver(mObserver, "");
-  CleanShutdown();
 }
 
 void RDDProcessManager::OnPreferenceChange(const char16_t* aData) {
@@ -252,8 +258,6 @@
   OnProcessUnexpectedShutdown(mProcess);
 }
 
-void RDDProcessManager::CleanShutdown() { DestroyProcess(); }
-
 void RDDProcessManager::DestroyProcess() {
   MOZ_ASSERT(NS_IsMainThread());
   if (!mProcess) {
diff -Nru thunderbird-102.9.0+build1/dom/media/ipc/RDDProcessManager.h thunderbird-102.10.0+build2/dom/media/ipc/RDDProcessManager.h
--- thunderbird-102.9.0+build1/dom/media/ipc/RDDProcessManager.h	2023-03-11 11:24:10.000000000 +0000
+++ thunderbird-102.10.0+build2/dom/media/ipc/RDDProcessManager.h	2023-04-11 06:10:57.000000000 +0000
@@ -25,6 +25,7 @@
 
  public:
   static void Initialize();
+  static void RDDProcessShutdown();
   static void Shutdown();
   static RDDProcessManager* Get();
 
@@ -80,7 +81,6 @@
   RDDProcessManager();
 
   // Shutdown the RDD process.
-  void CleanShutdown();
   void DestroyProcess();
 
   bool IsShutdown() const;
diff -Nru thunderbird-102.9.0+build1/dom/media/ipc/RemoteDecoderManagerParent.cpp thunderbird-102.10.0+build2/dom/media/ipc/RemoteDecoderManagerParent.cpp
--- thunderbird-102.9.0+build1/dom/media/ipc/RemoteDecoderManagerParent.cpp	2023-03-11 11:24:10.000000000 +0000
+++ thunderbird-102.10.0+build2/dom/media/ipc/RemoteDecoderManagerParent.cpp	2023-04-11 06:10:57.000000000 +0000
@@ -99,10 +99,8 @@
 void RemoteDecoderManagerParent::ShutdownVideoBridge() {
   if (sRemoteDecoderManagerParentThread) {
     RefPtr<Runnable> task = NS_NewRunnableFunction(
-        "RemoteDecoderManagerParent::ShutdownVideoBridge", []() {
-          VideoBridgeParent::Shutdown();
-          VideoBridgeChild::Shutdown();
-        });
+        "RemoteDecoderManagerParent::ShutdownVideoBridge",
+        []() { VideoBridgeChild::Shutdown(); });
     SyncRunnable::DispatchToThread(sRemoteDecoderManagerParentThread, task);
   }
 }
diff -Nru thunderbird-102.9.0+build1/dom/media/webrtc/MediaEngineDefault.cpp thunderbird-102.10.0+build2/dom/media/webrtc/MediaEngineDefault.cpp
--- thunderbird-102.9.0+build1/dom/media/webrtc/MediaEngineDefault.cpp	2023-03-11 11:24:11.000000000 +0000
+++ thunderbird-102.10.0+build2/dom/media/webrtc/MediaEngineDefault.cpp	2023-04-11 06:10:58.000000000 +0000
@@ -245,7 +245,7 @@
   return NS_OK;
 }
 
-static void AllocateSolidColorFrame(layers::PlanarYCbCrData& aData, int aWidth,
+static bool AllocateSolidColorFrame(layers::PlanarYCbCrData& aData, int aWidth,
                                     int aHeight, int aY, int aCb, int aCr) {
   MOZ_ASSERT(!(aWidth & 1));
   MOZ_ASSERT(!(aHeight & 1));
@@ -254,6 +254,9 @@
   int cbLen = yLen >> 2;
   int crLen = cbLen;
   uint8_t* frame = (uint8_t*)malloc(yLen + cbLen + crLen);
+  if (!frame) {
+    return false;
+  }
   memset(frame, aY, yLen);
   memset(frame + yLen, aCb, cbLen);
   memset(frame + yLen + cbLen, aCr, crLen);
@@ -267,6 +270,7 @@
   aData.mStereoMode = StereoMode::MONO;
   aData.mYUVColorSpace = gfx::YUVColorSpace::BT601;
   aData.mChromaSubsampling = gfx::ChromaSubsampling::HALF_WIDTH_AND_HEIGHT;
+  return true;
 }
 
 static void ReleaseFrame(layers::PlanarYCbCrData& aData) {
@@ -378,7 +382,10 @@
   RefPtr<layers::PlanarYCbCrImage> ycbcr_image =
       mImageContainer->CreatePlanarYCbCrImage();
   layers::PlanarYCbCrData data;
-  AllocateSolidColorFrame(data, mOpts.mWidth, mOpts.mHeight, 0x80, mCb, mCr);
+  if (NS_WARN_IF(!AllocateSolidColorFrame(data, mOpts.mWidth, mOpts.mHeight,
+                                          0x80, mCb, mCr))) {
+    return;
+  }
 
 #ifdef MOZ_WEBRTC
   uint64_t timestamp = PR_Now();
diff -Nru thunderbird-102.9.0+build1/gfx/2d/SFNTData.cpp thunderbird-102.10.0+build2/gfx/2d/SFNTData.cpp
--- thunderbird-102.9.0+build1/gfx/2d/SFNTData.cpp	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/2d/SFNTData.cpp	2023-04-11 06:10:59.000000000 +0000
@@ -69,6 +69,17 @@
     return {mFontData + dirEntry->offset, dirEntry->length};
   }
 
+  Span<const uint8_t> GetCmapTableBytes() const {
+    const TableDirEntry* dirEntry =
+        GetDirEntry(TRUETYPE_TAG('c', 'm', 'a', 'p'));
+    if (!dirEntry) {
+      gfxWarning() << "Cmap table entry not found.";
+      return {};
+    }
+
+    return {mFontData + dirEntry->offset, dirEntry->length};
+  }
+
  private:
   const TableDirEntry* GetDirEntry(const uint32_t aTag) const {
     const TableDirEntry* foundDirEntry =
@@ -141,7 +152,7 @@
   uint64_t hash = 0;
   UniquePtr<SFNTData> sfntData = SFNTData::Create(aFontData, aDataLength);
   if (sfntData) {
-    hash = sfntData->HashHeadTables();
+    hash = sfntData->HashHeadAndCmapTables();
   } else {
     gfxWarning() << "Failed to create SFNTData from data, hashing whole font.";
     hash = HashBytes(aFontData, aDataLength);
@@ -179,14 +190,16 @@
   return mFonts.append(new Font(offsetTable, aFontData, aDataLength));
 }
 
-uint32_t SFNTData::HashHeadTables() {
-  uint32_t headTableHash = std::accumulate(
+uint32_t SFNTData::HashHeadAndCmapTables() {
+  uint32_t tablesHash = std::accumulate(
       mFonts.begin(), mFonts.end(), 0U, [](uint32_t hash, Font* font) {
         Span<const uint8_t> headBytes = font->GetHeadTableBytes();
-        return AddToHash(hash, HashBytes(headBytes.data(), headBytes.size()));
+        hash = AddToHash(hash, HashBytes(headBytes.data(), headBytes.size()));
+        Span<const uint8_t> cmapBytes = font->GetCmapTableBytes();
+        return AddToHash(hash, HashBytes(cmapBytes.data(), cmapBytes.size()));
       });
 
-  return headTableHash;
+  return tablesHash;
 }
 
 }  // namespace gfx
diff -Nru thunderbird-102.9.0+build1/gfx/2d/SFNTData.h thunderbird-102.10.0+build2/gfx/2d/SFNTData.h
--- thunderbird-102.9.0+build1/gfx/2d/SFNTData.h	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/2d/SFNTData.h	2023-04-11 06:10:59.000000000 +0000
@@ -45,7 +45,7 @@
   bool AddFont(const uint8_t* aFontData, uint32_t aDataLength,
                uint32_t aOffset);
 
-  uint32_t HashHeadTables();
+  uint32_t HashHeadAndCmapTables();
 
   // Internal representation of single font in font file.
   class Font;
diff -Nru thunderbird-102.9.0+build1/gfx/angle/checkout/include/GLSLANG/ShaderLang.h thunderbird-102.10.0+build2/gfx/angle/checkout/include/GLSLANG/ShaderLang.h
--- thunderbird-102.9.0+build1/gfx/angle/checkout/include/GLSLANG/ShaderLang.h	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/angle/checkout/include/GLSLANG/ShaderLang.h	2023-04-11 06:10:59.000000000 +0000
@@ -337,6 +337,11 @@
 // gl_FragColor is not written.
 const ShCompileOptions SH_INIT_FRAGMENT_OUTPUT_VARIABLES = UINT64_C(1) << 57;
 
+// This flag initializes gl_PointSize to 0.0f at the beginning of the vertex shader's
+// main(), and has no effect in the fragment shader. It is intended to assist in working around
+// bugs on some drivers when this is left written and then POINTS are drawn.
+const ShCompileOptions SH_INIT_GL_POINT_SIZE = UINT64_C(1) << 58;
+
 // Defines alternate strategies for implementing array index clamping.
 enum ShArrayIndexClampingStrategy
 {
diff -Nru thunderbird-102.9.0+build1/gfx/angle/checkout/LICENSE thunderbird-102.10.0+build2/gfx/angle/checkout/LICENSE
--- thunderbird-102.9.0+build1/gfx/angle/checkout/LICENSE	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/angle/checkout/LICENSE	2023-04-11 06:10:58.000000000 +0000
@@ -29,4 +29,4 @@
 // CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
 // LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
 // ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
-// POSSIBILITY OF SUCH DAMAGE.
\ No newline at end of file
+// POSSIBILITY OF SUCH DAMAGE.
diff -Nru thunderbird-102.9.0+build1/gfx/angle/checkout/out/gen/angle/angle_commit.h thunderbird-102.10.0+build2/gfx/angle/checkout/out/gen/angle/angle_commit.h
--- thunderbird-102.9.0+build1/gfx/angle/checkout/out/gen/angle/angle_commit.h	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/angle/checkout/out/gen/angle/angle_commit.h	2023-04-11 06:10:59.000000000 +0000
@@ -1,4 +1,4 @@
-#define ANGLE_COMMIT_HASH "23851a53779d"
+#define ANGLE_COMMIT_HASH "568b727a61e6"
 #define ANGLE_COMMIT_HASH_SIZE 12
-#define ANGLE_COMMIT_DATE "2021-09-14 18:27:26 -0700"
-#define ANGLE_COMMIT_POSITION 15727
+#define ANGLE_COMMIT_DATE "2023-03-29 16:46:03 -0700"
+#define ANGLE_COMMIT_POSITION 15728
diff -Nru thunderbird-102.9.0+build1/gfx/angle/checkout/src/compiler/translator/Compiler.cpp thunderbird-102.10.0+build2/gfx/angle/checkout/src/compiler/translator/Compiler.cpp
--- thunderbird-102.9.0+build1/gfx/angle/checkout/src/compiler/translator/Compiler.cpp	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/angle/checkout/src/compiler/translator/Compiler.cpp	2023-04-11 06:10:58.000000000 +0000
@@ -917,6 +917,17 @@
         mGLPositionInitialized = true;
     }
 
+    if (mShaderType == GL_VERTEX_SHADER && (compileOptions & SH_INIT_GL_POINT_SIZE) != 0)
+    {
+        sh::ShaderVariable var(GL_FLOAT);
+        var.name = "gl_PointSize";
+        if (!InitializeVariables(this, root, {var}, &mSymbolTable, mShaderVersion,
+                                 mExtensionBehavior, false, false))
+        {
+            return false;
+        }
+    }
+
     // DeferGlobalInitializers needs to be run before other AST transformations that generate new
     // statements from expressions. But it's fine to run DeferGlobalInitializers after the above
     // SplitSequenceOperator and RemoveArrayLengthMethod since they only have an effect on the AST
diff -Nru thunderbird-102.9.0+build1/gfx/angle/cherry_picks.txt thunderbird-102.10.0+build2/gfx/angle/cherry_picks.txt
--- thunderbird-102.9.0+build1/gfx/angle/cherry_picks.txt	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/angle/cherry_picks.txt	2023-04-11 06:10:59.000000000 +0000
@@ -1,3 +1,11 @@
+commit 568b727a61e6a78702a0deaab5efe68b6cd061ff
+Author: Kelsey Gilbert <kelsey.gilbert@mozilla.com>
+Date:   Wed Mar 29 16:13:39 2023 -0700
+
+    Add ShCompileOptions.initGLPointSize.
+    
+    Change-Id: I1d998867f3e829ed0dc8181fa76be5fe701dde70
+
 commit 23851a53779dfd3239b4cceb7f93df9ea6efb9c3
 Author: Jeff Gilbert <jgilbert@mozilla.com>
 Date:   Tue Sep 14 18:11:05 2021 -0700
diff -Nru thunderbird-102.9.0+build1/gfx/angle/targets/angle_common/moz.build thunderbird-102.10.0+build2/gfx/angle/targets/angle_common/moz.build
--- thunderbird-102.9.0+build1/gfx/angle/targets/angle_common/moz.build	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/angle/targets/angle_common/moz.build	2023-04-11 06:10:59.000000000 +0000
@@ -4,7 +4,7 @@
 
 # DEFINES["ANGLE_IS_WIN"] = True
 # DEFINES["CERT_CHAIN_PARA_HAS_EXTRA_FIELDS"] = True
-DEFINES["CR_CLANG_REVISION"] = '"llvmorg-13-init-3462-gfe5c2c3c-2"'
+DEFINES["CR_CLANG_REVISION"] = '"llvmorg-13-init-9302-g897d7bce-1"'
 DEFINES["DYNAMIC_ANNOTATIONS_ENABLED"] = "0"
 # DEFINES["NDEBUG"] = True
 DEFINES["NOMINMAX"] = True
@@ -40,7 +40,6 @@
 #     "-D__DATE__=",
 #     "-D__TIME__=",
 #     "-D__TIMESTAMP__=",
-#     "-debug-info-kind=constructor",
 #     "-fcolor-diagnostics",
 #     "-fcomplete-member-pointers",
 #     "-fcrash-diagnostics-dir=../tools/clang/crashreports",
@@ -235,7 +234,7 @@
 #     "/pdbaltpath:%_PDB%",
 #     "/PDBSourcePath:C:/dev/angle/out",
 #     "/PROFILE",
-#     "/TIMESTAMP:1615093200",
+#     "/TIMESTAMP:1619931600",
 #     "/WX",
 # ]
 
diff -Nru thunderbird-102.9.0+build1/gfx/angle/targets/angle_gpu_info_util/moz.build thunderbird-102.10.0+build2/gfx/angle/targets/angle_gpu_info_util/moz.build
--- thunderbird-102.9.0+build1/gfx/angle/targets/angle_gpu_info_util/moz.build	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/angle/targets/angle_gpu_info_util/moz.build	2023-04-11 06:10:59.000000000 +0000
@@ -8,7 +8,7 @@
 # DEFINES["ANGLE_HAS_VULKAN_SYSTEM_INFO"] = True
 # DEFINES["ANGLE_IS_WIN"] = True
 # DEFINES["CERT_CHAIN_PARA_HAS_EXTRA_FIELDS"] = True
-DEFINES["CR_CLANG_REVISION"] = '"llvmorg-13-init-3462-gfe5c2c3c-2"'
+DEFINES["CR_CLANG_REVISION"] = '"llvmorg-13-init-9302-g897d7bce-1"'
 DEFINES["DYNAMIC_ANNOTATIONS_ENABLED"] = "0"
 # DEFINES["NDEBUG"] = True
 DEFINES["NOMINMAX"] = True
@@ -49,7 +49,6 @@
 #     "-D__DATE__=",
 #     "-D__TIME__=",
 #     "-D__TIMESTAMP__=",
-#     "-debug-info-kind=constructor",
 #     "-fcolor-diagnostics",
 #     "-fcomplete-member-pointers",
 #     "-fcrash-diagnostics-dir=../tools/clang/crashreports",
@@ -224,7 +223,7 @@
 #     "/pdbaltpath:%_PDB%",
 #     "/PDBSourcePath:C:/dev/angle/out",
 #     "/PROFILE",
-#     "/TIMESTAMP:1615093200",
+#     "/TIMESTAMP:1619931600",
 #     "/WX",
 # ]
 
diff -Nru thunderbird-102.9.0+build1/gfx/angle/targets/angle_image_util/moz.build thunderbird-102.10.0+build2/gfx/angle/targets/angle_image_util/moz.build
--- thunderbird-102.9.0+build1/gfx/angle/targets/angle_image_util/moz.build	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/angle/targets/angle_image_util/moz.build	2023-04-11 06:10:59.000000000 +0000
@@ -4,7 +4,7 @@
 
 # DEFINES["ANGLE_IS_WIN"] = True
 # DEFINES["CERT_CHAIN_PARA_HAS_EXTRA_FIELDS"] = True
-DEFINES["CR_CLANG_REVISION"] = '"llvmorg-13-init-3462-gfe5c2c3c-2"'
+DEFINES["CR_CLANG_REVISION"] = '"llvmorg-13-init-9302-g897d7bce-1"'
 DEFINES["DYNAMIC_ANNOTATIONS_ENABLED"] = "0"
 # DEFINES["NDEBUG"] = True
 DEFINES["NOMINMAX"] = True
@@ -40,7 +40,6 @@
 #     "-D__DATE__=",
 #     "-D__TIME__=",
 #     "-D__TIMESTAMP__=",
-#     "-debug-info-kind=constructor",
 #     "-fcolor-diagnostics",
 #     "-fcomplete-member-pointers",
 #     "-fcrash-diagnostics-dir=../tools/clang/crashreports",
@@ -203,7 +202,7 @@
 #     "/pdbaltpath:%_PDB%",
 #     "/PDBSourcePath:C:/dev/angle/out",
 #     "/PROFILE",
-#     "/TIMESTAMP:1615093200",
+#     "/TIMESTAMP:1619931600",
 #     "/WX",
 # ]
 
diff -Nru thunderbird-102.9.0+build1/gfx/angle/targets/compression_utils_portable/moz.build thunderbird-102.10.0+build2/gfx/angle/targets/compression_utils_portable/moz.build
--- thunderbird-102.9.0+build1/gfx/angle/targets/compression_utils_portable/moz.build	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/angle/targets/compression_utils_portable/moz.build	2023-04-11 06:10:59.000000000 +0000
@@ -3,7 +3,7 @@
 include("../../moz.build.common")
 
 # DEFINES["CERT_CHAIN_PARA_HAS_EXTRA_FIELDS"] = True
-DEFINES["CR_CLANG_REVISION"] = '"llvmorg-13-init-3462-gfe5c2c3c-2"'
+DEFINES["CR_CLANG_REVISION"] = '"llvmorg-13-init-9302-g897d7bce-1"'
 DEFINES["DYNAMIC_ANNOTATIONS_ENABLED"] = "0"
 # DEFINES["NDEBUG"] = True
 DEFINES["NOMINMAX"] = True
@@ -39,7 +39,6 @@
 #     "-D__DATE__=",
 #     "-D__TIME__=",
 #     "-D__TIMESTAMP__=",
-#     "-debug-info-kind=constructor",
 #     "-fcolor-diagnostics",
 #     "-fcomplete-member-pointers",
 #     "-fcrash-diagnostics-dir=../tools/clang/crashreports",
@@ -168,7 +167,7 @@
 #     "/pdbaltpath:%_PDB%",
 #     "/PDBSourcePath:C:/dev/angle/out",
 #     "/PROFILE",
-#     "/TIMESTAMP:1615093200",
+#     "/TIMESTAMP:1619931600",
 #     "/WX",
 # ]
 
diff -Nru thunderbird-102.9.0+build1/gfx/angle/targets/libEGL/moz.build thunderbird-102.10.0+build2/gfx/angle/targets/libEGL/moz.build
--- thunderbird-102.9.0+build1/gfx/angle/targets/libEGL/moz.build	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/angle/targets/libEGL/moz.build	2023-04-11 06:10:59.000000000 +0000
@@ -7,7 +7,7 @@
 # DEFINES["ANGLE_IS_WIN"] = True
 DEFINES["ANGLE_USE_EGL_LOADER"] = True
 # DEFINES["CERT_CHAIN_PARA_HAS_EXTRA_FIELDS"] = True
-DEFINES["CR_CLANG_REVISION"] = '"llvmorg-13-init-3462-gfe5c2c3c-2"'
+DEFINES["CR_CLANG_REVISION"] = '"llvmorg-13-init-9302-g897d7bce-1"'
 DEFINES["DYNAMIC_ANNOTATIONS_ENABLED"] = "0"
 DEFINES["EGLAPI"] = ""
 DEFINES["EGL_EGLEXT_PROTOTYPES"] = True
@@ -49,7 +49,6 @@
 #     "-D__DATE__=",
 #     "-D__TIME__=",
 #     "-D__TIMESTAMP__=",
-#     "-debug-info-kind=constructor",
 #     "-fcolor-diagnostics",
 #     "-fcomplete-member-pointers",
 #     "-fcrash-diagnostics-dir=../tools/clang/crashreports",
@@ -244,7 +243,7 @@
 #     "/PDBSourcePath:C:/dev/angle/out",
 #     "/PROFILE",
 #     "/SUBSYSTEM:CONSOLE,5.02",
-#     "/TIMESTAMP:1615093200",
+#     "/TIMESTAMP:1619931600",
 #     "/WX",
 # ]
 
diff -Nru thunderbird-102.9.0+build1/gfx/angle/targets/libGLESv2/moz.build thunderbird-102.10.0+build2/gfx/angle/targets/libGLESv2/moz.build
--- thunderbird-102.9.0+build1/gfx/angle/targets/libGLESv2/moz.build	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/angle/targets/libGLESv2/moz.build	2023-04-11 06:10:59.000000000 +0000
@@ -9,7 +9,7 @@
 # DEFINES["ANGLE_IS_WIN"] = True
 # DEFINES["ANGLE_PRELOADED_D3DCOMPILER_MODULE_NAMES"] = "{ "d3dcompiler_47.dll", "d3dcompiler_46.dll", "d3dcompiler_43.dll" }"
 # DEFINES["CERT_CHAIN_PARA_HAS_EXTRA_FIELDS"] = True
-DEFINES["CR_CLANG_REVISION"] = '"llvmorg-13-init-3462-gfe5c2c3c-2"'
+DEFINES["CR_CLANG_REVISION"] = '"llvmorg-13-init-9302-g897d7bce-1"'
 DEFINES["DYNAMIC_ANNOTATIONS_ENABLED"] = "0"
 DEFINES["EGL_EGLEXT_PROTOTYPES"] = True
 DEFINES["EGL_EGL_PROTOTYPES"] = "1"
@@ -56,7 +56,6 @@
 #     "-D__DATE__=",
 #     "-D__TIME__=",
 #     "-D__TIMESTAMP__=",
-#     "-debug-info-kind=constructor",
 #     "-fcolor-diagnostics",
 #     "-fcomplete-member-pointers",
 #     "-fcrash-diagnostics-dir=../tools/clang/crashreports",
@@ -450,7 +449,7 @@
 #     "/PDBSourcePath:C:/dev/angle/out",
 #     "/PROFILE",
 #     "/SUBSYSTEM:CONSOLE,5.02",
-#     "/TIMESTAMP:1615093200",
+#     "/TIMESTAMP:1619931600",
 #     "/WX",
 # ]
 
diff -Nru thunderbird-102.9.0+build1/gfx/angle/targets/preprocessor/moz.build thunderbird-102.10.0+build2/gfx/angle/targets/preprocessor/moz.build
--- thunderbird-102.9.0+build1/gfx/angle/targets/preprocessor/moz.build	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/angle/targets/preprocessor/moz.build	2023-04-11 06:10:59.000000000 +0000
@@ -4,7 +4,7 @@
 
 # DEFINES["ANGLE_IS_WIN"] = True
 # DEFINES["CERT_CHAIN_PARA_HAS_EXTRA_FIELDS"] = True
-DEFINES["CR_CLANG_REVISION"] = '"llvmorg-13-init-3462-gfe5c2c3c-2"'
+DEFINES["CR_CLANG_REVISION"] = '"llvmorg-13-init-9302-g897d7bce-1"'
 DEFINES["DYNAMIC_ANNOTATIONS_ENABLED"] = "0"
 # DEFINES["NDEBUG"] = True
 DEFINES["NOMINMAX"] = True
@@ -40,7 +40,6 @@
 #     "-D__DATE__=",
 #     "-D__TIME__=",
 #     "-D__TIMESTAMP__=",
-#     "-debug-info-kind=constructor",
 #     "-fcolor-diagnostics",
 #     "-fcomplete-member-pointers",
 #     "-fcrash-diagnostics-dir=../tools/clang/crashreports",
@@ -210,7 +209,7 @@
 #     "/pdbaltpath:%_PDB%",
 #     "/PDBSourcePath:C:/dev/angle/out",
 #     "/PROFILE",
-#     "/TIMESTAMP:1615093200",
+#     "/TIMESTAMP:1619931600",
 #     "/WX",
 # ]
 
diff -Nru thunderbird-102.9.0+build1/gfx/angle/targets/translator/moz.build thunderbird-102.10.0+build2/gfx/angle/targets/translator/moz.build
--- thunderbird-102.9.0+build1/gfx/angle/targets/translator/moz.build	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/angle/targets/translator/moz.build	2023-04-11 06:10:59.000000000 +0000
@@ -7,7 +7,7 @@
 DEFINES["ANGLE_ENABLE_HLSL"] = True
 # DEFINES["ANGLE_IS_WIN"] = True
 # DEFINES["CERT_CHAIN_PARA_HAS_EXTRA_FIELDS"] = True
-DEFINES["CR_CLANG_REVISION"] = '"llvmorg-13-init-3462-gfe5c2c3c-2"'
+DEFINES["CR_CLANG_REVISION"] = '"llvmorg-13-init-9302-g897d7bce-1"'
 DEFINES["DYNAMIC_ANNOTATIONS_ENABLED"] = "0"
 # DEFINES["NDEBUG"] = True
 DEFINES["NOMINMAX"] = True
@@ -43,7 +43,6 @@
 #     "-D__DATE__=",
 #     "-D__TIME__=",
 #     "-D__TIMESTAMP__=",
-#     "-debug-info-kind=constructor",
 #     "-fcolor-diagnostics",
 #     "-fcomplete-member-pointers",
 #     "-fcrash-diagnostics-dir=../tools/clang/crashreports",
@@ -338,7 +337,7 @@
 #     "/pdbaltpath:%_PDB%",
 #     "/PDBSourcePath:C:/dev/angle/out",
 #     "/PROFILE",
-#     "/TIMESTAMP:1615093200",
+#     "/TIMESTAMP:1619931600",
 #     "/WX",
 # ]
 
diff -Nru thunderbird-102.9.0+build1/gfx/angle/update-angle.py thunderbird-102.10.0+build2/gfx/angle/update-angle.py
--- thunderbird-102.9.0+build1/gfx/angle/update-angle.py	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/angle/update-angle.py	2023-04-11 06:10:59.000000000 +0000
@@ -336,7 +336,7 @@
 required_files: Set[str] = set()
 required_files.add("//LICENSE")
 
-run_checked("ninja", "-C", str(OUT_DIR), ":angle_commit_id")
+run_checked("ninja", "-C", str(OUT_DIR), ":angle_commit_id", shell=True)
 required_files.add("//out/gen/angle/angle_commit.h")
 
 # -
diff -Nru thunderbird-102.9.0+build1/gfx/ipc/GPUParent.cpp thunderbird-102.10.0+build2/gfx/ipc/GPUParent.cpp
--- thunderbird-102.9.0+build1/gfx/ipc/GPUParent.cpp	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/ipc/GPUParent.cpp	2023-04-11 06:10:59.000000000 +0000
@@ -681,7 +681,7 @@
           mVsyncBridge->Shutdown();
           mVsyncBridge = nullptr;
         }
-        RemoteDecoderManagerParent::ShutdownVideoBridge();
+        VideoBridgeParent::Shutdown();
         // This could be running on either the Compositor or the Renderer
         // thread.
         CanvasManagerParent::Shutdown();
diff -Nru thunderbird-102.9.0+build1/gfx/layers/composite/TextureHost.cpp thunderbird-102.10.0+build2/gfx/layers/composite/TextureHost.cpp
--- thunderbird-102.9.0+build1/gfx/layers/composite/TextureHost.cpp	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/layers/composite/TextureHost.cpp	2023-04-11 06:10:59.000000000 +0000
@@ -405,6 +405,7 @@
   }
   // When TextureHost created RenderTextureHost, delete it here.
   TextureHost::DestroyRenderTexture(mExternalImageId.ref());
+  mExternalImageId = Nothing();
 }
 
 void TextureHost::DestroyRenderTexture(
diff -Nru thunderbird-102.9.0+build1/gfx/layers/composite/TextureHost.h thunderbird-102.10.0+build2/gfx/layers/composite/TextureHost.h
--- thunderbird-102.9.0+build1/gfx/layers/composite/TextureHost.h	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/layers/composite/TextureHost.h	2023-04-11 06:10:59.000000000 +0000
@@ -64,6 +64,7 @@
 class HostIPCAllocator;
 class ISurfaceAllocator;
 class MacIOSurfaceTextureHostOGL;
+class ShmemTextureHost;
 class SurfaceTextureHost;
 class TextureHostOGL;
 class TextureReadLock;
@@ -579,6 +580,7 @@
   TextureReadLock* GetReadLock() { return mReadLock; }
 
   virtual BufferTextureHost* AsBufferTextureHost() { return nullptr; }
+  virtual ShmemTextureHost* AsShmemTextureHost() { return nullptr; }
   virtual MacIOSurfaceTextureHostOGL* AsMacIOSurfaceTextureHost() {
     return nullptr;
   }
@@ -839,6 +841,8 @@
 
   void OnShutdown() override;
 
+  ShmemTextureHost* AsShmemTextureHost() override { return this; }
+
  protected:
   UniquePtr<mozilla::ipc::Shmem> mShmem;
   RefPtr<ISurfaceAllocator> mDeallocator;
diff -Nru thunderbird-102.9.0+build1/gfx/layers/ipc/CompositorThread.cpp thunderbird-102.10.0+build2/gfx/layers/ipc/CompositorThread.cpp
--- thunderbird-102.9.0+build1/gfx/layers/ipc/CompositorThread.cpp	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/layers/ipc/CompositorThread.cpp	2023-04-11 06:10:59.000000000 +0000
@@ -14,6 +14,7 @@
 #include "mozilla/layers/CanvasTranslator.h"
 #include "mozilla/layers/CompositorManagerParent.h"
 #include "mozilla/layers/ImageBridgeParent.h"
+#include "mozilla/layers/VideoBridgeParent.h"
 #include "mozilla/media/MediaSystemResourceService.h"
 #include "nsThread.h"
 #include "nsThreadUtils.h"
@@ -137,6 +138,7 @@
            RefPtr<CompositorThreadHolder>(sCompositorThreadHolder),
        backgroundHangMonitor = UniquePtr<mozilla::BackgroundHangMonitor>(
            sBackgroundHangMonitor)]() {
+        VideoBridgeParent::UnregisterExternalImages();
         nsCOMPtr<nsIThread> thread = NS_GetCurrentThread();
         static_cast<nsThread*>(thread.get())->SetUseHangMonitor(false);
       }));
diff -Nru thunderbird-102.9.0+build1/gfx/layers/ipc/VideoBridgeParent.cpp thunderbird-102.10.0+build2/gfx/layers/ipc/VideoBridgeParent.cpp
--- thunderbird-102.9.0+build1/gfx/layers/ipc/VideoBridgeParent.cpp	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/layers/ipc/VideoBridgeParent.cpp	2023-04-11 06:10:59.000000000 +0000
@@ -10,6 +10,7 @@
 #include "mozilla/layers/TextureHost.h"
 #include "mozilla/layers/VideoBridgeUtils.h"
 #include "mozilla/StaticMutex.h"
+#include "mozilla/webrender/RenderThread.h"
 
 namespace mozilla {
 namespace layers {
@@ -20,6 +21,7 @@
 StaticMutex sVideoBridgeMutex;
 static VideoBridgeParent* sVideoBridgeFromRddProcess;
 static VideoBridgeParent* sVideoBridgeFromGpuProcess;
+static Atomic<bool> sVideoBridgeParentShutDown(false);
 
 VideoBridgeParent::VideoBridgeParent(VideoBridgeSource aSource)
     : mCompositorThreadHolder(CompositorThreadHolder::GetSingleton()),
@@ -90,20 +92,53 @@
 }
 
 void VideoBridgeParent::ActorDestroy(ActorDestroyReason aWhy) {
+  bool shutdown = sVideoBridgeParentShutDown;
+
+  if (!shutdown && aWhy == AbnormalShutdown) {
+    gfxCriticalNote
+        << "VideoBridgeParent receives IPC close with reason=AbnormalShutdown";
+  }
   // Can't alloc/dealloc shmems from now on.
   mClosed = true;
 }
 
 /* static */
 void VideoBridgeParent::Shutdown() {
+  sVideoBridgeParentShutDown = true;
+
   StaticMutexAutoLock lock(sVideoBridgeMutex);
   if (sVideoBridgeFromRddProcess) {
     sVideoBridgeFromRddProcess->ReleaseCompositorThread();
-  } else if (sVideoBridgeFromGpuProcess) {
+  }
+  if (sVideoBridgeFromGpuProcess) {
     sVideoBridgeFromGpuProcess->ReleaseCompositorThread();
   }
 }
 
+/* static */
+void VideoBridgeParent::UnregisterExternalImages() {
+  MOZ_ASSERT(sVideoBridgeParentShutDown);
+
+  StaticMutexAutoLock lock(sVideoBridgeMutex);
+  if (sVideoBridgeFromRddProcess) {
+    sVideoBridgeFromRddProcess->DoUnregisterExternalImages();
+  }
+  if (sVideoBridgeFromGpuProcess) {
+    sVideoBridgeFromGpuProcess->DoUnregisterExternalImages();
+  }
+}
+
+void VideoBridgeParent::DoUnregisterExternalImages() {
+  const ManagedContainer<PTextureParent>& textures = ManagedPTextureParent();
+  for (const auto& key : textures) {
+    RefPtr<TextureHost> texture = TextureHost::AsTextureHost(key);
+
+    if (texture) {
+      texture->MaybeDestroyRenderTexture();
+    }
+  }
+}
+
 void VideoBridgeParent::ReleaseCompositorThread() {
   mCompositorThreadHolder = nullptr;
 }
@@ -172,5 +207,27 @@
 void VideoBridgeParent::NotifyNotUsed(PTextureParent* aTexture,
                                       uint64_t aTransactionId) {}
 
+void VideoBridgeParent::OnChannelError() {
+  bool shutdown = sVideoBridgeParentShutDown;
+  if (!shutdown) {
+    // Destory RenderBufferTextureHosts. Shmems of ShmemTextureHosts are going
+    // to be destroyed
+    std::vector<wr::ExternalImageId> ids;
+    auto& ptextures = ManagedPTextureParent();
+    for (const auto& ptexture : ptextures) {
+      RefPtr<TextureHost> texture = TextureHost::AsTextureHost(ptexture);
+      if (texture && texture->AsShmemTextureHost() &&
+          texture->GetMaybeExternalImageId().isSome()) {
+        ids.emplace_back(texture->GetMaybeExternalImageId().ref());
+      }
+    }
+    if (!ids.empty()) {
+      wr::RenderThread::Get()->DestroyExternalImagesSyncWait(std::move(ids));
+    }
+  }
+
+  PVideoBridgeParent::OnChannelError();
+}
+
 }  // namespace layers
 }  // namespace mozilla
diff -Nru thunderbird-102.9.0+build1/gfx/layers/ipc/VideoBridgeParent.h thunderbird-102.10.0+build2/gfx/layers/ipc/VideoBridgeParent.h
--- thunderbird-102.9.0+build1/gfx/layers/ipc/VideoBridgeParent.h	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/layers/ipc/VideoBridgeParent.h	2023-04-11 06:10:59.000000000 +0000
@@ -28,6 +28,7 @@
   static void Open(Endpoint<PVideoBridgeParent>&& aEndpoint,
                    VideoBridgeSource aSource);
   static void Shutdown();
+  static void UnregisterExternalImages();
 
   TextureHost* LookupTexture(uint64_t aSerial);
 
@@ -61,12 +62,15 @@
 
   bool DeallocShmem(ipc::Shmem& aShmem) override;
 
+  void OnChannelError() override;
+
  private:
   explicit VideoBridgeParent(VideoBridgeSource aSource);
   void Bind(Endpoint<PVideoBridgeParent>&& aEndpoint);
 
   void ActorDealloc() override;
   void ReleaseCompositorThread();
+  void DoUnregisterExternalImages();
 
   // This keeps us alive until ActorDestroy(), at which point we do a
   // deferred destruction of ourselves.
diff -Nru thunderbird-102.9.0+build1/gfx/thebes/gfxPlatform.cpp thunderbird-102.10.0+build2/gfx/thebes/gfxPlatform.cpp
--- thunderbird-102.9.0+build1/gfx/thebes/gfxPlatform.cpp	2023-03-11 11:24:13.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/thebes/gfxPlatform.cpp	2023-04-11 06:10:59.000000000 +0000
@@ -11,6 +11,7 @@
 #include "mozilla/layers/ImageBridgeChild.h"
 #include "mozilla/layers/ISurfaceAllocator.h"  // for GfxMemoryImageReporter
 #include "mozilla/layers/CompositorBridgeChild.h"
+#include "mozilla/layers/VideoBridgeParent.h"
 #include "mozilla/webrender/RenderThread.h"
 #include "mozilla/webrender/WebRenderAPI.h"
 #include "mozilla/webrender/webrender_ffi.h"
@@ -1324,6 +1325,8 @@
     }
 
   } else if (XRE_IsParentProcess()) {
+    VideoBridgeParent::Shutdown();
+    RDDProcessManager::RDDProcessShutdown();
     gfx::VRManagerChild::ShutDown();
     gfx::CanvasManagerChild::Shutdown();
     layers::CompositorManagerChild::Shutdown();
diff -Nru thunderbird-102.9.0+build1/gfx/webrender_bindings/RenderBufferTextureHost.cpp thunderbird-102.10.0+build2/gfx/webrender_bindings/RenderBufferTextureHost.cpp
--- thunderbird-102.9.0+build1/gfx/webrender_bindings/RenderBufferTextureHost.cpp	2023-03-11 11:24:13.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/webrender_bindings/RenderBufferTextureHost.cpp	2023-04-11 06:10:59.000000000 +0000
@@ -51,8 +51,10 @@
     uint8_t aChannelIndex, gl::GLContext* aGL, wr::ImageRendering aRendering) {
   if (!mLocked) {
     if (!GetBuffer()) {
-      // We hit some problems to get the shmem.
-      gfxCriticalNote << "GetBuffer Failed";
+      if (!mDestroyed) {
+        // We hit some problems to get the shmem.
+        gfxCriticalNote << "GetBuffer Failed";
+      }
       return InvalidToWrExternalImage();
     }
     if (mFormat != gfx::SurfaceFormat::YUV) {
@@ -196,8 +198,10 @@
                                        uint8_t aChannelIndex,
                                        PlaneInfo& aPlaneInfo) {
   if (!mBuffer) {
-    // We hit some problems to get the shmem.
-    gfxCriticalNote << "GetBuffer Failed";
+    if (!mDestroyed) {
+      // We hit some problems to get the shmem.
+      gfxCriticalNote << "GetBuffer Failed";
+    }
     return false;
   }
 
@@ -241,5 +245,10 @@
 
 void RenderBufferTextureHost::UnmapPlanes() {}
 
+void RenderBufferTextureHost::Destroy() {
+  mBuffer = nullptr;
+  mDestroyed = true;
+}
+
 }  // namespace wr
 }  // namespace mozilla
diff -Nru thunderbird-102.9.0+build1/gfx/webrender_bindings/RenderBufferTextureHost.h thunderbird-102.10.0+build2/gfx/webrender_bindings/RenderBufferTextureHost.h
--- thunderbird-102.9.0+build1/gfx/webrender_bindings/RenderBufferTextureHost.h	2023-03-11 11:24:13.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/webrender_bindings/RenderBufferTextureHost.h	2023-04-11 06:11:00.000000000 +0000
@@ -49,6 +49,8 @@
 
   void UnmapPlanes() override;
 
+  void Destroy() override;
+
  private:
   virtual ~RenderBufferTextureHost();
 
@@ -70,6 +72,8 @@
   gfx::DataSourceSurface::MappedSurface mCrMap;
 
   bool mLocked;
+
+  bool mDestroyed = false;
 };
 
 }  // namespace wr
diff -Nru thunderbird-102.9.0+build1/gfx/webrender_bindings/RenderTextureHost.cpp thunderbird-102.10.0+build2/gfx/webrender_bindings/RenderTextureHost.cpp
--- thunderbird-102.9.0+build1/gfx/webrender_bindings/RenderTextureHost.cpp	2023-03-11 11:24:13.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/webrender_bindings/RenderTextureHost.cpp	2023-04-11 06:11:00.000000000 +0000
@@ -61,5 +61,9 @@
                                    static_cast<float>(aTextureSize.height)));
 }
 
+void RenderTextureHost::Destroy() {
+  MOZ_ASSERT_UNREACHABLE("unexpected to be called");
+}
+
 }  // namespace wr
 }  // namespace mozilla
diff -Nru thunderbird-102.9.0+build1/gfx/webrender_bindings/RenderTextureHost.h thunderbird-102.10.0+build2/gfx/webrender_bindings/RenderTextureHost.h
--- thunderbird-102.9.0+build1/gfx/webrender_bindings/RenderTextureHost.h	2023-03-11 11:24:13.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/webrender_bindings/RenderTextureHost.h	2023-04-11 06:11:00.000000000 +0000
@@ -88,6 +88,8 @@
 
   virtual RenderTextureHostSWGL* AsRenderTextureHostSWGL() { return nullptr; }
 
+  virtual void Destroy();
+
  protected:
   virtual ~RenderTextureHost();
 
diff -Nru thunderbird-102.9.0+build1/gfx/webrender_bindings/RenderThread.cpp thunderbird-102.10.0+build2/gfx/webrender_bindings/RenderThread.cpp
--- thunderbird-102.9.0+build1/gfx/webrender_bindings/RenderThread.cpp	2023-03-11 11:24:12.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/webrender_bindings/RenderThread.cpp	2023-04-11 06:10:59.000000000 +0000
@@ -24,6 +24,7 @@
 #include "mozilla/layers/WebRenderBridgeParent.h"
 #include "mozilla/layers/SharedSurfacesParent.h"
 #include "mozilla/layers/SurfacePool.h"
+#include "mozilla/layers/SynchronousTask.h"
 #include "mozilla/StaticPtr.h"
 #include "mozilla/Telemetry.h"
 #include "mozilla/webrender/RendererOGL.h"
@@ -732,6 +733,50 @@
   }
 }
 
+void RenderThread::DestroyExternalImagesSyncWait(
+    const std::vector<wr::ExternalImageId>&& aIds) {
+  if (!IsInRenderThread()) {
+    layers::SynchronousTask task("Destroy external images");
+
+    RefPtr<Runnable> runnable = NS_NewRunnableFunction(
+        "RenderThread::DestroyExternalImagesSyncWait::Runnable",
+        [&task, ids = std::move(aIds)]() {
+          layers::AutoCompleteTask complete(&task);
+          RenderThread::Get()->DestroyExternalImages(std::move(ids));
+        });
+
+    PostRunnable(runnable.forget());
+    task.Wait();
+    return;
+  }
+  DestroyExternalImages(std::move(aIds));
+}
+
+void RenderThread::DestroyExternalImages(
+    const std::vector<wr::ExternalImageId>&& aIds) {
+  MOZ_ASSERT(IsInRenderThread());
+
+  std::vector<RefPtr<RenderTextureHost>> hosts;
+  {
+    MutexAutoLock lock(mRenderTextureMapLock);
+    if (mHasShutdown) {
+      return;
+    }
+
+    for (auto& id : aIds) {
+      auto it = mRenderTextures.find(id);
+      if (it == mRenderTextures.end()) {
+        continue;
+      }
+      hosts.emplace_back(it->second);
+    }
+  }
+
+  for (auto& host : hosts) {
+    host->Destroy();
+  }
+}
+
 void RenderThread::PrepareForUse(const wr::ExternalImageId& aExternalImageId) {
   AddRenderTextureOp(RenderTextureOp::PrepareForUse, aExternalImageId);
 }
diff -Nru thunderbird-102.9.0+build1/gfx/webrender_bindings/RenderThread.h thunderbird-102.10.0+build2/gfx/webrender_bindings/RenderThread.h
--- thunderbird-102.9.0+build1/gfx/webrender_bindings/RenderThread.h	2023-03-11 11:24:13.000000000 +0000
+++ thunderbird-102.10.0+build2/gfx/webrender_bindings/RenderThread.h	2023-04-11 06:10:59.000000000 +0000
@@ -203,6 +203,10 @@
   void UnregisterExternalImage(const wr::ExternalImageId& aExternalImageId);
 
   /// Can be called from any thread.
+  void DestroyExternalImagesSyncWait(
+      const std::vector<wr::ExternalImageId>&& aIds);
+
+  /// Can be called from any thread.
   void PrepareForUse(const wr::ExternalImageId& aExternalImageId);
 
   /// Can be called from any thread.
@@ -317,6 +321,8 @@
 
   void CreateSingletonGL(nsACString& aError);
 
+  void DestroyExternalImages(const std::vector<wr::ExternalImageId>&& aIds);
+
   ~RenderThread();
 
   RefPtr<nsIThread> const mThread;
diff -Nru thunderbird-102.9.0+build1/intl/tzdata/GIT-INFO thunderbird-102.10.0+build2/intl/tzdata/GIT-INFO
--- thunderbird-102.9.0+build1/intl/tzdata/GIT-INFO	2023-03-11 11:24:14.000000000 +0000
+++ thunderbird-102.10.0+build2/intl/tzdata/GIT-INFO	2023-04-11 06:11:01.000000000 +0000
@@ -1,5 +1,5 @@
-commit 02968a65f05cb5403bc2fa3d41d0a6d60f90d5e4
+commit 554845af4cb8d4962620939bc589aaca58dc8855
 Author: yumaoka <y.umaoka@gmail.com>
-Date:   Wed Nov 30 14:10:34 2022 -0500
+Date:   Fri Mar 24 11:56:56 2023 -0400
 
-    ICU-22217 TZ Database 2022g updates
+    ICU-22334 Update tzdata to 2023b
Binary files /tmp/tmp13iql_nk/uWLg1t1GOh/thunderbird-102.9.0+build1/intl/tzdata/source/be/windowsZones.res and /tmp/tmp13iql_nk/XrrXVw2m11/thunderbird-102.10.0+build2/intl/tzdata/source/be/windowsZones.res differ
Binary files /tmp/tmp13iql_nk/uWLg1t1GOh/thunderbird-102.9.0+build1/intl/tzdata/source/be/zoneinfo64.res and /tmp/tmp13iql_nk/XrrXVw2m11/thunderbird-102.10.0+build2/intl/tzdata/source/be/zoneinfo64.res differ
Binary files /tmp/tmp13iql_nk/uWLg1t1GOh/thunderbird-102.9.0+build1/intl/tzdata/source/ee/windowsZones.res and /tmp/tmp13iql_nk/XrrXVw2m11/thunderbird-102.10.0+build2/intl/tzdata/source/ee/windowsZones.res differ
Binary files /tmp/tmp13iql_nk/uWLg1t1GOh/thunderbird-102.9.0+build1/intl/tzdata/source/ee/zoneinfo64.res and /tmp/tmp13iql_nk/XrrXVw2m11/thunderbird-102.10.0+build2/intl/tzdata/source/ee/zoneinfo64.res differ
Binary files /tmp/tmp13iql_nk/uWLg1t1GOh/thunderbird-102.9.0+build1/intl/tzdata/source/le/windowsZones.res and /tmp/tmp13iql_nk/XrrXVw2m11/thunderbird-102.10.0+build2/intl/tzdata/source/le/windowsZones.res differ
Binary files /tmp/tmp13iql_nk/uWLg1t1GOh/thunderbird-102.9.0+build1/intl/tzdata/source/le/zoneinfo64.res and /tmp/tmp13iql_nk/XrrXVw2m11/thunderbird-102.10.0+build2/intl/tzdata/source/le/zoneinfo64.res differ
diff -Nru thunderbird-102.9.0+build1/intl/tzdata/source/windowsZones.txt thunderbird-102.10.0+build2/intl/tzdata/source/windowsZones.txt
--- thunderbird-102.9.0+build1/intl/tzdata/source/windowsZones.txt	2023-03-11 11:24:14.000000000 +0000
+++ thunderbird-102.10.0+build2/intl/tzdata/source/windowsZones.txt	2023-04-11 06:11:01.000000000 +0000
@@ -168,7 +168,7 @@
             001{"America/Mexico_City"}
             MX{
                 "America/Mexico_City America/Bahia_Banderas America/Merida America/Mo"
-                "nterrey"
+                "nterrey America/Chihuahua "
             }
         }
         "Central Standard Time"{
@@ -177,7 +177,7 @@
                 "America/Winnipeg America/Rainy_River America/Rankin_Inlet America/Re"
                 "solute"
             }
-            MX{"America/Matamoros"}
+            MX{"America/Matamoros America/Ojinaga"}
             US{
                 "America/Chicago America/Indiana/Knox America/Indiana/Tell_City Ameri"
                 "ca/Menominee America/North_Dakota/Beulah America/North_Dakota/Center"
@@ -398,8 +398,8 @@
             MA{"Africa/Casablanca"}
         }
         "Mountain Standard Time (Mexico)"{
-            001{"America/Chihuahua"}
-            MX{"America/Chihuahua America/Mazatlan"}
+            001{"America/Mazatlan"}
+            MX{"America/Mazatlan"}
         }
         "Mountain Standard Time"{
             001{"America/Denver"}
@@ -407,7 +407,7 @@
                 "America/Edmonton America/Cambridge_Bay America/Inuvik America/Yellow"
                 "knife"
             }
-            MX{"America/Ojinaga"}
+            MX{"America/Ciudad_Juarez"}
             US{"America/Denver America/Boise"}
             ZZ{"MST7MDT"}
         }
diff -Nru thunderbird-102.9.0+build1/intl/tzdata/source/zoneinfo64.txt thunderbird-102.10.0+build2/intl/tzdata/source/zoneinfo64.txt
--- thunderbird-102.9.0+build1/intl/tzdata/source/zoneinfo64.txt	2023-03-11 11:24:14.000000000 +0000
+++ thunderbird-102.10.0+build2/intl/tzdata/source/zoneinfo64.txt	2023-04-11 06:11:01.000000000 +0000
@@ -3,17 +3,17 @@
 // License & terms of use: http://www.unicode.org/copyright.html
 //---------------------------------------------------------
 // Build tool:  tz2icu
-// Build date:  Wed Nov 30 02:02:40 2022
+// Build date:  Thu Mar 23 12:04:20 2023
 // tz database: ftp://ftp.iana.org/tz/
-// tz version:  2022g
-// ICU version: 72.1
+// tz version:  2023a
+// ICU version: 73.1
 //---------------------------------------------------------
 // >> !!! >>   THIS IS A MACHINE-GENERATED FILE   << !!! <<
 // >> !!! >>>            DO NOT EDIT             <<< !!! <<
 //---------------------------------------------------------
 
 zoneinfo64:table(nofallback) {
- TZVersion { "2022g" }
+ TZVersion { "2023a" }
  Zones:array { 
   /* ACT */ :int { 357 } //Z#0
   /* AET */ :int { 369 } //Z#1
@@ -49,14 +49,17 @@
   /* Africa/Bujumbura */ :int { 43 } //Z#17
   /* Africa/Cairo */ :table {
     transPre32:intvector { -1, 2109558187 }
-    trans:intvector { -929844000, -923108400, -906170400, -892868400, -875844000, -857790000, -844308000, -825822000, -812685600, -794199600, -779853600, -762663600, -399088800, -386650800, -368330400, -355114800, -336790800, -323654400, -305168400, -292032000, -273632400, -260496000, -242096400, -228960000, -210560400, -197424000, -178938000, -165801600, -147402000, -134265600, -115866000, -102643200, -84330000, -71107200, -52707600, -39484800, -21171600, -7948800, 10364400, 23587200, 41900400, 55123200, 73522800, 86745600, 105058800, 118281600, 136594800, 149817600, 168130800, 181353600, 199753200, 212976000, 231289200, 244512000, 262825200, 276048000, 294361200, 307584000, 325983600, 339206400, 357519600, 370742400, 396399600, 402278400, 426812400, 433814400, 452214000, 465436800, 483750000, 496972800, 515286000, 528508800, 546822000, 560044800, 578444400, 591667200, 610412400, 623203200, 641516400, 654739200, 673052400, 686275200, 704674800, 717897600, 736210800, 749433600, 767746800, 780969600, 799020000, 812322000, 830469600, 843771600, 861919200, 875221200, 893368800, 906670800, 925423200, 938725200, 956872800, 970174800, 988322400, 1001624400, 1019772000, 1033074000, 1051221600, 1064523600, 1083276000, 1096578000, 1114725600, 1128027600, 1146175200, 1158872400, 1177624800, 1189112400, 1209074400, 1219957200, 1240524000, 1250802000, 1272578400, 1281474000, 1284069600, 1285880400, 1400191200, 1403816400, 1406844000, 1411678800 }
+    trans:intvector { -929844000, -923108400, -906170400, -892868400, -875844000, -857790000, -844308000, -825822000, -812685600, -794199600, -779853600, -762663600, -399088800, -386650800, -368330400, -355114800, -336790800, -323654400, -305168400, -292032000, -273632400, -260496000, -242096400, -228960000, -210560400, -197424000, -178938000, -165801600, -147402000, -134265600, -115866000, -102643200, -84330000, -71107200, -52707600, -39484800, -21171600, -7948800, 10364400, 23587200, 41900400, 55123200, 73522800, 86745600, 105058800, 118281600, 136594800, 149817600, 168130800, 181353600, 199753200, 212976000, 231289200, 244512000, 262825200, 276048000, 294361200, 307584000, 325983600, 339206400, 357519600, 370742400, 396399600, 402278400, 426812400, 433814400, 452214000, 465436800, 483750000, 496972800, 515286000, 528508800, 546822000, 560044800, 578444400, 591667200, 610412400, 623203200, 641516400, 654739200, 673052400, 686275200, 704674800, 717897600, 736210800, 749433600, 767746800, 780969600, 799020000, 812322000, 830469600, 843771600, 861919200, 875221200, 893368800, 906670800, 925423200, 938725200, 956872800, 970174800, 988322400, 1001624400, 1019772000, 1033074000, 1051221600, 1064523600, 1083276000, 1096578000, 1114725600, 1128027600, 1146175200, 1158872400, 1177624800, 1189112400, 1209074400, 1219957200, 1240524000, 1250802000, 1272578400, 1281474000, 1284069600, 1285880400, 1400191200, 1403816400, 1406844000, 1411678800, 1682632800, 1698354000 }
     typeOffsets:intvector { 7509, 0, 7200, 0, 7200, 3600 }
-    typeMap:bin { "01020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201" }
+    typeMap:bin { "010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201" }
+    finalRule { "Egypt" }
+    finalRaw:int { 7200 }
+    finalYear:int { 2024 }
     links:intvector { 3, 18, 403 }
   } //Z#18
   /* Africa/Casablanca */ :table {
-    trans:intvector { -1773012580, -956361600, -950490000, -942019200, -761187600, -617241600, -605149200, -81432000, -71110800, 141264000, 147222000, 199756800, 207702000, 231292800, 244249200, 265507200, 271033200, 448243200, 504918000, 1212278400, 1220223600, 1243814400, 1250809200, 1272758400, 1281222000, 1301788800, 1312066800, 1335664800, 1342749600, 1345428000, 1348970400, 1367114400, 1373162400, 1376100000, 1382839200, 1396144800, 1403920800, 1406944800, 1414288800, 1427594400, 1434247200, 1437271200, 1445738400, 1459044000, 1465092000, 1468116000, 1477792800, 1490493600, 1495332000, 1498960800, 1509242400, 1521943200, 1526176800, 1529200800, 1557021600, 1560045600, 1587261600, 1590890400, 1618106400, 1621130400, 1648346400, 1651975200, 1679191200, 1682820000, 1710036000, 1713060000, 1740276000, 1743904800, 1771120800, 1774144800, 1801965600, 1804989600, 1832205600, 1835834400, 1863050400, 1866074400, 1893290400, 1896919200, 1924135200, 1927764000, 1954980000, 1958004000, 1985220000, 1988848800, 2016064800, 2019088800, 2046304800, 2049933600, 2077149600, 2080778400, 2107994400, 2111018400, 2138234400, 2141863200 }
-    transPost32:intvector { 0, -2125888096, 0, -2122259296, 0, -2095043296, 0, -2092019296, 0, -2064803296, 0, -2061174496, 0, -2033958496, 0, -2030934496, 0, -2003718496, 0, -2000089696, 0, -1972873696, 0, -1969244896, 0, -1942028896, 0, -1939004896, 0, -1911788896, 0, -1908160096, 0, -1880944096, 0, -1877315296, 0, -1850099296, 0, -1847075296, 0, -1819859296, 0, -1816230496, 0, -1789014496, 0, -1785990496, 0, -1758774496, 0, -1755145696, 0, -1727929696, 0, -1724300896, 0, -1697084896, 0, -1694060896, 0, -1666844896, 0, -1663216096, 0, -1636000096, 0, -1632371296, 0, -1605155296, 0, -1602131296, 0, -1574915296, 0, -1571286496, 0, -1544070496, 0, -1541046496, 0, -1513830496, 0, -1510201696, 0, -1482985696, 0, -1479356896, 0, -1452140896, 0, -1449116896, 0, -1421900896, 0, -1418272096, 0, -1391056096, 0, -1387427296, 0, -1360211296, 0, -1357187296, 0, -1329971296, 0, -1326342496, 0, -1299126496, 0, -1296102496, 0, -1268886496, 0, -1265257696, 0, -1238041696, 0, -1234412896, 0, -1207196896, 0, -1204172896, 0, -1176956896, 0, -1173328096, 0, -1146112096, 0, -1142483296, 0, -1115267296, 0, -1112243296, 0, -1085027296, 0, -1081398496, 0, -1054182496, 0, -1051158496, 0, -1023942496, 0, -1020313696, 0, -993097696, 0, -989468896, 0, -962252896, 0, -959228896, 0, -932012896, 0, -928384096, 0, -901168096, 0, -897539296, 0, -870323296, 0, -867299296, 0, -840083296, 0, -836454496, 0, -809238496, 0, -806214496, 0, -778998496, 0, -775369696, 0, -748153696, 0, -744524896, 0, -717308896, 0, -714284896, 0, -687068896, 0, -683440096, 0, -656224096, 0, -652595296, 0, -625379296, 0, -622355296, 0, -595139296, 0, -591510496 }
+    trans:intvector { -1773012580, -956361600, -950490000, -942019200, -761187600, -617241600, -605149200, -81432000, -71110800, 141264000, 147222000, 199756800, 207702000, 231292800, 244249200, 265507200, 271033200, 448243200, 504918000, 1212278400, 1220223600, 1243814400, 1250809200, 1272758400, 1281222000, 1301788800, 1312066800, 1335664800, 1342749600, 1345428000, 1348970400, 1367114400, 1373162400, 1376100000, 1382839200, 1396144800, 1403920800, 1406944800, 1414288800, 1427594400, 1434247200, 1437271200, 1445738400, 1459044000, 1465092000, 1468116000, 1477792800, 1490493600, 1495332000, 1498960800, 1509242400, 1521943200, 1526176800, 1529200800, 1557021600, 1560045600, 1587261600, 1590890400, 1618106400, 1621130400, 1648346400, 1651975200, 1679191200, 1682215200, 1710036000, 1713060000, 1740276000, 1743904800, 1771120800, 1774144800, 1801965600, 1804989600, 1832205600, 1835834400, 1863050400, 1866074400, 1893290400, 1896919200, 1924135200, 1927159200, 1954980000, 1958004000, 1985220000, 1988848800, 2016064800, 2019088800, 2046304800, 2049933600, 2077149600, 2080778400, 2107994400, 2111018400, 2138234400, 2141863200 }
+    transPost32:intvector { 0, -2125888096, 0, -2122864096, 0, -2095043296, 0, -2092019296, 0, -2064803296, 0, -2061174496, 0, -2033958496, 0, -2030934496, 0, -2003718496, 0, -2000089696, 0, -1972873696, 0, -1969244896, 0, -1942028896, 0, -1939004896, 0, -1911788896, 0, -1908160096, 0, -1880944096, 0, -1877920096, 0, -1850099296, 0, -1847075296, 0, -1819859296, 0, -1816230496, 0, -1789014496, 0, -1785990496, 0, -1758774496, 0, -1755145696, 0, -1727929696, 0, -1724300896, 0, -1697084896, 0, -1694060896, 0, -1666844896, 0, -1663216096, 0, -1636000096, 0, -1632976096, 0, -1605155296, 0, -1602131296, 0, -1574915296, 0, -1571286496, 0, -1544070496, 0, -1541046496, 0, -1513830496, 0, -1510201696, 0, -1482985696, 0, -1479356896, 0, -1452140896, 0, -1449116896, 0, -1421900896, 0, -1418272096, 0, -1391056096, 0, -1388032096, 0, -1360211296, 0, -1357187296, 0, -1329971296, 0, -1326342496, 0, -1299126496, 0, -1296102496, 0, -1268886496, 0, -1265257696, 0, -1238041696, 0, -1234412896, 0, -1207196896, 0, -1204172896, 0, -1176956896, 0, -1173328096, 0, -1146112096, 0, -1143088096, 0, -1115267296, 0, -1112243296, 0, -1085027296, 0, -1081398496, 0, -1054182496, 0, -1051158496, 0, -1023942496, 0, -1020313696, 0, -993097696, 0, -989468896, 0, -962252896, 0, -959228896, 0, -932012896, 0, -928384096, 0, -901168096, 0, -898144096, 0, -870323296, 0, -867299296, 0, -840083296, 0, -836454496, 0, -809238496, 0, -806214496, 0, -778998496, 0, -775369696, 0, -748153696, 0, -745129696, 0, -717308896, 0, -714284896, 0, -687068896, 0, -683440096, 0, -656224096, 0, -653200096, 0, -625379296, 0, -622355296, 0, -595139296, 0, -591510496 }
     typeOffsets:intvector { -1820, 0, 0, 0, 0, 3600, 3600, 0 }
     typeMap:bin { "01020102010201020102010201020102010301020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102" }
   } //Z#19
@@ -75,8 +78,8 @@
   /* Africa/Djibouti */ :int { 48 } //Z#24
   /* Africa/Douala */ :int { 36 } //Z#25
   /* Africa/El_Aaiun */ :table {
-    trans:intvector { -1136070432, 198291600, 199756800, 207702000, 231292800, 244249200, 265507200, 271033200, 1212278400, 1220223600, 1243814400, 1250809200, 1272758400, 1281222000, 1301788800, 1312066800, 1335664800, 1342749600, 1345428000, 1348970400, 1367114400, 1373162400, 1376100000, 1382839200, 1396144800, 1403920800, 1406944800, 1414288800, 1427594400, 1434247200, 1437271200, 1445738400, 1459044000, 1465092000, 1468116000, 1477792800, 1490493600, 1495332000, 1498960800, 1509242400, 1521943200, 1526176800, 1529200800, 1557021600, 1560045600, 1587261600, 1590890400, 1618106400, 1621130400, 1648346400, 1651975200, 1679191200, 1682820000, 1710036000, 1713060000, 1740276000, 1743904800, 1771120800, 1774144800, 1801965600, 1804989600, 1832205600, 1835834400, 1863050400, 1866074400, 1893290400, 1896919200, 1924135200, 1927764000, 1954980000, 1958004000, 1985220000, 1988848800, 2016064800, 2019088800, 2046304800, 2049933600, 2077149600, 2080778400, 2107994400, 2111018400, 2138234400, 2141863200 }
-    transPost32:intvector { 0, -2125888096, 0, -2122259296, 0, -2095043296, 0, -2092019296, 0, -2064803296, 0, -2061174496, 0, -2033958496, 0, -2030934496, 0, -2003718496, 0, -2000089696, 0, -1972873696, 0, -1969244896, 0, -1942028896, 0, -1939004896, 0, -1911788896, 0, -1908160096, 0, -1880944096, 0, -1877315296, 0, -1850099296, 0, -1847075296, 0, -1819859296, 0, -1816230496, 0, -1789014496, 0, -1785990496, 0, -1758774496, 0, -1755145696, 0, -1727929696, 0, -1724300896, 0, -1697084896, 0, -1694060896, 0, -1666844896, 0, -1663216096, 0, -1636000096, 0, -1632371296, 0, -1605155296, 0, -1602131296, 0, -1574915296, 0, -1571286496, 0, -1544070496, 0, -1541046496, 0, -1513830496, 0, -1510201696, 0, -1482985696, 0, -1479356896, 0, -1452140896, 0, -1449116896, 0, -1421900896, 0, -1418272096, 0, -1391056096, 0, -1387427296, 0, -1360211296, 0, -1357187296, 0, -1329971296, 0, -1326342496, 0, -1299126496, 0, -1296102496, 0, -1268886496, 0, -1265257696, 0, -1238041696, 0, -1234412896, 0, -1207196896, 0, -1204172896, 0, -1176956896, 0, -1173328096, 0, -1146112096, 0, -1142483296, 0, -1115267296, 0, -1112243296, 0, -1085027296, 0, -1081398496, 0, -1054182496, 0, -1051158496, 0, -1023942496, 0, -1020313696, 0, -993097696, 0, -989468896, 0, -962252896, 0, -959228896, 0, -932012896, 0, -928384096, 0, -901168096, 0, -897539296, 0, -870323296, 0, -867299296, 0, -840083296, 0, -836454496, 0, -809238496, 0, -806214496, 0, -778998496, 0, -775369696, 0, -748153696, 0, -744524896, 0, -717308896, 0, -714284896, 0, -687068896, 0, -683440096, 0, -656224096, 0, -652595296, 0, -625379296, 0, -622355296, 0, -595139296, 0, -591510496 }
+    trans:intvector { -1136070432, 198291600, 199756800, 207702000, 231292800, 244249200, 265507200, 271033200, 1212278400, 1220223600, 1243814400, 1250809200, 1272758400, 1281222000, 1301788800, 1312066800, 1335664800, 1342749600, 1345428000, 1348970400, 1367114400, 1373162400, 1376100000, 1382839200, 1396144800, 1403920800, 1406944800, 1414288800, 1427594400, 1434247200, 1437271200, 1445738400, 1459044000, 1465092000, 1468116000, 1477792800, 1490493600, 1495332000, 1498960800, 1509242400, 1521943200, 1526176800, 1529200800, 1557021600, 1560045600, 1587261600, 1590890400, 1618106400, 1621130400, 1648346400, 1651975200, 1679191200, 1682215200, 1710036000, 1713060000, 1740276000, 1743904800, 1771120800, 1774144800, 1801965600, 1804989600, 1832205600, 1835834400, 1863050400, 1866074400, 1893290400, 1896919200, 1924135200, 1927159200, 1954980000, 1958004000, 1985220000, 1988848800, 2016064800, 2019088800, 2046304800, 2049933600, 2077149600, 2080778400, 2107994400, 2111018400, 2138234400, 2141863200 }
+    transPost32:intvector { 0, -2125888096, 0, -2122864096, 0, -2095043296, 0, -2092019296, 0, -2064803296, 0, -2061174496, 0, -2033958496, 0, -2030934496, 0, -2003718496, 0, -2000089696, 0, -1972873696, 0, -1969244896, 0, -1942028896, 0, -1939004896, 0, -1911788896, 0, -1908160096, 0, -1880944096, 0, -1877920096, 0, -1850099296, 0, -1847075296, 0, -1819859296, 0, -1816230496, 0, -1789014496, 0, -1785990496, 0, -1758774496, 0, -1755145696, 0, -1727929696, 0, -1724300896, 0, -1697084896, 0, -1694060896, 0, -1666844896, 0, -1663216096, 0, -1636000096, 0, -1632976096, 0, -1605155296, 0, -1602131296, 0, -1574915296, 0, -1571286496, 0, -1544070496, 0, -1541046496, 0, -1513830496, 0, -1510201696, 0, -1482985696, 0, -1479356896, 0, -1452140896, 0, -1449116896, 0, -1421900896, 0, -1418272096, 0, -1391056096, 0, -1388032096, 0, -1360211296, 0, -1357187296, 0, -1329971296, 0, -1326342496, 0, -1299126496, 0, -1296102496, 0, -1268886496, 0, -1265257696, 0, -1238041696, 0, -1234412896, 0, -1207196896, 0, -1204172896, 0, -1176956896, 0, -1173328096, 0, -1146112096, 0, -1143088096, 0, -1115267296, 0, -1112243296, 0, -1085027296, 0, -1081398496, 0, -1054182496, 0, -1051158496, 0, -1023942496, 0, -1020313696, 0, -993097696, 0, -989468896, 0, -962252896, 0, -959228896, 0, -932012896, 0, -928384096, 0, -901168096, 0, -898144096, 0, -870323296, 0, -867299296, 0, -840083296, 0, -836454496, 0, -809238496, 0, -806214496, 0, -778998496, 0, -775369696, 0, -748153696, 0, -745129696, 0, -717308896, 0, -714284896, 0, -687068896, 0, -683440096, 0, -656224096, 0, -653200096, 0, -625379296, 0, -622355296, 0, -595139296, 0, -591510496 }
     typeOffsets:intvector { -3168, 0, -3600, 0, 0, 0, 0, 3600 }
     typeMap:bin { "0102030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203020302030203" }
   } //Z#26
@@ -442,7 +445,7 @@
     finalRule { "Canada" }
     finalRaw:int { -25200 }
     finalYear:int { 2008 }
-    links:intvector { 113, 390 }
+    links:intvector { 113, 226, 390 }
   } //Z#113
   /* America/Eirunepe */ :table {
     trans:intvector { -1767208832, -1206950400, -1191355200, -1175367600, -1159819200, -633812400, -622062000, -602276400, -591825600, -570740400, -560203200, -539118000, -531345600, -191358000, -184190400, -155156400, -150062400, -128890800, -121118400, -99946800, -89582400, -68410800, -57960000, 499755600, 511243200, 530600400, 540273600, 562136400, 571204800, 750834000, 761716800, 1214283600, 1384056000 }
@@ -839,9 +842,12 @@
     finalYear:int { 2008 }
   } //Z#180
   /* America/Nuuk */ :table {
-    trans:intvector { -1686083584, 323845200, 338950800, 354675600, 370400400, 386125200, 401850000, 417574800, 433299600, 449024400, 465354000, 481078800, 496803600, 512528400, 528253200, 543978000, 559702800, 575427600, 591152400, 606877200, 622602000, 638326800, 654656400, 670381200, 686106000, 701830800, 717555600, 733280400, 749005200, 764730000, 780454800, 796179600, 811904400, 828234000, 846378000, 859683600, 877827600, 891133200, 909277200, 922582800, 941331600, 954032400, 972781200, 985482000, 1004230800, 1017536400, 1035680400, 1048986000, 1067130000, 1080435600, 1099184400, 1111885200, 1130634000, 1143334800, 1162083600, 1174784400, 1193533200, 1206838800, 1224982800, 1238288400, 1256432400, 1269738000, 1288486800, 1301187600, 1319936400, 1332637200, 1351386000, 1364691600, 1382835600, 1396141200, 1414285200, 1427590800, 1445734800, 1459040400, 1477789200, 1490490000, 1509238800, 1521939600, 1540688400, 1553994000, 1572138000, 1585443600, 1603587600, 1616893200, 1635642000, 1648342800, 1667091600, 1679792400 }
-    typeOffsets:intvector { -12416, 0, -10800, 0, -10800, 3600, -7200, 0 }
-    typeMap:bin { "01020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020103" }
+    trans:intvector { -1686083584, 323845200, 338950800, 354675600, 370400400, 386125200, 401850000, 417574800, 433299600, 449024400, 465354000, 481078800, 496803600, 512528400, 528253200, 543978000, 559702800, 575427600, 591152400, 606877200, 622602000, 638326800, 654656400, 670381200, 686106000, 701830800, 717555600, 733280400, 749005200, 764730000, 780454800, 796179600, 811904400, 828234000, 846378000, 859683600, 877827600, 891133200, 909277200, 922582800, 941331600, 954032400, 972781200, 985482000, 1004230800, 1017536400, 1035680400, 1048986000, 1067130000, 1080435600, 1099184400, 1111885200, 1130634000, 1143334800, 1162083600, 1174784400, 1193533200, 1206838800, 1224982800, 1238288400, 1256432400, 1269738000, 1288486800, 1301187600, 1319936400, 1332637200, 1351386000, 1364691600, 1382835600, 1396141200, 1414285200, 1427590800, 1445734800, 1459040400, 1477789200, 1490490000, 1509238800, 1521939600, 1540688400, 1553994000, 1572138000, 1585443600, 1603587600, 1616893200, 1635642000, 1648342800, 1667091600, 1679792400, 1698541200, 1711846800, 1729990800 }
+    typeOffsets:intvector { -12416, 0, -10800, 0, -10800, 3600, -7200, 0, -7200, 3600 }
+    typeMap:bin { "01020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102030403" }
+    finalRule { "EU" }
+    finalRaw:int { -7200 }
+    finalYear:int { 2025 }
     links:intvector { 121, 181 }
   } //Z#181
   /* America/Ojinaga */ :table {
@@ -1071,14 +1077,7 @@
     finalRaw:int { -32400 }
     finalYear:int { 2008 }
   } //Z#225
-  /* America/Yellowknife */ :table {
-    trans:intvector { -1104537600, -880210800, -765388800, 73472400, 89193600, 104922000, 120643200, 136371600, 152092800, 167821200, 183542400, 199270800, 215596800, 230720400, 247046400, 262774800, 278496000, 294224400, 309945600, 325674000, 341395200, 357123600, 372844800, 388573200, 404899200, 420022800, 436348800, 452077200, 467798400, 483526800, 499248000, 514976400, 530697600, 544611600, 562147200, 576061200, 594201600, 607510800, 625651200, 638960400, 657100800, 671014800, 688550400, 702464400, 720000000, 733914000, 752054400, 765363600, 783504000, 796813200, 814953600, 828867600, 846403200, 860317200, 877852800, 891766800, 909302400, 923216400, 941356800, 954666000, 972806400, 986115600, 1004256000, 1018170000, 1035705600, 1049619600, 1067155200, 1081069200, 1099209600, 1112518800, 1130659200, 1143968400, 1162108800, 1173603600, 1194163200 }
-    typeOffsets:intvector { 0, 0, -25200, 0, -25200, 3600 }
-    typeMap:bin { "010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201" }
-    finalRule { "Canada" }
-    finalRaw:int { -25200 }
-    finalYear:int { 2008 }
-  } //Z#226
+  /* America/Yellowknife */ :int { 113 } //Z#226
   /* Antarctica/Casey */ :table {
     trans:intvector { -31536000, 1255802400, 1267714800, 1319738400, 1329843600, 1477065600, 1520701200, 1538856000, 1552752000, 1570129200, 1583596800, 1601740860 }
     typeOffsets:intvector { 0, 0, 28800, 0, 39600, 0 }
@@ -1261,22 +1260,24 @@
   } //Z#269
   /* Asia/Gaza */ :table {
     transPre32:intvector { -1, 2109557424 }
-    trans:intvector { -933638400, -923097600, -919036800, -857347200, -844300800, -825811200, -812678400, -794188800, -779846400, -762652800, -748310400, -731116800, -399088800, -386650800, -368330400, -355114800, -336790800, -323654400, -305168400, -292032000, -273632400, -260496000, -242096400, -228960000, -210560400, -197424000, -178938000, -165801600, -147402000, -134265600, -115866000, -102643200, -84330000, -81313200, 142380000, 150843600, 167176800, 178664400, 334101600, 337730400, 452642400, 462319200, 482277600, 494370000, 516751200, 526424400, 545436000, 558478800, 576626400, 589323600, 609890400, 620773200, 638316000, 651618000, 669765600, 683672400, 701820000, 715726800, 733701600, 747176400, 765151200, 778021200, 796600800, 810075600, 828655200, 843170400, 860104800, 874620000, 891554400, 906069600, 924213600, 939934800, 956268000, 971989200, 987717600, 1003438800, 1019167200, 1034888400, 1050616800, 1066338000, 1082066400, 1096581600, 1113516000, 1128380400, 1143842400, 1158872400, 1175378400, 1189638000, 1206655200, 1219957200, 1238104800, 1252015200, 1269640860, 1281474000, 1301608860, 1312146000, 1333058400, 1348178400, 1364508000, 1380229200, 1395957600, 1414098000, 1427493600, 1445551200, 1458946800, 1477692000, 1490396400, 1509141600, 1521846000, 1540591200, 1553810400, 1572037200, 1585346400, 1603490400, 1616796000, 1635458400, 1648332000, 1666998000, 1679702400, 1698447600 }
+    trans:intvector { -933638400, -923097600, -919036800, -857347200, -844300800, -825811200, -812678400, -794188800, -779846400, -762652800, -748310400, -731116800, -399088800, -386650800, -368330400, -355114800, -336790800, -323654400, -305168400, -292032000, -273632400, -260496000, -242096400, -228960000, -210560400, -197424000, -178938000, -165801600, -147402000, -134265600, -115866000, -102643200, -84330000, -81313200, 142380000, 150843600, 167176800, 178664400, 334101600, 337730400, 452642400, 462319200, 482277600, 494370000, 516751200, 526424400, 545436000, 558478800, 576626400, 589323600, 609890400, 620773200, 638316000, 651618000, 669765600, 683672400, 701820000, 715726800, 733701600, 747176400, 765151200, 778021200, 796600800, 810075600, 828655200, 843170400, 860104800, 874620000, 891554400, 906069600, 924213600, 939934800, 956268000, 971989200, 987717600, 1003438800, 1019167200, 1034888400, 1050616800, 1066338000, 1082066400, 1096581600, 1113516000, 1128380400, 1143842400, 1158872400, 1175378400, 1189638000, 1206655200, 1219957200, 1238104800, 1252015200, 1269640860, 1281474000, 1301608860, 1312146000, 1333058400, 1348178400, 1364508000, 1380229200, 1395957600, 1414098000, 1427493600, 1445551200, 1458946800, 1477692000, 1490396400, 1509141600, 1521846000, 1540591200, 1553810400, 1572037200, 1585346400, 1603490400, 1616796000, 1635458400, 1648332000, 1666998000, 1682726400, 1698447600, 1712966400, 1729897200, 1743811200, 1761346800, 1774656000, 1792796400, 1806105600, 1824850800, 1837555200, 1856300400, 1869004800, 1887750000, 1901059200, 1919199600, 1932508800, 1950649200, 1963958400, 1982703600, 1995408000, 2014153200, 2026857600, 2045602800, 2058307200, 2077052400, 2090361600, 2107897200, 2121811200, 2138742000 }
+    transPost32:intvector { 0, -2141706496, 0, -2125985296, 0, -2110256896, 0, -2095140496, 0, -2092112896, 0, -2091511696, 0, -2078807296, 0, -2064900496, 0, -2061268096, 0, -2060062096, 0, -2046752896, 0, -2034055696, 0, -2031028096, 0, -2028612496, 0, -2015303296, 0, -2003210896, 0, -2000183296, 0, -1997162896, 0, -1983853696, 0, -1972970896, 0, -1969338496, 0, -1965713296, 0, -1952404096, 0, -1942126096, 0, -1939098496, 0, -1933658896, 0, -1920954496, 0, -1911281296, 0, -1908253696, 0, -1902209296, 0, -1889504896, 0, -1881041296, 0, -1877408896, 0, -1870759696, 0, -1857450496, 0, -1850196496, 0, -1847168896, 0, -1839310096, 0, -1826000896, 0, -1819956496, 0, -1816324096, 0, -1807860496, 0, -1794551296, 0, -1789111696, 0, -1786084096, 0, -1775806096, 0, -1763101696, 0, -1758266896, 0, -1755239296, 0, -1744356496, 0, -1731652096, 0, -1728026896, 0, -1724394496, 0, -1712906896, 0, -1699597696, 0, -1697182096, 0, -1694154496, 0, -1681457296, 0, -1668148096, 0, -1666942096, 0, -1663309696, 0, -1650007696, 0, -1636698496, 0, -1636097296, 0, -1632464896, 0, -1618558096, 0, -1602224896, 0, -1586503696, 0, -1571380096, 0, -1555054096, 0, -1541140096, 0, -1523604496, 0, -1510295296, 0, -1492154896, 0, -1478845696, 0, -1460705296, 0, -1447396096, 0, -1428650896, 0, -1415946496, 0, -1397201296, 0, -1384496896, 0, -1365751696, 0, -1353047296, 0, -1334302096, 0, -1320992896, 0, -1302852496, 0, -1289543296, 0, -1271402896, 0, -1258093696, 0, -1239348496, 0, -1226644096, 0, -1207898896, 0, -1195194496, 0, -1177054096, 0, -1163140096, 0, -1146209296, 0, -1131690496, 0, -1115364496, 0, -1100240896, 0, -1085124496, 0, -1068791296, 0, -1054279696, 0, -1051252096, 0, -1023434896, 0, -1020407296, 0, -993194896, 0, -989562496, 0, -962350096, 0, -959322496, 0, -955697296, 0, -942388096, 0, -932110096, 0, -928477696, 0, -924247696, 0, -910938496, 0, -901265296, 0, -897632896, 0, -892193296, 0, -879488896, 0, -870420496, 0, -867392896, 0, -860743696, 0, -848039296, 0, -840180496, 0, -836548096, 0, -829294096, 0, -815984896, 0, -809335696, 0, -806308096, 0, -797844496, 0, -784535296, 0, -778490896, 0, -775463296, 0, -766394896, 0, -753085696, 0, -748250896, 0, -744618496, 0, -734945296, 0, -721636096, 0, -717406096, 0, -714378496, 0, -702890896, 0, -690186496, 0, -687166096, 0, -683533696, 0, -671441296, 0, -658736896, 0, -656321296, 0, -652688896, 0, -639991696, 0, -626682496, 0, -625476496, 0, -622448896, 0, -608542096, 0, -595232896, 0, -577092496 }
     typeOffsets:intvector { 8272, 0, 7200, 0, 7200, 3600 }
-    typeMap:bin { "01020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201" }
+    typeMap:bin { "0102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201" }
     finalRule { "Palestine" }
     finalRaw:int { 7200 }
-    finalYear:int { 2024 }
+    finalYear:int { 2088 }
   } //Z#270
   /* Asia/Harbin */ :int { 316 } //Z#271
   /* Asia/Hebron */ :table {
     transPre32:intvector { -1, 2109557273 }
-    trans:intvector { -933638400, -923097600, -919036800, -857347200, -844300800, -825811200, -812678400, -794188800, -779846400, -762652800, -748310400, -731116800, -399088800, -386650800, -368330400, -355114800, -336790800, -323654400, -305168400, -292032000, -273632400, -260496000, -242096400, -228960000, -210560400, -197424000, -178938000, -165801600, -147402000, -134265600, -115866000, -102643200, -84330000, -81313200, 142380000, 150843600, 167176800, 178664400, 334101600, 337730400, 452642400, 462319200, 482277600, 494370000, 516751200, 526424400, 545436000, 558478800, 576626400, 589323600, 609890400, 620773200, 638316000, 651618000, 669765600, 683672400, 701820000, 715726800, 733701600, 747176400, 765151200, 778021200, 796600800, 810075600, 828655200, 843170400, 860104800, 874620000, 891554400, 906069600, 924213600, 939934800, 956268000, 971989200, 987717600, 1003438800, 1019167200, 1034888400, 1050616800, 1066338000, 1082066400, 1096581600, 1113516000, 1128380400, 1143842400, 1158872400, 1175378400, 1189638000, 1206655200, 1220216400, 1238104800, 1252015200, 1269554400, 1281474000, 1301608860, 1312146000, 1314655200, 1317330000, 1333058400, 1348178400, 1364508000, 1380229200, 1395957600, 1414098000, 1427493600, 1445551200, 1458946800, 1477692000, 1490396400, 1509141600, 1521846000, 1540591200, 1553810400, 1572037200, 1585346400, 1603490400, 1616796000, 1635458400, 1648332000, 1666998000, 1679702400, 1698447600 }
+    trans:intvector { -933638400, -923097600, -919036800, -857347200, -844300800, -825811200, -812678400, -794188800, -779846400, -762652800, -748310400, -731116800, -399088800, -386650800, -368330400, -355114800, -336790800, -323654400, -305168400, -292032000, -273632400, -260496000, -242096400, -228960000, -210560400, -197424000, -178938000, -165801600, -147402000, -134265600, -115866000, -102643200, -84330000, -81313200, 142380000, 150843600, 167176800, 178664400, 334101600, 337730400, 452642400, 462319200, 482277600, 494370000, 516751200, 526424400, 545436000, 558478800, 576626400, 589323600, 609890400, 620773200, 638316000, 651618000, 669765600, 683672400, 701820000, 715726800, 733701600, 747176400, 765151200, 778021200, 796600800, 810075600, 828655200, 843170400, 860104800, 874620000, 891554400, 906069600, 924213600, 939934800, 956268000, 971989200, 987717600, 1003438800, 1019167200, 1034888400, 1050616800, 1066338000, 1082066400, 1096581600, 1113516000, 1128380400, 1143842400, 1158872400, 1175378400, 1189638000, 1206655200, 1220216400, 1238104800, 1252015200, 1269554400, 1281474000, 1301608860, 1312146000, 1314655200, 1317330000, 1333058400, 1348178400, 1364508000, 1380229200, 1395957600, 1414098000, 1427493600, 1445551200, 1458946800, 1477692000, 1490396400, 1509141600, 1521846000, 1540591200, 1553810400, 1572037200, 1585346400, 1603490400, 1616796000, 1635458400, 1648332000, 1666998000, 1682726400, 1698447600, 1712966400, 1729897200, 1743811200, 1761346800, 1774656000, 1792796400, 1806105600, 1824850800, 1837555200, 1856300400, 1869004800, 1887750000, 1901059200, 1919199600, 1932508800, 1950649200, 1963958400, 1982703600, 1995408000, 2014153200, 2026857600, 2045602800, 2058307200, 2077052400, 2090361600, 2107897200, 2121811200, 2138742000 }
+    transPost32:intvector { 0, -2141706496, 0, -2125985296, 0, -2110256896, 0, -2095140496, 0, -2092112896, 0, -2091511696, 0, -2078807296, 0, -2064900496, 0, -2061268096, 0, -2060062096, 0, -2046752896, 0, -2034055696, 0, -2031028096, 0, -2028612496, 0, -2015303296, 0, -2003210896, 0, -2000183296, 0, -1997162896, 0, -1983853696, 0, -1972970896, 0, -1969338496, 0, -1965713296, 0, -1952404096, 0, -1942126096, 0, -1939098496, 0, -1933658896, 0, -1920954496, 0, -1911281296, 0, -1908253696, 0, -1902209296, 0, -1889504896, 0, -1881041296, 0, -1877408896, 0, -1870759696, 0, -1857450496, 0, -1850196496, 0, -1847168896, 0, -1839310096, 0, -1826000896, 0, -1819956496, 0, -1816324096, 0, -1807860496, 0, -1794551296, 0, -1789111696, 0, -1786084096, 0, -1775806096, 0, -1763101696, 0, -1758266896, 0, -1755239296, 0, -1744356496, 0, -1731652096, 0, -1728026896, 0, -1724394496, 0, -1712906896, 0, -1699597696, 0, -1697182096, 0, -1694154496, 0, -1681457296, 0, -1668148096, 0, -1666942096, 0, -1663309696, 0, -1650007696, 0, -1636698496, 0, -1636097296, 0, -1632464896, 0, -1618558096, 0, -1602224896, 0, -1586503696, 0, -1571380096, 0, -1555054096, 0, -1541140096, 0, -1523604496, 0, -1510295296, 0, -1492154896, 0, -1478845696, 0, -1460705296, 0, -1447396096, 0, -1428650896, 0, -1415946496, 0, -1397201296, 0, -1384496896, 0, -1365751696, 0, -1353047296, 0, -1334302096, 0, -1320992896, 0, -1302852496, 0, -1289543296, 0, -1271402896, 0, -1258093696, 0, -1239348496, 0, -1226644096, 0, -1207898896, 0, -1195194496, 0, -1177054096, 0, -1163140096, 0, -1146209296, 0, -1131690496, 0, -1115364496, 0, -1100240896, 0, -1085124496, 0, -1068791296, 0, -1054279696, 0, -1051252096, 0, -1023434896, 0, -1020407296, 0, -993194896, 0, -989562496, 0, -962350096, 0, -959322496, 0, -955697296, 0, -942388096, 0, -932110096, 0, -928477696, 0, -924247696, 0, -910938496, 0, -901265296, 0, -897632896, 0, -892193296, 0, -879488896, 0, -870420496, 0, -867392896, 0, -860743696, 0, -848039296, 0, -840180496, 0, -836548096, 0, -829294096, 0, -815984896, 0, -809335696, 0, -806308096, 0, -797844496, 0, -784535296, 0, -778490896, 0, -775463296, 0, -766394896, 0, -753085696, 0, -748250896, 0, -744618496, 0, -734945296, 0, -721636096, 0, -717406096, 0, -714378496, 0, -702890896, 0, -690186496, 0, -687166096, 0, -683533696, 0, -671441296, 0, -658736896, 0, -656321296, 0, -652688896, 0, -639991696, 0, -626682496, 0, -625476496, 0, -622448896, 0, -608542096, 0, -595232896, 0, -577092496 }
     typeOffsets:intvector { 8423, 0, 7200, 0, 7200, 3600 }
-    typeMap:bin { "010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201" }
+    typeMap:bin { "01020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201020102010201" }
     finalRule { "Palestine" }
     finalRaw:int { 7200 }
-    finalYear:int { 2024 }
+    finalYear:int { 2088 }
   } //Z#272
   /* Asia/Ho_Chi_Minh */ :table {
     trans:intvector { -1851577590, -852105600, -782643600, -767869200, -718095600, -457776000, -315648000, 171820800 }
@@ -2863,42 +2864,45 @@
   EUAsia:intvector {
     2, -31, -1, 3600, 2, 9, -31, -1, 3600, 2, 3600
   } //_#10
+  Egypt:intvector {
+    3, -30, -6, 0, 0, 9, -31, -5, 86400, 0, 3600
+  } //_#11
   Haiti:intvector {
     2, 8, -1, 7200, 0, 10, 1, -1, 7200, 0, 3600
-  } //_#11
+  } //_#12
   LH:intvector {
     9, 1, -1, 7200, 0, 3, 1, -1, 7200, 0, 1800
-  } //_#12
+  } //_#13
   Lebanon:intvector {
     2, -31, -1, 0, 0, 9, -31, -1, 0, 0, 3600
-  } //_#13
+  } //_#14
   Moldova:intvector {
     2, -31, -1, 7200, 0, 9, -31, -1, 10800, 0, 3600
-  } //_#14
+  } //_#15
   NZ:intvector {
     8, -30, -1, 7200, 1, 3, 1, -1, 7200, 1, 3600
-  } //_#15
+  } //_#16
   Palestine:intvector {
     2, -30, -7, 7200, 0, 9, -30, -7, 7200, 0, 3600
-  } //_#16
+  } //_#17
   Para:intvector {
     9, 1, -1, 0, 0, 2, 22, -1, 0, 0, 3600
-  } //_#17
+  } //_#18
   SystemV:intvector {
     3, -30, -1, 7200, 0, 9, -31, -1, 7200, 0, 3600
-  } //_#18
+  } //_#19
   Thule:intvector {
     2, 8, -1, 7200, 0, 10, 1, -1, 7200, 0, 3600
-  } //_#19
+  } //_#20
   Troll:intvector {
     2, -31, -1, 3600, 2, 9, -31, -1, 3600, 2, 7200
-  } //_#20
+  } //_#21
   US:intvector {
     2, 8, -1, 7200, 0, 10, 1, -1, 7200, 0, 3600
-  } //_#21
+  } //_#22
   Zion:intvector {
     2, 23, -6, 7200, 0, 9, -31, -1, 7200, 0, 3600
-  } //_#22
+  } //_#23
  }
  Regions:array {
   "AU", //Z#0 ACT
diff -Nru thunderbird-102.9.0+build1/intl/tzdata/VERSION thunderbird-102.10.0+build2/intl/tzdata/VERSION
--- thunderbird-102.9.0+build1/intl/tzdata/VERSION	2023-03-11 11:24:14.000000000 +0000
+++ thunderbird-102.10.0+build2/intl/tzdata/VERSION	2023-04-11 06:11:01.000000000 +0000
@@ -1 +1 @@
-2022g
+2023a
diff -Nru thunderbird-102.9.0+build1/ipc/glue/GeckoChildProcessHost.cpp thunderbird-102.10.0+build2/ipc/glue/GeckoChildProcessHost.cpp
--- thunderbird-102.9.0+build1/ipc/glue/GeckoChildProcessHost.cpp	2023-03-11 11:24:14.000000000 +0000
+++ thunderbird-102.10.0+build2/ipc/glue/GeckoChildProcessHost.cpp	2023-04-11 06:11:00.000000000 +0000
@@ -188,6 +188,12 @@
 
   NS_INLINE_DECL_THREADSAFE_REFCOUNTING(BaseProcessLauncher);
 
+#ifdef ALLOW_GECKO_CHILD_PROCESS_ARCH
+  void SetLaunchArchitecture(uint32_t aLaunchArch) {
+    mLaunchArch = aLaunchArch;
+  }
+#endif
+
   RefPtr<ProcessLaunchPromise> Launch(GeckoChildProcessHost*);
 
  protected:
@@ -216,6 +222,9 @@
   nsCOMPtr<nsISerialEventTarget> mLaunchThread;
   GeckoProcessType mProcessType;
   UniquePtr<base::LaunchOptions> mLaunchOptions;
+#ifdef ALLOW_GECKO_CHILD_PROCESS_ARCH
+  uint32_t mLaunchArch = base::PROCESS_ARCH_INVALID;
+#endif
   std::vector<std::string> mExtraOpts;
 #ifdef XP_WIN
   nsString mGroupId;
@@ -697,6 +706,9 @@
 
   RefPtr<BaseProcessLauncher> launcher =
       new ProcessLauncher(this, std::move(aExtraOpts));
+#ifdef ALLOW_GECKO_CHILD_PROCESS_ARCH
+  launcher->SetLaunchArchitecture(mLaunchArch);
+#endif
 
   // Note: Destroy() waits on mHandlePromise to delete |this|. As such, we want
   // to be sure that all of our post-launch processing on |this| happens before
@@ -1344,15 +1356,15 @@
   const bool isGMP = mProcessType == GeckoProcessType_GMPlugin;
   const bool isWidevine = isGMP && Contains(mExtraOpts, "gmp-widevinecdm");
 #    if defined(_ARM64_)
-  const bool isClearKey = isGMP && Contains(mExtraOpts, "gmp-clearkey");
-  const bool isSandboxBroker =
-      mProcessType == GeckoProcessType_RemoteSandboxBroker;
-  if (isClearKey || isWidevine || isSandboxBroker) {
+  bool useRemoteSandboxBroker = false;
+  if (mLaunchArch & (base::PROCESS_ARCH_I386 | base::PROCESS_ARCH_X86_64)) {
     // On Windows on ARM64 for ClearKey and Widevine, and for the sandbox
     // launcher process, we want to run the x86 plugin-container.exe in
     // the "i686" subdirectory, instead of the aarch64 plugin-container.exe.
     // So insert "i686" into the exePath.
     exePath = exePath.DirName().AppendASCII("i686").Append(exePath.BaseName());
+    useRemoteSandboxBroker =
+        mProcessType != GeckoProcessType_RemoteSandboxBroker;
   }
 #    endif  // if defined(_ARM64_)
 #  endif    // defined(MOZ_SANDBOX) || defined(_ARM64_)
@@ -1372,8 +1384,8 @@
 
 #  if defined(MOZ_SANDBOX)
 #    if defined(_ARM64_)
-  if (isClearKey || isWidevine)
-    mResults.mSandboxBroker = new RemoteSandboxBroker();
+  if (useRemoteSandboxBroker)
+    mResults.mSandboxBroker = new RemoteSandboxBroker(mLaunchArch);
   else
 #    endif  // if defined(_ARM64_)
     mResults.mSandboxBroker = new SandboxBroker();
diff -Nru thunderbird-102.9.0+build1/ipc/glue/GeckoChildProcessHost.h thunderbird-102.10.0+build2/ipc/glue/GeckoChildProcessHost.h
--- thunderbird-102.9.0+build1/ipc/glue/GeckoChildProcessHost.h	2023-03-11 11:24:14.000000000 +0000
+++ thunderbird-102.10.0+build2/ipc/glue/GeckoChildProcessHost.h	2023-04-11 06:11:01.000000000 +0000
@@ -43,6 +43,11 @@
 #  include "mozilla/ipc/UtilityProcessSandboxing.h"
 #endif
 
+#if (defined(XP_WIN) && defined(_ARM64_)) || \
+    (defined(XP_MACOSX) && defined(__aarch64__))
+#  define ALLOW_GECKO_CHILD_PROCESS_ARCH
+#endif
+
 struct _MacSandboxInfo;
 typedef _MacSandboxInfo MacSandboxInfo;
 
@@ -150,6 +155,10 @@
   }
 #endif
 
+#ifdef ALLOW_GECKO_CHILD_PROCESS_ARCH
+  void SetLaunchArchitecture(uint32_t aArch) { mLaunchArch = aArch; }
+#endif
+
   // For bug 943174: Skip the EnsureProcessTerminated call in the destructor.
   void SetAlreadyDead();
 
@@ -192,6 +201,11 @@
   bool mIsFileContent;
   Monitor mMonitor;
   FilePath mProcessPath;
+#ifdef ALLOW_GECKO_CHILD_PROCESS_ARCH
+  // Used on platforms where we may launch a child process with a different
+  // architecture than the parent process.
+  uint32_t mLaunchArch = base::PROCESS_ARCH_INVALID;
+#endif
   // GeckoChildProcessHost holds the launch options so they can be set
   // up on the main thread using main-thread-only APIs like prefs, and
   // then used for the actual launch on another thread.  This pointer
diff -Nru thunderbird-102.9.0+build1/js/src/builtin/intl/TimeZoneDataGenerated.h thunderbird-102.10.0+build2/js/src/builtin/intl/TimeZoneDataGenerated.h
--- thunderbird-102.9.0+build1/js/src/builtin/intl/TimeZoneDataGenerated.h	2023-03-11 11:24:14.000000000 +0000
+++ thunderbird-102.10.0+build2/js/src/builtin/intl/TimeZoneDataGenerated.h	2023-04-11 06:11:01.000000000 +0000
@@ -1,5 +1,5 @@
 // Generated by make_intl_data.py. DO NOT EDIT.
-// tzdata version = 2022g
+// tzdata version = 2023a
 
 #ifndef builtin_intl_TimeZoneDataGenerated_h
 #define builtin_intl_TimeZoneDataGenerated_h
diff -Nru thunderbird-102.9.0+build1/js/src/gc/Compacting.cpp thunderbird-102.10.0+build2/js/src/gc/Compacting.cpp
--- thunderbird-102.9.0+build1/js/src/gc/Compacting.cpp	2023-03-11 11:24:14.000000000 +0000
+++ thunderbird-102.10.0+build2/js/src/gc/Compacting.cpp	2023-04-11 06:11:01.000000000 +0000
@@ -455,11 +455,12 @@
 }
 
 void GCRuntime::sweepZoneAfterCompacting(MovingTracer* trc, Zone* zone) {
-  MOZ_ASSERT(zone->isCollecting());
-  traceWeakFinalizationObserverEdges(trc, zone);
+  MOZ_ASSERT(zone->isGCCompacting());
 
   zone->traceWeakMaps(trc);
 
+  traceWeakFinalizationObserverEdges(trc, zone);
+
   for (auto* cache : zone->weakCaches()) {
     cache->traceWeak(trc, nullptr);
   }
diff -Nru thunderbird-102.9.0+build1/js/src/jit/arm64/Lowering-arm64.cpp thunderbird-102.10.0+build2/js/src/jit/arm64/Lowering-arm64.cpp
--- thunderbird-102.9.0+build1/js/src/jit/arm64/Lowering-arm64.cpp	2023-03-11 11:24:15.000000000 +0000
+++ thunderbird-102.10.0+build2/js/src/jit/arm64/Lowering-arm64.cpp	2023-04-11 06:11:02.000000000 +0000
@@ -572,10 +572,10 @@
 void LIRGeneratorARM64::lowerUDiv(MDiv* div) {
   LAllocation lhs = useRegister(div->lhs());
   if (div->rhs()->isConstant()) {
-    int32_t rhs = div->rhs()->toConstant()->toInt32();
-    int32_t shift = mozilla::FloorLog2(mozilla::Abs(rhs));
+    uint32_t rhs = div->rhs()->toConstant()->toInt32();
+    int32_t shift = mozilla::FloorLog2(rhs);
 
-    if (rhs != 0 && uint32_t(1) << shift == mozilla::Abs(rhs)) {
+    if (rhs != 0 && uint32_t(1) << shift == rhs) {
       LDivPowTwoI* lir = new (alloc()) LDivPowTwoI(lhs, shift, false);
       if (div->fallible()) {
         assignSnapshot(lir, div->bailoutKind());
diff -Nru thunderbird-102.9.0+build1/js/src/jit/CacheIR.cpp thunderbird-102.10.0+build2/js/src/jit/CacheIR.cpp
--- thunderbird-102.9.0+build1/js/src/jit/CacheIR.cpp	2023-03-11 11:24:15.000000000 +0000
+++ thunderbird-102.10.0+build2/js/src/jit/CacheIR.cpp	2023-04-11 06:11:01.000000000 +0000
@@ -9932,8 +9932,8 @@
         writer.loadArgumentDynamicSlot(ArgumentKind::This, argcId, flags);
     ObjOperandId thisObjId = writer.guardToObject(thisValId);
 
-    // Guard on the |this| class to make sure it's the right instance.
-    writer.guardAnyClass(thisObjId, thisval_.toObject().getClass());
+    // Guard on the |this| shape to make sure it's the right instance.
+    writer.guardShape(thisObjId, thisval_.toObject().shape());
 
     // Ensure callee matches this stub's callee
     writer.guardSpecificFunction(calleeObjId, calleeFunc);
diff -Nru thunderbird-102.9.0+build1/js/src/jit/WarpBuilderShared.h thunderbird-102.10.0+build2/js/src/jit/WarpBuilderShared.h
--- thunderbird-102.9.0+build1/js/src/jit/WarpBuilderShared.h	2023-03-11 11:24:15.000000000 +0000
+++ thunderbird-102.10.0+build2/js/src/jit/WarpBuilderShared.h	2023-04-11 06:11:02.000000000 +0000
@@ -291,7 +291,8 @@
 
   DOMObjectKind objKind = DOMObjectKind::Unknown;
   if (isDOMCall) {
-    const JSClass* clasp = callInfo.thisArg()->toGuardToClass()->getClass();
+    const JSClass* clasp =
+        callInfo.thisArg()->toGuardShape()->shape()->getObjectClass();
     MOZ_ASSERT(clasp->isDOMClass());
     if (clasp->isNativeObject()) {
       objKind = DOMObjectKind::Native;
diff -Nru thunderbird-102.9.0+build1/js/src/tests/non262/Intl/DateTimeFormat/timeZone_backward_links.js thunderbird-102.10.0+build2/js/src/tests/non262/Intl/DateTimeFormat/timeZone_backward_links.js
--- thunderbird-102.9.0+build1/js/src/tests/non262/Intl/DateTimeFormat/timeZone_backward_links.js	2023-03-11 11:24:15.000000000 +0000
+++ thunderbird-102.10.0+build2/js/src/tests/non262/Intl/DateTimeFormat/timeZone_backward_links.js	2023-04-11 06:11:02.000000000 +0000
@@ -1,7 +1,7 @@
 // |reftest| skip-if(!this.hasOwnProperty("Intl"))
 
 // Generated by make_intl_data.py. DO NOT EDIT.
-// tzdata version = 2022g
+// tzdata version = 2023a
 
 const tzMapper = [
     x => x,
diff -Nru thunderbird-102.9.0+build1/js/src/tests/non262/Intl/DateTimeFormat/timeZone_backzone.js thunderbird-102.10.0+build2/js/src/tests/non262/Intl/DateTimeFormat/timeZone_backzone.js
--- thunderbird-102.9.0+build1/js/src/tests/non262/Intl/DateTimeFormat/timeZone_backzone.js	2023-03-11 11:24:15.000000000 +0000
+++ thunderbird-102.10.0+build2/js/src/tests/non262/Intl/DateTimeFormat/timeZone_backzone.js	2023-04-11 06:11:02.000000000 +0000
@@ -1,7 +1,7 @@
 // |reftest| skip-if(!this.hasOwnProperty("Intl"))
 
 // Generated by make_intl_data.py. DO NOT EDIT.
-// tzdata version = 2022g
+// tzdata version = 2023a
 
 const tzMapper = [
     x => x,
@@ -77,6 +77,7 @@
     "America/St_Vincent": "America/St_Vincent",
     "America/Thunder_Bay": "America/Thunder_Bay",
     "America/Tortola": "America/Tortola",
+    "America/Yellowknife": "America/Yellowknife",
     "Antarctica/DumontDUrville": "Antarctica/DumontDUrville",
     "Antarctica/McMurdo": "Antarctica/McMurdo",
     "Antarctica/Syowa": "Antarctica/Syowa",
diff -Nru thunderbird-102.9.0+build1/js/src/tests/non262/Intl/DateTimeFormat/timeZone_backzone_links.js thunderbird-102.10.0+build2/js/src/tests/non262/Intl/DateTimeFormat/timeZone_backzone_links.js
--- thunderbird-102.9.0+build1/js/src/tests/non262/Intl/DateTimeFormat/timeZone_backzone_links.js	2023-03-11 11:24:15.000000000 +0000
+++ thunderbird-102.10.0+build2/js/src/tests/non262/Intl/DateTimeFormat/timeZone_backzone_links.js	2023-04-11 06:11:02.000000000 +0000
@@ -1,7 +1,7 @@
 // |reftest| skip-if(!this.hasOwnProperty("Intl"))
 
 // Generated by make_intl_data.py. DO NOT EDIT.
-// tzdata version = 2022g
+// tzdata version = 2023a
 
 const tzMapper = [
     x => x,
diff -Nru thunderbird-102.9.0+build1/js/src/tests/non262/Intl/DateTimeFormat/timeZone_notbackward_links.js thunderbird-102.10.0+build2/js/src/tests/non262/Intl/DateTimeFormat/timeZone_notbackward_links.js
--- thunderbird-102.9.0+build1/js/src/tests/non262/Intl/DateTimeFormat/timeZone_notbackward_links.js	2023-03-11 11:24:15.000000000 +0000
+++ thunderbird-102.10.0+build2/js/src/tests/non262/Intl/DateTimeFormat/timeZone_notbackward_links.js	2023-04-11 06:11:02.000000000 +0000
@@ -1,7 +1,7 @@
 // |reftest| skip-if(!this.hasOwnProperty("Intl"))
 
 // Generated by make_intl_data.py. DO NOT EDIT.
-// tzdata version = 2022g
+// tzdata version = 2023a
 
 const tzMapper = [
     x => x,
diff -Nru thunderbird-102.9.0+build1/js/src/tests/non262/Intl/DateTimeFormat/timeZone_version.js thunderbird-102.10.0+build2/js/src/tests/non262/Intl/DateTimeFormat/timeZone_version.js
--- thunderbird-102.9.0+build1/js/src/tests/non262/Intl/DateTimeFormat/timeZone_version.js	2023-03-11 11:24:15.000000000 +0000
+++ thunderbird-102.10.0+build2/js/src/tests/non262/Intl/DateTimeFormat/timeZone_version.js	2023-04-11 06:11:02.000000000 +0000
@@ -1,8 +1,8 @@
 // |reftest| skip-if(!this.hasOwnProperty("Intl"))
 
 // Generated by make_intl_data.py. DO NOT EDIT.
-// tzdata version = 2022g
-const tzdata = "2022g";
+// tzdata version = 2023a
+const tzdata = "2023a";
 
 if (typeof getICUOptions === "undefined") {
     var getICUOptions = SpecialPowers.Cu.getJSTestingFunctions().getICUOptions;
diff -Nru thunderbird-102.9.0+build1/js/src/tests/non262/Intl/supportedValuesOf-timeZones-canonical.js thunderbird-102.10.0+build2/js/src/tests/non262/Intl/supportedValuesOf-timeZones-canonical.js
--- thunderbird-102.9.0+build1/js/src/tests/non262/Intl/supportedValuesOf-timeZones-canonical.js	2023-03-11 11:24:15.000000000 +0000
+++ thunderbird-102.10.0+build2/js/src/tests/non262/Intl/supportedValuesOf-timeZones-canonical.js	2023-04-11 06:11:02.000000000 +0000
@@ -1,7 +1,7 @@
 // |reftest| skip-if(!this.hasOwnProperty("Intl"))
 
 // Generated by make_intl_data.py. DO NOT EDIT.
-// tzdata version = 2022g
+// tzdata version = 2023a
 
 // This file was generated with historical, pre-1970 backzone information
 // respected.
diff -Nru thunderbird-102.9.0+build1/js/src/vm/JSObject.cpp thunderbird-102.10.0+build2/js/src/vm/JSObject.cpp
--- thunderbird-102.9.0+build1/js/src/vm/JSObject.cpp	2023-03-11 11:24:21.000000000 +0000
+++ thunderbird-102.10.0+build2/js/src/vm/JSObject.cpp	2023-04-11 06:11:08.000000000 +0000
@@ -1073,12 +1073,13 @@
 
   if (hasDynamicElements()) {
     ObjectElements* elements = getElementsHeader();
+    void* allocatedElements = getUnshiftedElementsHeader();
     size_t count = elements->numAllocatedElements();
     size_t size = count * sizeof(HeapSlot);
 
     if (isTenured()) {
       RemoveCellMemory(this, size, MemoryUse::ObjectElements);
-    } else if (cx->nursery().isInside(elements)) {
+    } else if (cx->nursery().isInside(allocatedElements)) {
       // Move nursery allocated elements in case they end up in a tenured
       // object.
       ObjectElements* newElements =
@@ -1090,7 +1091,7 @@
       memmove(newElements, elements, size);
       elements_ = newElements->elements();
     } else {
-      cx->nursery().removeMallocedBuffer(elements, size);
+      cx->nursery().removeMallocedBuffer(allocatedElements, size);
     }
     MOZ_ASSERT(hasDynamicElements());
   }
@@ -1140,11 +1141,12 @@
 
   if (obj->hasDynamicElements()) {
     ObjectElements* elements = obj->getElementsHeader();
-    MOZ_ASSERT(!cx->nursery().isInside(elements));
+    void* allocatedElements = obj->getUnshiftedElementsHeader();
+    MOZ_ASSERT(!cx->nursery().isInside(allocatedElements));
     size_t size = elements->numAllocatedElements() * sizeof(HeapSlot);
     if (obj->isTenured()) {
       AddCellMemory(obj, size, MemoryUse::ObjectElements);
-    } else if (!cx->nursery().registerMallocedBuffer(elements, size)) {
+    } else if (!cx->nursery().registerMallocedBuffer(allocatedElements, size)) {
       return false;
     }
   }
@@ -3290,7 +3292,7 @@
     MOZ_ASSERT(nobj.numFixedSlots() == 0);
 
     /* Use minimal size object if we are just going to copy the pointer. */
-    if (!nursery.isInside(nobj.getElementsHeader())) {
+    if (!nursery.isInside(nobj.getUnshiftedElementsHeader())) {
       return gc::AllocKind::OBJECT0_BACKGROUND;
     }
 
diff -Nru thunderbird-102.9.0+build1/media/libwebp/MOZCHANGES thunderbird-102.10.0+build2/media/libwebp/MOZCHANGES
--- thunderbird-102.9.0+build1/media/libwebp/MOZCHANGES	2023-03-11 11:24:24.000000000 +0000
+++ thunderbird-102.10.0+build2/media/libwebp/MOZCHANGES	2023-04-11 06:11:11.000000000 +0000
@@ -1,6 +1,6 @@
 Changes made to pristine libwebp source by mozilla.org developers.
 
-2022/05/06  -- Cherry-pick upstream crash fix (bug 1761275).
+2023/03/06  -- Cherry-pick upstream fix (bug 1819244).
 
 2022/02/03  -- Enabled automatic updates via Updatebot (meta bug #1618282). For
                further updates to the library please review the mercurial
diff -Nru thunderbird-102.9.0+build1/media/libwebp/src/enc/alpha_enc.c thunderbird-102.10.0+build2/media/libwebp/src/enc/alpha_enc.c
--- thunderbird-102.9.0+build1/media/libwebp/src/enc/alpha_enc.c	2023-03-11 11:24:24.000000000 +0000
+++ thunderbird-102.10.0+build2/media/libwebp/src/enc/alpha_enc.c	2023-04-11 06:11:11.000000000 +0000
@@ -13,6 +13,7 @@
 
 #include <assert.h>
 #include <stdlib.h>
+#include <string.h>
 
 #include "src/enc/vp8i_enc.h"
 #include "src/dsp/dsp.h"
@@ -148,6 +149,7 @@
       }
     } else {
       VP8LBitWriterWipeOut(&tmp_bw);
+      memset(&result->bw, 0, sizeof(result->bw));
       return 0;
     }
   }
@@ -162,7 +164,7 @@
   header = method | (filter << 2);
   if (reduce_levels) header |= ALPHA_PREPROCESSED_LEVELS << 4;
 
-  VP8BitWriterInit(&result->bw, ALPHA_HEADER_LEN + output_size);
+  if (!VP8BitWriterInit(&result->bw, ALPHA_HEADER_LEN + output_size)) ok = 0;
   ok = ok && VP8BitWriterAppend(&result->bw, &header, ALPHA_HEADER_LEN);
   ok = ok && VP8BitWriterAppend(&result->bw, output, output_size);
 
diff -Nru thunderbird-102.9.0+build1/modules/libmar/src/mar_extract.c thunderbird-102.10.0+build2/modules/libmar/src/mar_extract.c
--- thunderbird-102.9.0+build1/modules/libmar/src/mar_extract.c	2023-03-11 11:24:25.000000000 +0000
+++ thunderbird-102.10.0+build2/modules/libmar/src/mar_extract.c	2023-04-11 06:11:11.000000000 +0000
@@ -75,8 +75,8 @@
   MarFile* mar;
   int rv;
 
-  mar = mar_open(path);
-  if (!mar) {
+  MarReadResult result = mar_open(path, &mar);
+  if (result != MAR_READ_SUCCESS) {
     return -1;
   }
 
diff -Nru thunderbird-102.9.0+build1/modules/libmar/src/mar.h thunderbird-102.10.0+build2/modules/libmar/src/mar.h
--- thunderbird-102.9.0+build1/modules/libmar/src/mar.h	2023-03-11 11:24:24.000000000 +0000
+++ thunderbird-102.10.0+build2/modules/libmar/src/mar.h	2023-04-11 06:11:11.000000000 +0000
@@ -55,7 +55,8 @@
  * Mozilla ARchive (MAR) file data structure
  */
 struct MarFile_ {
-  FILE* fp;                       /* file pointer to the archive */
+  unsigned char* buffer;          /* file buffer containing the entire MAR */
+  size_t data_len;                /* byte count of the data in the buffer */
   MarItem* item_table[TABLESIZE]; /* hash table of files in the archive */
   SeenIndex* index_list;          /* file indexes processed */
   int item_table_is_valid;        /* header and index validation flag */
@@ -72,16 +73,29 @@
  */
 typedef int (*MarItemCallback)(MarFile* mar, const MarItem* item, void* data);
 
+enum MarReadResult_ {
+  MAR_READ_SUCCESS,
+  MAR_IO_ERROR,
+  MAR_MEM_ERROR,
+  MAR_FILE_TOO_BIG_ERROR,
+};
+
+typedef enum MarReadResult_ MarReadResult;
+
 /**
  * Open a MAR file for reading.
  * @param path      Specifies the path to the MAR file to open.  This path must
  *                  be compatible with fopen.
+ * @param out_mar   Out-parameter through which the created MarFile structure is
+ *                  returned. Guaranteed to be a valid structure if
+ *                  MAR_READ_SUCCESS is returned. Otherwise NULL will be
+ *                  assigned.
  * @return          NULL if an error occurs.
  */
-MarFile* mar_open(const char* path);
+MarReadResult mar_open(const char* path, MarFile** out_mar);
 
 #ifdef XP_WIN
-MarFile* mar_wopen(const wchar_t* path);
+MarReadResult mar_wopen(const wchar_t* path, MarFile** out_mar);
 #endif
 
 /**
@@ -91,6 +105,49 @@
 void mar_close(MarFile* mar);
 
 /**
+ * Reads the specified amount of data from the buffer in MarFile that contains
+ * the entirety of the MAR file data.
+ * @param mar       The MAR file to read from.
+ * @param dest      The buffer to read into.
+ * @param position  The byte index to start reading from the MAR at.
+ *                  On success, position will be incremented by size.
+ * @param size      The number of bytes to read.
+ * @return          0  If the specified amount of data was read.
+ *                  -1 If the buffer MAR is not large enough to read the
+ *                     specified amount of data at the specified position.
+ */
+int mar_read_buffer(MarFile* mar, void* dest, size_t* position, size_t size);
+
+/**
+ * Reads the specified amount of data from the buffer in MarFile that contains
+ * the entirety of the MAR file data. If there isn't that much data remaining,
+ * reads as much as possible.
+ * @param mar       The MAR file to read from.
+ * @param dest      The buffer to read into.
+ * @param position  The byte index to start reading from the MAR at.
+ *                  This function will increment position by the number of bytes
+ *                  copied.
+ * @param size      The maximum number of bytes to read.
+ * @return          The number of bytes copied into dest.
+ */
+int mar_read_buffer_max(MarFile* mar, void* dest, size_t* position,
+                        size_t size);
+
+/**
+ * Increments position by distance. Checks that the resulting position is still
+ * within the bounds of the buffer. Much like fseek, this will allow position to
+ * be successfully placed just after the end of the buffer.
+ * @param mar       The MAR file to read from.
+ * @param position  The byte index to start reading from the MAR at.
+ *                  On success, position will be incremented by size.
+ * @param distance  The number of bytes to move forward by.
+ * @return          0  If position was successfully moved.
+ *                  -1 If moving position by distance would move it outside the
+ *                     bounds of the buffer.
+ */
+int mar_buffer_seek(MarFile* mar, size_t* position, size_t distance);
+
+/**
  * Find an item in the MAR file by name.
  * @param mar       The MarFile object to query.
  * @param item      The name of the item to query.
diff -Nru thunderbird-102.9.0+build1/modules/libmar/src/mar_read.c thunderbird-102.10.0+build2/modules/libmar/src/mar_read.c
--- thunderbird-102.9.0+build1/modules/libmar/src/mar_read.c	2023-03-11 11:24:24.000000000 +0000
+++ thunderbird-102.10.0+build2/modules/libmar/src/mar_read.c	2023-04-11 06:11:11.000000000 +0000
@@ -112,25 +112,28 @@
 static int mar_read_index(MarFile* mar) {
   char id[MAR_ID_SIZE], *buf, *bufptr, *bufend;
   uint32_t offset_to_index, size_of_index;
+  size_t mar_position = 0;
 
   /* verify MAR ID */
-  fseek(mar->fp, 0, SEEK_SET);
-  if (fread(id, MAR_ID_SIZE, 1, mar->fp) != 1) {
+  if (mar_read_buffer(mar, id, &mar_position, MAR_ID_SIZE) != 0) {
     return -1;
   }
   if (memcmp(id, MAR_ID, MAR_ID_SIZE) != 0) {
     return -1;
   }
 
-  if (fread(&offset_to_index, sizeof(uint32_t), 1, mar->fp) != 1) {
+  if (mar_read_buffer(mar, &offset_to_index, &mar_position,
+                      sizeof(uint32_t)) != 0) {
     return -1;
   }
   offset_to_index = ntohl(offset_to_index);
 
-  if (fseek(mar->fp, offset_to_index, SEEK_SET)) {
+  mar_position = 0;
+  if (mar_buffer_seek(mar, &mar_position, offset_to_index) != 0) {
     return -1;
   }
-  if (fread(&size_of_index, sizeof(uint32_t), 1, mar->fp) != 1) {
+  if (mar_read_buffer(mar, &size_of_index, &mar_position,
+                      sizeof(uint32_t)) != 0) {
     return -1;
   }
   size_of_index = ntohl(size_of_index);
@@ -139,7 +142,7 @@
   if (!buf) {
     return -1;
   }
-  if (fread(buf, size_of_index, 1, mar->fp) != 1) {
+  if (mar_read_buffer(mar, buf, &mar_position, size_of_index) != 0) {
     free(buf);
     return -1;
   }
@@ -210,50 +213,96 @@
 
 /**
  * Internal shared code for mar_open and mar_wopen.
- * On failure, will fclose(fp).
+ * Reads the entire MAR into memory. Fails if it is bigger than
+ * MAX_SIZE_OF_MAR_FILE bytes.
  */
-static MarFile* mar_fpopen(FILE* fp) {
+static MarReadResult mar_fpopen(FILE* fp, MarFile** out_mar) {
+  *out_mar = NULL;
   MarFile* mar;
 
   mar = (MarFile*)malloc(sizeof(*mar));
   if (!mar) {
-    fclose(fp);
-    return NULL;
+    return MAR_MEM_ERROR;
+  }
+
+  off_t buffer_size = -1;
+  if (fseeko(fp, 0, SEEK_END) == 0) {
+    buffer_size = ftello(fp);
+  }
+  rewind(fp);
+  if (buffer_size < 0) {
+    fprintf(stderr, "Warning: MAR size could not be determined\n");
+    buffer_size = MAX_SIZE_OF_MAR_FILE;
+  }
+  if (buffer_size > MAX_SIZE_OF_MAR_FILE) {
+    fprintf(stderr, "ERROR: MAR exceeds maximum size (%lli)\n",
+            (long long int)buffer_size);
+    free(mar);
+    return MAR_FILE_TOO_BIG_ERROR;
+  }
+
+  mar->buffer = malloc(buffer_size);
+  if (!mar->buffer) {
+    fprintf(stderr, "ERROR: MAR buffer could not be allocated\n");
+    free(mar);
+    return MAR_MEM_ERROR;
+  }
+  mar->data_len = fread(mar->buffer, 1, buffer_size, fp);
+  if (fgetc(fp) != EOF) {
+    fprintf(stderr, "ERROR: File is larger than buffer (%lli)\n",
+            (long long int)buffer_size);
+    free(mar->buffer);
+    free(mar);
+    return MAR_IO_ERROR;
+  }
+  if (ferror(fp)) {
+    fprintf(stderr, "ERROR: Failed to read MAR\n");
+    free(mar->buffer);
+    free(mar);
+    return MAR_IO_ERROR;
   }
 
-  mar->fp = fp;
   mar->item_table_is_valid = 0;
   memset(mar->item_table, 0, sizeof(mar->item_table));
   mar->index_list = NULL;
 
-  return mar;
+  *out_mar = mar;
+  return MAR_READ_SUCCESS;
 }
 
-MarFile* mar_open(const char* path) {
+MarReadResult mar_open(const char* path, MarFile** out_mar) {
+  *out_mar = NULL;
+
   FILE* fp;
 
   fp = fopen(path, "rb");
   if (!fp) {
     fprintf(stderr, "ERROR: could not open file in mar_open()\n");
     perror(path);
-    return NULL;
+    return MAR_IO_ERROR;
   }
 
-  return mar_fpopen(fp);
+  MarReadResult result = mar_fpopen(fp, out_mar);
+  fclose(fp);
+  return result;
 }
 
 #ifdef XP_WIN
-MarFile* mar_wopen(const wchar_t* path) {
+MarReadResult mar_wopen(const wchar_t* path, MarFile** out_mar) {
+  *out_mar = NULL;
+
   FILE* fp;
 
   _wfopen_s(&fp, path, L"rb");
   if (!fp) {
     fprintf(stderr, "ERROR: could not open file in mar_wopen()\n");
     _wperror(path);
-    return NULL;
+    return MAR_IO_ERROR;
   }
 
-  return mar_fpopen(fp);
+  MarReadResult result = mar_fpopen(fp, out_mar);
+  fclose(fp);
+  return result;
 }
 #endif
 
@@ -262,7 +311,7 @@
   SeenIndex* index;
   int i;
 
-  fclose(mar->fp);
+  free(mar->buffer);
 
   for (i = 0; i < TABLESIZE; ++i) {
     item = mar->item_table[i];
@@ -282,10 +331,61 @@
   free(mar);
 }
 
+int mar_read_buffer(MarFile* mar, void* dest, size_t* position, size_t size) {
+  // size may be provided by the MAR, which we may not have finished validating
+  // the signature on yet. Make sure not to trust it in a way that could
+  // cause an overflow.
+  if (size > mar->data_len) {
+    return -1;
+  }
+  if (*position > mar->data_len - size) {
+    return -1;
+  }
+  memcpy(dest, mar->buffer + *position, size);
+  *position += size;
+  return 0;
+}
+
+int mar_read_buffer_max(MarFile* mar, void* dest, size_t* position,
+                        size_t size) {
+  // size may be provided by the MAR, which we may not have finished validating
+  // the signature on yet. Make sure not to trust it in a way that could
+  // cause an overflow.
+  if (mar->data_len <= *position) {
+    return 0;
+  }
+  size_t read_count = mar->data_len - *position;
+  if (read_count > size) {
+    read_count = size;
+  }
+  memcpy(dest, mar->buffer + *position, read_count);
+  *position += read_count;
+  return read_count;
+}
+
+int mar_buffer_seek(MarFile* mar, size_t* position, size_t distance) {
+  // distance may be provided by the MAR, which we may not have finished
+  // validating the signature on yet. Make sure not to trust it in a way that
+  // could cause an overflow.
+  if (distance > mar->data_len) {
+    return -1;
+  }
+  if (*position > mar->data_len - distance) {
+    return -1;
+  }
+  *position += distance;
+  return 0;
+}
+
 /**
  * Determines the MAR file information.
  *
- * @param fp                     An opened MAR file in read mode.
+ * @param mar                    An open MAR file.
+ * @param mar_position           The current position in the MAR.
+ *                               Its value will be updated to the current
+ *                               position in the MAR after the function exits.
+ *                               Since its initial value will never actually be
+ *                               used, this is effectively an outparam.
  * @param hasSignatureBlock      Optional out parameter specifying if the MAR
  *                               file has a signature block or not.
  * @param numSignatures          Optional out parameter for storing the number
@@ -300,10 +400,11 @@
  *                               hasAdditionalBlocks is not equal to 0.
  * @return 0 on success and non-zero on failure.
  */
-int get_mar_file_info_fp(FILE* fp, int* hasSignatureBlock,
-                         uint32_t* numSignatures, int* hasAdditionalBlocks,
-                         uint32_t* offsetAdditionalBlocks,
-                         uint32_t* numAdditionalBlocks) {
+int get_open_mar_file_info(MarFile* mar, size_t* mar_position,
+                           int* hasSignatureBlock, uint32_t* numSignatures,
+                           int* hasAdditionalBlocks,
+                           uint32_t* offsetAdditionalBlocks,
+                           uint32_t* numAdditionalBlocks) {
   uint32_t offsetToIndex, offsetToContent, signatureCount, signatureLen, i;
 
   /* One of hasSignatureBlock or hasAdditionalBlocks must be non NULL */
@@ -312,24 +413,27 @@
   }
 
   /* Skip to the start of the offset index */
-  if (fseek(fp, MAR_ID_SIZE, SEEK_SET)) {
+  *mar_position = 0;
+  if (mar_buffer_seek(mar, mar_position, MAR_ID_SIZE) != 0) {
     return -1;
   }
 
   /* Read the offset to the index. */
-  if (fread(&offsetToIndex, sizeof(offsetToIndex), 1, fp) != 1) {
+  if (mar_read_buffer(mar, &offsetToIndex, mar_position,
+                      sizeof(offsetToIndex)) != 0) {
     return -1;
   }
   offsetToIndex = ntohl(offsetToIndex);
 
   if (numSignatures) {
     /* Skip past the MAR file size field */
-    if (fseek(fp, sizeof(uint64_t), SEEK_CUR)) {
+    if (mar_buffer_seek(mar, mar_position, sizeof(uint64_t)) != 0) {
       return -1;
     }
 
     /* Read the number of signatures field */
-    if (fread(numSignatures, sizeof(*numSignatures), 1, fp) != 1) {
+    if (mar_read_buffer(mar, numSignatures, mar_position,
+                        sizeof(*numSignatures)) != 0) {
       return -1;
     }
     *numSignatures = ntohl(*numSignatures);
@@ -337,17 +441,19 @@
 
   /* Skip to the first index entry past the index size field
      We do it in 2 calls because offsetToIndex + sizeof(uint32_t)
-     could oerflow in theory. */
-  if (fseek(fp, offsetToIndex, SEEK_SET)) {
+     could overflow in theory. */
+  *mar_position = 0;
+  if (mar_buffer_seek(mar, mar_position, offsetToIndex) != 0) {
     return -1;
   }
 
-  if (fseek(fp, sizeof(uint32_t), SEEK_CUR)) {
+  if (mar_buffer_seek(mar, mar_position, sizeof(uint32_t)) != 0) {
     return -1;
   }
 
   /* Read the first offset to content field. */
-  if (fread(&offsetToContent, sizeof(offsetToContent), 1, fp) != 1) {
+  if (mar_read_buffer(mar, &offsetToContent, mar_position,
+                      sizeof(offsetToContent)) != 0) {
     return -1;
   }
   offsetToContent = ntohl(offsetToContent);
@@ -368,12 +474,14 @@
   }
 
   /* Skip to the start of the signature block */
-  if (fseeko(fp, SIGNATURE_BLOCK_OFFSET, SEEK_SET)) {
+  *mar_position = 0;
+  if (mar_buffer_seek(mar, mar_position, SIGNATURE_BLOCK_OFFSET) != 0) {
     return -1;
   }
 
   /* Get the number of signatures */
-  if (fread(&signatureCount, sizeof(signatureCount), 1, fp) != 1) {
+  if (mar_read_buffer(mar, &signatureCount, mar_position,
+                                            sizeof(signatureCount)) != 0) {
     return -1;
   }
   signatureCount = ntohl(signatureCount);
@@ -387,38 +495,50 @@
   /* Skip past the whole signature block */
   for (i = 0; i < signatureCount; i++) {
     /* Skip past the signature algorithm ID */
-    if (fseek(fp, sizeof(uint32_t), SEEK_CUR)) {
+    if (mar_buffer_seek(mar, mar_position, sizeof(uint32_t)) != 0) {
       return -1;
     }
 
     /* Read the signature length and skip past the signature */
-    if (fread(&signatureLen, sizeof(uint32_t), 1, fp) != 1) {
+    if (mar_read_buffer(mar, &signatureLen, mar_position,
+                                            sizeof(uint32_t)) != 0) {
       return -1;
     }
     signatureLen = ntohl(signatureLen);
-    if (fseek(fp, signatureLen, SEEK_CUR)) {
+    if (mar_buffer_seek(mar, mar_position, signatureLen) != 0) {
       return -1;
     }
   }
 
-  if ((int64_t)ftell(fp) == (int64_t)offsetToContent) {
+  if (*mar_position <= (size_t)INT64_MAX &&
+        (int64_t)mar_position == (int64_t)offsetToContent) {
     *hasAdditionalBlocks = 0;
   } else {
     if (numAdditionalBlocks) {
       /* We have an additional block, so read in the number of additional blocks
          and set the offset. */
       *hasAdditionalBlocks = 1;
-      if (fread(numAdditionalBlocks, sizeof(uint32_t), 1, fp) != 1) {
+      if (mar_read_buffer(mar, numAdditionalBlocks, mar_position,
+                          sizeof(uint32_t)) != 0) {
         return -1;
       }
       *numAdditionalBlocks = ntohl(*numAdditionalBlocks);
       if (offsetAdditionalBlocks) {
-        *offsetAdditionalBlocks = ftell(fp);
+        if (*mar_position > (size_t)UINT32_MAX) {
+          return -1;
+        }
+        *offsetAdditionalBlocks = (uint32_t)*mar_position;
       }
     } else if (offsetAdditionalBlocks) {
       /* numAdditionalBlocks is not specified but offsetAdditionalBlocks
          is, so fill it! */
-      *offsetAdditionalBlocks = ftell(fp) + sizeof(uint32_t);
+      if (mar_buffer_seek(mar, mar_position, sizeof(uint32_t)) != 0) {
+        return -1;
+      }
+      if (*mar_position > (size_t)UINT32_MAX) {
+        return -1;
+      }
+      *offsetAdditionalBlocks = (uint32_t)*mar_position;
     }
   }
 
@@ -436,16 +556,15 @@
 int read_product_info_block(char* path,
                             struct ProductInformationBlock* infoBlock) {
   int rv;
-  MarFile mar;
-  mar.fp = fopen(path, "rb");
-  if (!mar.fp) {
+  MarFile* mar;
+  MarReadResult result = mar_open(path, &mar);
+  if (result != MAR_READ_SUCCESS) {
     fprintf(stderr,
             "ERROR: could not open file in read_product_info_block()\n");
-    perror(path);
     return -1;
   }
-  rv = mar_read_product_info_block(&mar, infoBlock);
-  fclose(mar.fp);
+  rv = mar_read_product_info_block(mar, infoBlock);
+  mar_close(mar);
   return rv;
 }
 
@@ -462,13 +581,14 @@
   uint32_t offsetAdditionalBlocks, numAdditionalBlocks, additionalBlockSize,
       additionalBlockID;
   int hasAdditionalBlocks;
+  size_t mar_position = 0;
 
   /* The buffer size is 97 bytes because the MAR channel name < 64 bytes, and
      product version < 32 bytes + 3 NULL terminator bytes. */
   char buf[MAXADDITIONALBLOCKSIZE + 1] = {'\0'};
-  if (get_mar_file_info_fp(mar->fp, NULL, NULL, &hasAdditionalBlocks,
-                           &offsetAdditionalBlocks,
-                           &numAdditionalBlocks) != 0) {
+  if (get_open_mar_file_info(mar, &mar_position, NULL, NULL, &hasAdditionalBlocks,
+                             &offsetAdditionalBlocks,
+                             &numAdditionalBlocks) != 0) {
     return -1;
   }
 
@@ -476,8 +596,8 @@
      in a MAR file so check if any exist and process the first found */
   if (numAdditionalBlocks > 0) {
     /* Read the additional block size */
-    if (fread(&additionalBlockSize, sizeof(additionalBlockSize), 1, mar->fp) !=
-        1) {
+    if (mar_read_buffer(mar, &additionalBlockSize, &mar_position,
+                        sizeof(additionalBlockSize)) != 0) {
       return -1;
     }
     additionalBlockSize = ntohl(additionalBlockSize) -
@@ -490,7 +610,8 @@
     }
 
     /* Read the additional block ID */
-    if (fread(&additionalBlockID, sizeof(additionalBlockID), 1, mar->fp) != 1) {
+    if (mar_read_buffer(mar, &additionalBlockID, &mar_position,
+                        sizeof(additionalBlockID)) != 0) {
       return -1;
     }
     additionalBlockID = ntohl(additionalBlockID);
@@ -499,7 +620,7 @@
       const char* location;
       int len;
 
-      if (fread(buf, additionalBlockSize, 1, mar->fp) != 1) {
+      if (mar_read_buffer(mar, buf, &mar_position, additionalBlockSize) != 0) {
         return -1;
       }
 
@@ -528,7 +649,7 @@
       return 0;
     } else {
       /* This is not the additional block you're looking for. Move along. */
-      if (fseek(mar->fp, additionalBlockSize, SEEK_CUR)) {
+      if (mar_buffer_seek(mar, &mar_position, additionalBlockSize) != 0) {
         return -1;
       }
     }
@@ -601,6 +722,7 @@
 int mar_read(MarFile* mar, const MarItem* item, int offset, uint8_t* buf,
              int bufsize) {
   int nr;
+  size_t mar_position = 0;
 
   if (offset == (int)item->length) {
     return 0;
@@ -614,11 +736,15 @@
     nr = bufsize;
   }
 
-  if (fseek(mar->fp, item->offset + offset, SEEK_SET)) {
+  // Avoid adding item->offset and offset directly, just in case of overflow.
+  if (mar_buffer_seek(mar, &mar_position, item->offset)) {
+    return -1;
+  }
+  if (mar_buffer_seek(mar, &mar_position, offset)) {
     return -1;
   }
 
-  return fread(buf, 1, nr, mar->fp);
+  return mar_read_buffer_max(mar, buf, &mar_position, nr);
 }
 
 /**
@@ -644,17 +770,18 @@
                       uint32_t* offsetAdditionalBlocks,
                       uint32_t* numAdditionalBlocks) {
   int rv;
-  FILE* fp = fopen(path, "rb");
-  if (!fp) {
-    fprintf(stderr, "ERROR: could not open file in get_mar_file_info()\n");
-    perror(path);
+  MarFile* mar;
+  size_t mar_position = 0;
+  MarReadResult result = mar_open(path, &mar);
+  if (result != MAR_READ_SUCCESS) {
+    fprintf(stderr, "ERROR: could not read file in get_mar_file_info()\n");
     return -1;
   }
 
-  rv = get_mar_file_info_fp(fp, hasSignatureBlock, numSignatures,
-                            hasAdditionalBlocks, offsetAdditionalBlocks,
-                            numAdditionalBlocks);
+  rv = get_open_mar_file_info(mar, &mar_position, hasSignatureBlock,
+                              numSignatures, hasAdditionalBlocks,
+                              offsetAdditionalBlocks, numAdditionalBlocks);
 
-  fclose(fp);
+  mar_close(mar);
   return rv;
 }
diff -Nru thunderbird-102.9.0+build1/modules/libmar/tool/mar.c thunderbird-102.10.0+build2/modules/libmar/tool/mar.c
--- thunderbird-102.9.0+build1/modules/libmar/tool/mar.c	2023-03-11 11:24:24.000000000 +0000
+++ thunderbird-102.10.0+build2/modules/libmar/tool/mar.c	2023-04-11 06:11:11.000000000 +0000
@@ -111,8 +111,8 @@
 static int mar_test(const char* path) {
   MarFile* mar;
 
-  mar = mar_open(path);
-  if (!mar) {
+  MarReadResult result = mar_open(path, &mar);
+  if (result != MAR_READ_SUCCESS) {
     return -1;
   }
 
@@ -393,8 +393,9 @@
       }
 
       if (!rv) {
-        MarFile* mar = mar_open(argv[2]);
-        if (mar) {
+        MarFile* mar;
+        MarReadResult result = mar_open(argv[2], &mar);
+        if (result == MAR_READ_SUCCESS) {
           rv = mar_verify_signatures(mar, certBuffers, fileSizes, certCount);
           mar_close(mar);
         } else {
diff -Nru thunderbird-102.9.0+build1/modules/libmar/verify/mar_verify.c thunderbird-102.10.0+build2/modules/libmar/verify/mar_verify.c
--- thunderbird-102.9.0+build1/modules/libmar/verify/mar_verify.c	2023-03-11 11:24:25.000000000 +0000
+++ thunderbird-102.10.0+build2/modules/libmar/verify/mar_verify.c	2023-04-11 06:11:11.000000000 +0000
@@ -56,35 +56,38 @@
   return result;
 }
 
-int mar_extract_and_verify_signatures_fp(FILE* fp,
-                                         CryptoX_ProviderHandle provider,
-                                         CryptoX_PublicKey* keys,
-                                         uint32_t keyCount);
-int mar_verify_signatures_for_fp(FILE* fp, CryptoX_ProviderHandle provider,
-                                 CryptoX_PublicKey* keys,
-                                 const uint8_t* const* extractedSignatures,
-                                 uint32_t keyCount, uint32_t* numVerified);
+int mar_extract_and_verify_signatures(MarFile* mar,
+                                      CryptoX_ProviderHandle provider,
+                                      CryptoX_PublicKey* keys,
+                                      uint32_t keyCount);
+int mar_verify_extracted_signatures(MarFile* mar,
+                                    CryptoX_ProviderHandle provider,
+                                    CryptoX_PublicKey* keys,
+                                    const uint8_t* const* extractedSignatures,
+                                    uint32_t keyCount, uint32_t* numVerified);
 
 /**
- * Reads the specified number of bytes from the file pointer and
+ * Reads the specified number of bytes from the MAR buffer and
  * stores them in the passed buffer.
  *
- * @param  fp     The file pointer to read from.
+ * @param  mar    An opened MAR
+ * @param  mar_position
+ *                Our current position within the MAR file buffer.
  * @param  buffer The buffer to store the read results.
  * @param  size   The number of bytes to read, buffer must be
  *                at least of this size.
  * @param  ctxs   Pointer to the first element in an array of verify context.
  * @param  count  The number of elements in ctxs
  * @param  err    The name of what is being written to in case of error.
- * @return  0 on success
- *         -1 on read error
- *         -2 on verify update error
+ * @return  CryptoX_Success on success
+ *          CryptoX_Error   on error
  */
-int ReadAndUpdateVerifyContext(FILE* fp, void* buffer, uint32_t size,
-                               CryptoX_SignatureHandle* ctxs, uint32_t count,
-                               const char* err) {
+CryptoX_Result ReadAndUpdateVerifyContext(MarFile* mar, size_t* mar_position,
+                                          void* buffer, uint32_t size,
+                                          CryptoX_SignatureHandle* ctxs,
+                                          uint32_t count, const char* err) {
   uint32_t k;
-  if (!fp || !buffer || !ctxs || count == 0 || !err) {
+  if (!mar || !mar_position || !buffer || !ctxs || count == 0 || !err) {
     fprintf(stderr, "ERROR: Invalid parameter specified.\n");
     return CryptoX_Error;
   }
@@ -93,7 +96,7 @@
     return CryptoX_Success;
   }
 
-  if (fread(buffer, size, 1, fp) != 1) {
+  if (mar_read_buffer(mar, buffer, mar_position, size) != 0) {
     fprintf(stderr, "ERROR: Could not read %s\n", err);
     return CryptoX_Error;
   }
@@ -101,7 +104,7 @@
   for (k = 0; k < count; k++) {
     if (CryptoX_Failed(CryptoX_VerifyUpdate(&ctxs[k], buffer, size))) {
       fprintf(stderr, "ERROR: Could not update verify context for %s\n", err);
-      return -2;
+      return CryptoX_Error;
     }
   }
   return CryptoX_Success;
@@ -136,11 +139,6 @@
     goto failure;
   }
 
-  if (!mar->fp) {
-    fprintf(stderr, "ERROR: MAR file is not open.\n");
-    goto failure;
-  }
-
   if (CryptoX_Failed(CryptoX_InitCryptoProvider(&provider))) {
     fprintf(stderr, "ERROR: Could not init crytpo library.\n");
     goto failure;
@@ -154,7 +152,7 @@
     }
   }
 
-  rv = mar_extract_and_verify_signatures_fp(mar->fp, provider, keys, certCount);
+  rv = mar_extract_and_verify_signatures(mar, provider, keys, certCount);
 
 failure:
 
@@ -169,50 +167,41 @@
 
 /**
  * Extracts each signature from the specified MAR file,
- * then calls mar_verify_signatures_for_fp to verify each signature.
+ * then calls mar_verify_extracted_signatures to verify each signature.
  *
- * @param  fp       An opened MAR file handle
+ * @param  mar      An opened MAR
  * @param  provider A library provider
  * @param  keys     The public keys to use to verify the MAR
  * @param  keyCount The number of keys pointed to by keys
  * @return 0 on success
  */
-int mar_extract_and_verify_signatures_fp(FILE* fp,
-                                         CryptoX_ProviderHandle provider,
-                                         CryptoX_PublicKey* keys,
-                                         uint32_t keyCount) {
+int mar_extract_and_verify_signatures(MarFile* mar,
+                                      CryptoX_ProviderHandle provider,
+                                      CryptoX_PublicKey* keys,
+                                      uint32_t keyCount) {
   uint32_t signatureCount, signatureLen, numVerified = 0;
   uint32_t signatureAlgorithmIDs[MAX_SIGNATURES];
   uint8_t* extractedSignatures[MAX_SIGNATURES];
   uint32_t i;
+  size_t mar_position = 0;
 
   memset(signatureAlgorithmIDs, 0, sizeof(signatureAlgorithmIDs));
   memset(extractedSignatures, 0, sizeof(extractedSignatures));
 
-  if (!fp) {
+  if (!mar) {
     fprintf(stderr, "ERROR: Invalid file pointer passed.\n");
     return CryptoX_Error;
   }
 
-  /* To protect against invalid MAR files, we assumes that the MAR file
-     size is less than or equal to MAX_SIZE_OF_MAR_FILE. */
-  if (fseeko(fp, 0, SEEK_END)) {
-    fprintf(stderr, "ERROR: Could not seek to the end of the MAR file.\n");
-    return CryptoX_Error;
-  }
-  if (ftello(fp) > MAX_SIZE_OF_MAR_FILE) {
-    fprintf(stderr, "ERROR: MAR file is too large to be verified.\n");
-    return CryptoX_Error;
-  }
-
   /* Skip to the start of the signature block */
-  if (fseeko(fp, SIGNATURE_BLOCK_OFFSET, SEEK_SET)) {
+  if (mar_buffer_seek(mar, &mar_position, SIGNATURE_BLOCK_OFFSET) != 0) {
     fprintf(stderr, "ERROR: Could not seek to the signature block.\n");
     return CryptoX_Error;
   }
 
   /* Get the number of signatures */
-  if (fread(&signatureCount, sizeof(signatureCount), 1, fp) != 1) {
+  if (mar_read_buffer(mar, &signatureCount, &mar_position,
+                      sizeof(signatureCount)) != 0) {
     fprintf(stderr, "ERROR: Could not read number of signatures.\n");
     return CryptoX_Error;
   }
@@ -228,19 +217,21 @@
 
   for (i = 0; i < signatureCount; i++) {
     /* Get the signature algorithm ID */
-    if (fread(&signatureAlgorithmIDs[i], sizeof(uint32_t), 1, fp) != 1) {
+    if (mar_read_buffer(mar, &signatureAlgorithmIDs[i], &mar_position,
+                        sizeof(uint32_t)) != 0) {
       fprintf(stderr, "ERROR: Could not read signatures algorithm ID.\n");
       return CryptoX_Error;
     }
     signatureAlgorithmIDs[i] = ntohl(signatureAlgorithmIDs[i]);
 
-    if (fread(&signatureLen, sizeof(uint32_t), 1, fp) != 1) {
+    if (mar_read_buffer(mar, &signatureLen, &mar_position,
+                        sizeof(uint32_t)) != 0) {
       fprintf(stderr, "ERROR: Could not read signatures length.\n");
       return CryptoX_Error;
     }
     signatureLen = ntohl(signatureLen);
 
-    /* To protected against invalid input make sure the signature length
+    /* To protect against invalid input make sure the signature length
        isn't too big. */
     if (signatureLen > MAX_SIGNATURE_LENGTH) {
       fprintf(stderr, "ERROR: Signature length is too large to verify.\n");
@@ -249,10 +240,11 @@
 
     extractedSignatures[i] = malloc(signatureLen);
     if (!extractedSignatures[i]) {
-      fprintf(stderr, "ERROR: Could allocate buffer for signature.\n");
+      fprintf(stderr, "ERROR: Could not allocate buffer for signature.\n");
       return CryptoX_Error;
     }
-    if (fread(extractedSignatures[i], signatureLen, 1, fp) != 1) {
+    if (mar_read_buffer(mar, extractedSignatures[i], &mar_position,
+                        signatureLen) != 0) {
       fprintf(stderr, "ERROR: Could not read extracted signature.\n");
       for (i = 0; i < signatureCount; ++i) {
         free(extractedSignatures[i]);
@@ -270,11 +262,8 @@
     }
   }
 
-  if (ftello(fp) == -1) {
-    return CryptoX_Error;
-  }
-  if (mar_verify_signatures_for_fp(
-          fp, provider, keys, (const uint8_t* const*)extractedSignatures,
+  if (mar_verify_extracted_signatures(
+          mar, provider, keys, (const uint8_t* const*)extractedSignatures,
           signatureCount, &numVerified) == CryptoX_Error) {
     return CryptoX_Error;
   }
@@ -304,7 +293,7 @@
  * certificate given, etc. The signature count must exactly match the number of
  * certificates given, and all signature verifications must succeed.
  *
- * @param  fp                   An opened MAR file handle
+ * @param  mar                  An opened MAR
  * @param  provider             A library provider
  * @param  keys                 A pointer to the first element in an
  *                              array of keys.
@@ -315,18 +304,19 @@
  *                              the number of verified signatures.
  *                              This information can be useful for printing
  *                              error messages.
- * @return 0 on success, *numVerified == signatureCount.
+ * @return  CryptoX_Success on success, *numVerified == signatureCount.
  */
-int mar_verify_signatures_for_fp(FILE* fp, CryptoX_ProviderHandle provider,
-                                 CryptoX_PublicKey* keys,
-                                 const uint8_t* const* extractedSignatures,
-                                 uint32_t signatureCount,
-                                 uint32_t* numVerified) {
+CryptoX_Result mar_verify_extracted_signatures(
+      MarFile* mar, CryptoX_ProviderHandle provider, CryptoX_PublicKey* keys,
+      const uint8_t* const* extractedSignatures,
+      uint32_t signatureCount,
+      uint32_t* numVerified) {
   CryptoX_SignatureHandle signatureHandles[MAX_SIGNATURES];
   char buf[BLOCKSIZE];
   uint32_t signatureLengths[MAX_SIGNATURES];
   uint32_t i;
   int rv = CryptoX_Error;
+  size_t mar_position = 0;
 
   memset(signatureHandles, 0, sizeof(signatureHandles));
   memset(signatureLengths, 0, sizeof(signatureLengths));
@@ -355,19 +345,13 @@
     }
   }
 
-  /* Skip to the start of the file */
-  if (fseeko(fp, 0, SEEK_SET)) {
-    fprintf(stderr, "ERROR: Could not seek to start of the file\n");
-    goto failure;
-  }
-
   /* Bytes 0-3: MAR1
      Bytes 4-7: index offset
      Bytes 8-15: size of entire MAR
    */
   if (CryptoX_Failed(ReadAndUpdateVerifyContext(
-          fp, buf, SIGNATURE_BLOCK_OFFSET + sizeof(uint32_t), signatureHandles,
-          signatureCount, "signature block"))) {
+          mar, &mar_position, buf, SIGNATURE_BLOCK_OFFSET + sizeof(uint32_t),
+          signatureHandles, signatureCount, "signature block"))) {
     goto failure;
   }
 
@@ -375,14 +359,14 @@
   for (i = 0; i < signatureCount; i++) {
     /* Get the signature algorithm ID */
     if (CryptoX_Failed(ReadAndUpdateVerifyContext(
-            fp, &buf, sizeof(uint32_t), signatureHandles, signatureCount,
-            "signature algorithm ID"))) {
+            mar, &mar_position, &buf, sizeof(uint32_t), signatureHandles,
+            signatureCount, "signature algorithm ID"))) {
       goto failure;
     }
 
     if (CryptoX_Failed(ReadAndUpdateVerifyContext(
-            fp, &signatureLengths[i], sizeof(uint32_t), signatureHandles,
-            signatureCount, "signature length"))) {
+            mar, &mar_position, &signatureLengths[i], sizeof(uint32_t),
+            signatureHandles, signatureCount, "signature length"))) {
       goto failure;
     }
     signatureLengths[i] = ntohl(signatureLengths[i]);
@@ -392,20 +376,15 @@
     }
 
     /* Skip past the signature itself as those are not included */
-    if (fseeko(fp, signatureLengths[i], SEEK_CUR)) {
+    if (mar_buffer_seek(mar, &mar_position, signatureLengths[i]) != 0) {
       fprintf(stderr, "ERROR: Could not seek past signature.\n");
       goto failure;
     }
   }
 
   /* Read the rest of the file after the signature block */
-  while (!feof(fp)) {
-    int numRead = fread(buf, 1, BLOCKSIZE, fp);
-    if (ferror(fp)) {
-      fprintf(stderr, "ERROR: Error reading data block.\n");
-      goto failure;
-    }
-
+  while (mar_position < mar->data_len) {
+    int numRead = mar_read_buffer_max(mar, buf, &mar_position, BLOCKSIZE);
     for (i = 0; i < signatureCount; i++) {
       if (CryptoX_Failed(
               CryptoX_VerifyUpdate(&signatureHandles[i], buf, numRead))) {
diff -Nru thunderbird-102.9.0+build1/modules/libpref/init/StaticPrefList.yaml thunderbird-102.10.0+build2/modules/libpref/init/StaticPrefList.yaml
--- thunderbird-102.9.0+build1/modules/libpref/init/StaticPrefList.yaml	2023-03-11 11:24:24.000000000 +0000
+++ thunderbird-102.10.0+build2/modules/libpref/init/StaticPrefList.yaml	2023-04-11 06:11:11.000000000 +0000
@@ -171,6 +171,14 @@
 #define IS_NOT_ANDROID true
 #endif
 
+#ifdef XP_WIN
+#define IS_XP_WIN true
+#define IS_NOT_XP_WIN false
+#else
+#define IS_XP_WIN false
+#define IS_NOT_XP_WIN true
+#endif
+
 #---------------------------------------------------------------------------
 # Prefs starting with "accessibility."
 #---------------------------------------------------------------------------
@@ -8759,25 +8767,39 @@
     mirror: always
 #endif
 
-#ifdef XP_MACOSX
-  # These prefs control whether or not a universal build running on
-  # an Apple Silicon machine will attempt to use an x64 Widevine or
-  # OpenH264 plugin. This requires launching the GMP child process
-  # executable in x64 mode. We expect to allow this for Widevine until
-  # an arm64 version of Widevine is made available. We don't expect
-  # to need to allow this for OpenH264.
+# (When reading the next line, know that preprocessor.py doesn't
+# understand parentheses, but && is higher precedence than ||.)
+#if defined(XP_WIN) && defined(_ARM64_) || defined(XP_MACOSX)
+  # These prefs control whether or not we will allow x86/x64 plugins
+  # to run on Windows ARM or Apple Silicon machines. This requires
+  # launching the GMP child process executable in x86/x64 mode. We
+  # expect to allow this for Widevine until an arm64 version of
+  # Widevine and Clearkey is made available. We don't expect to need
+  # to allow this for OpenH264.
+  #
+  # For Apple Silicon and OSX, it will be for universal builds and
+  # whether or not it can use the x64 Widevine plugin.
   #
-  # Allow a Widevine GMP x64 process to be executed on ARM builds.
+  # For Windows ARM, it will be for ARM builds and whether or not it
+  # can use x86 Widevine or Clearkey plugins.
+
+  # May a Widevine GMP x64 process be executed on ARM builds.
 - name: media.gmp-widevinecdm.allow-x64-plugin-on-arm64
   type: RelaxedAtomicBool
   value: true
   mirror: always
 
-  # Don't allow an OpenH264 GMP x64 process to be executed on ARM builds.
+  # May an OpenH264 GMP x64 process be executed on ARM builds.
 - name: media.gmp-gmpopenh264.allow-x64-plugin-on-arm64
   type: RelaxedAtomicBool
   value: false
   mirror: always
+
+  # May a Clearkey GMP x64 process be executed on ARM builds.
+- name: media.gmp-gmpclearkey.allow-x64-plugin-on-arm64
+  type: RelaxedAtomicBool
+  value: false
+  mirror: always
 #endif
 
 # Specifies whether the PDMFactory can create a test decoder that just outputs
diff -Nru thunderbird-102.9.0+build1/netwerk/base/nsBufferedStreams.cpp thunderbird-102.10.0+build2/netwerk/base/nsBufferedStreams.cpp
--- thunderbird-102.9.0+build1/netwerk/base/nsBufferedStreams.cpp	2023-03-11 11:24:25.000000000 +0000
+++ thunderbird-102.10.0+build2/netwerk/base/nsBufferedStreams.cpp	2023-04-11 06:11:12.000000000 +0000
@@ -39,11 +39,7 @@
 #endif
 
 using namespace mozilla::ipc;
-using mozilla::DebugOnly;
-using mozilla::Maybe;
-using mozilla::MutexAutoLock;
-using mozilla::Nothing;
-using mozilla::Some;
+using namespace mozilla;
 
 ////////////////////////////////////////////////////////////////////////////////
 // nsBufferedStream
@@ -68,6 +64,7 @@
   mCursor = 0;
   nsCOMPtr<nsISeekableStream> seekable = do_QueryInterface(mStream);
   mSeekable = seekable;
+  RecursiveMutexAutoLock lock(mBufferMutex);
   mBuffer = new (mozilla::fallible) char[bufferSize];
   if (mBuffer == nullptr) {
     return NS_ERROR_OUT_OF_MEMORY;
@@ -78,6 +75,7 @@
 void nsBufferedStream::Close() {
   // Drop the reference from nsBufferedStream::Init()
   mStream = nullptr;
+  RecursiveMutexAutoLock lock(mBufferMutex);
   if (mBuffer) {
     delete[] mBuffer;
     mBuffer = nullptr;
@@ -432,6 +430,7 @@
   }
 
   nsresult rv = NS_OK;
+  RecursiveMutexAutoLock lock(mBufferMutex);
   while (count > 0) {
     uint32_t amt = std::min(count, mFillPoint - mCursor);
     if (amt > 0) {
@@ -471,6 +470,8 @@
   }
   NS_ENSURE_TRUE(mStream, NS_ERROR_NOT_INITIALIZED);
 
+  RecursiveMutexAutoLock lock(mBufferMutex);
+
   nsresult rv;
   int32_t rem = int32_t(mFillPoint - mCursor);
   if (rem > 0) {
@@ -508,6 +509,7 @@
     return nullptr;
   }
 
+  RecursiveMutexAutoLock lock(mBufferMutex);
   char* buf = mBuffer + mCursor;
   uint32_t rem = mFillPoint - mCursor;
   if (rem == 0) {
@@ -717,6 +719,8 @@
 nsBufferedInputStream::GetCloneable(bool* aCloneable) {
   *aCloneable = false;
 
+  RecursiveMutexAutoLock lock(mBufferMutex);
+
   // If we don't have the buffer, the inputStream has been already closed.
   // If mBufferStartOffset is not 0, the stream has been seeked or read.
   // In both case the cloning is not supported.
@@ -734,6 +738,8 @@
 
 NS_IMETHODIMP
 nsBufferedInputStream::Clone(nsIInputStream** aResult) {
+  RecursiveMutexAutoLock lock(mBufferMutex);
+
   if (!mBuffer || mBufferStartOffset) {
     return NS_ERROR_FAILURE;
   }
@@ -907,6 +913,7 @@
     return NS_BASE_STREAM_CLOSED;
   }
 
+  RecursiveMutexAutoLock lock(mBufferMutex);
   while (count > 0) {
     uint32_t amt = std::min(count, mBufferSize - mCursor);
     if (amt > 0) {
@@ -943,6 +950,7 @@
   if (mFillPoint == 0) {
     return NS_OK;
   }
+  RecursiveMutexAutoLock lock(mBufferMutex);
   rv = Sink()->Write(mBuffer, mFillPoint, &amt);
   if (NS_FAILED(rv)) {
     return rv;
@@ -1017,6 +1025,7 @@
                                       uint32_t count, uint32_t* _retval) {
   *_retval = 0;
   nsresult rv;
+  RecursiveMutexAutoLock lock(mBufferMutex);
   while (count > 0) {
     uint32_t left = std::min(count, mBufferSize - mCursor);
     if (left == 0) {
@@ -1061,6 +1070,7 @@
     return nullptr;
   }
 
+  RecursiveMutexAutoLock lock(mBufferMutex);
   char* buf = mBuffer + mCursor;
   uint32_t rem = mBufferSize - mCursor;
   if (rem == 0) {
diff -Nru thunderbird-102.9.0+build1/netwerk/base/nsBufferedStreams.h thunderbird-102.10.0+build2/netwerk/base/nsBufferedStreams.h
--- thunderbird-102.9.0+build1/netwerk/base/nsBufferedStreams.h	2023-03-11 11:24:25.000000000 +0000
+++ thunderbird-102.10.0+build2/netwerk/base/nsBufferedStreams.h	2023-04-11 06:11:11.000000000 +0000
@@ -18,6 +18,7 @@
 #include "nsICloneableInputStream.h"
 #include "nsIInputStreamLength.h"
 #include "mozilla/Mutex.h"
+#include "mozilla/RecursiveMutex.h"
 
 ////////////////////////////////////////////////////////////////////////////////
 
@@ -42,6 +43,8 @@
   uint32_t mBufferSize{0};
   char* mBuffer{nullptr};
 
+  mozilla::RecursiveMutex mBufferMutex{"nsBufferedStream::mBufferMutex"};
+
   // mBufferStartOffset is the offset relative to the start of mStream.
   int64_t mBufferStartOffset{0};
 
diff -Nru thunderbird-102.9.0+build1/netwerk/base/nsSocketTransport2.cpp thunderbird-102.10.0+build2/netwerk/base/nsSocketTransport2.cpp
--- thunderbird-102.9.0+build1/netwerk/base/nsSocketTransport2.cpp	2023-03-11 11:24:24.000000000 +0000
+++ thunderbird-102.10.0+build2/netwerk/base/nsSocketTransport2.cpp	2023-04-11 06:11:11.000000000 +0000
@@ -682,6 +682,7 @@
 }
 
 nsSocketTransport::~nsSocketTransport() {
+  MOZ_RELEASE_ASSERT(!mAttached);
   SOCKET_LOG(("destroying nsSocketTransport @%p\n", this));
 }
 
diff -Nru thunderbird-102.9.0+build1/netwerk/dns/effective_tld_names.dat thunderbird-102.10.0+build2/netwerk/dns/effective_tld_names.dat
--- thunderbird-102.9.0+build1/netwerk/dns/effective_tld_names.dat	2023-03-11 11:24:25.000000000 +0000
+++ thunderbird-102.10.0+build2/netwerk/dns/effective_tld_names.dat	2023-04-11 06:11:12.000000000 +0000
@@ -7189,7 +7189,7 @@
 
 // newGTLDs
 
-// List of new gTLDs imported from https://www.icann.org/resources/registries/gtlds/v2/gtlds.json on 2023-02-22T15:15:03Z
+// List of new gTLDs imported from https://www.icann.org/resources/registries/gtlds/v2/gtlds.json on 2023-03-18T15:13:13Z
 // This list is auto-generated, don't edit it manually.
 // aaa : 2015-02-26 American Automobile Association, Inc.
 aaa
@@ -8898,9 +8898,6 @@
 // lincoln : 2014-11-13 Ford Motor Company
 lincoln
 
-// linde : 2014-12-04 Linde Aktiengesellschaft
-linde
-
 // link : 2013-11-14 Nova Registry Ltd
 link
 
@@ -8967,9 +8964,6 @@
 // luxury : 2013-10-17 Luxury Partners, LLC
 luxury
 
-// macys : 2015-07-31 Macys, Inc.
-macys
-
 // madrid : 2014-05-01 Comunidad de Madrid
 madrid
 
diff -Nru thunderbird-102.9.0+build1/netwerk/mime/nsIMIMEHeaderParam.idl thunderbird-102.10.0+build2/netwerk/mime/nsIMIMEHeaderParam.idl
--- thunderbird-102.9.0+build1/netwerk/mime/nsIMIMEHeaderParam.idl	2023-03-11 11:24:24.000000000 +0000
+++ thunderbird-102.10.0+build2/netwerk/mime/nsIMIMEHeaderParam.idl	2023-04-11 06:11:12.000000000 +0000
@@ -132,7 +132,7 @@
    */
 
   [noscript]
-  string getParameterInternal(in string aHeaderVal,
+  string getParameterInternal(in ACString aHeaderVal,
                               in string aParamName,
                               out string aCharset,
                               out string aLang);
diff -Nru thunderbird-102.9.0+build1/netwerk/mime/nsIMIMEService.idl thunderbird-102.10.0+build2/netwerk/mime/nsIMIMEService.idl
--- thunderbird-102.9.0+build1/netwerk/mime/nsIMIMEService.idl	2023-03-11 11:24:25.000000000 +0000
+++ thunderbird-102.10.0+build2/netwerk/mime/nsIMIMEService.idl	2023-04-11 06:11:12.000000000 +0000
@@ -160,6 +160,13 @@
     const long VALIDATE_FORCE_APPEND_EXTENSION = 64;
 
     /**
+     * Don't modify filenames or extensions that might be invalid or dangerous
+     * on some platforms. If this flag is not used, these filenames will be
+     * modified so that the operating system does not treat them specially.
+     */
+    const long VALIDATE_ALLOW_INVALID_FILENAMES = 128;
+
+    /**
      * Generate a valid filename from the channel that can be used to save
      * the content of the channel to the local disk.
      *
@@ -178,8 +185,9 @@
      *    character, either ' ' or an ideographic space 0x3000 if present.
      *  - Unless VALIDATE_DONT_TRUNCATE is specified, the filename is truncated
      *    to a maximum length, preserving the extension if possible.
-     *  - Some filenames are invalid on certain platforms. These are replaced if
-     *    possible.
+     *  - Some filenames and extensions are invalid on certain platforms.
+     *    These are replaced if possible unless VALIDATE_ALLOW_INVALID_FILENAMES
+     *    is specified.
      *
      * If the VALIDATE_NO_DEFAULT_FILENAME flag is not specified, and after the
      * rules above are applied, the resulting filename is empty, a default
diff -Nru thunderbird-102.9.0+build1/netwerk/mime/nsMIMEHeaderParamImpl.cpp thunderbird-102.10.0+build2/netwerk/mime/nsMIMEHeaderParamImpl.cpp
--- thunderbird-102.9.0+build1/netwerk/mime/nsMIMEHeaderParamImpl.cpp	2023-03-11 11:24:25.000000000 +0000
+++ thunderbird-102.10.0+build2/netwerk/mime/nsMIMEHeaderParamImpl.cpp	2023-04-11 06:11:11.000000000 +0000
@@ -125,6 +125,27 @@
                         false, nullptr, aResult);
 }
 
+/* static */
+// detects any non-null characters pass null
+bool nsMIMEHeaderParamImpl::ContainsTrailingCharPastNull(
+    const nsACString& aVal) {
+  nsACString::const_iterator first;
+  aVal.BeginReading(first);
+  nsACString::const_iterator end;
+  aVal.EndReading(end);
+
+  if (FindCharInReadable(L'\0', first, end)) {
+    while (first != end) {
+      if (*first != '\0') {
+        // contains trailing characters past the null character
+        return true;
+      }
+      ++first;
+    }
+  }
+  return false;
+}
+
 // XXX : aTryLocaleCharset is not yet effective.
 /* static */
 nsresult nsMIMEHeaderParamImpl::DoGetParameter(
@@ -138,9 +159,8 @@
   // aDecoding (5987 being a subset of 2231) and return charset.)
   nsCString med;
   nsCString charset;
-  rv = DoParameterInternal(PromiseFlatCString(aHeaderVal).get(), aParamName,
-                           aDecoding, getter_Copies(charset), aLang,
-                           getter_Copies(med));
+  rv = DoParameterInternal(aHeaderVal, aParamName, aDecoding,
+                           getter_Copies(charset), aLang, getter_Copies(med));
   if (NS_FAILED(rv)) return rv;
 
   // convert to UTF-8 after charset conversion and RFC 2047 decoding
@@ -375,7 +395,7 @@
 // The format of these header lines  is
 // <token> [ ';' <token> '=' <token-or-quoted-string> ]*
 NS_IMETHODIMP
-nsMIMEHeaderParamImpl::GetParameterInternal(const char* aHeaderValue,
+nsMIMEHeaderParamImpl::GetParameterInternal(const nsACString& aHeaderValue,
                                             const char* aParamName,
                                             char** aCharset, char** aLang,
                                             char** aResult) {
@@ -385,9 +405,23 @@
 
 /* static */
 nsresult nsMIMEHeaderParamImpl::DoParameterInternal(
-    const char* aHeaderValue, const char* aParamName, ParamDecoding aDecoding,
-    char** aCharset, char** aLang, char** aResult) {
-  if (!aHeaderValue || !*aHeaderValue || !aResult) return NS_ERROR_INVALID_ARG;
+    const nsACString& aHeaderValue, const char* aParamName,
+    ParamDecoding aDecoding, char** aCharset, char** aLang, char** aResult) {
+  if (aHeaderValue.IsEmpty() || !aResult) {
+    return NS_ERROR_INVALID_ARG;
+  }
+
+  if (ContainsTrailingCharPastNull(aHeaderValue)) {
+    // See Bug 1784348
+    return NS_ERROR_INVALID_ARG;
+  }
+
+  const nsCString& flat = PromiseFlatCString(aHeaderValue);
+  const char* str = flat.get();
+
+  if (!*str) {
+    return NS_ERROR_INVALID_ARG;
+  }
 
   *aResult = nullptr;
 
@@ -400,8 +434,6 @@
   // them for HTTP header fields later on, see bug 776324
   bool acceptContinuations = true;
 
-  const char* str = aHeaderValue;
-
   // skip leading white space.
   for (; *str && nsCRT::IsAsciiSpace(*str); ++str) {
     ;
diff -Nru thunderbird-102.9.0+build1/netwerk/mime/nsMIMEHeaderParamImpl.h thunderbird-102.10.0+build2/netwerk/mime/nsMIMEHeaderParamImpl.h
--- thunderbird-102.9.0+build1/netwerk/mime/nsMIMEHeaderParamImpl.h	2023-03-11 11:24:25.000000000 +0000
+++ thunderbird-102.10.0+build2/netwerk/mime/nsMIMEHeaderParamImpl.h	2023-04-11 06:11:12.000000000 +0000
@@ -33,10 +33,12 @@
                                  bool aTryLocaleCharset, char** aLang,
                                  nsAString& aResult);
 
-  static nsresult DoParameterInternal(const char* aHeaderValue,
+  static nsresult DoParameterInternal(const nsACString& aHeaderVal,
                                       const char* aParamName,
                                       ParamDecoding aDecoding, char** aCharset,
                                       char** aLang, char** aResult);
+
+  static bool ContainsTrailingCharPastNull(const nsACString& aVal);
 };
 
 #endif
diff -Nru thunderbird-102.9.0+build1/netwerk/protocol/http/nsHttpChannel.cpp thunderbird-102.10.0+build2/netwerk/protocol/http/nsHttpChannel.cpp
--- thunderbird-102.9.0+build1/netwerk/protocol/http/nsHttpChannel.cpp	2023-03-11 11:24:24.000000000 +0000
+++ thunderbird-102.10.0+build2/netwerk/protocol/http/nsHttpChannel.cpp	2023-04-11 06:11:12.000000000 +0000
@@ -339,6 +339,20 @@
   arrayToRelease.AppendElement(mPreflightChannel.forget());
   arrayToRelease.AppendElement(mDNSPrefetch.forget());
 
+  MOZ_DIAGNOSTIC_ASSERT(
+      !mEarlyHintObserver,
+      "Early hint observer should have been released in ReleaseListeners()");
+  arrayToRelease.AppendElement(mEarlyHintObserver.forget());
+  MOZ_DIAGNOSTIC_ASSERT(
+      !mChannelClassifier,
+      "Channel classifier should have been released in ReleaseListeners()");
+  arrayToRelease.AppendElement(
+      mChannelClassifier.forget().downcast<nsIURIClassifierCallback>());
+  MOZ_DIAGNOSTIC_ASSERT(
+      !mWarningReporter,
+      "Warning reporter should have been released in ReleaseListeners()");
+  arrayToRelease.AppendElement(mWarningReporter.forget());
+
   NS_DispatchToMainThread(new ProxyReleaseRunnable(std::move(arrayToRelease)));
 }
 
diff -Nru thunderbird-102.9.0+build1/netwerk/test/unit/test_MIME_params.js thunderbird-102.10.0+build2/netwerk/test/unit/test_MIME_params.js
--- thunderbird-102.9.0+build1/netwerk/test/unit/test_MIME_params.js	2023-03-11 11:24:24.000000000 +0000
+++ thunderbird-102.10.0+build2/netwerk/test/unit/test_MIME_params.js	2023-04-11 06:11:12.000000000 +0000
@@ -579,6 +579,20 @@
 
   // Check that whitespace processing can't crash.
   ["attachment; filename =      ", "attachment", ""],
+
+  // Bug 1784348
+  [
+    "attachment; filename=foo.exe\0.pdf",
+    Cr.NS_ERROR_ILLEGAL_VALUE,
+    Cr.NS_ERROR_INVALID_ARG,
+  ],
+  [
+    "attachment; filename=\0\0foo\0",
+    Cr.NS_ERROR_ILLEGAL_VALUE,
+    Cr.NS_ERROR_INVALID_ARG,
+  ],
+  ["attachment; filename=foo\0\0\0", "attachment", "foo"],
+  ["attachment; filename=\0\0\0", "attachment", ""],
 ];
 
 var rfc5987paramtests = [
diff -Nru thunderbird-102.9.0+build1/security/manager/ssl/nsSTSPreloadList.inc thunderbird-102.10.0+build2/security/manager/ssl/nsSTSPreloadList.inc
--- thunderbird-102.9.0+build1/security/manager/ssl/nsSTSPreloadList.inc	2023-03-11 11:24:25.000000000 +0000
+++ thunderbird-102.10.0+build2/security/manager/ssl/nsSTSPreloadList.inc	2023-04-11 06:11:12.000000000 +0000
@@ -8,10 +8,11 @@
 /*****************************************************************************/
 
 #include <stdint.h>
-const PRTime gPreloadListExpirationTime = INT64_C(1688988521651000);
+const PRTime gPreloadListExpirationTime = INT64_C(1691408060977000);
 %%
 0--1.de, 1
 0-0.io, 1
+0-0.lt, 1
 0-1.party, 1
 0-24.com, 1
 0-24.net, 1
@@ -42,7 +43,7 @@
 0017552.com, 1
 0017d88.com, 1
 001yapan.com, 1
-002.ro, 1
+002.ro, 0
 00220022.net, 1
 00228.am, 0
 00228555.com, 1
@@ -122,6 +123,7 @@
 00ffhhh.com, 1
 00ffiii.com, 1
 00ffjjj.com, 1
+00ffkkk.com, 1
 00fflll.com, 1
 00ffmmm.com, 1
 00ffnnn.com, 1
@@ -191,7 +193,6 @@
 023sec.com, 1
 025k8.com, 1
 02607.com, 1
-026122.com, 1
 02638.net, 1
 026ks.com, 1
 02d88.net, 1
@@ -254,6 +255,7 @@
 0575z6.com, 1
 058kb.com, 1
 0597z6.com, 1
+059958.com, 1
 06006.vip, 1
 060258.com, 1
 060579.com, 1
@@ -269,7 +271,8 @@
 068552.com, 0
 06d88.com, 1
 06d88.net, 1
-06se.com, 0
+06se.com, 1
+0707.agency, 1
 070709.net, 1
 0712z6.com, 1
 071552.com, 0
@@ -301,17 +304,11 @@
 082173.com, 1
 082175.com, 1
 082179.com, 1
-082187.com, 1
 082192.com, 1
 082193.com, 1
 082195.com, 1
 082359.com, 1
 08365t.com, 1
-083903.com, 1
-083905.com, 1
-083907.com, 1
-083962.com, 1
-083965.com, 1
 083967.com, 1
 084552.com, 1
 085851.com, 0
@@ -355,7 +352,6 @@
 0day.agency, 1
 0dayexploits.gq, 1
 0des.com, 1
-0dev.cc, 1
 0i0.nl, 1
 0ii0.cf, 1
 0iz.net, 1
@@ -364,7 +360,6 @@
 0n.com, 1
 0n3b1t.com, 1
 0nestudio.com, 0
-0nnn.top, 1
 0o0.edu.pl, 1
 0o0.ooo, 1
 0o0o.biz, 1
@@ -388,6 +383,7 @@
 0wx.net, 1
 0wx.org, 1
 0x.cx, 1
+0x.lu, 1
 0x.sk, 1
 0x0.cloud, 1
 0x0.li, 1
@@ -400,6 +396,7 @@
 0x17.de, 1
 0x21.consulting, 1
 0x22.de, 1
+0x27.fr, 1
 0x28.de, 1
 0x2a.ninja, 1
 0x378.net, 1
@@ -433,7 +430,6 @@
 0xspa.de, 1
 0xword.com, 1
 0yen.org, 1
-1-123hp.com, 1
 1-2-3bounce.co.uk, 1
 1-800-bakery.com, 1
 1-800-mattress.com, 1
@@ -503,7 +499,6 @@
 100visits.tk, 1
 100voprosov.tk, 1
 100zakladok.tk, 1
-101.qa, 1
 10101.io, 1
 101010.hopto.org, 1
 101010.pl, 1
@@ -523,6 +518,12 @@
 1020318.com, 1
 1020319.com, 1
 1020320.com, 1
+10218.com, 1
+10218b.com, 1
+10218c.com, 1
+10218d.com, 1
+10218e.com, 1
+10218f.com, 1
 1024.ee, 1
 1024.kr, 1
 1025.ga, 1
@@ -553,7 +554,6 @@
 10840.net, 1
 109k8.com, 1
 10canada.ca, 1
-10cpa.com, 1
 10er-friseur.de, 1
 10gbit.ovh, 1
 10hz.de, 1
@@ -580,7 +580,6 @@
 1100110.xyz, 1
 11018vip.com, 1
 11018xpj.com, 1
-11046.com, 1
 11082.com, 1
 110838.com, 1
 110cl.com, 1
@@ -596,7 +595,6 @@
 111bet86.com, 1
 111novosti.tk, 1
 111plus.design, 1
-111ttt.com, 1
 1120301.com, 1
 1120302.com, 1
 1120303.com, 1
@@ -653,7 +651,6 @@
 11333837.com, 1
 11365t.com, 1
 113k8.com, 1
-113ks.com, 1
 113z6.com, 1
 11400.com, 1
 11443837.com, 0
@@ -669,6 +666,7 @@
 1177z6.com, 1
 11792.com, 1
 118118money.com, 1
+118400.com, 1
 1190america.tk, 1
 1199bet.vip, 1
 11aaee.com, 1
@@ -723,12 +721,14 @@
 11fffhh.com, 1
 11fffii.com, 1
 11fffjj.com, 1
+11fffkk.com, 1
 11fffll.com, 1
 11fffmm.com, 1
 11fffnn.com, 1
 11fffoo.com, 1
 11fffpp.com, 1
 11fffqq.com, 1
+11fffrr.com, 1
 11fffss.com, 1
 11ffftt.com, 1
 11fffuu.com, 1
@@ -921,7 +921,6 @@
 124133.com, 1
 1244.tk, 1
 1244546066.rsc.cdn77.org, 1
-124633.com, 1
 125-rue.com, 1
 12517.com, 1
 12554.com, 1
@@ -950,7 +949,6 @@
 12nomos.tk, 1
 12photos.eu, 0
 12socialsmansa.tk, 1
-12thmanrising.com, 1
 12train.com, 1
 12u15.com, 1
 13-th.com, 1
@@ -969,6 +967,7 @@
 13318522.com, 1
 133335.xyz, 1
 1333z6.com, 1
+1337.ax, 1
 133769.xyz, 1
 1337ersprime.com, 1
 133ks.com, 1
@@ -994,6 +993,7 @@
 139z6.com, 1
 13ad.de, 1
 13ag8.com, 1
+13cloudmike.duckdns.org, 1
 13th-dover.uk, 1
 13u15.com, 1
 140.social, 1
@@ -1004,26 +1004,16 @@
 14159.gb.net, 1
 142552.com, 0
 1428elm.com, 1
-143533.com, 1
-143633.com, 1
-143733.com, 1
-143933.com, 1
 144-217-180-114.xyz, 1
 144chan.ml, 1
 1453914078.rsc.cdn77.org, 1
-145433.com, 1
-145733.com, 1
 145ks.net, 1
-146433.com, 1
 1464424382.rsc.cdn77.org, 1
-146533.com, 1
-146552.com, 1
-146733.com, 1
+146552.com, 0
 1481481.com, 0
 1481486.com, 1
 1481486.net, 1
 148663.com, 1
-149733.com, 1
 14er.jp, 1
 14er.net, 1
 14erc.com, 1
@@ -1081,19 +1071,15 @@
 1520348.com, 1
 1520349.com, 1
 1520350.com, 1
-152433.com, 1
 1527web.com, 1
 152z6.com, 1
 1536.cf, 1
 153z6.com, 1
-154233.com, 1
 154552.com, 0
 154922.com, 0
-154933.com, 1
 155175.com, 0
 155ks.net, 1
 155z6.com, 1
-156433.com, 1
 156k66.com, 1
 156z6.com, 1
 157z6.com, 1
@@ -1111,7 +1097,7 @@
 16-qw.tk, 1
 1600esplanade.com, 1
 161233.com, 1
-161263.com, 1
+161263.com, 0
 16164f.com, 1
 16195.com, 1
 1620301.com, 1
@@ -1180,6 +1166,7 @@
 1661237.com, 1
 166166.com, 1
 166jk.cc, 1
+167clan.net, 1
 16836500.com, 1
 1683651.com, 1
 16836511.com, 1
@@ -1357,7 +1344,6 @@
 1820347.com, 1
 1820348.com, 1
 1820349.com, 1
-1820350.com, 1
 182162.com, 1
 182k8.com, 1
 182wh.com, 1
@@ -1423,7 +1409,7 @@
 198ks.net, 1
 198wei.com, 1
 1990.ee, 1
-1994.io, 1
+1994.io, 0
 1999.rs, 1
 19990bb.com, 1
 19990c.com, 1
@@ -1466,6 +1452,7 @@
 19990zz.com, 1
 199ks.com, 1
 19area.cn, 1
+19gold.com, 1
 19hundert84.de, 1
 1a-diamantscheiben.de, 1
 1a-hyp.de, 1
@@ -1558,7 +1545,6 @@
 1password.community, 1
 1password.eu, 1
 1picture.hu, 1
-1plus-agency.com, 0
 1plus.red, 1
 1pluss.ee, 1
 1project.com, 1
@@ -1575,7 +1561,6 @@
 1se2or3.com, 1
 1secretaire.com, 1
 1serial.tv, 1
-1sociaaldomein.nl, 1
 1st-bounce.co.uk, 1
 1st-community.de, 1
 1st-online-academy.com, 1
@@ -1621,6 +1606,7 @@
 1x-krbet.com, 1
 1x-mirrors.com, 1
 1x-th.com, 1
+1x.tech, 1
 1x1.re, 1
 1x2020.xyz, 1
 1x2betwinner.com, 1
@@ -1874,7 +1860,6 @@
 208.es, 1
 2083236893.com, 1
 208garfield.com, 1
-208wns.com, 1
 20at.com, 1
 20denier.com, 1
 20four7va.com, 1
@@ -1885,6 +1870,7 @@
 21.co.uk, 1
 2113.ch, 1
 2122bet.com, 1
+2132vip.com, 1
 2137.eu, 1
 2138vip.com, 1
 213k8.com, 1
@@ -1912,13 +1898,17 @@
 21new.com, 1
 21nurse.com, 1
 21ol.com, 1
+21pet.com, 1
 21photo.com, 1
+21property.com, 1
 21risk.com, 1
 21run.com, 1
 21soccer.com, 1
 21stcenturycarpentry.com.au, 1
 21stcenturyoptics.com, 1
 21tax.com, 1
+21up.com, 1
+21venture.com, 1
 22-bets.org, 1
 220220.de, 1
 220control.ru, 1
@@ -1938,7 +1928,6 @@
 2264707.ru, 1
 2277bet.com, 1
 228668.com, 1
-228826.com, 1
 2288422.com, 1
 2288499.com, 1
 22884a.com, 0
@@ -1949,7 +1938,6 @@
 22884f.com, 0
 22884g.com, 0
 22884h.com, 0
-22994.org, 0
 2299411.com, 1
 2299422.com, 1
 2299433.com, 1
@@ -1987,6 +1975,7 @@
 22fffkk.com, 1
 22fffll.com, 1
 22fffmm.com, 1
+22fffnn.com, 1
 22fffoo.com, 1
 22fffpp.com, 1
 22fffqq.com, 1
@@ -2114,6 +2103,7 @@
 247medplan.com, 1
 247megamart.com.au, 1
 247naijabuzz.com, 1
+247vision.com, 1
 247xchanger.com, 1
 248000.xyz, 1
 24848168.com, 0
@@ -2138,31 +2128,55 @@
 2495dentalimplants.com, 1
 249722.com, 1
 249cq.com, 1
+24action.com, 1
+24active.com, 1
+24alarm.com, 1
+24ball.com, 1
+24beauty.com, 1
 24bel.ru, 0
 24buffalo.com, 1
 24chance.tk, 1
+24control.com, 1
 24dian30.com, 1
+24fair.com, 1
+24fan.com, 1
 24gazette.ga, 1
+24gis.com, 1
 24go.me, 1
 24h.com.br, 1
+24heaven.com, 1
+24hod.com, 1
 24hour-locksmithsanantonio.com, 1
 24hourcyclist.co.uk, 1
 24hourlocksmithdallastx.com, 1
 24hourlocksmithhoustontx.com, 1
 24hourlocksmithspring.com, 1
 24hourscienceprojects.com, 1
+24hunter.com, 1
+24images.com, 1
 24k.co.jp, 1
 24kbet.com, 1
 24livene.com, 1
+24london.com, 1
+24meg.com, 1
+24monitor.com, 1
+24motor.com, 1
 24ohrana.com, 1
 24onlain.tk, 1
+24read.com, 1
+24see.com, 1
+24share.com, 1
 24slides.com, 1
+24slot.com, 1
+24status.com, 1
+24vod.com, 1
 24webserver.eu, 1
 24webservice.nl, 1
 24zpravy.cz, 1
 2502.net, 1
 250708.com, 1
 2525admin.nl, 1
+253325.com, 1
 254vc.ml, 1
 2555z6.com, 1
 255k8.com, 1
@@ -2173,6 +2187,7 @@
 258management.ml, 1
 259885.com, 1
 25may.tk, 1
+25oclock.com, 1
 25percent.me, 1
 25refer.tk, 1
 25reinyan25.net, 1
@@ -2181,6 +2196,9 @@
 2601.de, 1
 260150.com, 1
 262569.com, 1
+263email.com, 1
+263mail.com, 1
+267326.com, 1
 268162.com, 1
 269196.com, 1
 2698pacificave.com, 1
@@ -2199,20 +2217,25 @@
 27lx.me, 1
 27skycake.com, 1
 28-industries.com, 1
+280.social, 1
 281116.com, 1
 281180.de, 1
 281ks.com, 1
 282ks.com, 1
+283228.com, 1
 28365cn-365.com, 1
+283928.com, 1
 28428.com, 0
 284365.com, 1
 285551.com, 1
-2858958.com, 1
+285928.com, 1
+287328.com, 1
+287628.com, 1
 2881dh.com, 1
 288cn-563.com, 1
 288game.net, 1
 288k8.com, 1
-2890.ltd, 1
+289728.com, 1
 28spots.net, 1
 291167.xyz, 1
 2912.nl, 1
@@ -2236,6 +2259,7 @@
 2bitboer.com, 1
 2bitout.com, 1
 2blazing.cf, 1
+2boost.com, 1
 2bougie.com, 1
 2bu2t.online, 1
 2bu2t.ru, 1
@@ -2247,12 +2271,15 @@
 2c-t-2.com, 1
 2c-t-7.com, 1
 2c-t-8.com, 1
+2cars.com, 1
 2cat.cc, 1
 2cb.rocks, 1
 2chan.eu, 1
 2chan.jp, 1
 2chi1.com, 1
+2choose.com, 1
 2class.eu.org, 1
+2corazones.org, 1
 2cv-co.be, 1
 2cv-fahrer.de, 1
 2cvclubdepicardie.tk, 1
@@ -2262,22 +2289,30 @@
 2daysmood.nl, 1
 2daysmood.us, 1
 2dk.info, 1
+2dns.com, 1
 2driver-ok.ml, 1
 2earn-online.com, 0
 2fa.directory, 1
+2finish.com, 1
 2fm.ie, 1
 2fm.radio, 1
 2fr3.com, 1
 2fraud.pro, 1
+2free.com, 1
+2fusion.com, 1
 2g1s.net, 1
+2gallery.com, 1
 2gen.com, 1
 2gether.fr, 1
 2gisparser.tk, 1
 2h-nagoya.org, 1
 2habc.com, 1
+2handcar.com, 1
+2head.com, 1
 2heartsbookings.co.uk, 1
 2hypeenterprises.com, 1
 2img.net, 1
+2impact.com, 1
 2innovateit.com, 0
 2insights.com, 1
 2isk.in, 1
@@ -2318,16 +2353,20 @@
 2rsc.com, 1
 2rsc.net, 1
 2sendai.net, 1
+2serious.com, 1
+2steel.com, 1
 2stv.net, 0
+2target.com, 1
 2tausend19.de, 1
 2th.me, 1
 2think.org, 1
 2todrive.nl, 1
 2travel8.world, 1
-2tuu.com, 0
 2ulcceria.nl, 1
 2url.link, 1
 2ustyle.com, 1
+2value.com, 1
+2vnews.com, 1
 2vp-an.online, 1
 2wheel.com, 0
 2x.nu, 1
@@ -2348,38 +2387,24 @@
 301.one, 0
 301.sh, 1
 301.technology, 1
-302422.com, 1
 3033888.com, 1
-303422.com, 1
 30375500.com, 1
 30375533.com, 1
-304122.com, 1
-304322.com, 1
-304622.com, 1
 3056999.com, 1
 3078i.com, 1
-309422.com, 1
 30bet365.com, 1
 30deagosto.tk, 1
 30for30podcasts.com, 1
+30minut.com, 1
 30nama1.tk, 1
 30region.tk, 1
-310422.com, 1
 311186.com, 1
 311191.com, 1
 3133bet.com, 1
-313422.com, 1
 313xpj.com, 0
-314022.com, 1
-314122.com, 1
-314322.com, 1
-314522.com, 1
 314553.com, 1
-314622.com, 1
-314633.com, 1
 315422.com, 1
 315xpj.com, 0
-316433.com, 1
 317811111.com, 0
 317822222.com, 0
 31783333.com, 1
@@ -2436,22 +2461,15 @@
 31fss.support, 1
 31fsspo.net, 1
 320281.net, 1
-320331.com, 1
+320331.com, 0
 321132.com, 1
 321666365.com, 1
 321live.nl, 1
 3233bet.com, 1
 323kkk.com, 1
-324022.com, 1
-324122.com, 1
-324133.com, 1
-324522.com, 1
-324533.com, 1
-324922.com, 1
 325552.com, 1
 325fss.marketing, 1
 3265623.com, 1
-329422.com, 1
 32bet365.com, 1
 32h.de, 1
 32kk.edu.ee, 1
@@ -2459,6 +2477,7 @@
 33-elagage.fr, 1
 33-km.ru, 1
 3306.io, 1
+33132.com, 1
 33138app.com, 1
 33138vip.com, 1
 33168365.com, 1
@@ -2518,6 +2537,7 @@
 33fffyy.com, 1
 33fffzz.com, 1
 33ffggg.com, 1
+33ffhhh.com, 1
 33ffiii.com, 1
 33ffjjj.com, 1
 33ffkkk.com, 1
@@ -2530,6 +2550,7 @@
 33ffrrr.com, 1
 33ffsss.com, 1
 33ffttt.com, 1
+33ffuuu.com, 1
 33ffvvv.com, 1
 33ffwww.com, 1
 33ffxxx.com, 1
@@ -2539,24 +2560,8 @@
 33weishang.com, 1
 33zv.com, 0
 33zxzx.com, 1
-340422.com, 1
-340622.com, 1
-340922.com, 1
-341422.com, 1
-341433.com, 1
-341533.com, 1
-341633.com, 1
-341733.com, 1
-341922.com, 1
-342022.com, 1
-342033.com, 1
-342922.com, 1
-342933.com, 1
-343022.com, 1
 3433bet.com, 1
-343622.com, 1
 34365t.com, 1
-343722.com, 1
 34536565.com, 0
 3455bet.com, 1
 345666365.com, 0
@@ -2581,17 +2586,12 @@
 351365.com, 1
 3536cp.com, 1
 3539783.com, 1
-354022.com, 1
-354622.com, 1
-354633.com, 1
-354922.com, 1
-354933.com, 1
 3555500.com, 1
 3559365.com, 1
 355fss.com, 1
 356338.com, 1
-356338a.com, 1
-356433.com, 1
+356338a.com, 0
+356338b.com, 1
 357601.com, 1
 35898a.com, 1
 35898b.com, 1
@@ -2608,24 +2608,37 @@
 35898w.com, 1
 35898x.com, 1
 35898y.com, 1
+35mm.im, 1
 35uj.com, 1
 360-ot.de, 1
 3602020.xyz, 1
 360365.com, 1
 360bcty.com, 1
+360buyer.com, 1
+360china.com, 1
 360cycling.com.br, 1
+360dental.com, 1
 360dialog.com, 1
 360e-commerce.de, 1
 360e-commerce.net, 1
 360ecommerce.de, 1
 360ecommerce.net, 1
+360faces.com, 1
 360gradus.com, 0
 360hosting.com.au, 1
+360islam.com, 1
 360kuvia.fi, 1
+360now.com, 1
+360organic.com, 1
 360prokuvat.fi, 1
 360rail.nl, 1
 360saxess.com, 1
+360spider.com, 1
+360stone.com, 1
+360sushi.com, 1
+360system.com, 1
 360tr.com, 1
+360trust.com, 1
 360videoshare.com, 1
 360vrs.com, 1
 361116.com, 1
@@ -2699,6 +2712,7 @@
 3656778.com, 0
 36587654321.com, 1
 365886.com, 1
+3658887654.com, 0
 36594a.com, 1
 36594b.com, 1
 36594c.com, 1
@@ -2706,9 +2720,13 @@
 3659869.com, 1
 3659980.com, 1
 365a1.com, 1
+365air.com, 1
 365beautyworld.com, 1
+365blog.com, 1
 365canvas.com, 1
+365check.com, 1
 365cn-288.com, 1
+365coupon.com, 1
 365eib.com, 1
 365eif.com, 1
 365eil.com, 1
@@ -2719,13 +2737,18 @@
 365fast.com, 1
 365healthworld.com, 1
 365iosapp.com, 0
+365jeans.com, 1
 365labs.cloud, 1
 365nnnn.com, 0
+365pet.com, 1
+365proxy.com, 1
 365q01.com, 1
 365r.co, 0
 365sb-cn.com, 1
 365securitymg.com, 1
 365skulls.com, 1
+365slot.com, 1
+365vision.com, 1
 365y0.com, 0
 365y00.com, 0
 365y11.com, 0
@@ -2760,38 +2783,44 @@
 36xk.com, 1
 36xn.com, 1
 36yf.com, 1
-370422.com, 1
-371422.com, 1
+370337.com, 1
+371037.com, 1
+371137.com, 1
 371cloud.com, 0
 372bbb.com, 1
 373.moe, 1
-373422.com, 1
 373521.com, 1
-374933.com, 1
-375422.com, 1
+375337.com, 1
 376064.com, 1
+376937.com, 1
 377625.com, 1
 377632.com, 1
+377837.com, 1
 377ks.com, 1
 377zzz.com, 1
+378537.com, 1
 37879.com, 0
+378837.com, 1
 37889658.com, 0
 378901.com, 1
 378902.com, 1
 379237.com, 1
+379437.com, 1
+379637.com, 1
 379700.com, 1
+379737.com, 1
 3798.com, 0
 37987.com, 1
 37987d.com, 1
 37987e.com, 0
 37987f.com, 0
+379937.com, 1
 379efss.com, 1
 37zk.com, 1
 37zw.com, 1
 380111000.com, 1
 380111777.com, 1
 380222444.com, 0
-380422.com, 1
 380805.com, 1
 381115.com, 1
 38138938.com, 1
@@ -2813,15 +2842,10 @@
 391119.com, 1
 391231.com, 1
 392365.com, 0
-392422.com, 1
 393039.com, 1
 393239.com, 1
 393335.ml, 0
-393422.com, 1
-394122.com, 1
-394322.com, 1
 394553.com, 1
-394922.com, 1
 395039.com, 1
 3957b.com, 1
 3957d.com, 1
@@ -2835,7 +2859,6 @@
 3963bb.com, 1
 3963cc.com, 0
 3963dd.com, 0
-396422.com, 1
 396539.com, 1
 397039.com, 1
 3970a.com, 1
@@ -2887,6 +2910,7 @@
 3970yy.com, 1
 3970z.com, 1
 3970zz.com, 1
+398039.com, 1
 399739.com, 1
 399839.com, 1
 39news.tk, 1
@@ -2901,6 +2925,7 @@
 3ameldaw.ml, 1
 3amtoolbox.se, 1
 3arena.ie, 1
+3b-concept.fr, 1
 3b.pm, 1
 3bb365.com, 1
 3bet86.com, 1
@@ -2912,6 +2937,7 @@
 3changtrai.com, 1
 3commas.io, 1
 3countiescastlehire.co.uk, 1
+3creation.com, 1
 3cs.ch, 0
 3cup90.com, 1
 3d-animator.net, 1
@@ -2922,41 +2948,49 @@
 3danimation.tk, 1
 3dapartment.com, 1
 3dc9.jp, 1
+3dcaipiao.com, 1
 3dcollective.es, 1
-3dcubx.com, 1
+3dcollege.com, 1
+3dcopy.com, 1
 3dd365.com, 1
 3degreedesign.co.uk, 1
 3deni.com, 1
 3dexpose.tk, 1
+3dfeel.com, 1
 3dfiguur.nl, 0
 3dflat.tk, 1
 3dflipbook.net, 1
 3dgep.com, 1
 3dinosaurs.com, 1
 3dissue.com, 1
+3djapan.com, 1
 3djava.ml, 1
 3dlab.team, 1
+3dlan.com, 1
 3dm.audio, 1
 3dmedium.de, 1
 3dmetalprinting.tk, 1
 3dmili.com, 1
 3dmusiclab.nl, 1
 3dn-modell.hu, 1
-3dnchu.com, 1
 3dnovedades.com, 0
 3do3dont.com, 1
+3down.com, 1
 3dprintedobjects.be, 1
 3dprinterwiki.org, 1
 3dprintsondemand.eu, 1
 3dranger.com, 1
 3dreal.tk, 1
 3dscanners.co.uk, 1
+3dscenes.com, 1
 3dsites.tk, 1
 3dsmarket.com, 1
+3dstandard.com, 1
 3dstore.dk, 1
 3dsupplies.be, 1
 3dtech.pt, 1
 3dvisual.studio, 1
+3dzip.org, 1
 3ecpa.com.hk, 1
 3ecpa.com.my, 1
 3ecpa.com.sg, 1
@@ -2974,12 +3008,15 @@
 3haeuserprojekt.org, 1
 3haueserprojekt.org, 1
 3hh365.com, 1
+3huan.com, 1
 3i-infotech.com, 1
 3ieimpact.org, 1
 3ii365.com, 1
 3james.com, 1
 3jj365.com, 1
 3ks.pl, 1
+3link.com, 1
+3links.com, 1
 3lmnyblogger.ga, 1
 3logic.ru, 1
 3lot.ru, 1
@@ -2990,10 +3027,13 @@
 3mind-solutions.com, 1
 3ml.org.uk, 0
 3newsnow.com, 1
+3niu007.com, 1
 3niu10.com, 1
+3niu100.com, 1
 3niu11.com, 1
 3niu111.com, 1
 3niu12.com, 1
+3niu126.com, 1
 3niu13.com, 1
 3niu15.com, 1
 3niu16.com, 1
@@ -3006,13 +3046,17 @@
 3niu2.com, 1
 3niu222.com, 1
 3niu26.com, 1
+3niu27.com, 1
+3niu28.com, 1
 3niu3.com, 1
 3niu333.com, 1
 3niu36.com, 1
+3niu37.com, 1
 3niu388.com, 1
 3niu39.com, 1
 3niu4.com, 1
 3niu5.com, 1
+3niu505.com, 1
 3niu566.com, 1
 3niu568.com, 1
 3niu58.com, 1
@@ -3020,6 +3064,7 @@
 3niu59.com, 1
 3niu61.com, 1
 3niu62.com, 1
+3niu626.com, 1
 3niu636.com, 1
 3niu64.com, 1
 3niu66.com, 1
@@ -3030,6 +3075,7 @@
 3niu69.com, 1
 3niu7.com, 1
 3niu711.com, 1
+3niu727.com, 1
 3niu768.com, 1
 3niu770.com, 1
 3niu771.com, 1
@@ -3037,6 +3083,7 @@
 3niu7777.com, 1
 3niu8.com, 1
 3niu81.com, 1
+3niu836.com, 1
 3niu85.com, 1
 3niu855.com, 1
 3niu868.com, 1
@@ -3095,8 +3142,10 @@
 3v3s.tk, 1
 3v4l.org, 1
 3varta.com.ua, 0
+3vensen.no, 1
 3vlnaeet.cz, 1
 3w-solutions.fr, 1
+3wcafe.com, 1
 3wid.com.br, 1
 3wincorp.com, 1
 3xx.click, 1
@@ -3116,6 +3165,7 @@
 40010monogatari.com, 1
 4005365.com, 1
 4008810.com, 1
+400china.com, 1
 400yaahc.gov, 1
 401ksite.com, 1
 4025360.com, 1
@@ -3138,7 +3188,6 @@
 4048v.com, 1
 404group.tk, 1
 404notfound.com.br, 1
-406811.com, 1
 408663.com, 1
 40acts.org.uk, 1
 40anospaguemenos.com.br, 1
@@ -3220,6 +3269,7 @@
 44fffbb.com, 1
 44fffcc.com, 1
 44fffdd.com, 1
+44fffee.com, 1
 44fffgg.com, 1
 44fffhh.com, 1
 44fffii.com, 1
@@ -3257,6 +3307,8 @@
 44ffuuu.com, 1
 44ffvvv.com, 1
 44ffwww.com, 1
+44ffxxx.com, 1
+44ffyyy.com, 1
 44ffzzz.com, 1
 451.ooo, 1
 451365.com, 1
@@ -3291,8 +3343,11 @@
 47yr.com, 1
 47yt.com, 0
 480ptvseries.com, 1
+483329.com, 1
 48365365cn.com, 1
 48365cn-365.com, 1
+486138.com, 0
+486662.xyz, 1
 486773.com, 1
 487511.com, 1
 487552.com, 1
@@ -3314,9 +3369,9 @@
 499ks.net, 1
 4ads.de, 1
 4ae86.com, 1
+4allpromos.com, 1
 4am.click, 1
 4armed.com, 1
-4b.gg, 1
 4baby.com.br, 1
 4beats.ml, 1
 4best.tk, 1
@@ -3330,11 +3385,14 @@
 4cut.tk, 1
 4d2.xyz, 1
 4daagse.nl, 1
+4dclub.com, 1
 4devs.com.br, 1
 4digital.it, 1
 4digitiq.nl, 1
 4dillusion.tk, 1
 4dimension.net, 1
+4dplay.com, 1
+4dsoft.com, 1
 4everdosti.tk, 1
 4everproxy.com, 1
 4exchange.ru, 1
@@ -3360,6 +3418,7 @@
 4investors.de, 1
 4iplatform.com, 1
 4iq.lt, 1
+4just.com, 1
 4k3dyptt.com, 1
 4kpi.eu, 1
 4kprojektory.cz, 1
@@ -3373,6 +3432,8 @@
 4meizu.ru, 1
 4mm.org, 1
 4motionsgmbh.de, 1
+4muscle.com, 1
+4nature.com, 1
 4netguides.org, 1
 4nikola.de, 1
 4o.pw, 1
@@ -3391,7 +3452,6 @@
 4server.ch, 1
 4share.tv, 1
 4sics.se, 1
-4sightdesignz.com, 1
 4sjnc.org, 1
 4smart.cz, 1
 4smart.house, 1
@@ -3401,8 +3461,8 @@
 4th-ave-studio.com, 1
 4thfebruary.tk, 1
 4thjdcar.gov, 1
+4true.com, 1
 4u.services, 0
-4u2cmedia.com, 1
 4u2ore.net, 1
 4uwatch.cf, 1
 4vector.com, 1
@@ -3452,12 +3512,8 @@
 501stcl.tk, 1
 502312.com, 1
 502fss.marketing, 1
-504122.com, 1
-504322.com, 1
-504922.com, 1
 5060711.com, 1
 5060715.com, 1
-506422.com, 1
 508kb.com, 1
 50balles.com, 1
 50firstavenue.com.au, 1
@@ -3493,19 +3549,12 @@
 514-media.com, 1
 514-media.de, 1
 514-media.fr, 1
-514122.com, 1
-514522.com, 1
 514622.com, 1
-514922.com, 1
 515188.xyz, 1
-515422.com, 1
 5155bet.com, 1
-516422.com, 1
 517vpn.cn, 1
 518.com.tw, 1
-51877.net, 1
 518k8.com, 1
-519422.com, 1
 5197aa.co, 1
 5197bb.co, 1
 5197cc.co, 1
@@ -3553,11 +3602,40 @@
 51aifuli.com, 1
 51cls.tw, 1
 51club8.com, 1
+51collection.com, 1
+51cps.com, 1
+51daxue.com, 1
+51dazhe.com, 1
+51dinghuo.com, 1
+51fish.com, 1
+51fishing.com, 1
+51flower.com, 1
+51flowers.com, 1
+51free.com, 1
 51fss.marketing, 1
 51guaq.com, 1
+51ku.com, 1
+51life.com, 1
+51logo.com, 1
+51motor.com, 1
+51nurse.com, 1
+51patent.com, 1
+51photos.com, 1
+51pic.com, 1
+51pig.com, 1
+51pinpai.com, 1
+51power.com, 1
+51resume.com, 1
+51rose.com, 1
+51sell.com, 1
 51senluo.com, 1
+51share.com, 1
+51shoes.com, 1
+51space.com, 1
 51talk.ph, 1
 51tiaojiu.com, 1
+51train.com, 1
+51wear.com, 1
 51xiongmao.cn, 1
 52002a.com, 1
 52002b.com, 1
@@ -3597,57 +3675,48 @@
 5219.ml, 1
 521keyvista.com, 1
 5225sf.com, 1
-524022.com, 1
-524622.com, 1
-524922.com, 1
 5287.com, 1
 528sss.com, 1
 529kb.com, 1
 529sss.com, 1
 52b9.com, 1
 52b9.net, 1
+52car.com, 1
 52danji.cc, 1
 52dashboard.com, 1
 52evar.com, 1
 52fanpai.com, 1
+52fish.com, 1
 52fss.com, 1
 52fss.marketing, 1
+52happy.com, 1
 52hentai.ml, 1
 52itt.com, 1
 52kb1.com, 1
 52kb365.com, 0
 52ncp.net, 1
+52share.com, 1
 52sykb.com, 0
 52weekspodcast.com, 1
 52xuanmi.com, 1
 52yanhao.com, 1
-531422.com, 1
 531k8.com, 1
 533sss.com, 1
-534122.com, 1
 534365.com, 1
-534622.com, 1
-534922.com, 1
 535kb.com, 1
-536422.com, 1
 5364b.com, 1
 5364c.com, 1
 5364d.com, 1
 5364jc.com, 1
 53ningen.com, 0
 53pluk.cz, 1
-540922.com, 1
 540interactive.com, 1
-541022.com, 1
-541622.com, 1
 541651.com, 1
-541722.com, 1
-541922.com, 1
+5424vip.com, 1
 5454app.com, 1
 5454pk.com, 1
 5455bet.com, 1
 545755.com, 0
-545922.com, 1
 54below.com, 0
 54cuatro.com, 1
 550619.com, 1
@@ -3676,6 +3745,7 @@
 55ffddd.com, 1
 55ffeee.com, 1
 55fffaa.com, 1
+55fffbb.com, 1
 55fffcc.com, 1
 55fffdd.com, 1
 55fffee.com, 1
@@ -3707,6 +3777,7 @@
 55fflll.com, 1
 55ffmmm.com, 1
 55ffnnn.com, 1
+55ffooo.com, 1
 55ffppp.com, 1
 55ffqqq.com, 1
 55ffrrr.com, 1
@@ -3717,6 +3788,7 @@
 55ffwww.com, 1
 55ffxxx.com, 1
 55ffyyy.com, 1
+55ffzzz.com, 1
 55fss.net, 1
 55goal.com, 1
 55jam.com, 1
@@ -3724,11 +3796,14 @@
 55opt.org, 1
 56011s.com, 0
 56011v.com, 0
-561-gotpain.com, 1
 5611bet.com, 1
 5622bet.com, 1
+562656.com, 1
+562956.com, 1
+563398.com, 1
 5633bet.com, 1
 56365t.com, 1
+563699.com, 1
 5663.cc, 1
 5663.co, 1
 566380.com, 1
@@ -3737,14 +3812,14 @@
 5676321.com, 1
 567666365.com, 1
 567667.cc, 1
-5678666365.com, 1
+5678666365.com, 0
+568756.com, 1
 56877.com, 1
 572kb.com, 1
 573sss.com, 1
 575380.com, 1
 5758cp.com, 1
 5763.org, 1
-576422.com, 1
 5765.io, 1
 5781.org, 1
 578380.com, 1
@@ -3753,23 +3828,18 @@
 5795887.com, 1
 5796.org, 1
 5797.org, 1
+581018.com, 0
 582343.com, 1
 585380.com, 1
-585422.com, 1
 588e.com, 1
 589704.com, 1
 5898657.com, 1
 589team.com, 1
 58w66.com, 1
 592227.com, 1
-592422.com, 1
-5930593.com, 1
 593380.com, 1
-594022.com, 1
-594622.com, 1
+593398.com, 1
 595380.com, 1
-595422.com, 1
-596422.com, 1
 5981168.com, 1
 5981611.com, 1
 5981622.com, 1
@@ -3791,7 +3861,6 @@
 5981877.com, 1
 5981899.com, 1
 5981918.com, 1
-5981a.com, 1
 5981b.com, 1
 5981c.com, 1
 5981d.com, 1
@@ -3829,22 +3898,26 @@
 59yanhao.com, 1
 5aelettroni.ga, 1
 5agks.com, 1
+5am.is, 1
 5amat.com, 1
 5apps.com, 1
+5baiwan.com, 1
 5bet86.com, 1
 5c1fd0f31022cbc40af9f785847baaf9.space, 1
 5ca.com, 1
+5cake.com, 1
 5ccapitalinvestments.com, 1
 5chat.it, 1
 5dm.tv, 1
 5drachenschule.de, 1
+5dtech.com, 1
 5e.tools, 1
 5eki.jp, 0
+5escorts.com, 1
 5factum.com, 1
 5francs.com, 1
 5g.co.uk, 1
 5gb.space, 1
-5gigs.com, 1
 5goglobal.com, 1
 5h0r7.com, 1
 5i.gs, 0
@@ -3861,6 +3934,7 @@
 5percentperweek.com, 1
 5pila.com, 1
 5sfer.com, 1
+5snb.club, 1
 5sporn.com, 1
 5starcruises.com.au, 1
 5stardesigner.tk, 1
@@ -3871,6 +3945,7 @@
 5thchichesterscouts.org.uk, 1
 5thfloormedia.com, 1
 5thgenrams.com, 1
+5thmedia.com, 1
 5tiptop.com, 1
 5top.nl, 1
 5u15.com, 1
@@ -3881,16 +3956,10 @@
 6.vu, 1
 600cao.com, 1
 600k8.com, 0
-602422.com, 1
 602yb.com, 1
 603yb.com, 1
-604122.com, 1
-604522.com, 1
-604622.com, 1
 604windswell.ca, 1
-605422.com, 1
 6060fm.tk, 1
-606422.com, 1
 6080.ga, 1
 6080ga.com, 1
 608325.com, 1
@@ -3908,8 +3977,6 @@
 6132-vip.com, 1
 6132pk.com, 1
 6132vip.com, 1
-614022.com, 1
-614922.com, 1
 616578.com, 1
 616675.com, 1
 616728.com, 0
@@ -3924,21 +3991,13 @@
 61fss.net, 1
 620207.com, 1
 621162.com, 1
-621422.com, 1
 621kb.com, 1
 621nn.com, 0
 622283.com, 1
 622812.com, 1
 6228800.com, 1
 6228811.com, 1
-624022.com, 1
-624122.com, 1
-624322.com, 1
-624522.com, 1
-624922.com, 1
 625kb.com, 1
-630422.com, 1
-631422.com, 1
 632017.com, 0
 632025.com, 1
 632026.com, 1
@@ -3963,20 +4022,14 @@
 633362.com, 1
 633663.net, 1
 633663.vip, 1
-634022.com, 1
-634322.com, 1
 634365.com, 1
-634622.com, 1
-634922.com, 1
 635-488.com, 0
 635-588.com, 0
 635-788.com, 0
 635-888.com, 1
 635-988.com, 1
-635422.com, 1
-636422.com, 1
 638566.com, 1
-639422.com, 1
+639063.com, 1
 6396000.com, 1
 63960000.com, 1
 63961111.com, 1
@@ -4019,38 +4072,12 @@
 6396zzz.com, 0
 63fg.com, 1
 63gaming.com, 1
-640622.com, 1
-640922.com, 1
-641022.com, 1
-641322.com, 1
-641422.com, 1
-641522.com, 1
-641722.com, 1
-641822.com, 1
-641922.com, 1
-642022.com, 1
-642322.com, 1
-642422.com, 1
-642722.com, 1
-643022.com, 1
-643122.com, 1
-643722.com, 1
-643922.com, 1
-645122.com, 1
-645322.com, 1
-645722.com, 1
 645ds.cn, 0
 645ds.com, 0
-646322.com, 1
-646722.com, 1
-649022.com, 1
-649622.com, 1
 64970.com, 1
-649722.com, 1
-649822.com, 1
 64bitgaming.de, 1
 64i.de, 1
-64stacks.com, 1
+64media.com, 1
 650.org, 1
 65131a.com, 1
 65131b.com, 1
@@ -4067,8 +4094,6 @@
 65131x.com, 1
 65131y.com, 1
 65131z.com, 1
-651422.com, 1
-652422.com, 1
 6541166.com, 1
 6542277.com, 1
 6543399.com, 1
@@ -4084,7 +4109,8 @@
 655591.com, 1
 655ks.com, 1
 657660.com, 1
-659422.com, 1
+658565.com, 1
+659265.com, 1
 65d88.com, 1
 6602p.com, 1
 661326.com, 1
@@ -4110,7 +4136,6 @@
 663365k.vip, 1
 663651.com, 0
 664048.com, 0
-6652566.com, 1
 6660111.ru, 1
 666111bet.com, 1
 666222bet.com, 1
@@ -4141,7 +4166,9 @@
 66ffbbb.com, 1
 66ffccc.com, 1
 66ffddd.com, 1
+66ffeee.com, 1
 66fffaa.com, 1
+66fffbb.com, 1
 66fffcc.com, 1
 66fffdd.com, 1
 66fffee.com, 1
@@ -4169,6 +4196,7 @@
 66ffhhh.com, 1
 66ffiii.com, 1
 66ffjjj.com, 1
+66ffkkk.com, 1
 66fflll.com, 1
 66ffmmm.com, 1
 66ffnnn.com, 1
@@ -4189,7 +4217,6 @@
 66mmav.com, 1
 6700.ar, 1
 670102.com, 1
-670422.com, 1
 671660.com, 1
 671990.com, 1
 672367.com, 1
@@ -4306,12 +4333,11 @@
 6729zz.co, 1
 6729zz.com, 0
 672bbb.com, 1
-673422.com, 1
+673395.com, 1
 673569.com, 1
 673660.com, 1
 673990.com, 1
 673bbb.com, 1
-676422.com, 1
 677314.com, 1
 677340.com, 1
 677341.com, 1
@@ -4327,10 +4353,9 @@
 678678365.com, 1
 67877777.com, 1
 6789666365.com, 1
-679422.com, 1
 67wine.com, 1
 67y7.com, 0
-680422.com, 1
+682368.com, 1
 68277.me, 1
 68522.com, 1
 68522c.com, 1
@@ -4344,23 +4369,16 @@
 68636.com, 1
 68636.net, 1
 68636.vip, 1
-686848.com, 1
 68722.com, 1
 68reg.tk, 1
-690422.com, 1
 690469.com, 1
 690569.com, 1
 690669.com, 1
-691422.com, 1
 692269.com, 1
-692422.com, 1
 692660.com, 1
 692b8c32.de, 1
 693369.com, 1
 69420.reviews, 1
-694322.com, 1
-694622.com, 1
-694922.com, 1
 695660.com, 1
 6957.co, 1
 6957a.co, 1
@@ -4422,7 +4440,6 @@
 6957z.co, 1
 6957z.com, 1
 6957zz.co, 1
-695990.com, 1
 69759.com, 0
 6997896.com, 1
 69asmr.com, 1
@@ -4443,7 +4460,6 @@
 6lo.zgora.pl, 1
 6meter.tk, 1
 6play.fr, 1
-6s.cc, 1
 6t-montjoye.org, 1
 6thmarch.com, 1
 6v.vc, 1
@@ -4459,32 +4475,22 @@
 701squad.tk, 1
 70365365.com, 0
 703740.com, 1
-704233.com, 1
-704533.com, 1
-704633.com, 1
 705994.com, 1
 708090.ru, 1
 70872.com, 0
 709129.com, 1
 70mpg.org, 1
-712433.com, 1
 712kb.com, 1
 713367.com, 0
-713433.com, 1
 71365365.com, 0
 7139365.com, 1
 713kb.com, 1
-714133.com, 1
-714533.com, 1
-714633.com, 1
-715433.com, 1
 716176.com, 0
 716331.com, 0
 7177bet.com, 1
 717966833.xyz, 1
 718113.com, 0
 7183.org, 0
-718433.com, 1
 71fss.marketing, 1
 71tuiguang.com, 1
 7203.ru, 1
@@ -4493,29 +4499,29 @@
 7214.cc, 1
 721aa.com, 0
 722201.com, 0
-724233.com, 1
 724go.com, 1
+724online.com, 1
 7261696e626f77.net, 1
 727877.com, 1
 727sss.com, 1
-728433.com, 1
-729433.com, 1
 72hours2sold.com, 1
 730.no, 1
-731433.com, 1
-732433.com, 1
+732273.com, 1
+732473.com, 1
 733575.com, 0
 73365365.com, 0
+733673.com, 1
 734365.com, 1
-735433.com, 1
-736433.com, 1
-738433.com, 1
-739433.com, 1
-740833.com, 1
+735973.com, 1
+736373.com, 1
+736573.com, 1
+739373.com, 1
+739673.com, 1
+739973.com, 1
+73fy.com, 0
 740cashbuyers.com, 1
 743365.com, 1
 74365365.com, 1
-743833.com, 1
 74d88.com, 1
 74dy.org, 1
 74th.jp, 1
@@ -4544,10 +4550,15 @@
 755284.com, 0
 755294.com, 0
 755k3.com, 1
+756975.com, 1
+758375.com, 1
+759375.com, 1
+759675.com, 1
 75codes.com, 1
 75refer.tk, 1
 761.com, 1
 761link.net, 1
+762media.com, 1
 763365.com, 1
 76365365.com, 1
 7654654.xyz, 1
@@ -4555,6 +4566,7 @@
 76668.com, 1
 7666898.com, 1
 76669.com, 1
+766788.xyz, 1
 76956.com, 1
 7699.org, 1
 769k.com, 0
@@ -4563,6 +4575,7 @@
 76o.cn, 1
 77018dd.com, 0
 77018vip.com, 0
+771176.com, 1
 77168365.com, 1
 77177.de, 1
 77321365.com, 1
@@ -4576,7 +4589,6 @@
 777bet86.com, 1
 777coin.com, 1
 777mage.com, 1
-777tv.tv, 1
 7788bet.vip, 1
 77909.com, 1
 77909a.com, 1
@@ -4611,6 +4623,7 @@
 77fffll.com, 1
 77fffmm.com, 1
 77fffnn.com, 1
+77fffoo.com, 1
 77fffpp.com, 1
 77fffqq.com, 1
 77fffrr.com, 1
@@ -4629,23 +4642,27 @@
 77ffkkk.com, 1
 77fflll.com, 1
 77ffmmm.com, 1
+77ffnnn.com, 1
 77ffooo.com, 1
 77ffppp.com, 1
 77ffqqq.com, 1
 77ffrrr.com, 1
 77ffsss.com, 1
+77ffttt.com, 1
 77ffuuu.com, 1
 77ffvvv.com, 1
 77ffwww.com, 1
 77ffxxx.com, 1
 77ffyyy.com, 1
 77ffzzz.com, 1
+77online.com, 1
 77zxdy.com, 1
 78-couvreur.fr, 1
 78-elagage.fr, 1
 780aa.com, 1
 781534.com, 1
 782354.com, 1
+783346.com, 1
 78365b.com, 0
 783lab.com, 1
 787637.com, 1
@@ -4665,7 +4682,9 @@
 789365t.com, 1
 7894.net, 1
 789zr.com, 0
+792379.com, 1
 795sss.com, 1
+797715.com, 1
 797sss.com, 1
 798sss.com, 1
 7992.org, 1
@@ -4685,6 +4704,7 @@
 7emka.tk, 1
 7extranews.tk, 1
 7f.is, 1
+7gr.uk, 1
 7graus.pt, 1
 7hills.us, 1
 7hq.ru, 1
@@ -4702,6 +4722,7 @@
 7networking.com, 1
 7pets.net, 1
 7plus.com.au, 1
+7press.com, 1
 7proxies.com, 1
 7qly.com, 1
 7sdre.am, 1
@@ -4721,8 +4742,16 @@
 8006d.com, 1
 8006d88.com, 1
 800999.xyz, 1
+800bar.com, 1
+800email.com, 1
+800ink.com, 1
+800live.com, 1
 800mattress.com, 1
+800ok.com, 1
 800perkins.com, 1
+800sports.com, 1
+800tea.com, 1
+800web.com, 1
 8010d88.com, 1
 8012d88.com, 1
 8017d.com, 1
@@ -4745,7 +4774,6 @@
 8036d88.com, 1
 8038d88.com, 1
 8039d.com, 1
-804322.com, 1
 8050d.com, 1
 8059d88.com, 1
 8060d88.com, 1
@@ -4764,7 +4792,6 @@
 8091.info, 1
 8092d88.com, 1
 8093d.com, 1
-809422.com, 1
 8097d.com, 1
 80993.net, 1
 80bin.com, 1
@@ -4791,7 +4818,6 @@
 81365365.com, 0
 81365s.com, 1
 8139d.com, 1
-814022.com, 1
 8151d.com, 1
 8153365.com, 0
 8153d.com, 1
@@ -4819,7 +4845,6 @@
 8183d.com, 1
 8183d88.com, 1
 8186d.com, 1
-8189196.com, 1
 8189d.com, 1
 818bwf.com, 1
 8190d.com, 1
@@ -4856,6 +4881,7 @@
 8226d.com, 1
 8228d.com, 1
 8229d88.com, 1
+823582.com, 1
 82365a.com, 1
 82365b.com, 1
 82365c.com, 1
@@ -4882,6 +4908,9 @@
 82365x.com, 1
 82365y.com, 1
 82365z.com, 1
+825382.com, 1
+826282.com, 1
+826382.com, 1
 82781111.com, 0
 82783333.com, 0
 82784444.com, 0
@@ -4899,6 +4928,7 @@
 8278rr.com, 0
 8278tt.com, 0
 8278yy.com, 0
+829882.com, 1
 82fss.com, 1
 82fss.marketing, 1
 82kb88.com, 1
@@ -4932,8 +4962,6 @@
 84ek.com, 1
 84et.com, 1
 84ew.com, 1
-84ez.com, 1
-84fd.com, 1
 84fe.com, 1
 84fi.com, 1
 84ft.com, 1
@@ -4947,20 +4975,15 @@
 84hp.com, 1
 84hs.com, 1
 84ia.com, 1
-84jl.com, 1
 84jt.com, 1
 84kc.com, 1
-84kl.com, 1
 84kn.com, 1
 84kq.com, 1
 84lb.com, 1
-84lh.com, 1
 84pg.com, 1
 84rd.com, 1
 84rn.com, 1
 84sg.com, 1
-84sr.com, 1
-84sv.com, 1
 84tn.com, 1
 84tp.com, 1
 84tw.com, 1
@@ -4973,7 +4996,6 @@
 84yd.com, 1
 84yj.com, 1
 84yp.com, 1
-84yq.com, 1
 84yv.com, 1
 84yw.com, 1
 84zb.com, 1
@@ -5009,8 +5031,10 @@
 86kb88.com, 1
 86metro.ru, 1
 870.cc, 1
+872291.com, 1
 8722ph.com, 1
 8722usa.com, 1
+873394.com, 1
 87365365.com, 0
 87577.com, 1
 877027.com, 1
@@ -5059,15 +5083,15 @@
 8861ks.com, 1
 88661234.com, 1
 886666f.com, 1
-886666l.com, 1
+886666l.com, 0
 886666n.com, 1
 886666p.com, 1
 886666q.com, 1
 886666r.com, 1
 886666s.com, 1
-886666t.com, 1
-886666u.com, 1
-886666v.com, 1
+886666t.com, 0
+886666u.com, 0
+886666v.com, 0
 8866d88.com, 1
 8868ty8.com, 1
 8869ks.com, 1
@@ -5108,6 +5132,7 @@
 888666pj.com, 1
 888700.xyz, 1
 888789j.com, 1
+8887999.com, 0
 888806.xyz, 1
 88881.pw, 0
 888888722.com, 1
@@ -5117,7 +5142,6 @@
 888bet86.com, 1
 888bwf.com, 1
 888casino-canada.com, 1
-888dhw.com, 1
 888starz-5b.bet, 1
 888starz.bet, 1
 888starz22.bet, 1
@@ -5143,6 +5167,7 @@
 889w889.com, 1
 889w889.net, 1
 88bet86.com, 1
+88bill.com, 1
 88cakescorner.com, 1
 88d.com, 1
 88djl.cc, 1
@@ -5180,6 +5205,7 @@
 88ffhhh.com, 1
 88ffiii.com, 1
 88ffjjj.com, 1
+88ffkkk.com, 1
 88fflll.com, 1
 88ffmmm.com, 1
 88ffnnn.com, 1
@@ -5225,7 +5251,7 @@
 8927d.com, 1
 8927d88.com, 1
 8929d88.com, 1
-893067.com, 1
+893067.com, 0
 89386.com, 1
 89386b.com, 0
 89386d.com, 0
@@ -5271,16 +5297,18 @@
 8gerd.tk, 1
 8hrs.net, 1
 8l.com.au, 1
+8link.com, 1
 8maerz.at, 1
 8me.nl, 1
 8mpay.com, 1
-8o8wave.com, 1
 8points9seconds.com, 1
 8shequapp.com, 1
+8show.com, 1
 8t8.eu, 1
 8tech.com.hk, 1
 8thportsmouth.org.uk, 1
 8thstreetlatinas.com, 1
+8time.com, 1
 8tuffbeers.com, 1
 8ung.online, 1
 8xx.io, 0
@@ -5303,28 +5331,36 @@
 9021.io, 1
 9023n.com, 1
 9023w.com, 1
-903422.com, 1
-905422.com, 1
 9060989.com, 1
 9070989.com, 1
 907856.com, 1
 90920.cn, 1
 90daydiet.org, 1
+90minut.com, 1
 90r.jp, 1
 90splease.com, 1
 911.gov, 1
 9111s.ru, 1
 911216.xyz, 1
+9118.cc, 1
 9118.com, 1
 9118.hk, 0
+91181.cc, 1
+91186.cc, 1
 9118inc.com, 0
 911commission.gov, 1
+911dispatcheredu.org, 1
 911pestpatrol.com, 1
-912422.com, 1
+912191.com, 1
+912791.com, 1
+912891.com, 1
 9132365.com, 1
-913422.com, 1
+913291.com, 1
+913391.com, 1
+913691.com, 1
 9137365.com, 0
-914122.com, 1
+915991.com, 1
+917991.com, 1
 918-siteinfo.com, 1
 918116.com, 1
 9181181.com, 1
@@ -5338,6 +5374,7 @@
 9182289.com, 1
 9186.fun, 1
 9186119.com, 1
+918991.com, 1
 918bbm.co, 1
 918bcf.co, 1
 918bcw.co, 1
@@ -5349,14 +5386,15 @@
 918dc19.com, 1
 918kisse.com, 1
 918kissinw.com, 1
-919422.com, 1
 919898.com, 1
+91beauty.com, 1
 91d52.com, 1
 91d72.com, 1
 91d81.com, 1
 91d83.com, 1
 91d85.com, 0
 91dh.cc, 0
+91fashion.com, 1
 91fldz.com, 1
 91imh.com, 1
 91milk.net, 0
@@ -5364,12 +5402,18 @@
 91pro.org, 1
 91tianmi.com, 0
 91tvg.com, 1
+920392.com, 1
+921792.com, 1
 923601.com, 1
-924322.com, 1
-924622.com, 1
+924892.com, 1
+924992.com, 1
 925892.com, 1
 925silverjewelry.com, 1
-926422.com, 1
+926792.com, 1
+927092.com, 1
+927892.com, 1
+928492.com, 1
+928592.com, 1
 929349.com, 1
 9297.co, 1
 9297a.co, 1
@@ -5429,12 +5473,11 @@
 9297yy.co, 1
 9297z.co, 1
 9297zz.co, 1
+929892.com, 1
 92url.com, 1
 9304dh5.vip, 1
-931422.com, 1
-932422.com, 1
+931593.com, 1
 933325.com, 1
-934122.com, 1
 934365.com, 1
 93644.com, 0
 93644a.com, 0
@@ -5445,8 +5488,11 @@
 93644y.com, 0
 93644z.com, 0
 937493.com, 1
+937693.com, 1
+937893.com, 1
 939394.org, 1
 939394.xyz, 1
+939493.com, 1
 9397a.com, 1
 9397b.com, 1
 9397bb.com, 0
@@ -5500,18 +5546,12 @@
 9417k.cf, 1
 9417k.com, 1
 941988.cn, 1
-943022.com, 1
+943359.com, 1
 9449-27a1-22a1-e0d9-4237-dd99-e75e-ac85-2f47-9d34.de, 1
 944cq.com, 1
-946022.com, 1
 946321.com, 1
-946422.com, 1
 946773.com, 0
 947cq.com, 1
-949022.com, 1
-949122.com, 1
-949622.com, 1
-949722.com, 1
 9499060.com, 0
 9499066.com, 0
 9499068.com, 0
@@ -5552,18 +5592,44 @@
 9499yl.com, 1
 94imk.com, 1
 95-the-mix.com, 1
-95.ar, 1
+95105.com, 1
+95107.com, 1
+95108.com, 1
 9528365.com, 0
+95500.com, 1
+95518.com, 1
+95519.com, 1
+95544.com, 1
+95558.com, 1
+95559.com, 1
+95566.com, 1
+95567.com, 1
+95568.com, 1
+95577.com, 1
 956jj.com, 0
+95700.com, 1
+95808.com, 1
+95828.com, 1
 95868457.xyz, 1
 9588.com.cn, 1
 959606.com, 1
+95996.com, 1
 96002.com, 0
 960303.xyz, 1
 960server.net.co, 1
 9617818.com, 1
 9617818.net, 1
+96181.com, 1
+96200.com, 1
+96220.com, 1
+96229.com, 1
+96316.com, 1
 963696.com, 1
+96448.com, 1
+96577.com, 1
+96605.com, 1
+96606.com, 1
+96607.com, 1
 96658.com, 1
 96658.la, 1
 9666ks.com, 1
@@ -5572,9 +5638,10 @@
 966kb.com, 1
 966ty.com, 1
 967606.com, 1
-9679693.com, 1
 967you.com, 1
-9681909.com, 1
+968860.com, 1
+96896.com, 1
+96961.com, 1
 9697cp.com, 1
 970locksmithservices.tech, 1
 9721a.com, 0
@@ -5624,7 +5691,6 @@
 9721xx.com, 0
 9721z.com, 0
 9721zz.com, 0
-972422.com, 1
 9728.com, 1
 9728a.co, 1
 9728aa.co, 1
@@ -5684,12 +5750,12 @@
 9728yy.co, 1
 9728z.co, 1
 9728zz.co, 1
+973325.com, 1
 976-tuna.com, 1
 97736.com, 1
 97738.com, 0
 97739.com, 1
 977kb.com, 1
-9788876.com, 1
 97bros.com, 1
 97display.com, 0
 97m.cc, 1
@@ -5712,7 +5778,11 @@
 9877bet.com, 1
 987987.com, 1
 988.gov, 1
+9882258.com, 1
 988316.com, 1
+9883358.com, 1
+9884458.com, 1
+98877.com, 1
 98901111.com, 1
 9891100.com, 1
 9893111.com, 1
@@ -5730,7 +5800,6 @@
 98laba.com, 0
 98laba.net, 0
 990313.xyz, 1
-9918883.com, 1
 992ccc.com, 1
 99321365.com, 1
 9933445.com, 1
@@ -5780,9 +5849,13 @@
 998wei.com, 1
 998wns.com, 1
 998z6.com, 1
+9990058.com, 1
+9991158.com, 1
+9992258.com, 1
 999321365.com, 1
 999365t.com, 1
 9994553.com, 1
+9995558.com, 1
 999700.xyz, 1
 999814.com, 1
 9998722.com, 1
@@ -5798,7 +5871,7 @@
 99billionaire.com, 1
 99buffets.com, 1
 99casinos.com, 1
-99counters.com, 1
+99dog.com, 1
 99ffaaa.com, 1
 99ffbbb.com, 1
 99ffccc.com, 1
@@ -5865,7 +5938,7 @@
 9bet86.com, 1
 9ccn.top, 1
 9de.net, 1
-9elements.com, 1
+9elements.com, 0
 9farm.com, 1
 9fvip.net, 1
 9gag.com, 1
@@ -6173,6 +6246,7 @@
 aaoth.xyz, 1
 aapant.org.au, 1
 aapar.nl, 1
+aapipower.org, 1
 aappb.org, 1
 aappe.fr, 0
 aaprotocol.tk, 1
@@ -6312,7 +6386,7 @@
 abceducationacademy.com, 1
 abcempreendimentos.com.br, 1
 abcensax.tk, 1
-abcfinance.co.uk, 1
+abcfinance.co.uk, 0
 abcgruppen.se, 1
 abch2o.net, 1
 abcheck.se, 1
@@ -6358,6 +6432,7 @@
 abecodes.net, 1
 abecon.com.br, 1
 abeestrada.com, 0
+abeilleduhain.be, 1
 abeilles-idapi.fr, 0
 abelbarretto.tk, 1
 abella.ro, 1
@@ -6472,6 +6547,7 @@
 abolitionism.in, 1
 abolitionism.net, 1
 abolitionism.us, 1
+abolitionist-movement.com, 1
 abolitionist-project.com, 1
 abolitionist-society.com, 1
 abolitionist.ca, 1
@@ -6495,6 +6571,7 @@
 abormez.es, 1
 abortionprotest.org, 1
 aborto.tk, 1
+abortopr.com, 1
 abos.eu, 0
 aboticaprodutosnaturais.com, 1
 abouncycastleman.co.uk, 1
@@ -6622,6 +6699,7 @@
 absolutedouble.co.uk, 1
 absolutegames.ga, 1
 absolutelybaching.com, 1
+absolutepondcare.com, 1
 absoluterush.net, 1
 absolutezero.tk, 1
 absolution.ga, 1
@@ -6641,12 +6719,14 @@
 abtech.link, 1
 abteutonia.de, 1
 abth.tk, 1
+abtherapy.co.uk, 1
 abthorpe.org, 1
 abtinheydari.tk, 1
 abu-auftrag.ch, 1
 abu-nour.tk, 1
 abuahmed.ga, 1
 abulanov.com, 1
+abumount.com, 1
 abun-motorsport.tk, 1
 abundent.com, 1
 abusamraphotography.tk, 1
@@ -6656,7 +6736,6 @@
 abuse.io, 1
 abusive-host.tk, 1
 abuzihipnoterapi.com, 1
-abuzitraining.com, 1
 abuziyadhsds.com, 1
 abvent.net, 0
 abvlbasketviganello.ch, 0
@@ -6670,6 +6749,7 @@
 abyssproject.net, 1
 abysswebsite.tk, 1
 abzarkosaran.ir, 1
+abziehen.com, 1
 ac-admin.pl, 1
 ac-booster.net, 1
 ac-spain.tk, 1
@@ -6679,6 +6759,7 @@
 ac0g.dyndns.org, 1
 ac8.es, 1
 acab.love, 1
+acachau.synology.me, 1
 acacia-gardens.co.uk, 1
 acaciab.com, 1
 academiacivilbalonmano.tk, 1
@@ -6686,7 +6767,6 @@
 academiadelmolino.com.uy, 1
 academiadeufologia.com.br, 1
 academiaeureka.tk, 1
-academiaparamodelos.com, 1
 academiasdemodelos.com, 1
 academic-master.com, 1
 academica.nl, 1
@@ -6705,6 +6785,7 @@
 acaeum.com, 0
 acalcio.ga, 1
 acallawayroofing.com, 1
+acaltair.com, 1
 acandroid.top, 1
 acani.xyz, 1
 acaonegocios.com.br, 1
@@ -6736,6 +6817,7 @@
 accedeainternet.gov, 1
 accedia-distribution.com, 1
 accelaway.com, 1
+acceldigital.com.au, 1
 acceleratedpayments.com, 1
 acceleratedreading.cf, 1
 acceleratethesale.com, 1
@@ -6794,7 +6876,6 @@
 account.gov.mo, 1
 account.gov.uk, 1
 accountancymanager.co.uk, 1
-accountant.nl, 1
 accountingedu.org, 1
 accountmanager.tips, 1
 accountmover.io, 1
@@ -6825,7 +6906,6 @@
 accutint.com, 1
 accutone.com.mx, 1
 accwing.com, 1
-acdcbrasil.net, 1
 acdk2.de, 1
 ace-aegon.cloud, 1
 ace-clan.tk, 1
@@ -6843,11 +6923,11 @@
 acebovirtual.tk, 1
 acecardiologyclinic.com, 1
 acecerts.co.uk, 1
-aceconcept.net, 1
 acectamentit.tk, 1
 acedstudy.com, 1
 acefishing.tk, 1
 acefreightco.com, 1
+acefront.co.uk, 1
 aceinflatables.com, 1
 aceinstituteonline.com, 1
 aceleraguria.com.br, 1
@@ -6862,6 +6942,7 @@
 acendas.com, 1
 acendealuz.com.br, 1
 aceofdiamondspainting.com, 1
+aceofheartsgiftbaskets.com, 1
 aceparking.com, 1
 acephalafashion.com, 1
 acepi.pt, 1
@@ -6899,6 +6980,7 @@
 achiever.ga, 1
 achievingheightsacademy.com, 1
 achiksongs.tk, 1
+achildshome.com, 1
 achildshome.org, 1
 achill.org, 1
 achinsk.tk, 1
@@ -6927,6 +7009,7 @@
 acina.fr, 1
 acingov.pt, 1
 acinq.co, 1
+ack.tax, 1
 ackermann.ch, 1
 acklandstainless.com.au, 1
 acl.gov, 1
@@ -6940,7 +7023,7 @@
 acmebookkeepingsolutions.com, 1
 acmilan.gq, 1
 acmilan.ml, 1
-acnenaturalhealing.com, 0
+acnenaturalhealing.com, 1
 acnj.gov, 1
 acnjpolice.gov, 1
 acnoventa.it, 1
@@ -6956,18 +7039,17 @@
 acorncastles.co.uk, 1
 acorta.me, 1
 acosa.com.gt, 1
-acosa.com.hn, 1
 acosa.com.sv, 1
 acotadecalle.tk, 1
 acourse.io, 1
 acousticalsolutions.com, 1
-acousticbiotech.com, 1
 acoustics.network, 1
 acoustics.tech, 1
 acousticsoundrecords.com, 1
 acoustictabs.tk, 1
 acoustique-tardy.com, 0
 acovadamoura.tk, 1
+acp-integrative.fr, 1
 acpbenefit.gov, 1
 acpcoils.com, 0
 acpica.org, 1
@@ -6981,6 +7063,7 @@
 acquirebpo.com, 1
 acquireit.com.au, 1
 acquisition.gov, 1
+acquisitiongateway.gov, 1
 acquistorealestate.com, 1
 acrealamendolara.tk, 1
 acredperu.org, 1
@@ -7063,6 +7146,7 @@
 actions.today, 1
 actionsack.com, 1
 actionsandreactions.com, 1
+actionsecuritycameras.com, 1
 actionverb.com, 1
 actiumhealth.com, 1
 activat3rs.com, 1
@@ -7102,7 +7186,9 @@
 activitycellsers.ga, 1
 activityhub.cloud, 1
 activityhub.xyz, 1
+activityinfo.org, 1
 activityshelter.com, 1
+activlux.pt, 1
 activohotels.com, 1
 activproject.ro, 1
 activs.ru, 1
@@ -7251,7 +7337,6 @@
 adapt-elektronik.com, 1
 adapt-iq.co.nz, 1
 adapt-iq.com, 1
-adaptationplatform.ca, 1
 adapti.de, 1
 adaptimmune.com, 1
 adaptiv.ltd, 1
@@ -7261,7 +7346,6 @@
 adaptivemechanics.edu.au, 1
 adaptivesite.cf, 1
 adaptivesite.gq, 1
-adaptivesound.fr, 1
 adaptiveu.io, 1
 adaptyourlifeacademy.com, 1
 adarixconsultores.com, 1
@@ -7269,6 +7353,7 @@
 adarshthapa.org, 1
 adarsvidler.me, 1
 adasbench.com, 1
+adaselin.com, 1
 adata.kz, 1
 adatitleiii.com, 1
 adativos.com.br, 1
@@ -7301,6 +7386,7 @@
 addict.tk, 1
 addictedtolength.co.uk, 1
 addictedtotravel.pl, 1
+addiction-counselors.com, 1
 addictioncounsellors.co.nz, 1
 addictionresource.com, 1
 addictionsolutionsllc.com, 1
@@ -7358,6 +7444,7 @@
 adelina.com.br, 0
 adeline.mobi, 1
 adelonline.tk, 1
+adelphiawines.com, 1
 ademaulana.tk, 1
 ademy.ml, 1
 adenhurra.cf, 1
@@ -7369,11 +7456,12 @@
 adeon.ml, 1
 adept-elearning.com, 1
 adept.org.pl, 1
+adeptplumbingandgas.com.au, 1
 adesa.co.uk, 1
 adescb.ga, 1
 adese.es, 1
 adesex.in, 1
-adeshome.com, 1
+adeshome.com, 0
 adesignguy.co.uk, 1
 adespresso.com, 1
 adevel.eu, 1
@@ -7415,6 +7503,7 @@
 adiehard.party, 0
 adiesyndrome.tk, 1
 adigolifestyle.com, 1
+adiguezel-bau-gmbh.de, 1
 adihomes.com, 1
 adilsabri.tk, 1
 adimaja.com, 1
@@ -7455,6 +7544,8 @@
 admin-gator.com, 1
 admin-gator.net, 1
 admin-serv.net, 1
+admin-wp.com, 1
+admin-wp.pl, 1
 admin.academy, 1
 admin.fedoraproject.org, 1
 admin.google.com, 1
@@ -7483,11 +7574,8 @@
 adminrezo.fr, 0
 adminwells.com, 1
 admirable.pro, 0
-admiralcanvas.com, 1
 admody.com, 1
 admongo.gov, 1
-admxj.com, 1
-adn-recrutement.fr, 1
 adnanotoyedekparca.com, 1
 adnempresa.es, 1
 adnexa.it, 1
@@ -7528,7 +7616,6 @@
 adorkable.eu, 1
 adorkable.social, 1
 adorned.ga, 1
-adorno-gymnasium.de, 1
 adotta.me, 1
 adoucishop.fr, 1
 adoxy.com.br, 1
@@ -7537,13 +7624,12 @@
 adpost.com, 1
 adpot.xyz, 0
 adprofit-plus.com, 1
-adquisitio.co.uk, 1
-adquisitio.es, 1
 adr.gov, 1
 adrabataille.fr, 0
 adrafinil.wiki, 1
 adrans.com, 1
 adreaminsteel.tk, 1
+adreana.com, 1
 adregain.com, 1
 adregain.ru, 1
 adrenalin.is, 1
@@ -7590,11 +7676,13 @@
 adrino.ml, 1
 adrup.com, 1
 ads-kuwait.net, 1
+adsb.lol, 1
 adsbouncycastles.co.uk, 1
 adscambodia.com, 1
 adsense-arbitrage.com, 1
 adseye.tk, 1
 adsforcash.ga, 1
+adshooter.com, 1
 adsib.gob.bo, 1
 adsl2meg.fr, 1
 adsmarketing.tk, 1
@@ -7640,7 +7728,6 @@
 adurra.com, 1
 adutoras.com.br, 1
 adv.cr, 1
-adv.studio, 1
 advair-generic.ga, 1
 advairgeneric.ga, 1
 advairprice.ga, 1
@@ -7654,6 +7741,7 @@
 advance.hr, 1
 advanced-online.eu, 1
 advanced-scribes.com, 0
+advancedaquaticservice.com, 1
 advancedboilers.com, 1
 advancedbotoxclinic.com, 1
 advancedbuildings.com.au, 1
@@ -7679,7 +7767,6 @@
 advancedurologyca.com, 1
 advancedurologyswla.com, 1
 advancedwriters.com, 1
-advanceeasymoving.it, 1
 advancemoversnc.com, 1
 advanceoptical.com, 1
 advanceworx.com, 1
@@ -7735,7 +7822,7 @@
 adverganda.de, 1
 adversus-test.tk, 0
 adversus-web-staging.tk, 0
-advertis.biz, 1
+advertis.biz, 0
 advertise-ment.tk, 1
 advertise.cn, 1
 advertising-design.tk, 1
@@ -7743,12 +7830,13 @@
 advertisingindustry.ga, 1
 advertisingphonesest.ga, 1
 advertisment.ga, 1
-advertizz.es, 1
 advery.tk, 1
 advice24.tk, 1
 adviceprime.tk, 1
 adviesfactuur.nl, 1
 adviesgv.nl, 1
+advinans.io, 1
+advinans.se, 1
 advinix.fr, 1
 advirk.tk, 1
 advise.cn, 1
@@ -7757,6 +7845,7 @@
 advisorperspectives.com, 1
 advmaster.cf, 1
 advocaat-dejonge.be, 1
+advocaatzoeken.nl, 1
 advocatae.com, 1
 advocatburo.tk, 1
 advocatealliancegroup.com, 1
@@ -7860,6 +7949,7 @@
 aecom.digital, 1
 aecom.io, 1
 aedollon.com, 1
+aedus-design.ru, 1
 aefcleaning.com, 1
 aegeanmep.com, 1
 aegee-academy.eu, 1
@@ -7885,10 +7975,8 @@
 aelisya.net, 0
 aelurus.com, 1
 aem.com.sg, 1
-aemoria.com, 0
 aenes.com, 1
 aenmail.com, 1
-aenterprise.info, 1
 aeolservice.es, 1
 aeon.co, 0
 aeon.wiki, 0
@@ -7903,8 +7991,8 @@
 aerandir.fr, 1
 aeraustral.com.au, 1
 aere.com, 1
+aereco.com, 1
 aerelon.de, 1
-aerelsrl.com, 1
 aergia.eu, 1
 aerialforce.co.uk, 1
 aerialworks.ddns.net, 1
@@ -7926,9 +8014,6 @@
 aeroklub.tk, 1
 aerolineasvenezolanas.net, 1
 aerolog.co, 0
-aerolyusa.com, 1
-aerolyusa.net, 1
-aerolyusa.us, 1
 aeron.aero, 1
 aeronautix.com, 1
 aeronote.net, 1
@@ -7968,6 +8053,7 @@
 aeterna-ufa.ru, 1
 aeternus-darkermonument.tk, 1
 aeternus.tech, 1
+aether.industries, 1
 aetherc0r3.eu, 1
 aetherdigitalplatform.com, 1
 aethereahealth.com, 1
@@ -7983,7 +8069,6 @@
 aextron.com, 1
 aextron.de, 1
 aextron.org, 1
-aez-adventures.net, 1
 aezw.at, 1
 af-clan.tk, 1
 af.link, 1
@@ -8016,6 +8101,7 @@
 affectionate.tk, 1
 affektblog.de, 1
 affengine.xyz, 1
+affibody.se, 1
 affidea.ie, 1
 affilatura.it, 1
 affilia.tk, 1
@@ -8036,6 +8122,7 @@
 affinity.vc, 1
 affinitycu.ca, 1
 affinityplus.org, 1
+affinitysync.com, 1
 affinityweb.co, 1
 affissioni.roma.it, 1
 affittacamere.roma.it, 1
@@ -8060,7 +8147,6 @@
 affproduct.com, 1
 affumico.it, 1
 affusio.com, 1
-affvps.net, 1
 afg-team.tk, 1
 afganistan.cf, 1
 afghan-media.tk, 1
@@ -8104,7 +8190,6 @@
 africainquirer.com, 1
 africalebanon.tk, 1
 african-artmosphere.tk, 1
-africanconstellations.co.za, 1
 africanewstest0.ml, 1
 africangazda.tk, 1
 africangreyparrotscare.com, 1
@@ -8138,6 +8223,7 @@
 afrogospel.tk, 1
 afroludi.tk, 1
 afroto.com, 1
+afslankstudiovelserbroek.nl, 1
 afsys.com.br, 1
 aftamurae.com, 1
 after-whoru.tk, 1
@@ -8271,6 +8357,7 @@
 againsttheneighbour.tk, 1
 againsttheodds.es, 1
 agalexusfix.com, 1
+agalia.com, 1
 agalloch.tk, 1
 agambition.eu, 1
 agamsecurity.ch, 0
@@ -8282,6 +8369,7 @@
 agas.com, 1
 agasaya.com, 1
 agasport.nl, 0
+agastia.com, 1
 agatajanik.de, 1
 agate.pw, 1
 agateh.com.au, 1
@@ -8323,12 +8411,13 @@
 agencesaintpierre.fr, 1
 agencetourismemali.ml, 1
 agenciacanina.tk, 1
+agenciacoder.com, 1
 agenciacolors.com.br, 1
 agenciacolors.digital, 1
 agenciacorujadesign.com.br, 1
 agenciacrown.es, 1
 agenciafiscal.pe, 1
-agenciaingenium.cl, 1
+agenciaingenium.cl, 0
 agenciaonnmarketing.com, 1
 agenciaplanner.com.br, 1
 agenciarse.com, 1
@@ -8373,6 +8462,7 @@
 agenziapubblicitaria.milano.it, 1
 agenziapubblicitaria.roma.it, 1
 ageofreason.tk, 1
+agerich.com, 1
 agesofarda.net, 1
 agfmedia.com, 1
 agg097.com, 1
@@ -8457,7 +8547,7 @@
 agks88.com, 1
 agks888.com, 0
 agks89.com, 1
-agks9.com, 0
+agks9.com, 1
 agks90.com, 0
 agks92.com, 1
 agktest1.ga, 1
@@ -8465,7 +8555,6 @@
 aglar.tk, 1
 agleventis.com, 1
 aglow.nl, 1
-aglowiditsolutions.com, 1
 agm4545.com, 1
 agmarvels.com, 1
 agmuscle.com, 1
@@ -8479,6 +8568,7 @@
 agnusbostel.tk, 1
 agocs.me, 1
 agonworks.com, 1
+agoodnews.com, 1
 agora-energiewende.de, 1
 agora-soft.cf, 1
 agora-verkehrswende.de, 1
@@ -8494,6 +8584,7 @@
 agoravm.tk, 1
 agoravox.it, 1
 agoravox.tv, 1
+agorism.eu.org, 1
 agossearch.tk, 1
 agostonegro.tk, 1
 agouraelectrical.com, 1
@@ -8515,6 +8606,7 @@
 agpsn.com, 1
 agr.asia, 1
 agra.org, 1
+agrabah.com, 1
 agradi.de, 1
 agradi.nl, 1
 agralines.tk, 1
@@ -8528,11 +8620,14 @@
 agrekov.ru, 1
 agremo.com, 0
 agreor.com, 1
+agressief.com, 1
 agri-meet.com, 1
 agri.ee, 1
 agricult.tk, 1
 agricultural-technology.tk, 1
 agriculture-schools.com, 1
+agriculture.vic.gov.au, 1
+agrifoglio.com, 1
 agrifoodtoday.it, 1
 agrifutures.com.au, 1
 agrigentonotizie.it, 1
@@ -8544,7 +8639,6 @@
 agriresearch.tk, 1
 agrish.tk, 1
 agrisicilia.it, 0
-agrisimoes.pt, 1
 agro-dom.solutions, 1
 agro-ferma.tk, 1
 agro-forestry.net, 1
@@ -8560,6 +8654,7 @@
 agrofetch.co.ke, 1
 agrofind.com.br, 1
 agroguia.com.co, 1
+agrohim.com, 1
 agrokomi.tk, 1
 agrokredit.ga, 1
 agroland.tk, 1
@@ -8572,7 +8667,6 @@
 agroplas.cf, 1
 agropool.tk, 1
 agropotter.com.ua, 1
-agrosanus.pt, 1
 agrospan.ga, 1
 agroteam.tk, 1
 agrotek.lt, 1
@@ -8608,7 +8702,7 @@
 agvip168.com, 1
 agvip2001.com, 1
 agvip2008.com, 1
-agvip88.com, 1
+agvip88.com, 0
 agvip986.com, 1
 agwa.name, 1
 agweili.com, 0
@@ -8622,7 +8716,6 @@
 ahansen.is, 0
 ahbap.org, 1
 ahbvlp.pt, 1
-ahc.fyi, 1
 ahccmadison.com, 1
 ahccorleone.tk, 1
 ahcpb.com, 1
@@ -8640,6 +8733,7 @@
 ahityayinlari.com, 1
 ahityayinlari.org, 1
 ahj.no, 1
+ahjy.com, 1
 ahl.gov.au, 0
 ahlac.tk, 1
 ahlaejaba.com, 1
@@ -8670,6 +8764,7 @@
 ahmud.net, 1
 ahoefer.de, 1
 ahoeheng.com, 1
+ahoghill.com, 1
 ahoj.email, 1
 ahoj.hu, 1
 ahollamby.com, 1
@@ -8679,7 +8774,9 @@
 ahosamuel.com, 1
 ahosenjoni.fi, 1
 ahosi.com, 1
+ahqf.com, 1
 ahroproject.org, 1
+ahrora.com, 1
 ahrq.gov, 1
 ahs.com, 1
 ahsinsaleem.tk, 1
@@ -8697,6 +8794,7 @@
 ai.gov, 1
 ai.gov.ae, 1
 ai.market, 1
+ai.moda, 1
 ai.mr, 0
 ai00.vip, 1
 ai1989.com, 1
@@ -8727,6 +8825,7 @@
 aiccon.id, 1
 aiccorp.com, 1
 aicfb.in, 1
+aichou.com, 1
 aicial.co.uk, 1
 aickelin.eu, 1
 aicr.org, 1
@@ -8753,9 +8852,11 @@
 aidhan.net, 1
 aidi-ahmi.com, 1
 aidie.cc, 1
+aiding.com, 1
 aidliveers.ga, 1
 aido.gq, 1
 aidoc.com, 1
+aidong.com, 1
 aidoru.net, 1
 aids-dissidents.tk, 1
 aids.gov, 1
@@ -8763,13 +8864,15 @@
 aiecosystem.com.au, 1
 aiesecarad.ro, 1
 aievaluare.ro, 1
+aifeng.com, 1
+aiffee.com, 1
 aifob.tk, 1
 aiforsocialmedia.com, 1
 aifriccampbell.com, 1
 aifx.ml, 0
 aigcev.org, 1
 aigenpul.se, 1
-aigm.cc, 1
+aigm.cc, 0
 aigner-club.com, 1
 aigner-club.de, 1
 aignerimage.de, 1
@@ -8799,6 +8902,7 @@
 aikidoinfo.tk, 1
 aikidosaltadojo.tk, 1
 aikijutsu.tk, 1
+aikio.com, 1
 aikiva.com, 1
 aikoly.com, 1
 aila.org, 1
@@ -8807,23 +8911,29 @@
 ailitonia.xyz, 1
 ailladearousa.com, 1
 aim.org.pt, 1
+aimara.com, 1
 aimare-web.tk, 1
 aimax.com, 1
 aimaye.com, 1
 aimbot.games, 1
 aimdigital.tk, 1
 aimeeandalec.com, 1
+aimeisi.com, 1
 aimgroup.co.tz, 1
 aiminet.com, 1
 aimless.tk, 1
 aimlessempire.tk, 1
 aimmuneinstitute.org, 1
 aimotive.com, 1
+aimplas.com, 1
 aimrom.org, 1
 aina.moi, 1
+ainaishi.com, 1
 ainamoroms.com, 1
+aine.com.br, 1
 ainfographie.com, 1
 aini99.club, 0
+ainong.com, 1
 ainrm.cn, 1
 ainsa.tk, 1
 ainutrition.co.uk, 1
@@ -8864,6 +8974,8 @@
 aipor.pt, 0
 aipregnancy.com, 1
 aipregnant.com, 1
+aiqinggu.com, 1
+aiqingli.com, 1
 air-business.tk, 1
 air-clan.tk, 1
 air-flot.tk, 1
@@ -8873,6 +8985,7 @@
 air-swift.com, 1
 air-techniques.fr, 1
 air-ticket.ga, 1
+airalarm.com, 1
 airbender.tk, 1
 airbnb.ae, 1
 airbnb.at, 1
@@ -8972,6 +9085,7 @@
 aircraftspruce.ca, 1
 aircraftspruce.com, 1
 airday.tk, 1
+airdeer.com, 1
 airdropics.com, 1
 airdropkings.com, 1
 airductcleaninggrandprairie.com, 1
@@ -9007,10 +9121,13 @@
 airflightsdeals.com, 1
 airfocused.com, 1
 airforce.com, 1
+airformosa.com, 1
+airfoto.com, 1
 airfoto.tk, 1
 airfox.cf, 1
 airfox.gq, 1
 airfranceklm.com, 1
+airgreen.com, 1
 airgun.tk, 1
 airgundepot.com, 1
 airhart.me, 1
@@ -9020,6 +9137,7 @@
 airi.ga, 1
 airicy.com, 1
 airikai.com, 1
+airism.com, 1
 airit.de, 1
 airjet.cf, 1
 airjordan11.cc, 1
@@ -9030,6 +9148,9 @@
 airjordanwholesale.us, 1
 airkiss.ga, 1
 airknowledge.gov, 1
+airlapse.net, 1
+airlegend.com, 1
+airlesson.com, 1
 airline-rabota.tk, 1
 airlineafrica.com, 1
 airlineairlines.com, 1
@@ -9190,7 +9311,6 @@
 airlinetx.com, 1
 airlinevegas.com, 1
 airlinewholesale.com, 1
-airloge.com, 1
 airm.aero, 1
 airmag.tk, 1
 airmail.cc, 0
@@ -9249,6 +9369,7 @@
 airportstickets.com, 1
 airportstockholm.com, 1
 airportstuttgart.com, 1
+airporttour.com, 1
 airportturkey.com, 1
 airportzo.net.in, 1
 airportzostage.in, 1
@@ -9262,7 +9383,6 @@
 airsculptureballoonart.net, 1
 airsculptureballoonart.org, 1
 airsculptureballoons.com, 1
-airseatac.net, 1
 airship.com, 1
 airship.eu, 1
 airsial.com, 1
@@ -9283,6 +9403,7 @@
 airticketstravel.com, 1
 airtimerewards.co.uk, 0
 airtrain.gq, 1
+airupdate.com, 1
 airventilation.ca, 1
 airventuri.com, 1
 airvida.sg, 1
@@ -9301,18 +9422,19 @@
 aisera.com, 1
 aish.ml, 1
 aishatibetanterriers.ca, 1
+aishima.com, 1
 aisi316l.net, 1
 aisklabs.com, 1
 aiskskin.com, 1
 aispirit.tk, 1
 aisrvs.net, 1
 aisselkolm.com, 1
-aisteru.ch, 1
 aisthesthai.tk, 1
 aistockcharts.com, 1
 aistrope.com, 1
 aistsist.ga, 1
 aistsist.tk, 1
+aisun.com, 1
 ait.com.ar, 1
 aita.global, 1
 aither.cc, 1
@@ -9327,23 +9449,25 @@
 aiva.ai, 1
 aivan.ai, 1
 aivd.lol, 1
+aiwadubai.com, 1
 aiwansky.com, 0
 aiwo.ai, 1
 aiwosq.cn, 1
 aiwriter.tools, 1
-aiwriterx.com, 1
+aiwujiwu.com, 1
 aixamfinancialservices.nl, 1
 aixm.aero, 1
 aixploringprovence.com, 1
 aixue.net, 1
+aizhuan.com, 1
 aizxxs.com, 1
 aizxxs.net, 1
 aj-laixada.tk, 1
-aja.de, 1
 ajansmanisa.com, 1
 ajansseo.com, 1
 ajapplegatepornstar.com, 1
 ajarope.com, 1
+ajatelier.com, 1
 ajax-fanatics.tk, 1
 ajax-magazine.tk, 1
 ajaxboys.tk, 1
@@ -9352,6 +9476,7 @@
 ajaxfansite.tk, 1
 ajaxfansonly.tk, 1
 ajaxforever.tk, 1
+ajaxified.com, 1
 ajaxmasterdam.tk, 1
 ajaxmfs.com, 1
 ajaxnetwerk.tk, 1
@@ -9421,6 +9546,7 @@
 akadseguros.com.br, 1
 akagiauto.net, 1
 akalashnikov.ru, 1
+akamaiseo.com, 1
 akamon.ac.jp, 1
 akamu.de, 1
 akaoma.com, 1
@@ -9434,7 +9560,9 @@
 akashdsouza.now.sh, 1
 akashstephen.com, 1
 akasi.cf, 1
+akasmedikal.com, 1
 akaxaka.tk, 1
+akayu.com, 1
 akaziya.cf, 1
 akbam.co.uk, 1
 akbarsempoi.tk, 1
@@ -9497,6 +9625,7 @@
 aklagare.se, 1
 akmatrix.org, 1
 akmens.id, 1
+ako-world.com, 1
 akoben.cloud, 1
 akoch.net, 1
 akode.in, 1
@@ -9506,7 +9635,7 @@
 akordeoiak.tk, 1
 akorlar.com, 1
 akostecki.de, 1
-akouryy.net, 1
+akouryy.net, 0
 akoya.fi, 1
 akp.photos, 1
 akplates.org, 1
@@ -9529,6 +9658,7 @@
 aksenov.tk, 1
 aksenovalexey.tk, 1
 akses.co, 1
+aksesuarai.com, 1
 akshavitrends.com, 1
 akshay.in.eu.org, 1
 akshit.me, 0
@@ -9551,6 +9681,7 @@
 aktuel-urunler.com, 1
 aktuelfirsat.com, 1
 aktuelleprospekte.at, 1
+aktueller.com, 1
 aktuellsakerhet.se, 1
 akuislam.com, 1
 akul.co.in, 1
@@ -9605,9 +9736,6 @@
 alachuacountyfl.gov, 1
 alachuacountyfla.gov, 1
 alachuacountyflorida.gov, 1
-alacorporation.de, 1
-alacorporation.fr, 1
-alacorporation.uk, 1
 alacriti.com, 1
 alacritylaw.com, 1
 aladdin.ie, 1
@@ -9623,9 +9751,6 @@
 alainwolf.net, 1
 alais.com.do, 1
 alalivre.cf, 1
-alalogistic.com, 1
-alalogistic.it, 1
-alalogistic.net, 1
 alamad.cf, 1
 alamak.cc, 1
 alamalsahara.co, 1
@@ -9634,8 +9759,8 @@
 alamani.tk, 1
 alambazarmath.tk, 1
 alambique.tk, 1
-alamitosbaytraders.com, 1
 alamo-analytics.com, 1
+alamotownshipmi.gov, 1
 alamowellnessalliance.com, 1
 alan-turnbull.co.uk, 1
 alana.com.ua, 1
@@ -9646,13 +9771,13 @@
 alancat.ml, 1
 alancolephotography.com, 1
 aland.co.uk, 1
-alandoyle.com, 1
 alanet.org, 1
 alanhua.ng, 1
 alanhuang.name, 1
 alanina.com, 1
 alaninkenya.org, 1
 alankardresswalla.tk, 1
+alankatona.com, 1
 alankritstories.com, 1
 alanokling.nl, 1
 alanonsantabarbara.info, 1
@@ -9771,7 +9896,6 @@
 alcaldia.info, 1
 alcamilo.cloudns.cc, 1
 alcanaan.com, 1
-alcanaplata.com, 1
 alcantara.cf, 1
 alcapalis.tk, 1
 alcapone.gq, 1
@@ -9782,11 +9906,11 @@
 alcatraz-webdesign.tk, 1
 alcatrazeast.com, 1
 alcatraztourtickets.com, 1
+alcatrazz.com, 1
 alchakov.tk, 1
 alchemist-heaven.tk, 1
 alchemisten.tk, 1
 alchemiya.ru, 1
-alchemy-media-marketing.com, 1
 alchemy.gr, 1
 alchemy.net, 1
 alchemyequities.com.au, 1
@@ -9822,7 +9946,6 @@
 aldersgateumc.org, 1
 aldervets.co.uk, 1
 aldevadigital.com, 1
-aldiabcs.com, 1
 aldien.com.br, 1
 aldino-redagno.com, 1
 aldipresscentre.co.uk, 1
@@ -9882,6 +10005,7 @@
 alenaserezhina.cf, 1
 alenbadel.com, 1
 alendronate.gq, 1
+alendronato.com, 1
 alenvlahovljak.com, 1
 alenwich.com, 1
 aleph.land, 1
@@ -9960,6 +10084,7 @@
 alexandremottier.tk, 1
 alexandrepedrosa.com, 0
 alexandrevicente.net, 1
+alexandrin.com, 1
 alexandrite.cf, 1
 alexandros.io, 0
 alexandryimmobilier.fr, 1
@@ -10019,7 +10144,6 @@
 alexmunroe.co.uk, 1
 alexn.org, 1
 alexnedea.ro, 1
-alexnguyen.co.nz, 0
 alexpavel.com, 1
 alexpetryk.com, 1
 alexpotter.net, 1
@@ -10068,6 +10192,7 @@
 alfaforex.ru, 1
 alfagroup-aluminium.com, 1
 alfagroupaluminium.com, 1
+alfakir.com, 1
 alfalasteenyia.cf, 1
 alfamask.de, 1
 alfambra.tk, 1
@@ -10079,6 +10204,7 @@
 alfavipambulans.com, 1
 alfavit.cf, 1
 alfawedding.com, 1
+alfed.com, 1
 alfiebarker.com, 1
 alfonso-baya.tk, 1
 alfonsostriano.it, 1
@@ -10112,6 +10238,7 @@
 alghadpowersolutions.com, 1
 alghanimcatering.com, 1
 algibranstore.id, 1
+algo-invest.in, 1
 algoentremanos.com, 1
 algoexplorer.io, 1
 algofactory.de, 1
@@ -10121,27 +10248,35 @@
 algorista.tk, 1
 algorithmic.ml, 1
 algorithmofsuccess.com, 1
+algorithms.guide, 1
 algoritm.gq, 1
 algoritmika.org, 1
 algoritmususpechu.cz, 1
 algorytm.tk, 1
 algotest.in, 1
+alhakim.com, 1
 alhamedeia.tk, 1
+alhas.com, 1
 alhomaidani.com, 1
+alhora.com, 1
 alhost.ml, 1
 alhs-archives.com, 1
 alhuqul-kh.com, 1
 ali-shariati.tk, 1
+ali360.com, 1
 alia-helianthi.tk, 1
 aliaakademi.com.tr, 1
 aliacraft.net, 1
+aliads.com, 1
 aliahmadi.me, 1
+aliakpoyraz.com, 1
 alialkurdy.tk, 1
 aliancadesentupidora.com.br, 1
 alianet.org, 1
 aliantsoft.pl, 1
 aliasinfoforums.tk, 1
 aliaswp.com, 1
+aliauction.com, 1
 alibabau.tk, 1
 alibamu.com, 1
 alibamu.org, 1
@@ -10149,6 +10284,8 @@
 alibi-ua.com.ua, 1
 alibiloungelv.com, 0
 alibip.de, 1
+alibiz.com, 1
+alicafe.com, 1
 alicante-spain.tk, 1
 alice-memorial.de, 1
 alice.tw, 1
@@ -10162,6 +10299,7 @@
 alicetone.net, 1
 alicialab.org, 1
 alicomalimentari.com, 1
+alidanbao.com, 1
 aliefirfany.com, 1
 alieke.design, 1
 aliel.fr, 1
@@ -10185,13 +10323,14 @@
 alifnasiya.uz, 1
 alighierirescaldina.it, 1
 alightwell.com, 1
+aligift.com, 1
 alignedchiro.org, 1
-alignedtoachieve.com, 1
 alignedweb.com, 1
 alignforce.de, 1
 alignminds.com, 1
 alignrs.com, 1
 alignthoughts.com, 1
+alihard.com, 1
 alihashemrasheed.com, 1
 aliibrahimov.tk, 1
 aliim.gdn, 1
@@ -10203,13 +10342,16 @@
 alila.dog, 1
 alilepro.cf, 1
 alilialili.ga, 1
+alilog.com, 1
+aliloulan.com, 1
+alimade.com, 1
 alimanaka-rabesata.tk, 1
+alimate.com, 1
 aliment-covid19.com, 1
 alimentosmcf.com, 1
 alimentsduquebecaumenu.com, 1
 alimenty.tk, 1
 alimeta.it, 1
-alimonyattorney.net, 1
 alimwilliams.tk, 1
 alinalamour.com, 1
 alinasmusicstudio.com, 1
@@ -10223,10 +10365,12 @@
 alio.lt, 1
 aliorange.com, 1
 aliosmanyuksel.com.tr, 1
+alipad.com, 1
 alireza2love.tk, 1
 alirezahesari.com, 1
 alis-test.tk, 1
 alisblog.ml, 1
+alisearch.com, 1
 aliseihotelspa.com, 1
 alishanova.tk, 1
 alisoft.gq, 1
@@ -10244,10 +10388,12 @@
 alisync.com, 1
 alitabergert.tk, 1
 alitajran.com, 1
+alitalk.com, 1
 alitec.it, 1
 alitpedia.ga, 1
 alittledelightful.com, 1
-aliud.be, 1
+alitudi.com, 1
+alitv.com, 1
 aliv.biz, 1
 alivecast.co.jp, 1
 alix-board.de, 1
@@ -10267,6 +10413,7 @@
 aljweb.com, 1
 alkaabi.io, 1
 alkacoin.net, 1
+alkame.com, 1
 alkamitech.com, 1
 alkanbelgelendirme.com.tr, 1
 alkel.info, 1
@@ -10316,6 +10463,7 @@
 allaboutgoats.com, 1
 allaboutgreg.net, 1
 allabouthome.ml, 1
+allabouthtml.com, 1
 allaboutmadonna.tk, 1
 allaboutnothing.cf, 1
 allaboutnothing.ga, 1
@@ -10327,6 +10475,7 @@
 allaboutthekink.org, 1
 allaboutyouspa.co.uk, 1
 allaccessglobal.tech, 1
+allaccountingcareers.com, 1
 allactioneventhire.co.uk, 1
 allactionsecurity.com, 1
 allamakee.k12.ia.us, 1
@@ -10373,6 +10522,7 @@
 allcitynews.net, 1
 allcleanservices.ca, 1
 allcloud.com, 1
+allcomic.com, 1
 allcompanycorp.com, 1
 allcooking.tk, 1
 allcountyins.com, 1
@@ -10398,6 +10548,7 @@
 allegra180.ga, 1
 allegra180mg.ga, 1
 allegrapark.ga, 1
+allegreto.com, 1
 allegrettoresort.com, 1
 allegrettoresortandvineyard.com, 1
 allegrettoresortandvineyardbyayres.com, 1
@@ -10427,6 +10578,7 @@
 allergy.university, 1
 allergyweb.cf, 1
 allergyweb.ga, 1
+allerheiligenkirmes.com, 1
 allerlei-havelte.nl, 1
 allerstorfer.at, 1
 allerzeiten.com, 1
@@ -10468,6 +10620,7 @@
 allgadgetsfree.tk, 1
 allgaragedoorandgates.com, 1
 allgaragefloors.com, 1
+allgauer.com, 1
 allgemeinarzt-wenta-bralla.de, 1
 allglobal.net, 1
 allgooddeedshomes.com, 1
@@ -10477,6 +10630,7 @@
 allhard.org, 1
 allhits.ml, 1
 allhomemueble.com, 1
+allhonest.com, 1
 allhsa.com, 1
 alli-diet-pill.cf, 1
 alli-pills.cf, 1
@@ -10489,6 +10643,7 @@
 allianceblock.io, 1
 allianceforafreesociety.com, 1
 allianceforafreesociety.net, 1
+allianceguide.com, 1
 alliancehealthcareservices-us.com, 1
 alliances-globalsolutions.com, 0
 allianskyrkan.se, 1
@@ -10516,6 +10671,7 @@
 allius.de, 1
 alljamin.com, 1
 alljokesaside.tk, 1
+alljoy.com, 1
 alllaboutchickens.tk, 1
 alllatinapics.com, 1
 allline.shop, 1
@@ -10550,6 +10706,7 @@
 allopurinol300mg.ml, 1
 alloverthehill.com, 1
 allpantypics.com, 1
+allpatch.com, 1
 allpedia.tk, 1
 allphaseclean.com, 1
 allpinouts.org, 1
@@ -10603,6 +10760,7 @@
 allsurplus.com, 1
 allsync.com, 1
 allsync.nl, 1
+alltak.com, 1
 allterrainfence.com, 1
 allthatblings.online, 1
 allthebots.com, 1
@@ -10693,10 +10851,7 @@
 almeriaplayer.tk, 1
 almette.pl, 1
 almhtnews.com, 1
-almi.cz, 1
-almicroinstruments.com, 1
 almirall.com, 1
-almiriatechstore.co.ke, 1
 almisnedrm.com, 1
 almlab.tk, 1
 almlc.gov, 1
@@ -10722,6 +10877,7 @@
 alng.me, 1
 alnilam.co.uk, 1
 alnitech.com, 0
+alnoorintl.com, 1
 aloalosalomao.com.br, 1
 alodokita.com, 1
 aloe-care.tk, 1
@@ -10734,7 +10890,6 @@
 alohotel.com, 1
 alohotelorange.com, 1
 alohotels.com, 1
-alojamientos-cuba.com, 1
 alola.co.uk, 1
 alolabor.org, 1
 alomch.gq, 1
@@ -10776,15 +10931,17 @@
 alpenhof-suedtirol.com, 1
 alpenjuice.com, 1
 alpenrose.de, 1
+alpenschmarrn.de, 1
+alpensternderl.de, 1
 alperenremziunal.me, 1
 alperozmen.kim, 1
 alpertron.com.ar, 1
 alpes-deis-tools.com, 1
 alpes-deis.fr, 1
-alpes-mariages.fr, 1
 alpetrov.cf, 1
 alpha-ag.ru, 1
 alpha-assistant.com, 1
+alpha-associates.ch, 1
 alpha-bet.com.ua, 1
 alpha-centauri.tk, 1
 alpha-force.net, 0
@@ -10798,7 +10955,6 @@
 alphaassurances.com, 1
 alphabet-z.xyz, 1
 alphabetaflora.com, 1
-alphabetmobilier.com, 1
 alphabetsigns.com, 1
 alphabetworksheetsfree.com, 1
 alphabouncycastles.co.uk, 1
@@ -10810,7 +10966,6 @@
 alphacomputersllc.com, 0
 alphaconsult.sk, 0
 alphacorp.tk, 1
-alphacyp.com, 1
 alphadance.tk, 1
 alphadefense.co.za, 1
 alphadote.com, 1
@@ -10822,6 +10977,7 @@
 alphahosting.hu, 1
 alphahunks.com, 1
 alphainflatablehire.com, 1
+alphakites.de, 1
 alphalab.tk, 1
 alphalibraries.com, 1
 alphalightgear.com, 1
@@ -10848,7 +11004,6 @@
 alphavit.ru, 1
 alphazure.co.uk, 1
 alphera.nl, 1
-alphie.me, 1
 alphimedia.com, 1
 alphipneux.fr, 1
 alpholiday.it, 1
@@ -10859,12 +11014,14 @@
 alpine-tuning.de, 1
 alpinebank.com, 1
 alpinechaletrental.com, 0
+alpinedental.us, 1
 alpinedentalhealth.com, 1
 alpinehighlandrealty.com, 1
 alpineplanet.com, 1
 alpinepubliclibrary.org, 1
 alpinestarmassage.com, 1
 alpinewy.gov, 1
+alpinisti.com, 1
 alpis.fr, 1
 alplogopedia.it, 1
 alpparts.com, 1
@@ -10889,6 +11046,7 @@
 alsteadnh.gov, 1
 alstertouch.com, 1
 alstertouch.de, 1
+alstromeria.com, 1
 alt-pannekow.de, 1
 alt-three.com, 0
 alt-til-windows.dk, 1
@@ -10921,6 +11079,7 @@
 altana.com, 1
 altaplana.be, 1
 altavaldinon.com, 1
+altbau.com, 1
 altcoaching.fr, 1
 altcoinandme.com, 1
 altcoinfiyatlari.com, 1
@@ -10932,7 +11091,6 @@
 altec.pl, 1
 altecgmbh.de, 1
 altedirect.com, 1
-alteiria.fr, 1
 alteralife.eu, 1
 alteraro.com, 1
 alteraro.org, 1
@@ -10993,7 +11151,6 @@
 altinity.com, 1
 altinopoliscervejaria.com.br, 1
 altisnet.ga, 1
-altissia.org, 1
 altitude-dev.com, 1
 altiup.ch, 0
 altiup.com, 0
@@ -11030,6 +11187,7 @@
 altrei.ch, 1
 altria.wang, 1
 altrui.st, 1
+altruizm.com, 1
 altsdigital.com, 0
 altsetup.com, 1
 altspacex.com, 1
@@ -11094,7 +11252,6 @@
 alwistra.eu, 1
 alwuz.com, 1
 alxclub.tk, 1
-alxlegal.com, 1
 alxn-congress-2022.com, 1
 alxpresentes.com.br, 1
 alxu.ca, 1
@@ -11102,7 +11259,6 @@
 alyoung.com, 1
 alyssamilano.tk, 1
 alyusr.com.sa, 1
-alywes.com, 1
 alza.at, 1
 alza.co.uk, 1
 alza.cz, 1
@@ -11179,13 +11335,17 @@
 amaranth.gq, 1
 amaranth.tk, 1
 amaranthinewanderlust.com, 1
+amaranthus.com, 1
 amaranthus.com.ph, 1
 amardham.org, 1
 amaresq.com, 1
+amargura.com, 1
 amarilio.com.mx, 1
 amarillosquare.com, 1
+amarilys.com, 1
 amarinbabyandkids.com, 1
 amaris.com, 1
+amarrada.com, 1
 amarresdeamorconelbrujoguillermo.com, 1
 amarresperuanos.com, 1
 amarresydominio.com, 1
@@ -11193,6 +11353,7 @@
 amartours.pt, 1
 amaruddinmufid.com, 1
 amaruz.tk, 1
+amarylis.com, 1
 amasea.yachts, 1
 amasing.tk, 1
 amateri.com, 1
@@ -11210,7 +11371,6 @@
 amati.solutions, 1
 amato.tk, 1
 amatoryasamak.tk, 1
-amatsuka.com, 1
 amatutis.lt, 1
 amatya.co.uk, 1
 amatzen.dk, 1
@@ -11225,10 +11385,10 @@
 amazefabrics.com, 1
 amazetimberfurniture.com.au, 1
 amazhiring.com, 1
-amazighlove.com, 1
 amazinations.com, 1
 amazing-cars98.tk, 1
 amazing-castles.co.uk, 1
+amazing-maids.com, 1
 amazingpetshere.com, 1
 amazingraymond.com, 1
 amazingraymond.com.au, 1
@@ -11252,6 +11412,7 @@
 amazy.guru, 1
 amb.com.br, 1
 amb.tf, 1
+ambaci.com, 1
 ambarbyarihant.com, 1
 ambasady.cz, 1
 ambassadeurs.com, 1
@@ -11279,7 +11440,6 @@
 ambientskies.tk, 1
 ambigramasdecarmela.tk, 1
 ambion.am, 1
-ambiq.nl, 1
 ambisonia.com, 1
 ambivalence.tk, 1
 amblin.com, 1
@@ -11290,7 +11450,6 @@
 ambrosia.cafe, 1
 ambrosiamosaicos.co, 1
 ambrosio.tk, 1
-ambrosius.io, 1
 ambtpay.com, 1
 ambujagold.com, 1
 ambulanceplus.cz, 1
@@ -11298,8 +11457,10 @@
 ambulanza.it, 1
 ambulanza.milano.it, 1
 ambulanza.roma.it, 1
+ambulanzaprivata.roma.it, 1
 ambulari.cz, 1
 ambulatori.it, 1
+amburgo.com, 1
 amcanalense.tk, 1
 amcangroup.com, 1
 amcchemical.com, 0
@@ -11335,7 +11496,9 @@
 ameliemarieintokyo.com, 1
 amello.de, 1
 amempire.tk, 1
+amenajare.com, 1
 amendine.fr, 1
+amenhotep.com, 1
 ameninalaceira.com.br, 1
 amenoskuarto.tk, 1
 ameresco.com, 1
@@ -11355,7 +11518,6 @@
 americanartwarehouse.com, 1
 americanbooks.cf, 1
 americanbuzz.tk, 1
-americancarcenter.com, 1
 americancasinoguide.shop, 1
 americancomfortexperts.com, 1
 americandisinfectingassociation.com, 1
@@ -11372,17 +11534,20 @@
 americanimageawards.com, 1
 americanindiannursing.com, 1
 americaninsuranceplus.ml, 1
+americanjihad.com, 1
 americankickoff.ga, 1
 americanmessaging.net, 1
 americanpop.be, 1
 americanrag.com, 1
 americanreservations.us, 1
+americanroyalty.com, 1
 americans.cam, 1
 americansamaritan.org, 1
 americanstrategic.com, 1
 americantowers.org, 1
 americanunicornparty.tk, 1
 americanwater.lk, 1
+americapavilion.com, 1
 americapitalfunding.com, 1
 americasbasementcontractor.com, 1
 americasdirector.com, 1
@@ -11420,6 +11585,7 @@
 amethystcards.co.uk, 1
 amethystdevelopment.co.uk, 1
 amethystwebsitedesign.com, 1
+ametinsurance.com, 1
 ametrin.biz, 1
 amevoice.com, 1
 amex.ua, 1
@@ -11427,21 +11593,26 @@
 amf.to, 1
 amfelt.dk, 1
 amfiteatr.tk, 1
+amfitheater.com, 1
 amfora.gq, 1
 amforst.ddns.net, 1
 amgreatness.com, 1
 amh-entertainments.co.uk, 1
 ami-de-bastanes.fr, 1
 ami.com, 1
+amianto.milano.it, 1
 amianto.roma.it, 1
 amica-travel.com, 1
 amicalecanyon.ch, 0
 amicare-france.com, 1
 amicare.fr, 1
 amicipadrealdo.tk, 1
+amiciperibambini.org, 1
 amiciperlatesta.it, 1
+amicon.com, 1
 amicosauro.tk, 1
 amicusjunior.ro, 1
+amiez.com, 1
 amifoundation.net, 1
 amigatraktor.tk, 1
 amigodeltoro.tk, 1
@@ -11484,7 +11655,6 @@
 amis-du-cinema.com, 1
 amiserver.de, 1
 amisharingstuff.com, 1
-amishealthcareservicesinc.com, 1
 amishra.tk, 1
 amisoft.co.jp, 1
 amisoft.tk, 1
@@ -11507,9 +11677,7 @@
 amlameiras.pt, 0
 amleather.pl, 1
 amliorefemme.tk, 1
-amltrust.io, 1
 amm6e.com, 1
-ammachiyudeadukkala.net, 1
 ammanagingdirectors.com, 1
 amministratore.biz, 1
 amministratore.roma.it, 1
@@ -11548,7 +11716,6 @@
 amoozesh98.ir, 1
 amoralizm.tk, 1
 amoraquatropatas.org, 1
-amordetelas.com, 1
 amordoce.com, 1
 amorfestival.com, 1
 amorgos-aegialis.com, 1
@@ -11561,7 +11728,7 @@
 amorymerced.tk, 1
 amoryurgentcare.com, 1
 amosca.tk, 1
-amotarget.com, 0
+amotarget.com, 1
 amoursucre.com, 1
 amoxicillin-500mg.ga, 1
 amoxicillin.cf, 1
@@ -11625,7 +11792,6 @@
 amsmart.hu, 1
 amsochile.cl, 1
 amstat.org, 1
-amstelland.com, 1
 amstelradio.tk, 1
 amstelveentje.nl, 1
 amsterdam.nl, 1
@@ -11677,7 +11843,6 @@
 amznworks.com, 1
 an-alles-gedacht.de, 1
 an.edu, 1
-an0ns.ru, 0
 an0ns.tk, 1
 an1.life, 1
 an7hrax.se, 1
@@ -11723,6 +11888,7 @@
 anakliarmalam.ml, 1
 analbabsi.com, 1
 analebear.com, 1
+analfistula.com.sg, 1
 analgesia.ga, 1
 analgesia.net, 1
 analinsting.tk, 1
@@ -11741,6 +11907,7 @@
 analotto.com, 1
 analpantyhose.org, 1
 analpics.com, 1
+analvision.com, 1
 analyser-mon-site.fr, 1
 analystexamers.ga, 1
 analysts.com, 1
@@ -11758,12 +11925,11 @@
 anamterminal.tk, 1
 ananas.gq, 1
 ananasposter.ru, 1
-anandkjha.com, 1
+anandkjha.com, 0
 anangeix.tk, 1
 anankecosmetics.com, 1
 anantshri.info, 1
 ananyagupta.tk, 1
-ananyoo.com, 0
 anaprieto.com, 1
 anapsi.tk, 1
 anar.biz, 1
@@ -11778,11 +11944,14 @@
 anarchistischegroepnijmegen.nl, 0
 anarchistos.tk, 1
 anarchotv.tk, 1
+anarchy.eu.org, 1
 anarchyhax.ml, 1
 anarchyrp.life, 1
 anarchyweb.tk, 1
 anarhia.tk, 1
 anarhija.tk, 1
+anarhist.net, 1
+anarhist.org, 1
 anarka.org, 1
 anarkhe.net, 1
 anarky.tk, 1
@@ -11805,9 +11974,9 @@
 anayarealm.com, 1
 anbaicreative.com, 1
 anbank.pl, 1
+anbei.com, 1
 anbigift.nl, 1
 anblife.com, 1
-anblik.com, 1
 anborn.tk, 1
 ancade.es, 1
 ancaebacia.pt, 1
@@ -11828,6 +11997,7 @@
 ancestrycdn.com, 1
 ancestryinstitution.com, 1
 anchev.net, 1
+anchorbvfs.com, 1
 anchorit.gov, 1
 anchoritsg.com, 1
 anchovy.nz, 0
@@ -11866,6 +12036,7 @@
 anderstoneel.tk, 1
 anderstornkvist.se, 1
 andesnevadotours.com, 1
+andesoftconsulting.com, 1
 andfaraway.tk, 1
 andfrankly.com, 1
 andhania.one, 1
@@ -11875,7 +12046,6 @@
 andiplusben.com, 1
 andisadhdspot.com, 1
 andiscyber.space, 1
-andnames.com, 1
 andnet.tk, 1
 andoaingo-gaztetxea.tk, 1
 andoms.fi, 1
@@ -11984,7 +12154,6 @@
 andrewpeng.net, 1
 andrewpucci.com, 0
 andrewrdaws.com, 1
-andrewreaganm.com, 1
 andrewrgoss.com, 1
 andrewryno.com, 1
 andrewsfasteners.uk, 1
@@ -12002,6 +12171,7 @@
 andreypopp.com, 1
 andreysmirnov.tk, 1
 andrian.ga, 1
+andrian.io, 1
 andrian.tk, 1
 andriano.net, 1
 andrianova.ml, 1
@@ -12111,6 +12281,7 @@
 anessex.wedding, 1
 anesterov.xyz, 1
 anetaben.nl, 1
+anetofwellness.com, 1
 anetteolzon.tk, 1
 anex.us, 1
 anexperimentedblog.tk, 1
@@ -12118,6 +12289,7 @@
 anfadern.com, 1
 anfarabic.com, 1
 anfr.fr, 1
+angablade.com, 1
 angazajamii.com, 1
 ange-de-bonheur444.com, 1
 angel-body.com, 1
@@ -12151,6 +12323,7 @@
 angeliquewoudenberg.tk, 1
 angeljmadrid.com, 1
 angelkeepers.net, 1
+angelmilk.com, 1
 angelnumber.faith, 1
 angelo4ek.tk, 1
 angeloangioi.tk, 1
@@ -12200,7 +12373,6 @@
 anglertanke.de, 1
 anglesgirl.eu.org, 1
 anglesya.win, 1
-angliauk.com, 1
 anglicanwatch.com, 1
 anglictina-sojcak.cz, 1
 anglictinasojcak.cz, 1
@@ -12208,6 +12380,7 @@
 anglingnewfoundlandlabrador.com, 1
 anglogoldashanti.com, 1
 anglopoltransport.pl, 1
+angolo.com, 1
 angolo.ga, 1
 angora.id, 1
 angorarabbitsaspets.com, 1
@@ -12302,6 +12475,7 @@
 animashka.tk, 1
 animataz.ga, 1
 animate.de, 1
+animatedtimes.com, 1
 animazul.tk, 1
 anime-and-manga-news.tk, 1
 anime-best.tk, 1
@@ -12321,7 +12495,6 @@
 animebase.me, 1
 animebits.moe, 1
 animecasepremium.id, 1
-animeclipsraw.fr, 1
 animecollective.com, 1
 animecracks.com, 1
 animecracks.net, 1
@@ -12347,6 +12520,7 @@
 animelesson.ga, 1
 animelily.com, 1
 animelime.ru, 1
+animelo.com, 1
 animelody.net, 1
 animelolipop.com, 1
 animemangaupdates.com, 1
@@ -12379,6 +12553,7 @@
 animewallpapers.tk, 1
 animixplays.net, 1
 animmouse.com, 1
+animocreator.com, 1
 animonda.de, 1
 animotica.com, 1
 animoxavilorza.tk, 1
@@ -12510,7 +12685,6 @@
 annelisetouya.com, 1
 annema.biz, 1
 annemarielaponder.com, 1
-annemation.de, 1
 annetta.com, 1
 annetta.net, 1
 annettewindlin.ch, 1
@@ -12555,7 +12729,6 @@
 annyaurora.net, 1
 annynantasiri.com, 1
 anodas.lt, 1
-anojan.com, 1
 anol.loan, 1
 anomalous.eu, 1
 anomaly.tk, 1
@@ -12665,6 +12838,7 @@
 antalyamasajsalonu.gq, 1
 antama.eu, 1
 antama.nl, 1
+antanavagefarbiarz.com, 1
 antani.cloud, 1
 antarcti.co, 1
 antarctida.tk, 1
@@ -12709,7 +12883,6 @@
 anthisis.tv, 1
 anthony-bardon.eu, 1
 anthonycarbonaro.com, 0
-anthonychampagne.fr, 1
 anthonychampagne.me, 1
 anthonydegrande.tk, 1
 anthonyellis.com, 1
@@ -12799,6 +12972,8 @@
 antimaterie.tk, 1
 antimine.me, 1
 antiminutemen5.tk, 1
+antinatalism.com, 1
+antinatalists.com, 1
 antinazi.org, 1
 antincendio.it, 1
 antincendio.roma.it, 1
@@ -12991,6 +13166,7 @@
 aod.net, 1
 aodnovel.com, 0
 aoe9.com, 1
+aofusa.me, 1
 aofusa.net, 1
 aoicollege.edu, 1
 aoicprobationil.gov, 1
@@ -13008,7 +13184,7 @@
 aopedeure.nl, 1
 aopsy.de, 1
 aorangi-debt.co.nz, 1
-aorgroup.id, 1
+aorhan.com, 1
 aori.com, 1
 aosc.kz, 1
 aosclan.tk, 1
@@ -13033,7 +13209,6 @@
 apadmi.com, 0
 apadrinaunolivo.org, 1
 apadvantage.com, 1
-apalancamiento.trade, 1
 apambiente.pt, 1
 apaniwebsite.xyz, 1
 apannpyaymedia.com, 1
@@ -13041,6 +13216,7 @@
 aparaatti.org, 1
 aparistravel.com, 1
 apart-hotel-weimar.de, 1
+apartamentnawydmie.pl, 1
 apartamentoslostejos.tk, 1
 apartamentscalpatoi.cat, 1
 apartamentsvituri.com, 1
@@ -13054,6 +13230,7 @@
 apartments.co.nz, 1
 apartrentrotterdam.nl, 1
 apasaja.tech, 1
+apassodarte.com, 1
 apatransport.com, 1
 apbforum.tk, 1
 apbio.org, 1
@@ -13121,6 +13298,7 @@
 api.lookout.com, 1
 api.recurly.com, 1
 api42.ch, 1
+api5000.io, 1
 api64.com, 1
 apiary.blog, 1
 apiary.shop, 1
@@ -13153,7 +13331,6 @@
 apis.blue, 1
 apis.com.py, 1
 apis.google.com, 1
-apisyouwonthate.com, 0
 apit-kovrov.ru, 1
 apitodemestre.com.br, 1
 apiu.me, 1
@@ -13174,7 +13351,6 @@
 apkmody.io, 1
 apknut.com, 1
 apkoc.com, 1
-apkorgan.com, 1
 apkpokemongo.ga, 1
 apkpokemongo.gq, 1
 apkpokemongo.tk, 1
@@ -13212,6 +13388,7 @@
 apocalypsje.ga, 1
 apod.com.au, 1
 apod.ml, 1
+apoderus.net, 1
 apogaea.com, 1
 apogeephoto.com, 1
 apoia.se, 1
@@ -13251,10 +13428,10 @@
 apostascomvalor.com, 1
 apostasolida.com, 1
 apostasonline.guru, 1
+apostillelondon.com, 1
 apothecarydouglasville.com, 1
 apotheek-ict.nl, 1
 apotheke.nrw, 1
-apotheke.social, 1
 apothekeonline.tk, 1
 apotom.tk, 1
 apoyoentareas.tk, 1
@@ -13265,7 +13442,6 @@
 app-cinveninfostream-qa.azurewebsites.net, 1
 app-control-fcu.de, 1
 app-finanzas-services-v1-pro-ol.azurewebsites.net, 1
-app-finanzas-services-v2-prd-wh.azurewebsites.net, 1
 app-online.cloud, 1
 app-scantech.com, 1
 app-scope.com, 1
@@ -13279,7 +13455,6 @@
 app11018.com, 1
 app2get.de, 1
 app3w.nl, 1
-app4legal.com, 1
 app666365.com, 0
 app77018.com, 1
 appac.com.tr, 1
@@ -13337,6 +13512,7 @@
 appjobs.com, 1
 applaus-kornwestheim.de, 1
 apple-droid.com, 1
+apple-droid.ru, 1
 apple-watch-zubehoer.de, 1
 apple.ax, 1
 apple.markets, 1
@@ -13347,6 +13523,7 @@
 applecare.cz, 1
 appleexterminating.com, 1
 applegun.com, 1
+appleii-box.de, 1
 applejacks-bouncy-castles.co.uk, 1
 applemaclover.tk, 1
 applemon.com, 1
@@ -13355,7 +13532,6 @@
 appleoosa.com, 1
 appleric.tk, 1
 applesaph.nl, 1
-appleseedcontent.com, 1
 applesencia.com, 1
 appleslayer.cf, 1
 applet.cyou, 1
@@ -13402,6 +13578,7 @@
 appninjas.com, 1
 appodeal.com, 1
 appoggiature.fr, 1
+appointible.com, 1
 appointment.ga, 1
 apponic.com, 1
 apponline.com, 1
@@ -13422,7 +13599,6 @@
 approvedlawyersers.ga, 1
 approvedtreecare.com, 1
 approveme.com, 1
-apps-4free.com, 1
 apps.facebook.com, 0
 apps.fedoraproject.org, 1
 apps.stg.fedoraproject.org, 1
@@ -13460,8 +13636,10 @@
 appveyor.com, 1
 appwardbeta.com, 1
 appworld.ga, 1
+appy.us, 1
 appzoojoo.be, 1
 aprazivel.com.br, 1
+aprendadesign.com, 1
 aprendaingles123.com, 1
 aprendainglesnabiblia.com.br, 1
 aprendaviaweb.com.br, 1
@@ -13494,6 +13672,9 @@
 apsnewcastle.com, 0
 apspayroll.com, 1
 apsportseditors.org, 1
+apsprofessions.gov.au, 1
+apsreform.gov.au, 1
+apsreview.gov.au, 1
 apssb.in, 1
 apssolucoesfinanceiras.online, 1
 apstats.tk, 1
@@ -13525,7 +13706,6 @@
 apv-ollon.ch, 1
 apviz.io, 1
 apw-dortmund.de, 1
-aqalat.com.sa, 1
 aqarategypt.com, 1
 aqarbab.com, 1
 aqdance.com.sg, 1
@@ -13604,6 +13784,7 @@
 aqueducttech.com, 1
 aquienguate.com, 1
 aquila.co.uk, 1
+aquila.earth, 1
 aquilogia-patrimoine.fr, 1
 aquimisa.com, 1
 aquiparoxetina.gq, 1
@@ -13621,6 +13802,7 @@
 arab-romance.tk, 1
 arab.dating, 1
 arab1info.cf, 1
+arab2cam.com, 1
 arabakiralama.name.tr, 1
 arabam.com, 1
 arabapps.org, 1
@@ -13651,7 +13833,6 @@
 arabtones.tk, 1
 arabwomen.ml, 1
 aracbul.com, 1
-arachina.com, 1
 arachnid.tk, 1
 arachnida.ml, 1
 arackiralama.name.tr, 1
@@ -13711,7 +13892,6 @@
 arbitrary.ch, 1
 arbitrations.tk, 1
 arbitrazh.tk, 1
-arbitrazhmegaprofit.com, 1
 arbitrazhstavki.com, 1
 arbitrazhtraff.com, 1
 arbobille.es, 1
@@ -13750,10 +13930,8 @@
 arcdesantmarti.net, 1
 arcenergy.co.uk, 1
 arcese.com, 1
-arceusx.net, 1
 arch-design.com, 1
 archaeoadventures.com, 1
-archaeology.lk, 1
 archambault.paris, 1
 archangelbio.com, 1
 archauthority.com, 1
@@ -13801,11 +13979,11 @@
 archivium.biz, 1
 archivosmercury.com, 1
 archivosstl.com, 1
+archiweb.pl, 1
 archlinux.de, 1
 archlinux.org, 1
 archlinuxcn.org, 1
 archmacro.ga, 1
-archmediamarketing.com, 0
 archmirror.it, 1
 archoit.org, 0
 archphila.org, 1
@@ -13883,10 +14061,13 @@
 areatrend.com, 1
 areavoipers.ga, 1
 areavoipest.ga, 1
+areawidepainting.com, 1
 areege.tk, 1
 arefidgetspinnersgay.com, 1
 arefly.com, 1
 aregus.tk, 1
+areins.com, 1
+areinshospitality.com, 1
 areinsmuseum.com, 1
 areis.pt, 1
 arekatieandchrisgettingmarried.com, 1
@@ -13898,7 +14079,6 @@
 arena-news.tk, 1
 arenaalbionu.pl, 1
 arenadagon.tk, 1
-arenas-architecte.com, 1
 arenatennis.ga, 1
 arenda-auto.com, 0
 arenda-bez-agenta.ml, 1
@@ -13912,6 +14092,7 @@
 arenlor.com, 1
 arenlor.info, 1
 arenns.com, 1
+arenover.com, 1
 arenzana.org, 1
 arenzanaphotography.com, 1
 areproduktioqn.tk, 1
@@ -13930,11 +14111,12 @@
 arforingenieria.com, 1
 arfycat.com, 1
 argama-nature.com, 1
+arganaddict.com, 1
 arganaderm.ch, 0
 arganwinkel.nl, 1
 argb.de, 1
-arge-bilisim.com, 1
 argekultur.at, 1
+argentas.com, 1
 argentinachat.tk, 1
 argentinatrabaja.org, 1
 argentinaxp.com, 1
@@ -13947,9 +14129,9 @@
 argo.vision, 1
 argocasino.com, 1
 argon2.online, 1
-argonmail.com, 1
 argos.co.uk, 1
 argosasist.co.uk, 1
+argosproject.fr, 1
 argovpay.com, 1
 argovpn.com, 1
 argrafiche.it, 1
@@ -13964,6 +14146,7 @@
 arhipka.tk, 1
 arhitektabeograd.com, 1
 arhitekti.hr, 1
+arhivpalanka.rs, 1
 ari-web.xyz, 1
 ari.gg, 1
 aria-best.ru, 1
@@ -13996,9 +14179,19 @@
 arielpereira.tk, 1
 ariens.com, 1
 ariensco.com, 1
+ariensco.uk, 1
 arienscohospitality.com, 1
+arienscompany.com, 1
+arienscompanydealer.com, 1
+ariensconordiccenter.com, 1
+arienscorp.com, 1
 ariensfamilyfoundation.org, 1
 ariensfoundation.org, 1
+ariensmuseum.com, 1
+ariensnordiccenter.com, 1
+ariensparts.com.au, 1
+arienssnotek.com, 1
+ariensstore.com, 1
 arienstocht.nl, 1
 aries.it, 1
 ariesclark.com, 1
@@ -14029,6 +14222,7 @@
 arinahashimoto.com, 1
 arinde.ee, 1
 arinflatablefun.co.uk, 1
+arino.com, 1
 arionta.com, 1
 arious.uk, 1
 aripiprazolee.gq, 1
@@ -14039,12 +14233,16 @@
 ariseconference.org.nz, 1
 arisevendor.net, 1
 arishastyle.tk, 1
+arisoft.com, 1
 arissait.com, 1
 aristidebouix.cloud, 1
 aristocrates.co, 1
 aristokratia.tk, 1
 ariston-center.gq, 1
 aristotle.tk, 1
+aristra.ch, 1
+aristra.com, 1
+aristra.de, 1
 aritec-la.com, 1
 arithmetic.ga, 1
 arithmetica.at, 1
@@ -14113,6 +14311,7 @@
 armadalelearningpathways.co.uk, 1
 armadaquadrat.com, 1
 armadateam.tk, 1
+armadilloscubatx.com, 1
 armado.tk, 1
 armageddonclan.tk, 1
 armahackers.tk, 1
@@ -14280,6 +14479,7 @@
 arrmaforum.com, 1
 arroba.digital, 1
 arrow-api.nl, 1
+arrowad.com, 1
 arrowduty.ml, 1
 arrowfastener.com, 1
 arrowgrove.com, 0
@@ -14389,6 +14589,7 @@
 artemiy-plus.com.ua, 1
 artemiz.tk, 1
 artemoon.ml, 1
+artemovsk.com, 1
 artemweb.tk, 1
 artepinas.tk, 1
 arteproducciones.tk, 1
@@ -14398,6 +14599,7 @@
 arterienundvenen.ch, 1
 arterydb.ru, 1
 artesacraloreto.it, 1
+artesaniafenix.cl, 1
 artesaniascym.com.ar, 1
 artesaniastonalaytlaquepaque.com, 1
 arteseideias.com.pt, 1
@@ -14416,8 +14618,9 @@
 artextasia.com, 1
 arteya.net, 1
 artfabrics.com, 1
+artformcollective.com.au, 1
 artfullyelegant.com, 1
-artfulpalate.com, 1
+artfuryou.com, 1
 artgallery.co.uk, 1
 artgaragecrewe.com, 1
 artgorod.tk, 1
@@ -14547,6 +14750,7 @@
 artspark.tk, 1
 artstudioweb.tk, 1
 artsy.cloud, 1
+artteacheredu.org, 1
 arttel-media.ru, 1
 artucation.eu, 1
 arturgaweda.de, 1
@@ -14572,6 +14776,7 @@
 artycoz.fr, 1
 artyengine.com, 1
 artyhouse.be, 0
+aru.fi, 0
 arubasunsetbeach.com, 1
 arul.io, 1
 arunchullikkal.tk, 1
@@ -14731,10 +14936,10 @@
 asenno.com, 1
 aseoblog.com, 1
 aserbx.ga, 1
+aserver.eu, 1
 asesecours.com, 1
 asesinosdeltarot.tk, 1
 asesor.live, 1
-asesoresvaro.com, 1
 asesorialigorred.es, 1
 asessiglo21.es, 1
 asexualitat.cat, 1
@@ -14794,13 +14999,14 @@
 ashtonid.gov, 1
 ashtonwealth.com, 1
 ashtronaut.space, 1
+ashucg.com, 1
 ashutoshmishra.org, 1
 ashutov.rocks, 0
 ashwainfo.in, 1
 ashwaubenon.gov, 1
 asia-gazette.com, 1
-asia-global-risk.com, 1
 asia.dating, 1
+asiabasket.com, 1
 asiacommerce.id, 1
 asiadirect.co.th, 1
 asiafaninfo.net, 1
@@ -14825,7 +15031,6 @@
 asiangroceronline.com.au, 1
 asianinside.tk, 1
 asianmoney.biz, 1
-asianodor.com, 1
 asianshop.com.pe, 1
 asiansnus.com, 1
 asiansongs.tk, 1
@@ -14872,11 +15077,9 @@
 askgamblers.com, 1
 askhow.co.il, 1
 askindia.tk, 1
-askizzy.org.au, 1
 askjan.org, 1
 askkaren.gov, 1
 asklocals.net, 1
-asklyrics.com, 1
 askmagicconch.com, 0
 askme-events.vip, 0
 askme-fast.tk, 1
@@ -14900,6 +15103,7 @@
 asmdz.com, 1
 asmeets.nl, 1
 asmess.com, 1
+asmgroup.rs, 1
 asmm.cc, 0
 asmobox.ga, 1
 asmood.net, 1
@@ -14949,7 +15153,6 @@
 aspire-dev2.com, 1
 aspireappliances.ca, 1
 aspirecig.bg, 1
-aspiresys.com, 1
 aspirevc-prod.com, 1
 aspirevc.com, 1
 aspisdata.com, 1
@@ -15000,6 +15203,7 @@
 assessorindie.tk, 1
 assetbacked.capital, 0
 asseti.co, 1
+assetinvesting.com, 1
 assets.schwarz, 1
 assetsec.io, 1
 assetsman-assetsvalue.com, 1
@@ -15017,6 +15221,7 @@
 assist-team.co.il, 1
 assistance-personnes-agees.ch, 1
 assistanceinparadise.com, 1
+assistantdemocraticleader.gov, 1
 assistanteplus.fr, 1
 assistel.com, 1
 assistentesanitario.it, 1
@@ -15026,11 +15231,9 @@
 assistere-a-casa.it, 1
 assistere-a-domicilio.it, 1
 assistere-in-famiglia.it, 1
-assistivo.shop, 1
 assmb.ly, 1
 assmgp.com, 1
 asso.com.ua, 1
-associate.today, 1
 associatedgamer.com, 1
 associationguillaume.com, 0
 associationhorizon.tk, 1
@@ -15156,9 +15359,11 @@
 astrovandalistas.cc, 1
 astrumadvies.nl, 1
 astsummer.tk, 1
+astucas.com, 1
 astucedirecte.tk, 1
 astucewebmaster.com, 1
 astuna.de, 1
+astur.school, 1
 astural.org, 0
 asturhackers.es, 1
 astutetm.com, 1
@@ -15180,6 +15385,7 @@
 asurbernardo.com, 1
 asurepay.cc, 0
 asurgiant.ca, 1
+asuro.de, 1
 asustor.com, 1
 asustreiber.de, 1
 asvsa.ch, 0
@@ -15209,7 +15415,6 @@
 atabekkoleji.k12.tr, 1
 ataber.pw, 1
 atabor.tk, 1
-atacado.com.vc, 1
 atacadocervejeiro.com.br, 1
 atacadoclube.com.br, 1
 atacadodesandalias.com.br, 1
@@ -15251,6 +15456,7 @@
 atelier-coiffure.ch, 0
 atelier-naruby.cz, 1
 atelier-viennois-cannes.fr, 1
+atelier20.ch, 1
 atelieraphelion.com, 1
 atelierbw.com, 1
 atelierdefrancais.ch, 0
@@ -15274,6 +15480,7 @@
 atenolol50mg.ga, 1
 atentadocumbiero.tk, 1
 aterlectric.com, 1
+ateus.net, 1
 atev.tk, 1
 atf.gov, 1
 atfonline.gov, 1
@@ -15358,8 +15565,8 @@
 atkinshealthcenter.com.au, 1
 atkstore.com, 1
 atl-paas.net, 0
-atla2022-event.com, 1
 atlan.digital, 1
+atlan.nl, 1
 atlana.pro, 1
 atlantacustomfab.com, 1
 atlantahealthcare.tk, 1
@@ -15398,10 +15605,12 @@
 atlasbridge.com, 1
 atlasbrown.com, 1
 atlasbus.by, 1
+atlasbus.pl, 1
 atlasbus.ru, 1
 atlascloud.cn, 1
 atlascoffeeclub.com, 1
 atlascultural.com, 1
+atlasdev.io, 1
 atlasdev.nl, 1
 atlasdog.org, 1
 atlasescorts.com, 1
@@ -15497,12 +15706,14 @@
 attekaleva.fi, 1
 attendanceondemand.com, 1
 attendantdesign.com, 1
+attendhealth.com, 1
 attendu.cz, 1
 attengo.ga, 1
 attention.horse, 1
 attentionpleats.com.tw, 1
 attesawp.com, 1
 atthehelmins.com, 1
+attic-design.com, 1
 atticusblog.com, 1
 attilagyorffy.com, 1
 attilavandervelde.nl, 1
@@ -15523,7 +15734,6 @@
 attosoft.tk, 1
 attractant.com, 1
 attractieparken.tk, 1
-attsavings.com, 1
 atttrainings.com, 1
 attuned.se, 1
 attunedstore.com, 1
@@ -15537,6 +15747,7 @@
 atvsafety.gov, 1
 atwatermn.gov, 1
 atwel.de, 1
+atwey.fr, 1
 atwk.io, 1
 atwonline.org, 1
 atworktechnology.com.au, 1
@@ -15561,6 +15772,7 @@
 au2pb.net, 1
 au2pb.org, 1
 aubay.it, 1
+aubcon.com, 1
 aubepine-restaurant.com, 1
 aubergegilly.ch, 0
 aubio.org, 1
@@ -15577,9 +15789,9 @@
 auckland-lawyer.co.nz, 1
 auckland-painter.co.nz, 1
 aucklandcastles.co.uk, 1
+aucoindubloc.com, 1
 auction.com, 1
 auctionbv.tk, 1
-audaces.com, 0
 audatopaz.com, 1
 aude-mdb-hypnose.fr, 1
 audencia.com, 1
@@ -15650,7 +15862,6 @@
 auenhof-agrar.de, 1
 auerbach-verlag.de, 1
 auf-feindgebiet.de, 1
-auf-nach-mallorca.info, 1
 aufeerjob.cz, 1
 aufildemesidees.fr, 1
 aufmerksamkeitsstudie.com, 1
@@ -15705,6 +15916,7 @@
 auntiesnorkel.com, 1
 auntmia.com, 1
 aunto.xyz, 1
+aupadenis.com, 1
 aupair.com, 1
 aupapa.com, 1
 aupaysdesanes.com, 1
@@ -15751,7 +15963,6 @@
 auroraofficefurniture.com.au, 1
 auroraoss.com, 1
 aurorarecordings.com, 1
-aurorasa-coaching.com, 1
 auroravtc.com, 1
 auroz.video, 1
 aurtho.com, 1
@@ -15779,11 +15990,11 @@
 auspicacious.org, 1
 ausschreibungen-suedtirol.it, 1
 ausset.me, 1
+aussiebum.com, 1
 aussiecamping.com.au, 1
 aussiecampingstore.com, 1
 aussiefinances.com.au, 1
 aussiefunadvisor.com, 0
-aussiegemdesigns.com.au, 1
 aussiemilfs.com, 1
 aussieofficefitout.com.au, 1
 aussieofficefurniture.com, 1
@@ -15833,10 +16044,10 @@
 austriantekken.tk, 1
 austriatravel.tk, 1
 austromorph.space, 1
+austsun.com, 1
 auszeit-lanzarote.com, 1
 auszeit-walsrode.de, 1
 auszeit.bio, 1
-autek.com.br, 1
 auteldesbrumes.com, 1
 autenticismo.tk, 1
 autenticoperfumes.com.br, 1
@@ -15866,6 +16077,7 @@
 authoritysolutions.com, 1
 authorize.computer, 1
 authorize.network, 1
+authorwise.com, 1
 authress.io, 1
 authshoesstore.com, 1
 authsrv.nl.eu.org, 1
@@ -15887,6 +16099,7 @@
 auto-i-dat.ch, 1
 auto-market.tk, 1
 auto-motor-i-sport.pl, 1
+auto-news-schweiz.ch, 1
 auto-none.com, 1
 auto-parts-store.tk, 1
 auto-plus.tn, 1
@@ -15912,6 +16125,7 @@
 autobedrijfgarant.nl, 1
 autobella-hurtownia.pl, 1
 autobelle.it, 1
+autobelt.com, 1
 autobidbroker.com, 1
 autobiz.tk, 1
 autoblogs.ml, 1
@@ -15936,6 +16150,7 @@
 autoconcept.tk, 1
 autocont.cz, 1
 autocorner.com, 1
+autocost.com, 1
 autocross.tk, 1
 autocrossfoto.tk, 1
 autocrossonline.tk, 1
@@ -15981,6 +16196,8 @@
 autoinsurancehavasu.com, 1
 autojur.com.br, 1
 autokasko.tk, 1
+autokeyboard.com, 1
+autokeyreplacementsanantonio.com, 1
 autokino-sachsen.de, 1
 autoklub.cz, 1
 autoknife.cf, 1
@@ -16003,6 +16220,8 @@
 automationpro.me, 1
 automationstore.ga, 1
 automatyczna-identyfikacja.pl, 1
+automechanicschooledu.org, 1
+automeeting.com, 1
 automekano.com, 0
 automekbromma.se, 1
 automiata.de, 1
@@ -16172,21 +16391,25 @@
 autonoleggio.milano.it, 1
 autonome-treinen.tk, 1
 autonomic.com, 1
+autoofficina.it, 1
 autopapo.com.br, 1
 autopark-ost-fichtner.de, 1
 autoparts-for-foreigncars.tk, 1
+autoparts-russia.ru, 1
 autoparts.im, 1
 autoparts.sh, 1
 autoparts.wf, 1
 autopartso.com, 1
 autopartsprime.com, 1
 autopaulito.pt, 1
+autopet.com, 1
 autopilotapp.com, 1
 autopistadelitata.cl, 1
 autopocket.co, 1
 autoportal.tk, 1
 autopril.com, 1
 autoprogconsortium.ga, 1
+autoproof.com, 1
 autoproshouston.com, 1
 autopsy.com, 1
 autopsyhouston.com, 1
@@ -16196,7 +16419,6 @@
 autorefuellings.com, 1
 autorefuellings.ru, 1
 autoreinigung-noack.de, 1
-autorent.by, 1
 autorepairseattle.com, 1
 autorepguide.com, 1
 autorepmans.com, 1
@@ -16224,7 +16446,7 @@
 autoshopsolutions.com, 0
 autosiero.nl, 1
 autoskolaplzen.cz, 1
-autosneed.com, 0
+autosneed.com, 1
 autosoftdms.com, 1
 autosolution.tk, 1
 autosprint.tk, 1
@@ -16284,14 +16506,15 @@
 autozaz.ml, 1
 autozen.com.co, 1
 autozuki.com, 1
-autre.cn, 1
 autres-talents.fr, 1
 autumnfallspornstar.com, 1
 autumnhungary.tk, 1
+autumnmanor.com, 1
 auturoa.nz, 1
 autya.ga, 1
 auverdrift.ovh, 1
 auvernet.org, 1
+auversum.com, 1
 auvicom.nl, 1
 auvidos.ru, 1
 auviewpoint.tk, 1
@@ -16356,7 +16579,6 @@
 avanade.ca, 1
 avanade.ch, 1
 avanade.cm, 1
-avanade.cn, 1
 avanade.co.in, 1
 avanade.co.jp, 1
 avanade.co.uk, 1
@@ -16403,7 +16625,6 @@
 avanguardia.tk, 1
 avangvpn.ga, 1
 avanovum.de, 1
-avanpost.co, 1
 avantcoequipment.com, 1
 avantcoice.com, 1
 avantcorefrigeration.com, 1
@@ -16430,7 +16651,6 @@
 avclub.com, 1
 avdagic.net, 1
 avday.tv, 1
-avdh.top, 0
 ave.zone, 1
 aveamcorp.com, 1
 aveapps.com, 0
@@ -16450,6 +16670,7 @@
 avenade.net, 1
 avenade.nl, 1
 avenade.org, 1
+avenge.pet, 1
 avengehub.com, 1
 avengepet.com, 1
 avengersonline.ml, 1
@@ -16508,7 +16729,6 @@
 avidmode-dev.com, 1
 avidmode-staging.com, 1
 avidmode.com, 1
-avidthink.com, 0
 avie.de, 1
 avilas-style.com, 1
 avilauto.com.es, 1
@@ -16518,7 +16738,6 @@
 avinilo.com, 1
 avintivmedia.com, 1
 aviodrome.nl, 1
-avioimport.com, 1
 aviokarte.rs, 1
 avionicbooks.tk, 1
 avions.ga, 1
@@ -16537,7 +16756,6 @@
 aviv-group.at, 1
 avivanuestroscorazones.com, 1
 avivaplasticsurgery.com, 1
-aviweisfogel.co, 1
 aviweisfogelinfo.org, 1
 avlasov.tk, 1
 avlhostel.com, 1
@@ -16569,7 +16787,6 @@
 avogel.ch, 1
 avogel.co.uk, 1
 avogel.de, 1
-avogel.es, 1
 avogel.gr, 1
 avogel.ie, 1
 avogel.nl, 1
@@ -16618,7 +16835,6 @@
 avtomaniya.tk, 1
 avtomarket.ru, 1
 avtoobzor.tk, 1
-avtorlab.ru, 1
 avtoshini.md, 1
 avtostolica.tk, 1
 avtoucheba.tk, 1
@@ -16631,7 +16847,6 @@
 avtoyurist.gq, 1
 avtoyurist.ml, 1
 avtoyurist.tk, 1
-avtransformation.com, 1
 avus-automobile.com, 1
 avv.li, 1
 avvaterra.ch, 1
@@ -16661,6 +16876,7 @@
 awarify.io, 1
 awarify.me, 1
 awarity.be, 1
+awarner.co.uk, 1
 awaro.net, 1
 awaua.nl, 0
 awaybot.com, 1
@@ -16692,7 +16908,6 @@
 awoau.com.au, 1
 awomansplacenj.com, 1
 awrd.cz, 1
-awrostamani.com, 1
 awsbs.de, 1
 awscloudrecipes.com, 1
 awsl.blog, 1
@@ -16733,7 +16948,6 @@
 axelname.ru, 1
 axelr.me, 1
 axelvoss.eu, 0
-axendatranslations.com, 0
 axeonline.tk, 1
 axessgroup.com, 1
 axg.io, 1
@@ -16757,11 +16971,13 @@
 axislinx.com, 1
 axisortho.com.sg, 1
 axispara-bg.com, 1
+axisunderwriting.com.au, 1
 axl.net, 1
 axmedmessi.tk, 1
 axo.art, 1
 axoftglobal.com, 1
 axoftglobal.ru, 1
+axolotagencia.com, 1
 axome.com, 1
 axon-toumpa.gr, 1
 axoncoho.tk, 1
@@ -16769,11 +16985,9 @@
 axonholdingse.eu, 1
 axre.de, 1
 axrec.de, 1
-axstet.de, 1
 axton.ink, 0
 axtux.tk, 1
 axx.ax, 1
-axxa.one, 0
 axxemble.nl, 1
 axxeptinq.tk, 1
 axxess-marine.com, 1
@@ -16920,7 +17134,6 @@
 az.st, 1
 az.support, 1
 az11018.com, 1
-az24saat.org, 1
 azabani.com, 1
 azadblog.tk, 1
 azadliq.info, 1
@@ -17004,7 +17217,6 @@
 azs-nw.ru, 1
 azsalud.gov, 1
 azsec.biz, 1
-azsgeniedev.azurewebsites.net, 1
 azso.pro, 1
 azsupport.com, 1
 azsupport.host, 1
@@ -17106,6 +17318,7 @@
 b422edu.com, 1
 b4bouncycastles.co.uk, 1
 b4ckbone.de, 1
+b4ifund.it, 1
 b4lint.hu, 1
 b4r7.de, 1
 b4z.eu, 1
@@ -17317,6 +17530,7 @@
 babetta.tk, 1
 babettelandmesser.de, 0
 babevr.com, 1
+babia.to, 1
 babibonami.tk, 1
 babichsteriliser.com.au, 1
 babico.name.tr, 1
@@ -17332,14 +17546,12 @@
 babolat.ae, 1
 babolsar.tk, 1
 baboo.com.br, 1
-babounet.com, 1
 babsbibs.com, 1
-babuccu.com, 0
+babuccu.com, 1
 baburhat.tk, 1
 babursahvizeofisi.com, 1
 babushkin-mir.tk, 1
 baby-bath-tub.com, 0
-baby-digne.com, 0
 baby-doll.tk, 1
 baby-massage.tk, 1
 baby-skin-care.ga, 1
@@ -17601,7 +17813,6 @@
 baframedya.tk, 1
 bafus.ru, 1
 bag.bg, 1
-bag66.ru, 1
 bagdagul.tk, 1
 bagelbrands.com, 1
 bagelsbakery.com, 0
@@ -17632,7 +17843,6 @@
 baharmusic24.tk, 1
 bahcehavuz.com, 1
 bahisbonus.work, 1
-bahislokal6.com, 1
 bahnenimbild.de, 1
 bahnenimbild.eu, 1
 bahnhelden.de, 1
@@ -17648,6 +17858,7 @@
 baidu-s.com, 0
 baiduo.com, 1
 baier-michels.com, 1
+baif.hr, 1
 baikal.cf, 1
 baikalfond.ml, 1
 baikalppk.tk, 1
@@ -17660,6 +17871,7 @@
 bailodromo.tk, 1
 bailong.kr.ua, 1
 bailonga.com, 1
+baimoney.com, 1
 bainba.com, 1
 baindayman.com, 1
 baircentral.com, 1
@@ -17678,6 +17890,7 @@
 baixarvideosgratis.com.br, 1
 baiyangliu.com, 0
 bajacalifornia.tk, 1
+bajajplasticsurgery.com, 1
 bajalotodo.tk, 1
 bajanowski-fotografie.de, 0
 bajaprogramas.tk, 1
@@ -17723,6 +17936,7 @@
 bakkerstraatfeesten.tk, 1
 bakkus.tk, 1
 bakla.ml, 1
+bakoma.pl, 1
 bakongcondo.com, 1
 bakrypt.io, 1
 baks.cf, 1
@@ -17750,6 +17964,7 @@
 balance.education, 1
 balance.equipment, 1
 balance.technology, 1
+balanceadosmendoza.com, 1
 balancecreamers.ga, 1
 balancecreamest.ga, 1
 balancedbrawl.net, 1
@@ -17785,7 +18000,6 @@
 balerma.tk, 1
 balesetvedelem.hu, 1
 balester.com, 1
-balezovolley.fr, 1
 balhamrm.co.uk, 1
 balia.de, 1
 balicekzdravi.cz, 0
@@ -17827,6 +18041,7 @@
 ballinw.com, 1
 ballisticbrass.tk, 1
 ballitolocksmith.com, 1
+ballmusikband.de, 1
 ballon-ballon.de, 1
 ballonnenopdakpannen.tk, 1
 balloon.gq, 1
@@ -17852,6 +18067,7 @@
 balslev.io, 1
 balter.com, 1
 baltialcoholicos.tk, 1
+balticroofing.com, 1
 baltimorecashflow.com, 1
 baltimorecolonrectal.com, 1
 baltimorejetcharter.com, 1
@@ -17886,7 +18102,6 @@
 banabarka.tk, 1
 banajanitorialservices.com, 1
 bananabeer.xyz, 1
-bananaday.ru, 1
 banananet.work, 1
 bananathrash.tk, 1
 bananatreenews.today, 1
@@ -18020,7 +18235,6 @@
 banknh.com, 1
 banknn.ru, 0
 bankofdenton.com, 1
-bankofindia.co.in, 1
 bankofireland.com, 1
 bankofrealty.review, 1
 bankowy-leasing.pl, 1
@@ -18037,6 +18251,7 @@
 banktool.com, 1
 bankvanbreda.be, 1
 bankwithfidelity.com, 1
+bankwork.org, 1
 banland.net, 1
 banlinhdanong.com, 0
 banmapvn.com, 1
@@ -18061,6 +18276,7 @@
 banquevanbreda.be, 1
 banri.me, 1
 bans.info, 1
+bantaihost.com, 1
 bantenmien.tk, 1
 banter.city, 1
 banterera.com, 1
@@ -18068,6 +18284,7 @@
 bantiki.ga, 1
 bantuanteknis.id, 1
 banwagong.eu.org, 1
+banyan-advantech.com, 1
 banzay.ml, 1
 banzhuti.com, 1
 bao-in.net, 1
@@ -18121,7 +18338,6 @@
 barbarians.com, 0
 barbaros.info, 1
 barbate.fr, 1
-barberheatingandair.com, 1
 barberscorner.tk, 1
 barbershop-harmony.org, 0
 barbershop-lasvillas.com, 0
@@ -18212,7 +18428,6 @@
 barney-media.com, 1
 barneydavey.com, 1
 barnflix.net, 1
-barnhardt4berks.com, 1
 barnhomega.com, 1
 barnvaensveitarfelog.is, 1
 barnvets.co.uk, 1
@@ -18225,6 +18440,7 @@
 baronet.cf, 1
 baronpaintingservices.com, 1
 baronspices.com, 1
+baroqueworksstudio.com, 1
 barpodsosnami.pl, 1
 barprive.com, 1
 barqo.co, 1
@@ -18234,12 +18450,14 @@
 barrack.gq, 1
 barrack.tk, 1
 barracuda.blog, 1
+barracuda.com.tr, 0
 barracudaswimmingclub.tk, 1
 barrahome.org, 1
 barrancos.tk, 1
 barrankest.ga, 1
 barranquillero.tk, 1
 barratennis.com.br, 1
+barrencountyky.gov, 1
 barrenwuffett.com, 1
 barricader.com, 1
 barricader.network, 1
@@ -18277,6 +18495,7 @@
 bartkramer.nl, 0
 bartlamboo.nl, 1
 bartlettil.gov, 1
+bartoliconsulting.com, 1
 bartolomebellido.com, 1
 bartowcountyga.gov, 1
 bartula.de, 1
@@ -18285,7 +18504,6 @@
 barwaldesigns.com, 1
 barwave.com, 1
 barzallof.com, 1
-barzus.com.ua, 1
 barzza.tk, 1
 bas.bio, 1
 bas.codes, 1
@@ -18315,7 +18533,7 @@
 basebyte.nl, 1
 basecamp.cf, 1
 baseconvert.com, 1
-basedonline.nl, 0
+basedonline.nl, 1
 basedriver.com, 1
 baseerapp.com, 1
 basel-gynaecology.com, 1
@@ -18381,12 +18599,14 @@
 basisonline.nl, 1
 basisonlinefiles.nl, 1
 basisschoolhundelgem.be, 1
+basisvaardigheden.nl, 1
 basitplan.com, 1
 basket-ballworld.fr, 1
 basket-malaunay.fr, 1
 basket-sint-truiden.tk, 1
 basketball-malavan.tk, 1
 basketballnewz.tk, 1
+basketcase.shop, 1
 basketforex.com, 1
 baskibu.com, 0
 baskingalkin.tk, 1
@@ -18461,12 +18681,12 @@
 bathroomsinkcabinet.tk, 1
 bathscobensraker.ga, 1
 bati-alu.fr, 1
-bati-renov.fr, 1
 batiburrillo.net, 1
 batiim.co.il, 1
 batipiscine.com, 1
 batipresta.ch, 0
 batista.g12.br, 1
+batistasbakery.com, 1
 batitrakya.org, 1
 batiweb.tv, 1
 batiwebgroup.com, 1
@@ -18477,6 +18697,7 @@
 batmod.com, 1
 batoit.gq, 1
 batonchik.tk, 1
+batonger.com, 1
 batten.eu.org, 1
 batterman.ch, 1
 battery-center.fr, 1
@@ -18559,7 +18780,6 @@
 baxtercountyar.gov, 1
 baxterstorey.online, 1
 baxterstoreyirelandonline.com, 1
-baxus.co, 1
 baxx.eu.org, 1
 bayanbennett.com, 1
 bayanradio.tk, 1
@@ -18590,6 +18810,9 @@
 bayfly.net, 1
 bayherbalist.com, 1
 bayilelakiku.com, 1
+bayliss.aero, 1
+bayliss.co.uk, 1
+bayliss.uk, 1
 bayltd.com, 1
 bayly.eu, 1
 baymard.com, 0
@@ -18608,7 +18831,6 @@
 bayt.com, 1
 baytalebaa.com, 1
 baytobayaircon.com.au, 1
-baytownent.com, 1
 baytv.it, 1
 bayvotesfl.gov, 1
 baywatbemacom.cf, 1
@@ -18662,6 +18884,8 @@
 bbb1991.me, 0
 bbbb.loan, 1
 bbbff.net, 1
+bbc.co.uk, 0
+bbc.com, 0
 bbc67.fr, 1
 bbcastles.com, 1
 bbcincorp.com, 1
@@ -18688,7 +18912,7 @@
 bbkanews.uk, 1
 bbkworldwide.jp, 1
 bblsa.ch, 0
-bbmagnagrecia.it, 1
+bbmagnagrecia.it, 0
 bbmak.tk, 1
 bbmsarauniteam.com, 1
 bbnx.net, 1
@@ -18751,7 +18975,6 @@
 bck-koethen.de, 1
 bck-lelystad.nl, 1
 bckl.me, 1
-bclogandtimberbuilders.com, 1
 bcmguide.com, 1
 bcmhire.co.uk, 1
 bcmlu.org, 1
@@ -18770,6 +18993,7 @@
 bcu.ac.uk, 1
 bcubeanalytics.com, 1
 bcubic.net, 1
+bcuniversity.tech, 1
 bcyw56.live, 0
 bcyw56.top, 1
 bczeeland.tk, 1
@@ -18795,6 +19019,7 @@
 bdpestsolutionsstlouis.com, 1
 bdpn.ru, 1
 bdragon.com, 1
+bdrmedia.rs, 1
 bdsmbibliothek.net, 1
 bdsmcontrol.com, 1
 bdsmdating.tk, 1
@@ -18856,6 +19081,7 @@
 beadedcouture.tk, 1
 beadings.tk, 1
 beadseh.ca, 1
+beadsy.com, 1
 beager.ga, 1
 beagleboard.org, 1
 beagles.tk, 1
@@ -18904,7 +19130,6 @@
 bearsunderland.com, 1
 bearzoutdoor.com, 1
 beasel.biz, 1
-beashandmade.com, 1
 beast-books.com, 1
 beast.rent, 1
 beastiejob.com, 1
@@ -18912,6 +19137,7 @@
 beastnet.works, 1
 beastnet.xyz, 1
 beastowner.li, 1
+beatachoroszynska.pl, 1
 beatbreaker.tk, 1
 beatday.com, 1
 beatfeld.de, 1
@@ -18984,10 +19210,8 @@
 beautyindistress.tk, 1
 beautyinweb.net, 1
 beautyisfine.tk, 1
-beautykiss.com, 1
 beautylookz.nl, 1
 beautymadel.de, 1
-beautyplace-buxtehude.de, 1
 beautysane.com, 1
 beautyschool.od.ua, 1
 beautyseasons.ru, 1
@@ -19034,6 +19258,7 @@
 becker.wales, 1
 beckerpumps.com, 1
 becklove.cn, 1
+beckmandxapps.com, 1
 beckmanngmbh.de, 1
 beckmccormick.com, 1
 beckylicious.tk, 1
@@ -19043,7 +19268,9 @@
 beclick.co.il, 1
 becoairandheat.com, 1
 becollective.com, 1
+become-a-bounty-hunter.com, 1
 become-lucky.com, 1
+becomeaparalegal.org, 1
 becomewebdeveloper.tk, 1
 beconnect.cf, 1
 becquerelgroup.com, 1
@@ -19098,6 +19325,7 @@
 beehive42.net, 1
 beehive42.nl, 1
 beehive42.org, 1
+beeinfo.com, 1
 beekbier.nl, 1
 beekeeper.blog, 1
 beekeeper.clothing, 1
@@ -19108,6 +19336,7 @@
 beeksnetwork.nl, 1
 beeldbankgent.be, 1
 beeliarspirit.org, 1
+beelight.com, 1
 beeline.am, 1
 beelit.com, 0
 beeming.net, 1
@@ -19121,6 +19350,7 @@
 beeremovaljohannesburg.co.za, 1
 beeremovalpretoria.co.za, 1
 beeremovalspretoria.co.za, 1
+beerflower.com, 1
 beergifts.tk, 1
 beerglasses.tk, 1
 beerhouse.tk, 1
@@ -19153,7 +19383,6 @@
 beethoveninlove.com, 1
 beetman.net, 1
 beetsforyou.xyz, 1
-beetwix.com, 1
 beeutifulparties.co.uk, 1
 beexfit.com, 0
 beezkneezcastles.co.uk, 1
@@ -19162,6 +19391,7 @@
 beforeafter.gq, 1
 beforethedawn.tk, 1
 beforeyoueatoc.com, 1
+befragung.com, 1
 beframed.ch, 0
 befreewifi.info, 1
 befunddolmetscher.de, 1
@@ -19175,7 +19405,7 @@
 beginwp.tips, 1
 begleitung-zuhause.at, 1
 begonias.tk, 1
-begoth.boutique, 0
+begoth.boutique, 1
 begovel.shop, 1
 begravningsbyranhumana.se, 1
 begundal.tk, 1
@@ -19189,6 +19419,8 @@
 behaving.tk, 1
 behaviorchangeimpact.org, 1
 behead.de, 1
+behealthoncologia.com, 1
+behealthpr.com, 1
 behealthyeveryday.eu, 1
 behemoth.cf, 1
 beherit.pl, 1
@@ -19205,6 +19437,7 @@
 behoreal.cz, 1
 behrer.se, 1
 bei18.com, 1
+beichen.com, 1
 beiersdorf-svz.ch, 1
 beijing.bj, 1
 beijinglug.club, 1
@@ -19294,7 +19527,6 @@
 belebey.city, 1
 beleefheemstede.nl, 1
 beleggingspanden-financiering.nl, 0
-belegit.org, 1
 belezadateresa.com.br, 1
 belezashopping.com.br, 1
 belf.ml, 1
@@ -19334,6 +19566,7 @@
 belic.net, 1
 belics.com, 1
 belidi.tk, 1
+belidzs.hu, 0
 belieber.tk, 1
 belien-tweedehandswagens.be, 1
 believablebook.com, 0
@@ -19358,7 +19591,6 @@
 bellafashion.tk, 1
 bellaflor.net, 1
 bellaireroofinginc.com, 1
-bellaklein.de, 1
 bellamodeling.com, 1
 bellamy.cloud, 1
 bellanews.tk, 1
@@ -19471,6 +19703,7 @@
 bendechrai.com, 0
 bendemaree.com, 1
 bender.ga, 1
+benderssportsandspirits.com, 1
 bendhvacpros.com, 1
 bendigoland.com.au, 1
 bendingtheending.com, 1
@@ -19496,7 +19729,6 @@
 benefitz.gq, 1
 benefitz.ml, 1
 benekill.tk, 1
-benepiscinas.com.br, 1
 benepla.com, 1
 beneri.se, 1
 benetcasablancas.tk, 1
@@ -19524,6 +19756,7 @@
 benhartmann.de, 0
 benhocking.com, 1
 benhoeg.com, 0
+benia.cz, 1
 beniajan.tk, 1
 benidormcd.tk, 1
 benimsetin.com, 1
@@ -19542,6 +19775,7 @@
 benjaminleupold.com, 1
 benjaminpiquet.fr, 0
 benjaminprevot.fr, 1
+benjaminrancourt.ca, 1
 benjamins.com, 1
 benjaminvasel.de, 1
 benjamorphism.com, 1
@@ -19600,6 +19834,7 @@
 bentoncountyia.gov, 1
 bentoncountyor.gov, 1
 bentongroup.co.uk, 1
+bentonvillemedia.com, 1
 bentonvilleppc.com, 1
 bentonweatherstone.co.uk, 1
 bentonwi.gov, 1
@@ -19702,14 +19937,17 @@
 berkat-luqs.ddns.net, 1
 berkbrands.com, 1
 berkeleyca.gov, 1
+berkeleypolitical.review, 1
 berkhills.com, 1
 berksabstract.com, 1
 berksestateplanning.com, 1
 berkshire.com, 1
 berkshireesupply.com, 1
 berkswatertech.com, 1
+berlin-cuisine.com, 1
 berlin-flirt.de, 1
 berlin-hotel.tk, 1
+berlin-starlight-orchestra.de, 1
 berlinal.gov, 1
 berlincreators.de, 1
 berlinct.gov, 1
@@ -19771,6 +20009,7 @@
 berr.yt, 1
 berra.se, 0
 berria.fi, 1
+berriabot.com, 1
 berriabot.fi, 1
 berriacast.com, 1
 berriacast.fi, 1
@@ -19799,7 +20038,6 @@
 berthaphil.com, 1
 berthaundcarlbenzpreis.de, 1
 berthelier.me, 1
-bertholdsson.com, 0
 berthoudeconomicdevelopment.com, 1
 bertietrains.co.uk, 1
 bertietrains.com, 1
@@ -19807,7 +20045,7 @@
 bertold.org, 1
 bertoliniodontoiatria.it, 1
 bertr.am, 1
-bertrand.bio, 1
+bertrand.bio, 0
 bertrandkeller.info, 1
 bertrell.com, 1
 bertsmithvwparts.com, 1
@@ -19983,6 +20221,7 @@
 besti.it, 1
 bestiahosting.com, 1
 besties4life.ml, 1
+bestinahwatukee.com, 1
 bestinbarter.com, 1
 bestinductioncooktop.us, 1
 bestinsider.net, 0
@@ -20139,6 +20378,8 @@
 bestliege.be, 1
 bestlifek9training.com, 1
 bestlyrics.tk, 1
+bestmasterofscienceinnursing.com, 1
+bestmastersinpsychology.com, 1
 bestmattressabout.com, 1
 bestmattresses.tk, 1
 bestmaturepics.com, 1
@@ -20151,6 +20392,8 @@
 bestnetflowanalyzer.com, 1
 bestnewsmag.com, 1
 bestnovelbooks.ga, 1
+bestnursingdegree.com, 1
+bestnursingmasters.com, 1
 besto.cf, 1
 besto.ga, 1
 besto.tk, 1
@@ -20163,7 +20406,6 @@
 bestomania.tk, 1
 bestonlinestuffs.com, 1
 bestparking.com, 1
-bestparking.xyz, 1
 bestpartyhire.com, 1
 bestperfumebrands.com, 0
 bestpig.fr, 1
@@ -20180,6 +20422,7 @@
 bestproductsaudit.com, 1
 bestprofessionalchainsaw.com, 1
 bestpsychologydegrees.com, 1
+bestpsychologydegrees.org, 1
 bestreleases.tk, 1
 bestremote.io, 1
 bestroofinginkansascity.com, 1
@@ -20424,7 +20667,6 @@
 betexperts.tk, 1
 betfair.com.co, 1
 betformular.com, 1
-betfy.co.uk, 1
 bethanyhome.org, 1
 bethanymo.com, 1
 bethanytownshipmi.gov, 1
@@ -20437,7 +20679,6 @@
 betheredge.us, 1
 bethlehemnj.gov, 1
 bethlehemwv.gov, 1
-bethpage.net, 1
 bethulietourism.co.za, 1
 bethzone.tk, 1
 beticaret.com, 1
@@ -20461,7 +20702,6 @@
 betop-lab.com, 1
 betor.cz, 1
 betor.sk, 1
-betosaso.de, 1
 betoskip.tk, 1
 betrifft-mich-dsgvo.ch, 1
 betrimus.xyz, 1
@@ -20475,6 +20715,7 @@
 betsonlinefree.com.au, 1
 betspin.com, 1
 betstop.gov.au, 1
+betsys.de, 1
 bett1.at, 1
 bett1.ch, 1
 bett1.de, 1
@@ -20521,10 +20762,8 @@
 bettflaschen.ch, 1
 bettie.tk, 1
 betting-magic.com, 1
-betting-sites.me.uk, 1
 bettingbasket.com, 1
 bettingbusiness.ru, 1
-bettingmate.uk, 1
 bettingonaverage.com, 1
 bettingsider.dk, 1
 bettolinokitchen.com, 1
@@ -20662,14 +20901,12 @@
 beyondweb.net, 1
 beyondzeroacademy-reservations.fr, 1
 beyonsolutions.com, 1
-beyours.be, 1
 bezagentstva.cf, 1
 bezahlbare-praemien.ch, 1
 bezbankrotstva.ru, 1
 bezbik.tk, 1
 bezdech.tk, 1
 bezdomny.tk, 1
-bezemkast.nl, 0
 bezin.ga, 1
 bezoek-benidorm.tk, 1
 bezoomnyville.com, 1
@@ -20731,7 +20968,7 @@
 bgmn.me, 1
 bgmontaggi.com, 1
 bgmsquad.com, 1
-bgmsquad.net, 1
+bgmsquad.net, 0
 bgp.space, 1
 bgr34.cz, 1
 bgs-game.com, 1
@@ -20740,6 +20977,7 @@
 bh-oberland.de, 1
 bh.sb, 1
 bhacit.com, 0
+bhagyaveer.com, 1
 bhaiben.com, 1
 bhameshwarigraphics.com, 1
 bhanaphotography.co.nz, 1
@@ -20769,7 +21007,6 @@
 bhuvanreddy.space, 1
 bhvapers.com, 1
 bhw.name, 1
-bhxch.moe, 1
 bi-fazlasi.com, 1
 bi-in-beeld.nl, 1
 bi-jenny.net, 1
@@ -20777,11 +21014,13 @@
 bi.search.yahoo.com, 0
 bi1gif.radio, 1
 bi3e.ma, 1
+bi4sb.com, 1
 bi8cku.club, 1
 bi8cku.tech, 1
 bia3consultores.es, 1
 biaform.be, 1
 biagiowineandspirits.com, 1
+bial.com, 1
 bialamydlarnia.pl, 0
 biancadark.tk, 1
 biancapulizie.it, 1
@@ -20822,7 +21061,10 @@
 bibliaon.com, 1
 bibliatodo.com, 1
 biblicalcounseling.com, 1
+biblicaudio.org, 1
 biblico.tk, 1
+biblicom.org, 1
+biblinfo.com, 1
 bibliobaldur.tk, 1
 biblioblog.fr, 1
 bibliobus.ch, 1
@@ -20856,6 +21098,7 @@
 bicicletassym.com, 1
 bicicletassym.com.co, 1
 bicignet.ga, 1
+bicistore.com.co, 1
 bicommarketing.com, 1
 bicranial.io, 0
 bicromoestudio.com, 1
@@ -20907,6 +21150,7 @@
 bierbaumer.net, 1
 bierbringer.at, 1
 bierbrouwerijderoos.nl, 1
+bieresamanger.fr, 1
 bierlegal.com, 1
 bierochs.org, 1
 bierwebshop.be, 1
@@ -20963,7 +21207,6 @@
 bigbrother.fi, 1
 bigbuild.vic.gov.au, 1
 bigbunce.ru, 1
-bigbuzzproductions.co.uk, 1
 bigbyte.com.np, 1
 bigcakes.dk, 1
 bigchance.tk, 1
@@ -20980,7 +21223,7 @@
 bigdiscounts.tk, 1
 bigeaglesacademy.gq, 1
 bigeasyfences.com, 1
-bigeasygrille.com, 1
+bigeasygrille.com, 0
 bigfreebielist.tk, 1
 biggernews.gq, 1
 biggerpicture.agency, 1
@@ -21000,7 +21243,7 @@
 bigmountainmail.com, 1
 bigmuff.duckdns.org, 1
 bignaturals.com, 1
-bignet.bid, 1
+bignet.bid, 0
 bignudetits.com, 1
 bigone.com, 1
 bigorangelab.com, 1
@@ -21036,6 +21279,7 @@
 bigtix.io, 1
 bigtown.tk, 1
 bigudi.ee, 1
+bigwaterut.gov, 1
 bigzoo.com.br, 1
 biigtigconsulting.ca, 1
 bij-juud.nl, 1
@@ -21044,6 +21288,7 @@
 bijloke.gent, 1
 bijlokesite.be, 1
 bijlokesite.gent, 1
+bijou.be, 1
 bijoux-fantaisies.eu, 1
 bijoux.com.br, 1
 bijouxbrasil.com.br, 1
@@ -21056,7 +21301,6 @@
 bikebay.it, 1
 bikebristol.com, 1
 bikeclub.tk, 1
-bikeflip.com, 1
 bikehistory.org, 1
 bikemaniacs.tk, 1
 bikemi.com, 1
@@ -21118,7 +21362,6 @@
 bilgilarus.com, 1
 bilgiliksel.com, 1
 bilgisayarkursu.tk, 1
-bilgisayarprogramlari.net, 1
 bilgo.com, 1
 bilhos.com.tr, 1
 bilibili.link, 1
@@ -21128,6 +21371,7 @@
 bilimoe.com, 1
 bilingualunit.tk, 1
 bilisimdanismani.com, 1
+biljettmonster.se, 1
 bilke.org, 1
 bilkovita.bg, 1
 bilkovitinkturi.bg, 1
@@ -21155,6 +21399,7 @@
 billiardmaster.com.ua, 1
 billiebikes.com, 1
 billigastehemsidan.se, 1
+billiger-mietwagen.de, 1
 billigerfinder.de, 1
 billigesommerhuse.nu, 1
 billigflug.tk, 1
@@ -21218,6 +21463,7 @@
 bim.physio, 1
 bim0s.com, 1
 bimacitizen.com, 1
+bimatoprostrx.com, 1
 bimbingan.tk, 1
 bimbobakeriesusa.com, 0
 bimedis.com, 1
@@ -21235,6 +21481,7 @@
 bimmerlabs.com, 1
 bimoge.tk, 1
 bimsynergistics.com, 1
+bimtvi.com, 1
 bin-laden.org, 1
 bin95.com, 1
 bina.az, 1
@@ -21270,7 +21517,6 @@
 binding-problem.com, 1
 binds.co, 1
 bindsolutions.com, 1
-bindubreath.com, 1
 binezalohar.tk, 1
 binf.tk, 1
 bing, 1
@@ -21294,6 +21540,8 @@
 bingospelen.tk, 1
 bingothemesers.ga, 1
 bingothemesest.ga, 1
+bingpo.com, 1
+bingxuerong.com, 1
 binhdang.me, 0
 binhex.net, 1
 binhminhpc.com, 1
@@ -21301,6 +21549,7 @@
 biniou.net, 1
 binkanhada.biz, 1
 binkconsulting.be, 1
+binkert-treuhand.ch, 1
 binnen-buten.de, 1
 binnenmeer.de, 1
 binoculars.ga, 1
@@ -21376,7 +21625,7 @@
 biohazardland.tk, 1
 biohazardonline.tk, 1
 biohazardous.tk, 1
-biohof-paas.de, 1
+biohof-paas.de, 0
 bioinfo-diag.fr, 1
 bioinformaticsweb.tk, 1
 biointelligence-explosion.com, 1
@@ -21405,7 +21654,6 @@
 biology-colleges.com, 1
 biologynest.com, 1
 biomarket24.pl, 1
-biomasscore.com, 0
 biomassinfo.jp, 1
 biomathalliance.org, 1
 biomax-mep.com.br, 1
@@ -21418,7 +21666,6 @@
 biomedyczne.pl, 1
 biometriccoe.gov, 1
 biometrics.gov, 1
-biometservices.com, 1
 biomin.co.uk, 1
 biomod.tk, 1
 biomodra.cz, 1
@@ -21690,6 +21937,7 @@
 bitech-ec.com, 1
 bitedge.com, 0
 bitedu.pt, 1
+bitehazard.cz, 1
 bitenose.com, 1
 bitenose.org, 1
 bitewinggames.com, 1
@@ -21715,6 +21963,7 @@
 bitjunkiehosting.com, 1
 bitkan.com, 1
 bitkub-app.com, 1
+bitkub-int.com, 1
 bitlair.nl, 1
 bitlaunch.io, 1
 bitljettnu.gq, 1
@@ -21890,6 +22139,7 @@
 bjelimici.com, 1
 bjerregaard.me, 1
 bjfuli.com, 1
+bjgwyj.com, 1
 bjjmississauga.com, 1
 bjl688.cc, 1
 bjm-gembas.be, 1
@@ -21897,6 +22147,7 @@
 bjoern-thoroe.de, 1
 bjolanta.pl, 1
 bjordanov.com, 1
+bjorknet.com, 1
 bjornhelmersson.se, 1
 bjornjohansen.no, 1
 bjornlarssen.com, 1
@@ -22094,18 +22345,15 @@
 black-mail.nl, 1
 black-market.ga, 1
 black-pool.net, 1
-black-raven.fr, 1
 black-rider-studio.eu, 1
 black-rosella.tk, 1
 black-side.tk, 1
 black.dating, 1
 blackandblond.tk, 1
-blackandteal.com, 1
 blackandwhite.tk, 1
 blackapron.com.br, 1
 blackarch.org, 1
 blackarch.sk, 1
-blackarts.co.za, 1
 blackassassins.tk, 1
 blackbag.nl, 1
 blackbam.at, 1
@@ -22124,7 +22372,6 @@
 blackcatinformatics.com, 1
 blackcatwanderlust.com, 1
 blackchristmas.tk, 1
-blackchrome.com.au, 1
 blackcicada.com, 1
 blackco.ga, 1
 blackcoffee.website, 1
@@ -22140,6 +22387,7 @@
 blackestdespondency.tk, 1
 blackeyes.gq, 1
 blackeyes.tk, 1
+blackfeather.in, 1
 blackfire.io, 1
 blackfirecrew.tk, 1
 blackforeststheoriginal.cf, 1
@@ -22152,7 +22400,6 @@
 blackhail.tk, 1
 blackhat.dk, 1
 blackhat.nz, 1
-blackhawkmuseum.org, 1
 blackheads.tk, 1
 blackheartbar.com, 1
 blackhelicopters.net, 1
@@ -22209,7 +22456,7 @@
 blackspider.tk, 1
 blacksport.ru, 1
 blacksprut.com, 1
-blackstone.com, 1
+blackstone.com, 0
 blackstoneone.net, 1
 blackstonepress.tk, 1
 blackstrapsecurity.com, 1
@@ -22243,6 +22490,7 @@
 blaetter.de, 1
 blaeu.com, 1
 blagger.tk, 1
+blaggo.com, 1
 blago-sostoyanie.ga, 1
 blago-sostoyanie.gq, 1
 blago-sostoyanie.ml, 1
@@ -22325,6 +22573,7 @@
 blayne.me, 0
 blayneallan.com, 0
 blazebd.com, 1
+blazeeria.com, 1
 blazefire.tk, 1
 blazeit.io, 1
 blazenet.net, 1
@@ -22349,8 +22598,8 @@
 bleedingcool.com, 1
 bleedmoneyest.ga, 1
 bleekerenbleeker.nl, 1
+bleep-it.be, 1
 bleep.zone, 1
-bleepplc.co.uk, 1
 blegalservicespty.com, 1
 blekingeopen.tk, 1
 blender.io, 1
@@ -22437,7 +22686,6 @@
 blizhost.com.br, 1
 blizko.tk, 1
 blizora.com, 1
-blk.me, 1
 blkbx.eu, 1
 blkj.com, 1
 bllb.ru, 0
@@ -22537,18 +22785,16 @@
 bloggermumofthreeboys.com, 1
 bloggerse.com, 1
 bloggersonlinetrainings.tk, 1
+bloggervent.com, 1
 bloggerzarausa.ga, 1
 blogging-life.com, 1
-bloggingdirty.com, 1
 bloggingkits.org, 1
-bloggingocean.com, 1
 bloggingqna.com, 1
 bloggingtriggers.com, 1
 bloggingwithchildren.com, 1
 blogguitar.tk, 1
 bloggymoms.com, 1
 bloggytalky.com, 1
-blogheist.com, 1
 bloghogger.tk, 1
 blogidol.tk, 1
 bloginbeeld.nl, 1
@@ -22617,6 +22863,7 @@
 bloomfire.com, 1
 bloomingbit.io, 1
 bloomingpink.in, 1
+bloomingskills.com, 1
 bloomingtonelectionsil.gov, 1
 bloomingtonil.gov, 1
 bloomingwoods.tk, 1
@@ -22642,7 +22889,6 @@
 bltc.org, 1
 bltc.org.uk, 1
 bltdirect.com, 1
-bluamoeba.com, 1
 bluavido.ml, 1
 blubop.fr, 1
 blubracket.com, 1
@@ -22694,7 +22940,6 @@
 bluegolf.com, 1
 bluegorilla.es, 1
 bluegrottoscuba.com, 0
-bluehillhosting.com, 1
 bluehillme.gov, 1
 blueimp.net, 1
 bluejeans.com, 1
@@ -22751,7 +22996,6 @@
 bluestardiabetes.com, 1
 bluestarroofing.com, 1
 bluestoneconstruction.com, 1
-bluestonewales.com, 1
 bluestrigger.tk, 1
 bluesuncamping.com, 1
 bluesunhotels.com, 1
@@ -22793,7 +23037,6 @@
 blummedia.de, 1
 blundell.wedding, 1
 bluntandsnakes.com, 1
-blupig.net, 1
 bluproducts.com.es, 1
 blur.io, 1
 blurbhack.com, 1
@@ -22803,6 +23046,7 @@
 blushingweb.tk, 1
 blusmurf.net, 1
 blutooth.ga, 1
+blutopia.cc, 1
 blutopia.xyz, 1
 blutspende.de, 1
 bluuglass.com, 1
@@ -22818,6 +23062,7 @@
 bm-dataprotect.ch, 1
 bm-i.ch, 0
 bm-immo.ch, 0
+bm-pc.ddns.net, 1
 bm-trading.nl, 1
 bmac.cloud, 1
 bmak.xyz, 1
@@ -22833,6 +23078,7 @@
 bmoe.eu.org, 1
 bmone.net, 1
 bmotorsports.com, 1
+bmr.ar, 1
 bmriv.com, 1
 bmros.com.ar, 1
 bmsexperthub.hu, 1
@@ -22886,7 +23132,6 @@
 bo-rad.de, 1
 bo.ke, 1
 bo1689.com, 0
-bo2projects.be, 1
 bo4tracker.com, 1
 boa.rw, 1
 boam.nu, 1
@@ -22900,6 +23145,7 @@
 boardgameforces.com, 1
 boardgamegeeks.de, 1
 boardingschoolreview.com, 1
+boardlinks.gov.au, 1
 boardmad.com, 1
 boardroommind.com, 1
 boards.ie, 1
@@ -22969,12 +23215,12 @@
 bochs.info, 1
 bocloud.eu, 1
 boctok.space, 1
+bocusedormauritius.com, 1
 bodas.com.mx, 1
 bodas.net, 1
 bodascartagena.com, 1
 bodclansite.tk, 1
 boddunan.com, 1
-bodegademuebles.com, 1
 bodegagarces.tk, 1
 bodegasvirei.com, 0
 bodemplaten4x4.nl, 1
@@ -23033,7 +23279,6 @@
 boffin.tk, 1
 bofn.com.tr, 1
 bofoxdesign.com, 0
-bog8.com, 1
 bogatyizhenih.tk, 1
 bogazreflusu.com, 1
 bogdanbiris.com, 1
@@ -23080,7 +23325,6 @@
 boke112.com, 1
 bokehandbows.ca, 1
 bokepav.com, 1
-bokepxxi.nl, 1
 bokhaldari.is, 1
 bokhylle.eu, 1
 bokkeriders.com, 1
@@ -23192,11 +23436,13 @@
 bonami.tech, 1
 bonamihome.ro, 1
 bonanzateam.tk, 1
+bonaparte.com.co, 1
 bonapati.tk, 1
 bonapeti.ml, 1
 bonaselect.lv, 1
 bonawehouse.co.uk, 1
 bonbonka.best, 1
+bonbonmania.com, 1
 bonbonshop.ro, 1
 bonchaboncha.com.tw, 1
 bondagefetishstore.com, 1
@@ -23361,12 +23607,14 @@
 booldamm.llc, 1
 boombangcreditos.tk, 1
 boomboomboat.com, 1
+boomerangwater.com, 1
 boomersurf.com, 1
 boomfestival.org, 1
 boomfinity.xyz, 1
 boomingofthings.com, 1
 boomkins.net, 1
 boomshadow.net, 1
+boomshine.de, 1
 boomsocial.com, 1
 boomsual.com, 1
 boomtheme.com, 1
@@ -23379,7 +23627,6 @@
 boonecountywv.gov, 1
 boonemo.gov, 1
 boonshoft.com, 1
-boontech.xyz, 1
 booox.biz, 1
 booox.cc, 1
 booox.net, 1
@@ -23417,7 +23664,6 @@
 bootswinter.tk, 1
 bootytube.net, 1
 boozinyan.com, 1
-bophacker.com, 1
 bopiweb.com, 1
 bopyx.com, 0
 boraboraphotos.com, 0
@@ -23444,7 +23690,7 @@
 borderlens.com, 1
 borderless.ro, 1
 borderless360.com, 1
-borderlessmigration.com, 1
+borderpatroledu.org, 1
 borderzoo.tk, 1
 bordes.me, 1
 bordo.com.au, 1
@@ -23474,7 +23720,6 @@
 boringnews.tk, 1
 boringpoll.com, 1
 boringsmith.com, 1
-boris64.net, 1
 borisenko-alexander.com, 1
 borisenko.by, 1
 borislam.tk, 1
@@ -23549,7 +23794,6 @@
 botanylinemarking.com.au, 1
 botarticle.ga, 1
 botbrother.ml, 1
-botcamp.org, 1
 botcop.de, 1
 botcore.ai, 1
 botdiril.com, 1
@@ -23582,6 +23826,7 @@
 bottke.berlin, 1
 bottle.li, 1
 bottlecapsbev.com, 1
+bottleking.com, 1
 bottlerockshuttles.com, 1
 bottom9clothing.com, 1
 bottomfeedings.tk, 1
@@ -23603,6 +23848,7 @@
 bougerpourmasante.com, 1
 bougharios.com, 1
 boughariosbros.com, 1
+bouijoux.fr, 1
 boulangerie-patisserie.ca, 1
 bouldercounty.gov, 1
 bouldercountyassessor.gov, 1
@@ -23712,6 +23958,7 @@
 bounty.software, 1
 bountyfactory.io, 1
 bountyhunter.tk, 1
+bountyhunteredu.org, 1
 bountyhuntermetaldetector.tk, 1
 bountyx.com, 1
 bourasse.fr, 1
@@ -23744,6 +23991,7 @@
 bouwbedrijfjstam.nl, 1
 bouwbedrijfkorstanje.nl, 1
 bouwhuisman.nl, 1
+bouwma.nl, 1
 bouwplaatscheckin.nl, 1
 bouzouada.com, 1
 bouzouks.net, 1
@@ -23751,7 +23999,6 @@
 bovworkplacepensions.com, 1
 bowdens.me, 1
 bowelcontroltherapy.com, 1
-boweryandvine.com, 1
 bowhill.me, 1
 bowhunter-ahorn.de, 1
 bowlcake.fr, 1
@@ -23847,6 +24094,7 @@
 br-hq.net, 1
 br-miyamoto.spdns.org, 1
 br.search.yahoo.com, 0
+br.to, 1
 br1334shop.com.br, 1
 br24-7.com, 1
 br3in.nl, 0
@@ -23945,7 +24193,9 @@
 bralnik.com, 1
 bramberheights.com, 1
 brambevers.tk, 1
+bramblerealestate.com, 1
 brambles.com, 1
+brambleski.com, 1
 bramburek.net, 1
 bramfri.dk, 1
 bramhallsamusements.com, 1
@@ -23989,6 +24239,7 @@
 brandinspiration.fr, 1
 brandketers.com, 1
 brandmovers.co, 1
+brandname.my, 1
 brandnucreations.com, 1
 brando753.xyz, 1
 brandon-manilow.tk, 1
@@ -24064,11 +24315,13 @@
 brasilwear.biz, 1
 brasilweb.tk, 1
 braslet-bianshi.tk, 1
+brasrede.com.br, 1
 brass.host, 1
 brassbandwarmond.tk, 1
 brasseursdubois.com, 1
 brasspipedreams.org, 1
 bratan.ga, 1
+bratkartoffelking.de, 1
 bratstvo.tk, 1
 bratt.tk, 1
 bratteng.com, 1
@@ -24197,6 +24450,7 @@
 breederworld.dog, 1
 breen.com.br, 1
 breezyapp.hu, 1
+breezypointmn.gov, 1
 breffa.pl, 1
 brefy.com, 1
 brege.org, 1
@@ -24217,6 +24471,7 @@
 bremen-restaurants.de, 1
 bremensaki.com, 1
 bremerfriedensforum.de, 1
+breml.com, 1
 brenbarnes.com, 1
 brenbarnes.com.au, 0
 brenda-enzymes.org, 1
@@ -24239,6 +24494,7 @@
 brest-master.tk, 1
 brest-news.tk, 1
 brest-region.tk, 1
+brest.fr, 0
 brest24.tk, 1
 brestnews.tk, 1
 brestradio.tk, 1
@@ -24286,7 +24542,6 @@
 brian.gq, 0
 brianalaway.com, 1
 brianalawayconsulting.com, 1
-briandorey.com, 0
 briandwells.com, 0
 brianfanzo.com, 1
 brianfoshee.com, 1
@@ -24299,6 +24554,7 @@
 brianlanders.us, 1
 brianleejackson.com, 1
 brianleemarketing.com, 1
+brianm.com, 1
 brianmwaters.net, 1
 brianna.tk, 1
 brianoost.com, 1
@@ -24356,11 +24612,13 @@
 bridgeout.com, 1
 bridgepayday.ph, 1
 bridgeportlaboratory.tk, 1
+bridgeportwv.gov, 1
 bridgercanyonfiremt.gov, 1
 bridges.ml, 1
 bridgesem.io, 1
 bridgesinbelize.org, 1
 bridgethailand28chidlom.com, 1
+bridgetmcauliffe.ie, 1
 bridgetownrecords.tk, 1
 bridgetroll.org, 1
 bridgewaterma.gov, 1
@@ -24459,6 +24717,7 @@
 brisp.nl, 1
 brisq.design, 1
 bristebein.com, 1
+bristol.se, 1
 bristolandwestonsuperbounce.com, 1
 bristolcountysavings.com, 1
 bristolctwatersewer.gov, 1
@@ -24524,7 +24783,7 @@
 brmnn.de, 1
 brmsalescommunity.com, 1
 brn.by, 1
-brn.is, 1
+brn.is, 0
 brnogame.com, 1
 brnogame.cz, 1
 brnogame.online, 1
@@ -24552,6 +24811,7 @@
 broadwayva.gov, 1
 broadwayvets.co.uk, 1
 broansunited.tk, 1
+brobank.ru, 1
 broca.dk, 1
 broca.io, 0
 brock.guide, 1
@@ -24570,6 +24830,7 @@
 broerweb.nl, 1
 broeselei.at, 0
 brogramo.com, 1
+broilerku.com, 1
 broilertrade.com, 1
 brojagraphics.de, 1
 broke.network, 1
@@ -24610,7 +24871,6 @@
 broochwithme.com, 1
 broodbesteld.nl, 1
 broodingblogger.com, 1
-brookeblogt.be, 1
 brookframework.org, 1
 brooklynboyblues.cf, 1
 brooklynboyblues.ga, 1
@@ -24634,6 +24894,7 @@
 broomcastle.eu, 1
 broomcastle.net, 1
 broomcastle.org, 1
+broomcastle.social, 1
 broomorchard.com, 1
 brosay-legko.ml, 1
 brossman.it, 1
@@ -24676,9 +24937,11 @@
 browsemycity.com, 1
 browser.style, 1
 browserleaks.com, 1
+brpmanuals.com, 1
 brq.com, 1
 brr.fyi, 1
 brrr.fr, 1
+brskt.be, 1
 brsociety.club, 1
 brsvcs.in, 1
 brtve.tk, 1
@@ -24702,9 +24965,9 @@
 brueggi.tk, 1
 brueser-gmbh.de, 1
 brugerklub.info, 1
+brugia.com, 1
 brugpensioen.tk, 1
 bruidstaarten.tk, 1
-bruisedsky.com, 1
 bruitparif.fr, 1
 brujoincaperuano.com, 1
 bruk2fa.no, 1
@@ -24736,6 +24999,7 @@
 brunosampaioblog.com, 1
 brunroom.tk, 1
 brunswick.com, 0
+brunswickncsheriff.gov, 1
 brush.ninja, 1
 brushcreekyachts.com, 1
 brushscene.de, 1
@@ -24778,11 +25042,12 @@
 bryanski.tk, 1
 bryantluk.com, 1
 bryantx.gov, 1
+bryceml.us, 1
 bryggebladet.dk, 1
 bryte-rp.tk, 1
 brzc.st, 1
 brztec.com, 1
-bs-facilityservice.ch, 1
+bs-facilityservice.ch, 0
 bs-network.net, 1
 bs-security.com, 1
 bs.sb, 1
@@ -24823,6 +25088,7 @@
 bserved.de, 0
 bsf-knowledgecity.com, 1
 bsg.ro, 1
+bsgamanet.ro, 1
 bsgcredit.ro, 1
 bsidesf.com, 1
 bsidesf.org, 1
@@ -24834,6 +25100,7 @@
 bslnow.co.uk, 1
 bsmsl.com, 1
 bsn.cloud, 1
+bsnedu.org, 1
 bsociabl.com, 1
 bsp-southpool.com, 1
 bspecialfx.nl, 1
@@ -24855,6 +25122,7 @@
 bsuess.de, 1
 bsurfcr.com, 1
 bsuru.xyz, 1
+bsvfincorp.com, 1
 bsw-solution.de, 1
 bswears.com, 1
 bsystem.net, 0
@@ -24895,6 +25163,7 @@
 btln.de, 1
 btmic.ro, 1
 btnissanparts.com, 1
+btool.eu.org, 1
 btopc.jp, 1
 btorrent.xyz, 1
 btrade.io, 1
@@ -24926,7 +25195,6 @@
 btwsa.tk, 1
 btxchange.io, 1
 bu-e.com, 1
-buatcv.online, 1
 buayacorp.com, 1
 bub.cat, 1
 bubalova.com, 1
@@ -25038,6 +25306,7 @@
 buero13-design.de, 1
 buesiforquo.cf, 1
 buettgens.net, 1
+buetzer.ch, 1
 bufete.tk, 1
 buff-buff.tk, 1
 buff360.xyz, 1
@@ -25093,7 +25362,6 @@
 build.chromium.org, 1
 build.gov, 1
 buildbackbetter.gov, 1
-buildbytes.com, 1
 buildconcierge.ga, 1
 builddirect.com, 1
 buildersofthesilentcities.tk, 1
@@ -25124,6 +25392,7 @@
 builds.gg, 1
 buildstaging.com, 1
 buildthewall2022.com, 1
+buildwealth.uk, 1
 buildworkout.com, 1
 buileo.com, 1
 builterra2.azurewebsites.net, 1
@@ -25141,7 +25410,6 @@
 builtory.my, 1
 builttosell.com, 1
 builtvisible.com, 1
-builtwith.com, 1
 buissonchardin.fr, 1
 buitenposter.nl, 1
 buitex.lt, 1
@@ -25209,6 +25477,7 @@
 bullyprotection.ml, 1
 bulmanat.tk, 1
 bulmastife.com.br, 1
+bultdatabasen.se, 1
 bulten.com, 1
 bultink.tk, 1
 bulutdonusumu.com, 1
@@ -25242,6 +25511,7 @@
 bundesvvehr.de, 1
 bundlejs.com, 1
 bune.city, 1
+bungabuket.com, 0
 bungalowseljardin.com, 1
 bungee.pw, 1
 bungeeireland.tk, 1
@@ -25310,6 +25580,7 @@
 burgas.bg, 1
 burgawnc.gov, 1
 burger.eu.org, 1
+burger.fitness, 1
 burgerbudget.gent, 1
 burgerking.eu.org, 1
 burgernet.nl, 0
@@ -25437,6 +25708,7 @@
 business-explosion-fortune.tk, 1
 business-garden.com, 1
 business-impulse.nl, 1
+business-institute.sk, 1
 business-secreti.cf, 1
 business-secreti.ga, 1
 business-secreti.gq, 1
@@ -25445,6 +25717,7 @@
 business.facebook.com, 0
 business.gov, 0
 business.medbank.com.mt, 1
+business.vic.gov.au, 1
 business4all.gr, 1
 business4beginners.co.uk, 1
 businessactivities.tk, 1
@@ -25453,7 +25726,6 @@
 businessafter.ga, 1
 businessamongus.com, 1
 businessanalyst.ml, 1
-businessanalytics24.com, 1
 businessarrow.ga, 1
 businessbad.ga, 1
 businessbasecamp.eu, 1
@@ -25532,7 +25804,6 @@
 businesshosting.nl, 0
 businesshotrod.ga, 1
 businesshub.cz, 0
-businesshunt360.com, 1
 businessideaarea.tk, 1
 businessideaasia.tk, 1
 businessideacompany.tk, 1
@@ -25664,6 +25935,7 @@
 businessspicy.ga, 1
 businesssplash.ga, 1
 businessstamp.ga, 1
+businessstudent.com, 1
 businesssupportbywilma.nl, 1
 businesssurreal.ga, 1
 businesstalking.tk, 1
@@ -25731,7 +26003,6 @@
 but-its-not-your.business, 1
 butarque.es, 1
 butcherpaxtattoo.com, 1
-butekno.net, 1
 buter-petersen.dk, 1
 butfirstkoffee.in, 1
 butianyun.com, 1
@@ -25833,6 +26104,7 @@
 buyclaritin.ml, 1
 buycook.shop, 1
 buycostarica.tk, 1
+buycoverartwork.com, 0
 buycultureboxesers.ga, 1
 buydataonline.tk, 1
 buydegree.info, 1
@@ -25889,7 +26161,6 @@
 buyretinamicro.cf, 1
 buyrimonabant.cf, 1
 buyrogaine.ga, 1
-buyru.net, 1
 buyshine.com, 1
 buyshoe.org, 1
 buysildenafil.ml, 1
@@ -25912,7 +26183,6 @@
 buyzithromaxonline.ml, 1
 buyzofranonline.tk, 1
 buyzoloft.cf, 1
-buzau.org, 1
 buzhi.de, 1
 buziaczki.pl, 1
 buzinessmarket.ml, 1
@@ -25942,11 +26212,11 @@
 buzzybites.com, 1
 bv-driver.tk, 1
 bv-ferreiradozezere.pt, 1
+bvb.moe, 0
 bvbbuzz.com, 1
 bvblaboratory.hu, 1
 bvbmedia.nl, 1
 bvdp-saturn-prod.appspot.com, 1
-bvergnaud.fr, 1
 bvexplained.co.uk, 1
 bvfz.pt, 1
 bvgg.eu, 1
@@ -26010,6 +26280,7 @@
 by-robyn.nl, 1
 by-the-sword.com, 1
 by-yesilbag.com, 1
+by.com.vn, 1
 by.cx, 0
 by.place, 1
 by1u.com, 1
@@ -26046,7 +26317,6 @@
 byjudasarrieta.tk, 1
 byjuschennai.com, 1
 byken.cn, 1
-byket.lviv.ua, 1
 byll.de, 1
 byluthier.com, 1
 bylz.me, 1
@@ -26081,12 +26351,13 @@
 bystryj-zajm.tk, 1
 byte-lab.tk, 1
 byte.nl, 1
+byte.surf, 1
 byte128.com, 0
 bytearts.net, 1
 bytebe.at, 0
 bytebodega.com, 1
 bytebolt.at, 1
-bytebucket.org, 1
+bytebucket.org, 0
 bytecrafter.com, 0
 bytecrafter.net, 0
 byteflies.com, 1
@@ -26098,6 +26369,7 @@
 bytemix.cloud, 1
 bytenews.org, 1
 byteofdev.com, 1
+bytepark.de, 1
 bytepen.com, 1
 bytes.co, 1
 bytes.com, 1
@@ -26167,6 +26439,7 @@
 c057cl7.com, 1
 c0mplicated.tk, 1
 c0rn3j.com, 1
+c10.cz, 1
 c16t.uk, 0
 c19adoption.com, 1
 c19aspirin.com, 1
@@ -26179,8 +26452,10 @@
 c19favipiravir.com, 1
 c19fluvoxamine.com, 1
 c19hcq.com, 1
+c19hcq.org, 1
 c19ic.com, 1
 c19ivermectin.com, 1
+c19ivermectin.org, 1
 c19ivm.org, 1
 c19legacy.com, 1
 c19ly.com, 1
@@ -26210,7 +26485,6 @@
 c3boc.com, 1
 c3hv.cn, 1
 c3kidspace.de, 1
-c3sa.com, 1
 c3soc.de, 1
 c3speak.com, 1
 c3speak.de, 1
@@ -26221,7 +26495,6 @@
 c41ee55a-da20-4cff-8075-24afd0f22aac.com, 1
 c4539.com, 1
 c4b.tools, 1
-c4hr.org.mk, 1
 c4k3.net, 1
 c4me.online, 1
 c5197.co, 1
@@ -26288,7 +26561,6 @@
 cable.ru, 1
 cable360.de, 1
 cableatierra.tk, 1
-cablefreetv.org, 1
 cablehighspeed.net, 1
 cablemadrid.tk, 1
 cablemod.com, 1
@@ -26310,7 +26582,6 @@
 cacareerzone.org, 1
 cacatspurcat.gay, 1
 cacaumidade.com.br, 1
-cachacagaboardi.com.br, 1
 cachacasantaterezinha.com.br, 1
 cachaceros.tk, 1
 cache-checker.com, 1
@@ -26376,6 +26647,7 @@
 cadooz.com, 1
 cadoth.net, 1
 cadovod.tk, 1
+cadra.nl, 1
 cadre.com, 1
 cadreok.com, 1
 cadsys.net, 1
@@ -26434,6 +26706,7 @@
 cafepress.com.au, 1
 cafermin.com, 1
 cafesforonda.com, 1
+cafeshervas.com, 1
 cafetalks.net, 1
 cafeterya.tk, 1
 cafethevibes.com, 1
@@ -26463,6 +26736,7 @@
 cagrimerkezinumarasi.com, 1
 cahfee.com, 1
 cahn-achn.ca, 1
+cahuilla-nsn.gov, 1
 caiben.org, 1
 caibi.io, 1
 caic.com.sg, 1
@@ -26508,9 +26782,9 @@
 cakes.tk, 1
 cakesbyzoey.com, 1
 cakeshop.xyz, 1
+cakesoverseas.com, 1
 cakessl.com, 1
 cakestandscarriers.tk, 1
-cakestart.net, 1
 caketoindia.com, 1
 cakeup.in.ua, 1
 cakingandbaking.com, 1
@@ -26600,11 +26874,14 @@
 calgarydermatologisters.ga, 1
 calgraf.com, 1
 calhoun.tk, 1
+calhouncountyfl.gov, 1
 calhouncountyflsheriff.gov, 1
 calhouncountyil.gov, 1
 calhounfalls.gov, 1
+calhounmi911.gov, 1
 caliber.to, 1
 calibermind.com, 1
+calibratedinc.com, 1
 calibrationrecall.com, 1
 calibreapp.com, 1
 calibso.net, 1
@@ -26686,7 +26963,6 @@
 calpaterson.com, 1
 calposa.ml, 1
 calref.cc, 0
-calu.me, 1
 calucon.de, 1
 calumetcounty.gov, 1
 calvario.tk, 1
@@ -26745,7 +27021,6 @@
 camel2243.com, 1
 camelcrush.cf, 1
 camelectrical.com.au, 1
-camelexcursions.com, 1
 camelflight.tk, 1
 camelforensics.com, 1
 camelia-poezii.tk, 1
@@ -26819,7 +27094,6 @@
 campalhilal.org, 1
 campamentos.info, 1
 campanhamamypoko.com.br, 1
-campbellavedental.com, 1
 campbellcountywy.gov, 1
 campbellsoupcompany.com, 1
 campcambodia.org, 1
@@ -26840,6 +27114,7 @@
 campfourpaws.com, 0
 campguaikinima.com, 1
 campineiraalimentos.com.br, 1
+camping-aupigeonnier.fr, 1
 camping-chantemerle.com, 1
 camping-dulac-dordogne.com, 1
 camping-le-pasquier.com, 0
@@ -26868,6 +27143,7 @@
 campona.hu, 1
 camposolillo.tk, 1
 camprunamutt.dog, 1
+campsiteguru.com, 1
 campsoulfestival.com, 1
 campstuffs.com, 1
 camptuk.org, 1
@@ -26913,7 +27189,6 @@
 can-fleet.com, 1
 can-tran.com, 1
 can7.fr, 1
-canada-outlets.com, 1
 canada-tourisme.ch, 0
 canadaabroad.com, 0
 canadabread.com, 0
@@ -26965,6 +27240,7 @@
 canarymod.net, 1
 canarypower.tk, 1
 canarys.cf, 1
+canastasderegalointernacionales.com, 1
 canavilage.com, 1
 canavillage.net, 1
 canavillagepuntacana.com, 1
@@ -26983,6 +27259,7 @@
 cancertherapy.tk, 1
 cancomputers.hn, 1
 cancunhealthers.ga, 1
+cancunvacationexperts.com, 1
 candaceplayforth.com, 1
 candas.tk, 1
 candelaguatemala.tk, 1
@@ -27045,11 +27322,11 @@
 cangurin.com, 1
 canhas.report, 1
 canhazip.com, 1
+canhotrungtam.com.vn, 1
 canhq.tk, 1
 canhtuaone.com, 1
 cani-compostelle.fr, 1
 canibrowse.net, 1
-canidaerd.com, 1
 canihavesome.coffee, 0
 canile.it, 1
 caninecompilation.com, 1
@@ -27064,6 +27341,7 @@
 canlitelefonhatti.ga, 1
 canlom.tk, 1
 canmipai.com, 1
+canmypet.net, 1
 cannabis-marijuana.com, 1
 cannabiscare.ca, 1
 cannabisdiscounter.ca, 1
@@ -27089,6 +27367,7 @@
 cannyfoxx.me, 1
 canobag.es, 1
 canon-printerapps.com, 1
+canondrivers-support.com, 1
 canondrivers.org, 1
 canonisti.fi, 1
 canoonic.se, 1
@@ -27099,6 +27378,7 @@
 canopytax.com, 1
 canormanyaran.com, 1
 canossagardens.org.au, 1
+canossahospital.org.au, 1
 canovamedical.co.uk, 1
 canovamedical.com, 1
 canperclinicaveterinaria.com, 1
@@ -27120,7 +27400,6 @@
 canterburycrest.org, 1
 canterburynh.gov, 1
 canters.tk, 1
-cantik.co, 1
 cantinhodabia.com, 1
 cantinhodapetala.com.br, 1
 cantinhodoiphone.com.br, 1
@@ -27128,6 +27407,7 @@
 cantonmi.gov, 1
 cantonmopolice.gov, 1
 cantonms.gov, 1
+cantoo.fr, 1
 cantor.cloud, 1
 cantosdisidentes.tk, 1
 cantrack.com, 1
@@ -27156,15 +27436,16 @@
 caodesantohumberto.com.br, 1
 caos.ch, 0
 caostura.com, 1
+cap21-lrc.fr, 1
 cap50.be, 1
 cap73.fr, 1
 cap75.com, 1
 capa.digital, 1
-capachitos.cl, 0
 capacityproject.org, 1
 caparicasurfing.com, 1
 caparicasurflessons.com, 1
 caparis.nl, 1
+capatech.co, 1
 capctury.com, 1
 capeannpediatrics.com, 1
 capebretonpiper.com, 1
@@ -27309,12 +27590,12 @@
 caraccio.li, 1
 caracterizacion.tk, 1
 caradaftarakun.ga, 1
+caragame.id, 1
 carajas.tk, 1
 caralarm.cf, 1
 caralarm.tk, 1
 caraliadeluxe.net, 1
 caramellespinell.tk, 1
-caranya.my.id, 1
 caratennison.net, 1
 carauctionnetwork.com, 1
 carauctionsalabama.com, 1
@@ -27334,7 +27615,6 @@
 carberra.xyz, 1
 carbeso.co.network, 1
 carbgrent.com, 1
-carbid.co.il, 1
 carbon-project.org, 1
 carbon.coop, 1
 carbon12.org, 1
@@ -27370,7 +27650,6 @@
 cardanalysisers.ga, 1
 cardano.eco, 1
 cardanoinvestment.com, 1
-cardanpolska.pl, 1
 cardbouns.tk, 1
 cardcaptorsakura.jp, 1
 carddelivery.com, 1
@@ -27398,6 +27677,8 @@
 cardmarketersers.ga, 1
 cardmarketersest.ga, 1
 cardmart.tk, 1
+cardmates.com.br, 1
+cardmates.net, 1
 cardmetricsers.ga, 1
 cardmetricsest.ga, 1
 cardoneshop.it, 1
@@ -27419,6 +27700,7 @@
 care-pack.eu, 1
 care-q.net, 1
 care4all.com, 1
+care4homecare.nl, 1
 careapp.com.au, 1
 carear.com, 1
 career-conduct.jp, 1
@@ -27475,7 +27757,6 @@
 carhunters.cz, 1
 cari.com.my, 1
 caribank.org, 1
-caribbean-tekton.com, 1
 caribbean.dating, 1
 caribbeancinemas.com, 1
 caribbeanexams.com, 1
@@ -27485,6 +27766,7 @@
 caricature.fr, 1
 caricatureavenue.com, 1
 carien.eu, 1
+carigami.fr, 1
 cariki.gq, 1
 carikiv.gq, 1
 carillon.tk, 1
@@ -27611,7 +27893,6 @@
 caroli.net, 1
 carolicious.tk, 1
 carolina.cz, 1
-carolinacybercenter.com, 1
 carolinaharboe.baby, 1
 carolinaharboe.com, 1
 carolinalamujerdehoy.com.gt, 1
@@ -27684,7 +27965,9 @@
 carrollcountynhdeeds.gov, 1
 carrolltontx.gov, 1
 carroseletricosbh.com.br, 1
+carrosserie-delaval.be, 1
 carrouselcompany.fr, 1
+carrozzeria.roma.it, 1
 carrozziere.roma.it, 1
 carry.luxe, 1
 carryvanbruggen.tk, 1
@@ -27771,6 +28054,7 @@
 carwreckcowboy.com, 1
 caryvilletn.gov, 1
 cas-chauxdefonds.ch, 0
+cas-ebbers.nl, 1
 casa-app.de, 1
 casa-brel.ml, 1
 casa-due-pur.com, 1
@@ -27788,7 +28072,6 @@
 casaasia.eu, 1
 casabella.com.tw, 1
 casabitare.it, 1
-casaboix.es, 1
 casabudget.it, 1
 casacampolima.com, 1
 casacapalbio.com, 1
@@ -27801,6 +28084,7 @@
 casacochecurro.com, 1
 casacoleccionistagaldar.tk, 1
 casacolosseo.com, 1
+casacomcharme.com.br, 1
 casacoscolo.tk, 1
 casadasmolas.tk, 1
 casadedios.tk, 1
@@ -27867,10 +28151,12 @@
 case4you.ro, 1
 casecandy.in, 1
 casecurity.org, 1
+caseform.de, 1
 caseificio.roma.it, 1
 caselemnbarat.ro, 1
 casemaka.com, 1
 caseof.fr, 1
+casepariurionline.ro, 1
 caseplus-daem.de, 1
 casertanews.it, 1
 cases.lu, 1
@@ -27896,6 +28182,9 @@
 cashbuild.co.za, 1
 cashcode.ga, 1
 cashcoin.tk, 1
+cashconverters.co.uk, 1
+cashconverters.com, 1
+cashconverters.com.au, 1
 cashdo.co.il, 1
 cashdrop.ga, 1
 cashenvoy.com, 1
@@ -27933,7 +28222,6 @@
 casino-spelletjes.com, 1
 casino-trio.com, 1
 casino-z-top.ru, 1
-casino-z.com, 1
 casino.guide, 1
 casino.org, 1
 casinobonus360.de, 1
@@ -28091,12 +28379,12 @@
 casinoua.club, 1
 casinovalley.ca, 1
 casinovendors.com, 1
-casinovergleich.com, 1
 casio-caisses-enregistreuses.fr, 1
 casio.bg, 0
 casitawn.cf, 1
 casjay.cloud, 0
 casjay.com, 0
+casjay.info, 0
 casko-insurance.tk, 1
 casman.tk, 1
 casnoviatownshipmi.gov, 1
@@ -28112,6 +28400,7 @@
 casscountyia.gov, 1
 casscountyil.gov, 1
 casscountymn.gov, 1
+casscountyne.gov, 1
 cassembly.fr, 1
 cassies.com.au, 1
 cassilandianoticias.com.br, 1
@@ -28124,7 +28413,6 @@
 castagnino.net, 1
 castagnola.tk, 1
 castalie.tk, 1
-castan-dichtungstechnik.de, 1
 castaneatownshippa.gov, 1
 castaneda.tk, 1
 castedart.com, 1
@@ -28132,6 +28420,7 @@
 castella.tk, 1
 castellet.tk, 1
 castelletto.tk, 1
+castelli-media.de, 1
 casteloinformatica.com.br, 1
 castelsardo.tk, 1
 casterleyrock.com, 1
@@ -28161,7 +28450,6 @@
 castleoblivion.tk, 1
 castles-in-the-sky.co.uk, 1
 castleswa.com.au, 1
-castlevaniadungeon.net, 1
 castlevaniaspain.tk, 1
 castorio.tk, 1
 castrillodelavalduerna.tk, 1
@@ -28235,7 +28523,6 @@
 catchup-enschede.tk, 1
 catcontent.cloud, 1
 catcoxx.com, 1
-catcrave.com, 1
 catechese-ressources.com, 1
 catedraloscura.tk, 1
 catenacondos.com, 1
@@ -28247,6 +28534,7 @@
 catfishworld.tk, 1
 catfood.cf, 1
 catfood.ga, 1
+catfooddispensersreviews.com, 1
 catfoto.cf, 1
 catfun-foto.de, 1
 catgarden.tk, 1
@@ -28524,7 +28812,6 @@
 ccpetmotel.com, 1
 ccpinturas.com, 1
 ccpinvestments.com, 1
-ccpl.org, 1
 ccplot.org, 1
 ccprwebsite.org, 1
 ccrun.tk, 1
@@ -28534,7 +28821,6 @@
 ccsk.training, 1
 ccskills.org.uk, 1
 ccsource.org, 1
-ccsrv.eu, 1
 ccsys.com, 1
 cctf-m.com, 0
 cctld.com, 1
@@ -28588,6 +28874,7 @@
 cdhqt.com, 1
 cdigitale.com, 1
 cdirectory.tk, 1
+cdkeyprices.com, 1
 cdkpatterns.com, 1
 cdkrot.me, 1
 cdlandb1.com, 1
@@ -28639,6 +28926,7 @@
 cearaagora.com.br, 1
 cearl.cc, 1
 ceatheneum.com, 1
+ceaunulbunicii.ro, 1
 ceba-cuec.ca, 1
 cebolinha-imaginaria.com, 1
 cebrita.tk, 1
@@ -28648,7 +28936,6 @@
 cecilandlou.com, 1
 ceciledekock.tk, 1
 cecilga.gov, 1
-cecilgreens.org, 1
 cecilia-online.nl, 1
 ceciliacolombara.com, 1
 cecilwalker.com.au, 0
@@ -28688,6 +28975,7 @@
 ceiphr.com, 1
 cejgsd.org, 1
 cejhon.cz, 0
+cejky.cz, 1
 cekabajio.com, 1
 cekgacor.com, 1
 cekgacor.net, 1
@@ -28741,7 +29029,6 @@
 celinepsychotherapie.com, 1
 celinesrecipes.com, 1
 cellboost.cf, 1
-cellebrite.com, 1
 cellecci.com, 1
 cellgames.com, 1
 celliberate.co.uk, 1
@@ -28847,6 +29134,7 @@
 centralkladno.cz, 1
 centrallaketownshipmi.gov, 1
 centrallead.net, 1
+centrallondonaesthetics.co.uk, 1
 centralmarket.com, 1
 centralmissourifoundationrepair.com, 1
 centralnic.com, 1
@@ -28871,6 +29159,7 @@
 centremanagement.eu, 1
 centrenationaldulivre.fr, 1
 centrepointorguk-dev.azurewebsites.net, 1
+centrepresseaveyron.fr, 1
 centretownshipin.gov, 1
 centricagency.co.uk, 1
 centricient.com, 1
@@ -28881,6 +29170,7 @@
 centrodavida.com.br, 1
 centrodeeportesbarco.tk, 1
 centrodefisioterapia.com.br, 1
+centrodemediacionconcepcion.cl, 1
 centrodememoriahistorica.gov.co, 1
 centrodemioma.com.br, 1
 centroecuestrecastellar.com, 1
@@ -28970,7 +29260,7 @@
 cernac.cz, 1
 cernakova.eu, 1
 cernalistina.eu, 1
-cerocosto.com, 1
+cernko.de, 1
 ceroresiduo.com, 1
 cerovica.tk, 1
 cerpus-course.com, 1
@@ -29024,6 +29314,7 @@
 certspotter.com, 1
 certspotter.org, 1
 certum.cn, 1
+certusquartz.com, 1
 certyhukil.ga, 1
 cervejista.com, 1
 cervek.me, 1
@@ -29049,9 +29340,9 @@
 ceskaexpedice.org, 1
 ceskepivnesety.sk, 1
 ceskepivnisety.cz, 1
-ceskozive.cz, 1
 cesobaly.cz, 1
 cesonia.io, 1
+cestasdepresente.com.br, 1
 cestasedelicias.com.br, 1
 cestaswmonline.com.br, 1
 cestlaviegeorgia.com, 1
@@ -29072,11 +29363,11 @@
 ceverett.io, 0
 cevin.at, 1
 cevo.com.hr, 1
+cevrimicidiyet.com, 1
 cevt.ar, 1
 cewek.ml, 1
 cewood.xyz, 1
 cexplorer.io, 1
-ceyhanmolla.com, 1
 ceyizlikelisleri.com, 1
 cezdent.com, 1
 cf-connect.nl, 1
@@ -29090,12 +29381,14 @@
 cfbenchmarks.com, 1
 cfc-swc.gc.ca, 1
 cfcbigideas.com, 1
+cfchiropractic.com, 1
 cfcontracting.com, 1
 cfcpestcontrol.com, 1
 cfcproperties.com, 1
 cfda.gov, 1
 cfdata.lol, 1
 cfdcre5.org, 1
+cfdtrading.com, 1
 cfenns.ath.cx, 1
 cfent.xyz, 1
 cfigura.com, 1
@@ -29113,8 +29406,8 @@
 cfrench.cc, 1
 cfse.biz, 1
 cfsh.tk, 1
-cfsjumilla.es, 1
 cfsrportal.org, 1
+cfst.eu.org, 1
 cftc.gov, 1
 cftcarouge.com, 0
 cfurl.cf, 1
@@ -29320,6 +29613,7 @@
 channingmotorsport.tk, 1
 chantage.tk, 1
 chantalguggenbuhl.ch, 0
+chantuong.org, 1
 chanz.com, 1
 chaos-darmstadt.de, 1
 chaos-wg.net, 1
@@ -29534,7 +29828,6 @@
 chattergallery.com, 1
 chatteron.io, 1
 chatticketsers.ga, 1
-chattingorcheating.com, 1
 chattogether.tk, 1
 chattomania.it, 1
 chatu.io, 1
@@ -29673,7 +29966,7 @@
 checkissuing.com, 1
 checkjehuis.be, 1
 checkjehuis.gent, 1
-checkjelinkje.nl, 1
+checkjelinkje.nl, 0
 checklistbuilder.herokuapp.com, 1
 checklistuj.cz, 1
 checkmack.cf, 1
@@ -29707,7 +30000,6 @@
 checktype.com, 1
 checkui.com, 1
 checkusernames.com, 1
-checkyourlive.de, 1
 checkyourmath.com, 1
 checkyourprivilege.org, 1
 checkyourreps.org, 1
@@ -29776,7 +30068,6 @@
 chemicalpharm.com, 1
 chemicalromance.tk, 1
 chemie-schule.de, 0
-cheminsderando.fr, 1
 chemiphys.com, 0
 chemistry-schools.com, 1
 chemolak.pl, 1
@@ -29850,6 +30141,7 @@
 chesapeakewv.gov, 1
 cheshirex.com, 1
 chessbossproducciones.com, 1
+chesslovin.com, 1
 chesspoint.ch, 1
 chesstempo.com, 1
 chesstouring.com, 1
@@ -29922,6 +30214,7 @@
 chicagopowerwashing.net, 1
 chicagopowerwashingservices.com, 1
 chicagopressurewashing.net, 1
+chicagopressurewashingservices.com, 1
 chicagoprivatejets.com, 1
 chicagostudentactivists.org, 1
 chicaman.tk, 1
@@ -30033,6 +30326,7 @@
 china-online-news.tk, 1
 china-week.com, 1
 chinabank.ph, 1
+chinabattle.com, 1
 chinablows.com, 1
 chinacdn.org, 1
 chinadream404.com, 1
@@ -30046,6 +30340,7 @@
 chinamediaproject.org, 1
 chinaoptionsfund.cn, 1
 chinaoptionsfund.com, 1
+chinasays.com, 1
 chinasearch.tk, 1
 chinaspaceflight.com, 1
 chinastory.tk, 1
@@ -30108,7 +30403,7 @@
 chiropracticwpb.com, 0
 chiropractorlongmontgpa.com, 1
 chiropraktik-riemann.de, 1
-chiropraktik-wildner.de, 1
+chiropraktik-wildner.de, 0
 chirotestelt.tk, 1
 chirototem.tk, 1
 chirowij.tk, 1
@@ -30135,7 +30430,6 @@
 chiva-ariege.fr, 1
 chizouworld.tk, 1
 chizra.com, 1
-chjeco.com, 1
 chk-ccs.com, 1
 chklocal.com, 1
 chkmkt.com, 1
@@ -30172,6 +30466,7 @@
 chocolat-suisse.ch, 0
 chocolat.work, 1
 chocolate-express.co.uk, 1
+chocolate.wiki, 1
 chocolatesandhealth.com, 1
 chocolateslim.gq, 1
 chocolatesonline.com, 1
@@ -30189,6 +30484,7 @@
 choice-design.com.tw, 1
 choiceautoloan.com, 1
 choicemediaworks.com, 1
+choiceuniontown.org, 1
 choirofbeirut.cf, 1
 choisirmoneau.blog, 1
 chokladfantasi.net, 1
@@ -30253,6 +30549,7 @@
 chrisb.me, 0
 chrisb.xyz, 0
 chrisbrockdiving.com, 1
+chrisbrowntherapies.co.uk, 1
 chrisbryant.me.uk, 1
 chrisburnell.com, 1
 chriscarey.com, 1
@@ -30263,6 +30560,7 @@
 chriseldon.com, 1
 chrisfinazzo.com, 0
 chrisgieger.com, 1
+chrisirwin.ca, 1
 chrisjean.com, 1
 chriskthomas.com, 1
 chrislane.com, 1
@@ -30344,6 +30642,7 @@
 christianliebel.com, 1
 christianlis.org.uk, 1
 christianlis.uk, 1
+christianministryedu.org, 1
 christianmoore.me, 1
 christianmorales.tk, 1
 christianoliff.com, 1
@@ -30396,7 +30695,6 @@
 christopherburg.com, 1
 christophercolumbusfoundation.gov, 1
 christopherd.me, 1
-christopherfuchs.de, 1
 christophergowerjohnson.com, 1
 christopherkardas.me, 1
 christopherkennelly.com, 1
@@ -30540,7 +30838,6 @@
 churchofpop.net, 1
 churchofsaintbenedict.com, 1
 churchofsaintrocco.org, 1
-churchofscb.org, 1
 churchofsmyrna.com, 1
 churchofsmyrna.org, 1
 churchplaza.com, 1
@@ -30569,6 +30866,7 @@
 ci5.me, 1
 cia-gaming.de, 1
 cia-landlords.co.uk, 1
+ciaagentedu.org, 1
 ciagutek.pl, 1
 ciahalim.tk, 1
 cialde.it, 1
@@ -30587,6 +30885,8 @@
 cialisud.com, 1
 cialisusapills.com, 1
 cialisvtr.com, 1
+cialisworld.net, 1
+ciallo.work, 1
 cianmawhinney.me, 1
 cianmawhinney.xyz, 1
 ciao.ro, 1
@@ -30631,6 +30931,7 @@
 ciel.luxe, 1
 ciel.si, 1
 cielo-thefilm.com, 1
+cienciasbiomedicas.com, 1
 cienciasempresariais.pt, 1
 cienegaspa.com, 1
 cierreperimetral.com, 1
@@ -30643,6 +30944,7 @@
 cigarafterten.com, 1
 cigarette-electronique.tk, 1
 cigarettes-electronik.fr, 1
+cigarren-colleg.de, 1
 cigarterminal.com, 0
 cigdelivery.com, 1
 ciginsurance.com, 1
@@ -30683,7 +30985,6 @@
 cincy.gov, 1
 cinderellacloset.in, 1
 cindey.io, 1
-cindinero.com, 1
 cindy.cn, 1
 cine-latino.com, 1
 cine-music.de, 1
@@ -30732,9 +31033,9 @@
 cinnamon.bot, 1
 cinnamon.gifts, 1
 cinnamon.gq, 1
+cinnamonsnail.com, 1
 cinnamontoastcrunch.com, 1
 cinq-elements.com, 0
-cinq-elements.fr, 1
 cinq-elements.net, 1
 cinqdecembre.com, 1
 cinquecentoclubholland.tk, 1
@@ -30787,7 +31088,6 @@
 circleci.com, 1
 circlelytics.com, 1
 circleofhealthlongmont.com, 1
-circleofleastconfusion.com, 1
 circlepluscircle.me, 1
 circlevilleoh.gov, 1
 circoeia.com, 1
@@ -30832,6 +31132,7 @@
 cisconetflowpartners.com, 1
 cisconetflowreporting.com, 1
 cisconetflowsupport.com, 1
+cisi.org, 1
 cisin.com, 1
 cisincometax.ca, 1
 cisindia.tk, 1
@@ -30846,10 +31147,10 @@
 cistenikoberculiberec.net, 1
 cistiempo.cl, 1
 cistit.tk, 1
+cistoaracnoide.org, 1
 cisum-cycling.com, 1
 cisylik.gq, 1
 cit-net.com, 1
-citacatastro.es, 1
 citace.com, 1
 citacepro.com, 1
 citadelpark.be, 1
@@ -30862,7 +31163,6 @@
 citalopramgeneric.ga, 1
 citalopramhbr.ga, 1
 citans.tk, 1
-citaprevia-medico.es, 1
 citas-adultas.com, 1
 citationgurus.com, 1
 citations.tk, 1
@@ -30907,7 +31207,6 @@
 city-online.tk, 1
 city-spin.site, 1
 city-walks.info, 1
-city.kharkov.ua, 1
 cityapparels.com, 1
 citybusexpress.com, 0
 citycalculator.ml, 1
@@ -30916,6 +31215,7 @@
 citycardgent.be, 1
 citycardgent.com, 1
 citycardghent.com, 1
+citycarremovals.com.au, 1
 citycell.ml, 1
 cityconsultants.tk, 1
 citycreek.studio, 1
@@ -30931,6 +31231,7 @@
 citymeats.com, 1
 citymoobel.ee, 1
 cityofadelga.gov, 1
+cityofallisonia.gov, 1
 cityofamoryms.gov, 1
 cityofarcolatx.gov, 1
 cityofbambergsc.gov, 1
@@ -30954,6 +31255,7 @@
 cityofdelcity.gov, 1
 cityofdenvergolf.com, 1
 cityofeastpointemi.gov, 1
+cityofellisks.gov, 1
 cityofelynv.gov, 1
 cityofeuporams.gov, 1
 cityoffergusonky.gov, 1
@@ -30986,6 +31288,8 @@
 cityofmaywoodparkor.gov, 1
 cityofmebanenc.gov, 1
 cityofmerced.gov, 1
+cityofminatarene.gov, 1
+cityofmitchellsd.gov, 1
 cityofmonroewi.gov, 1
 cityofmte.gov, 1
 cityofmusic.be, 1
@@ -31012,7 +31316,6 @@
 cityofspoonerwi.gov, 1
 cityofthorp.gov, 1
 cityoftitans.com, 1
-cityoftitansmmo.com, 1
 cityoftybee.gov, 1
 cityofvacaville.gov, 1
 cityofvermilionohio.gov, 1
@@ -31073,6 +31376,7 @@
 civilvirus.tk, 1
 civmob.com, 1
 cizgikod.ga, 1
+cizz.uk, 1
 cj-espace-vert.fr, 1
 cj-jackson.com, 1
 cj26.club, 1
@@ -31125,6 +31429,7 @@
 ckp.ie, 1
 ckpl.io, 1
 ckpl.us, 1
+ckprofessionalbookkeeping.ca, 1
 ckrobotics.tk, 1
 cktennis.com, 1
 ckyalliancefinland.tk, 1
@@ -31138,6 +31443,7 @@
 claarycherry.com, 1
 clacetandil.com.ar, 1
 clad.cf, 1
+clague.moe, 0
 claibornecountytn.gov, 1
 claim-justice.com, 1
 claimconnect.com, 1
@@ -31207,7 +31513,7 @@
 claresderibota.tk, 1
 claretandbluearmy.tk, 1
 claretvillans.com, 1
-clarilog.com, 1
+clarilog.com, 0
 clarinet.ga, 1
 clarinexonline.gq, 1
 clario.co, 1
@@ -31219,6 +31525,7 @@
 claritin.gq, 1
 claritin.ml, 1
 clarity-c2ced.appspot.com, 1
+claritydesignworks.com, 1
 clarityskin.com, 1
 clark.de, 1
 clarkaesthetics.com, 1
@@ -31236,6 +31543,7 @@
 clarkltl.com, 1
 clarknationalaccounts.com, 1
 clarksburgma.gov, 1
+clarksmeathouse.com, 1
 clarkstatecontract.com, 1
 clarkstown.gov, 1
 clarksvilletn.gov, 1
@@ -31322,6 +31630,7 @@
 claytonca.gov, 1
 claytoncondon.com, 1
 claytonjunior.tk, 1
+claytonkendall.com, 1
 claytwpmi.gov, 1
 clb.org.hk, 1
 clbmconsultancy.com, 1
@@ -31385,7 +31694,6 @@
 clearpay.co.uk, 1
 clearsafetalk.com, 1
 clearsailingproperties.com, 1
-clearsoftcomputacion.com, 1
 clearspringinsurance.com, 1
 clearstep.health, 1
 clearstoneip.com, 1
@@ -31397,6 +31705,7 @@
 clearvoiceu.com, 0
 clearwateragency.com.au, 1
 clearwaterbidets.com, 1
+clearwatercountyid.gov, 1
 clearwatercountymn.gov, 1
 clearwaterseries.tk, 1
 clearwatersexhealth.com, 1
@@ -31440,6 +31749,7 @@
 cleverlance.es, 1
 cleverlance.sk, 1
 clevermatch.com, 1
+clevermo.gov, 1
 cleveroad.com, 1
 cleveronmobility.com, 1
 cleverskateboard.com, 1
@@ -31523,6 +31833,7 @@
 clicks.co.za, 1
 clicks24.cf, 1
 clicksacolas.com, 1
+clickseek.in, 1
 clicksengage.com, 1
 clickspeedtest.net, 1
 clickstart.ml, 1
@@ -31630,7 +31941,6 @@
 clip.cafe, 1
 clipchamp.com, 1
 clipclip.com, 1
-clippingartsindia.com, 1
 clippings.com, 1
 clips.ga, 1
 clique8.com, 1
@@ -31693,6 +32003,7 @@
 closetedsoul.com, 1
 closets-cheap.tk, 1
 closingholding.com, 1
+closingthegap.gov.au, 1
 closrr.cloud, 1
 closrr.com, 1
 clothes-for-school.tk, 1
@@ -31789,7 +32100,6 @@
 cloudmarket.com.br, 1
 cloudmax.es, 1
 cloudmigrator365.com, 1
-cloudminister.com, 1
 cloudmoney.tk, 1
 cloudmyhome.site, 1
 cloudmyhome.top, 1
@@ -31798,7 +32108,6 @@
 cloudnote.cc, 1
 cloudns.net, 1
 cloudofertas.com.br, 1
-cloudomation.com, 1
 cloudone.co.il, 1
 cloudoptimizedsmb.com, 1
 cloudoptimus.com, 1
@@ -31882,7 +32191,6 @@
 clover-sendai.com, 1
 cloversonoma.com, 1
 clovertwo.com, 1
-clovisdigital.com, 1
 clovisoncology.com, 1
 clovisplumbingservices.com, 1
 clovorin.gq, 1
@@ -31926,6 +32234,7 @@
 clubatleticonacionalpotosi.tk, 1
 clubbers-comtois.tk, 1
 clubcollinssquare.com.au, 1
+clubcompetition.co.uk, 1
 clubcorolla.cf, 1
 clubcorsavenezuela.com, 0
 clubcupido.com.br, 1
@@ -32008,6 +32317,7 @@
 clueless.ga, 1
 clueless.tk, 1
 cluelesscraft.com, 1
+cluin.org, 1
 cluj.apartments, 1
 cluj.help, 1
 clun.top, 0
@@ -32095,8 +32405,10 @@
 cmtso.com, 1
 cmv.gr, 1
 cmw.net, 1
+cmweb.xyz, 1
 cmweller.com, 1
 cn.search.yahoo.com, 0
+cn2euportugal.com, 1
 cn8522.com, 1
 cna.com.br, 1
 cnabogota.tk, 1
@@ -32114,6 +32426,7 @@
 cncollege.tk, 1
 cncr.ga, 1
 cncrans.ch, 0
+cncs.gob.do, 1
 cncs.gov.pt, 1
 cnetw.xyz, 1
 cnews.ru, 1
@@ -32124,8 +32437,10 @@
 cni-certing.it, 1
 cni.net.id, 1
 cnil.fr, 1
+cnitdog.com, 1
 cnki.com, 1
 cnlic.com, 1
+cnloan.com, 1
 cnmi.gov, 1
 cnmilaw.gov, 1
 cnnc.jp, 1
@@ -32153,7 +32468,7 @@
 coach-enligne.fr, 1
 coach-hpe.ch, 1
 coach-outletonline.ca, 1
-coach.org.uk, 1
+coach.org.uk, 0
 coachbakery.com, 1
 coachezmoi.ch, 0
 coachinfopreneur.com, 1
@@ -32169,6 +32484,7 @@
 coactive.ai, 1
 coag.gov.au, 1
 coagclinic.com, 1
+coalitieduurzamedigitalisering.nl, 1
 coalition.tk, 1
 coalmen.ga, 1
 coalpointcottage.com, 1
@@ -32203,6 +32519,7 @@
 cobranzasimg.com, 1
 coc.de, 1
 cocaine.ninja, 1
+cocaine.wiki, 1
 cocalc.com, 1
 cocareonline.com, 1
 coccinellaskitchen.com, 1
@@ -32306,7 +32623,6 @@
 codeclub.gq, 1
 codecolliders.com, 1
 codecommunity.io, 1
-codeconvey.com, 1
 codecool.com, 1
 codecrew.us, 1
 codectron.com, 1
@@ -32330,7 +32646,6 @@
 codeheroes.fr, 1
 codehupy.org.py, 1
 codeidea.ga, 1
-codein.ca, 1
 codeine.co.uk, 1
 codeine.world, 1
 codeit.guru, 1
@@ -32338,7 +32653,6 @@
 codeit.us, 1
 codejumper.ml, 1
 codekk.com, 1
-codelist.biz, 1
 codeloop.pw, 1
 codemahrt.com, 1
 codemperium.com, 1
@@ -32355,10 +32669,11 @@
 codepen.io, 1
 codepoint.ml, 1
 codepoints.net, 0
+codepref.com, 1
 codepwn.win, 1
-codera.co.uk, 1
 codercross.com, 1
 codered.sh, 1
+codereduction.promo, 1
 coderema.de, 1
 coderema.eu, 1
 coderescue.com, 1
@@ -32374,7 +32689,6 @@
 codersatlas.xyz, 1
 coderus.com, 1
 codes.pk, 1
-codesal.solutions, 1
 codesgroup.tk, 1
 codeslaw.com, 1
 codesplain.in, 1
@@ -32408,6 +32722,7 @@
 codeysteelepornstar.com, 1
 codezenith.com, 1
 codific.com, 1
+codific.eu, 1
 codifique.tk, 1
 codigodelbonusbet365.com, 1
 codigoexactodearea.com, 1
@@ -32452,6 +32767,7 @@
 coequals.tk, 1
 cofense.at, 1
 cofetaria-narcisa.ro, 1
+coffee-break.cc, 1
 coffee-like.com, 1
 coffee-up.it, 1
 coffee-webstore.com, 1
@@ -32472,6 +32788,7 @@
 coffeetom.de, 1
 coffeist.com, 1
 cofidis-group.com, 1
+cofigs.com, 1
 cofinco.nl, 1
 cofob.ru, 1
 cofradiaqueimada.tk, 1
@@ -32504,7 +32821,6 @@
 cohenandcohen.net, 1
 cohere.io, 1
 cohob.de, 1
-cohu.com, 1
 coiffbot.fr, 1
 coiffeurschnittstelle.ch, 1
 coignieresentransition.fr, 1
@@ -32559,10 +32875,12 @@
 coiracom.net, 1
 coisaetalpapelaria.com.br, 1
 coisas.com, 1
+cojam.ru, 1
 cojo.eu, 1
 cokebar.info, 1
 coker.com.au, 1
 cokestudiosongs.tk, 1
+cokisiregar.com, 1
 cokomi.com, 1
 col.la, 0
 cola-host.tk, 1
@@ -32627,15 +32945,15 @@
 colisfrais.com, 0
 collab.ddnss.org, 1
 collabora-office.com, 1
-collabora.ca, 1
+collabora.ca, 0
 collabora.co.kr, 1
 collabora.co.uk, 1
 collabora.com, 1
 collabora.kr, 1
-collabora.ninja, 1
-collabora.social, 1
-collabora.uk, 1
-collaboracloudsuite.com, 1
+collabora.ninja, 0
+collabora.social, 0
+collabora.uk, 0
+collaboracloudsuite.com, 0
 collaboraoffice.co.uk, 1
 collaboraoffice.com, 1
 collaborativedrug.com, 1
@@ -32740,7 +33058,6 @@
 colocerin.com, 1
 colocolochile.tk, 1
 cololi.moe, 1
-colombia.com.co, 1
 colombiahoy.news, 1
 colombiajeans.co, 1
 colombian.cam, 1
@@ -32751,7 +33068,7 @@
 colombyinai.ga, 1
 coloniae.de, 1
 colonialbeachva.gov, 1
-colonialfilings.com, 0
+colonialfilings.com, 1
 colonialfurniturestripping.com, 1
 colonize.africa, 1
 color-mixer.tk, 1
@@ -32815,6 +33132,7 @@
 columbusks.gov, 1
 columbustelegram.com, 1
 columbusunderground.com, 1
+columbuswi.gov, 1
 columbuswines.com, 1
 colwichks.gov, 1
 colwyn.me, 1
@@ -32846,7 +33164,6 @@
 combatix.io, 1
 combattrecellulite.com, 1
 combidarlehen.de, 1
-combidesk.com, 1
 combigo.com, 1
 combineconquer.com, 1
 combloux.com, 1
@@ -32869,13 +33186,13 @@
 comebookmark.ga, 1
 comebookmark.ml, 1
 comediant.de, 1
-comedicgrouperu.com, 1
 comedimagrire.it, 1
 comedonchisciotte.org, 1
 comedy.co.uk, 1
 comedyhuis.nl, 1
 comedykellner-spasskellner.de, 1
 comefareper.online, 1
+comelibro.org, 1
 comenc.ddns.net, 1
 comengpt.com, 1
 comenityremediation.com, 1
@@ -32884,7 +33201,6 @@
 comercialcolombia.tk, 1
 comercialmattos.com, 1
 comercialroxana.com, 1
-comercialtech.cl, 1
 comercialtpv.com, 1
 comercialtrading.eu, 1
 comeros.be, 1
@@ -32895,7 +33211,6 @@
 comete-electricite.fr, 1
 cometofaith.org, 1
 cometonovascotia.ca, 1
-cometoplay.co.uk, 1
 comevius.com, 1
 comevius.org, 1
 comevius.xyz, 1
@@ -32906,7 +33221,6 @@
 comfitsweets.co.uk, 1
 comflores.com.br, 1
 comfortablelife.tk, 1
-comfortcareconnection.com, 1
 comfortingcbd.store, 1
 comfortsleepclinic.com, 1
 comfortsolutionsair.com, 1
@@ -32931,9 +33245,8 @@
 comicspornow.com, 1
 comicspornoxxx.com, 1
 comicstrove.com, 1
-comicsymanga.com, 1
+comicsymanga.com, 0
 comicwiki.dk, 1
-comicyears.com, 1
 comidasperuanas.net, 0
 comidina.com, 1
 comingto.icu, 1
@@ -32989,6 +33302,7 @@
 commoncode.io, 0
 commoncog.com, 1
 commoncore4kids.com, 1
+commonecon.xyz, 1
 commongoodit.com, 1
 commongrave.tk, 1
 commoninf.com, 1
@@ -33007,6 +33321,7 @@
 communic.tk, 1
 communicate2lead.com, 1
 communication-services.tk, 1
+communications-major.com, 1
 communiques.info, 1
 communiquons.org, 1
 communist-party.tk, 1
@@ -33019,6 +33334,7 @@
 communitycodeofconduct.com, 1
 communitycollegereview.com, 1
 communitydirectory.tk, 1
+communitydriving.com, 1
 communityflow.info, 1
 communityfunded.com, 1
 communitylivingalgoma.org, 1
@@ -33082,8 +33398,10 @@
 compare-energie.fr, 1
 compareairfaredeals.com, 1
 compareandrecycle.co.uk, 0
+compareandrecycle.com, 0
 comparecars.org, 1
 compareceleb.com, 1
+compareer.com, 1
 compareleasedlines.co.uk, 1
 comparemymobile.com, 1
 comparendossimit.com, 0
@@ -33096,7 +33414,6 @@
 comparexcloudcenter.com, 1
 comparic.pl, 1
 compartirtrenmesaave.com, 1
-compass-security.com, 1
 compassbest.com, 1
 compassdirectportal.com, 1
 compassfinance.com, 1
@@ -33118,7 +33435,6 @@
 competis.cf, 1
 competitor.com, 1
 compeuphoria.com, 1
-compex.com.sg, 1
 compibus.fr, 1
 compilenix.org, 0
 complaint.tk, 1
@@ -33201,6 +33517,7 @@
 computec.ch, 1
 computel.nl, 0
 computer-acquisti.com, 1
+computer-forensics-recruiter.com, 1
 computer-kleinmachnow.de, 1
 computer-menschen.de, 1
 computer-science-schools.com, 1
@@ -33266,6 +33583,7 @@
 comunicat.global, 1
 comunicazionenellaristorazione.it, 1
 comunidadmontepinar.es, 1
+comunidadvegetariana.com, 1
 comuniondelucia.com, 1
 comunismo.tk, 1
 comunistas.tk, 1
@@ -33319,6 +33637,7 @@
 conclusive.co.za, 1
 concor.ne.jp, 1
 concord.sh, 1
+concordance.bible, 1
 concordiagaming.com, 1
 concordsoftwareleasing.com, 1
 concrefy.com, 1
@@ -33353,9 +33672,9 @@
 condonline.app.br, 1
 condosforcash.com, 1
 condroz-motors.be, 0
-coneall.com, 1
 conectada.tk, 1
 conectadev.com, 1
+conectens.com, 1
 conectumfinanse.pl, 1
 conejicos.tk, 1
 conejovalleyelectrical.com, 1
@@ -33405,7 +33724,7 @@
 configurat.cf, 1
 configurat.tk, 1
 configwizard.xyz, 1
-confio.gmbh, 1
+confio.gmbh, 0
 confio.pt, 1
 confirmit.ca, 1
 confirmit.com, 1
@@ -33413,7 +33732,6 @@
 confirmit.de, 1
 confiscate.ga, 1
 confiscation.tk, 1
-confiseriedubonheur.com, 1
 confiwall.de, 1
 conflidentliving.cf, 1
 confluent.cloud, 1
@@ -33485,7 +33803,6 @@
 connectme.com.mx, 1
 connectmy.car, 1
 connectnow.nl, 1
-connecto.group, 1
 connectthedoc.com, 1
 connectto.com, 1
 connectum.eu, 1
@@ -33495,8 +33812,6 @@
 conneropticals.ga, 1
 connexas.eu, 1
 connexio.digital, 1
-connexion.health, 1
-connexionht.com, 1
 connext.de, 1
 connictro.de, 1
 connies-diner.de, 1
@@ -33600,6 +33915,7 @@
 constru-vegas.com.mx, 1
 construccionesceyve.com, 1
 construct.net, 1
+constructem.com, 1
 constructexpres.ro, 1
 construction-colleges.com, 1
 construction-digitale.fr, 0
@@ -33642,7 +33958,7 @@
 consultpetkov.com, 1
 consulvation.com, 1
 consumer.ee, 1
-consumer.gov, 0
+consumer.gov, 1
 consumer.gov.au, 1
 consumer.gq, 1
 consumera.com, 1
@@ -33659,7 +33975,7 @@
 consumerprotectionbureau.gov, 1
 consumersentinel.gov, 1
 consumertesting.com, 1
-consumidor.gov, 0
+consumidor.gov, 1
 consumptionjunction.com, 1
 consuwijzer.nl, 1
 consyltec.de, 1
@@ -33690,7 +34006,6 @@
 contentpass.net, 1
 contentq.nl, 1
 contents.ga, 1
-contentterminal.com, 1
 contermis.com, 1
 contestreviewest.ga, 1
 contextogestaoempresarial.com.br, 1
@@ -33739,6 +34054,7 @@
 contro.ml, 1
 contro.tk, 1
 control.cn, 1
+controlaudits.com, 1
 controlautocom.com.br, 1
 controlbooth.com, 1
 controle-exportations.fr, 1
@@ -33844,6 +34160,7 @@
 coolboys.ga, 1
 coolcamping.com, 1
 coolcloud.tk, 1
+coolcomputers.info, 1
 cooldan.com, 1
 cooldomains.tk, 1
 cooldown.club, 1
@@ -33940,17 +34257,20 @@
 copywriting-on-demand.tk, 1
 coqiptv.com, 1
 coral-study.eu, 1
+coralenergy.gr, 1
+coralpress.com, 1
 coralreef.blue, 1
 coralreef.tk, 1
 coralsprings.gov, 1
 coralspringsfl.gov, 1
 corarain.me, 1
-corarcraft.com, 1
 coratxa.tk, 1
 corazoncaliente.tk, 1
 corazondemelon.es, 1
 corbax.com, 1
+corbettparadise.com, 1
 corbi.net.au, 1
+corbuloacademyofmilitaryscience.com, 1
 corbusier.gq, 1
 corcoranmn.gov, 1
 cord-blood.tk, 1
@@ -33961,6 +34281,7 @@
 cordemar.info, 1
 corder.tech, 1
 corderosa.tk, 1
+corderoscleaning.com, 0
 cordeydesign.ch, 0
 cordis.io, 1
 cordlessdog.com, 1
@@ -34009,6 +34330,7 @@
 corevetconnect.co.uk, 1
 corexpert.com, 1
 coreyjmahler.com, 1
+coreylmartin.com, 1
 corfuny.gov, 1
 corgi.party, 1
 corgiaspets.com, 1
@@ -34024,6 +34346,7 @@
 corisu.co, 1
 corkcityfc.tk, 1
 corkedwinebar.com, 1
+corksoncolumbus.com, 1
 corky.tk, 1
 corl3ss.com, 1
 corleoncatering.com, 1
@@ -34068,6 +34391,7 @@
 coronalab.eu, 0
 coronasafe.network, 1
 coronastationphotography.com, 1
+coronatestalmere.nl, 1
 coronavaccinatiedatum.nl, 1
 coronavirus-19.es, 1
 coronavirus-journal.fr, 1
@@ -34110,6 +34434,8 @@
 correctconstructions.com.au, 1
 correcthorse.cf, 1
 correcthorse.pw, 1
+correctionalofficer.org, 1
+correctionalofficeredu.org, 1
 correctiv.org, 1
 correctlydesign.com, 1
 corrector.com.ua, 1
@@ -34125,6 +34451,7 @@
 corriere.roma.it, 1
 corrieresalentino.it, 1
 corrigan.xyz, 1
+corrupt-republicans.com, 1
 corruptcatz.com, 1
 corruptos.tk, 1
 cors-proxy.cf, 1
@@ -34158,6 +34485,7 @@
 cortino.ga, 1
 cortis-consulting.ch, 1
 cortizo.com.ar, 1
+cortizocampillo.com.mx, 1
 cortlandreview.com, 1
 cortlandvoice.com, 1
 cortonaeranieri.com.br, 1
@@ -34189,6 +34517,7 @@
 coskun.tk, 1
 coslinker.com, 0
 cosmasiakraft.tk, 1
+cosmeagardens.com, 1
 cosmekaitori.jp, 1
 cosmetic-surgery-prices.co.uk, 1
 cosmeticasimple.com, 1
@@ -34210,6 +34539,7 @@
 cosmichpc.systems, 1
 cosmick9.net, 1
 cosmicnetworks.cf, 1
+cosmictourist.de, 1
 cosmicworlds.mobi, 1
 cosmicyes.de, 1
 cosmocode.de, 1
@@ -34263,7 +34593,6 @@
 costumestylesers.ga, 1
 costurin.com, 1
 cosude.org.pe, 1
-cosummitconstruction.com, 1
 cosumnescsd.gov, 1
 cosuno.com, 1
 cosy-interior.com, 1
@@ -34361,6 +34690,7 @@
 cour4g3.me, 1
 courage-sachsen.org, 1
 courage.cf, 1
+courageoushumanity.click, 1
 couraqe.tk, 1
 courier.lk, 1
 couriergrey.com, 1
@@ -34390,6 +34720,7 @@
 courtlandtwpmi.gov, 1
 courtonetickets.co.uk, 1
 courtonetickets.com, 1
+courtreporteredu.org, 1
 courttranscriptontario.ca, 1
 courvix.com, 1
 couscous.recipes, 1
@@ -34401,6 +34732,7 @@
 covbounce.co.uk, 1
 cove.chat, 1
 covenantbattle.net, 1
+covenco.com, 1
 coventry.com, 1
 coventrycollege.ac.uk, 1
 coventrymoneyman.com, 1
@@ -34413,7 +34745,7 @@
 covercupboard.co.uk, 1
 coveredinspiders.com, 1
 coverful.io, 1
-covergarage.biz, 1
+covermusik-band.de, 1
 covermytrip.com.au, 1
 covers.com, 1
 covershousing.nl, 1
@@ -34429,7 +34761,6 @@
 covid19.melbourne, 1
 covid19.nhs.uk, 1
 covid19dataportal.si, 1
-covid19details.com, 1
 covid19resilience.org, 1
 covid19responsepod.com, 1
 covid19scotland.co.uk, 0
@@ -34474,6 +34805,7 @@
 coyote105.com, 1
 cozanne.fr, 1
 coze.zone, 1
+cozinharaz.com, 1
 cozmerce.com, 1
 cozmoapp.com, 1
 cozmoyachts.com, 1
@@ -34510,9 +34842,15 @@
 cpd-education.co.uk, 1
 cpd.org.au, 1
 cpe-colleg.de, 1
+cpe-registry.com, 1
+cpe-registry.net, 1
+cpe-registry.org, 1
 cpegypt.tk, 1
 cpeip.cl, 1
 cpelighting.tk, 1
+cperegistry.com, 1
+cperegistry.net, 1
+cperegistry.org, 1
 cpfpa.com, 1
 cpfrancophonie.org, 1
 cpgiiaragon.es, 1
@@ -34576,8 +34914,6 @@
 cracker.in.th, 1
 crackerjohn.tk, 1
 crackers4cheese.com, 1
-crackeygenpatch.com, 1
-crackgameszip.co, 1
 crackheros.site, 1
 crackhomes.com, 1
 cracklab.tk, 1
@@ -34604,6 +34940,7 @@
 craft.eu.org, 1
 craftandbuild.de, 1
 craftbyhand.com, 1
+craftcms.com, 1
 crafted.cat, 1
 crafterbase.de, 1
 crafters.co.jp, 1
@@ -34687,8 +35024,8 @@
 crawfordcountyin.gov, 1
 crawfordcountyohioboe.gov, 1
 crawfordcountytcc.org, 1
+crawfordtx.gov, 1
 crawler.ninja, 1
-crawloween.com, 1
 crawlspaceandbasementsolutions.com, 1
 crax.tube, 1
 craxpro.io, 1
@@ -34814,6 +35151,7 @@
 creativeliquid.com, 1
 creativelysustainable.com, 1
 creativemarket.com, 1
+creativematters.ch, 1
 creativemindslms.tk, 1
 creativemysterymind.com, 1
 creativenz.govt.nz, 1
@@ -34873,6 +35211,7 @@
 creditshop.com, 1
 credittoken.io, 1
 creditxpert.com, 1
+credityes.com, 1
 crednox.com, 1
 credoperth.org, 1
 creekie.me, 1
@@ -34940,7 +35279,6 @@
 cricket-betting-online.in, 1
 cricketarena.ml, 1
 cricketnmore.com, 1
-cricketstars.xyz, 1
 cricketwatch.org, 1
 crickey.eu, 1
 crickits.co.uk, 1
@@ -34965,6 +35303,7 @@
 crimebarta.com, 1
 crimefreeliving.com, 1
 crimemuseum.org, 1
+crimesceneinvestigatoredu.org, 1
 crimesolutions.gov, 1
 crimethincx.tk, 1
 crimevictims.gov, 1
@@ -34978,6 +35317,7 @@
 criminalcasecheats.ml, 1
 criminaljusticehub.org.uk, 1
 criminaljusticeprograms.com, 1
+criminaljusticeprogramsonline.com, 1
 criminallawyerjobdescription.ga, 1
 criminallawyerjobdescription.gq, 1
 criminallawyerjobdescription.ml, 1
@@ -35027,6 +35367,7 @@
 cristalerencontres.fr, 1
 cristaleslitios.com.mx, 1
 cristalgema.ga, 1
+cristalid.com, 1
 cristals.ga, 1
 cristaltercos.com.br, 1
 cristau.org, 1
@@ -35084,7 +35425,9 @@
 crmtaxi.ml, 1
 crmzz.com, 1
 crnajobsite.com, 1
+crobeauty.com, 1
 croceverdevb.it, 1
+crocheteursdefrance.fr, 1
 crochetkim.com, 1
 crockettdoodles.com, 1
 crockettmyers.com, 1
@@ -35110,7 +35453,6 @@
 cronicademuro.tk, 1
 cronix.cc, 1
 cronjob.de, 1
-cronmaster.online, 1
 cronobox.one, 1
 cronologie.de, 1
 cronometer.com, 1
@@ -35150,7 +35492,8 @@
 crossoverit.com, 1
 crosspeakoms.com, 1
 crossplainstn.gov, 1
-crossriver.com, 1
+crosspointmn.org, 1
+crossriver.com, 0
 crossroads-gmbh.ch, 1
 crossuniverse.net, 1
 crossway.nl, 1
@@ -35173,6 +35516,7 @@
 crowdstack.io, 1
 crowdsupply.com, 1
 crown-beverage.com, 1
+crown-building.com, 1
 crown-trading.ru, 1
 crownaffairs.ch, 1
 crownbingo.com, 1
@@ -35199,7 +35543,6 @@
 crt.cloud, 1
 crt.sh, 1
 crt2014-2024review.gov, 1
-crtalleres.com, 1
 crti.dz, 1
 crtified.me, 1
 crucerosplus.com, 1
@@ -35228,9 +35571,12 @@
 crumbcontrol.com, 1
 crumbscorkscrews.com, 1
 crumobr.com, 1
+crunchconsult.com, 1
+crunchconsulting.org, 1
 crunchi.com, 1
 crunchr.com, 1
 crunchrapps.com, 1
+crunchtax.com, 1
 crunchy.rocks, 1
 crunchybetty.com, 1
 crushingcasinos.com, 1
@@ -35255,7 +35601,6 @@
 cryovex.com, 1
 cryozenic.com, 1
 cryp.no, 1
-crypkit.com, 1
 crypt-app.net, 1
 crypt0cloud.ddns.net, 0
 cryptcheck.fr, 1
@@ -35326,6 +35671,7 @@
 cryptolot.ru, 1
 cryptomail.nl, 1
 cryptomaniaks.com, 1
+cryptominerxhq.com, 1
 cryptomining.mobi, 1
 cryptomixer.io, 0
 cryptomkt.com, 1
@@ -35350,13 +35696,12 @@
 cryptoparty.tv, 1
 cryptopartynewcastle.org, 1
 cryptopartyutah.org, 1
-cryptopaste.org, 1
 cryptophobia.nl, 1
 cryptopuk.com, 1
 cryptopuppers.co, 1
-cryptopyramide.com, 1
 cryptorival.com, 1
 cryptoruay.com, 1
+cryptoscope.io, 1
 cryptoseb.pw, 1
 cryptosender.io, 1
 cryptoshot.pw, 1
@@ -35420,7 +35765,12 @@
 cs-unlimited.tk, 1
 cs-westside.tk, 1
 cs.money, 1
+cs2.ac.cn, 1
+cs2.org.cn, 1
+cs2.pub, 1
+cs2.ren, 1
 csa-clan.tk, 1
+csa-library.org, 1
 csa.co.za, 1
 csa.support, 1
 csaapac.com, 1
@@ -35434,6 +35784,7 @@
 csacongress.com, 1
 csacongress.org, 1
 csacongress.us, 1
+csadc.org, 1
 csaemeacongress.com, 1
 csaemeasummit.com, 1
 csaerotherm.com, 1
@@ -35441,6 +35792,8 @@
 csale.co.il, 1
 csaposs.com, 1
 csarchispace.com, 1
+csasummit.net, 1
+csasummit.org, 1
 csatestdomain.com, 1
 csaurl.org, 1
 csb-consultancy.com, 1
@@ -35471,12 +35824,12 @@
 csfd.cz, 1
 csfd.sk, 1
 csfm.com, 1
+csghomedesignbuild.com, 1
 csgo-roulette.ru, 1
 csgo.ac.cn, 1
 csgo.help, 1
 csgo.net, 1
 csgo.su, 1
-csgo77.com, 1
 csgoba.cn, 1
 csgobar.com, 1
 csgodatabase.com, 1
@@ -35508,7 +35861,6 @@
 cslbuild.com, 1
 csmainframe.com, 1
 csn3366.ga, 1
-csnc.ch, 1
 csnet.live, 1
 csodaorszagovoda.hu, 1
 csokolozos-jatekok.tk, 1
@@ -35516,7 +35868,6 @@
 csosa.gov, 1
 csowt.gq, 1
 csp-tohoku.co.jp, 1
-csp.ch, 0
 csper.io, 1
 cspeti.hu, 1
 cspi.uz, 1
@@ -35567,7 +35918,6 @@
 ct-watches.dk, 1
 ct.search.yahoo.com, 0
 ctadalafil.com, 1
-ctbirding.org, 1
 ctcloud.ml, 1
 ctcom-peru.com, 1
 ctcp.pt, 1
@@ -35582,6 +35932,7 @@
 cthomas.work, 1
 cthu.io, 1
 cthulhuden.com, 1
+ctir.gov.br, 1
 ctj.im, 1
 ctknight.me, 1
 ctkwwri.org, 1
@@ -35641,6 +35992,7 @@
 cubefreak.tk, 1
 cubegame.tk, 1
 cubeinfo.tk, 1
+cubeinstallations.co.uk, 1
 cubekrowd.net, 1
 cubela.tech, 1
 cubepasses.com, 1
@@ -35653,6 +36005,7 @@
 cubia3.com, 1
 cubia4.com, 1
 cubic-lynx.com, 1
+cubicempire.com, 1
 cubiclands.com, 1
 cubicle.tk, 1
 cubicle7games.com, 1
@@ -35685,8 +36038,8 @@
 cudoo.de, 1
 cueca.com.br, 1
 cuecasonline.com.br, 1
-cuegee.com, 1
 cuentadias.cl, 1
+cuentamecomopaso.es, 1
 cuentas-gratis.ga, 1
 cuentasmutualamr.org.ar, 1
 cues.org.uk, 1
@@ -35713,6 +36066,8 @@
 culpoilu.tk, 1
 cultivariable.com, 1
 cultofperf.org.uk, 1
+cultrix.co.uk, 1
+cultrixdigital.co.uk, 1
 culturaanarquista.tk, 1
 culturaarabe.tk, 1
 culturabrasilia.tk, 1
@@ -35740,6 +36095,7 @@
 cultuur.gent, 1
 cultuurinonderwijs.be, 1
 cumberlandcoil.gov, 1
+cumberlandcountyhealthnj.gov, 1
 cumberlandcountyme.gov, 1
 cumberlandcountync.gov, 1
 cumberlandcountynj.gov, 1
@@ -35766,6 +36122,7 @@
 cunha.be, 1
 cunova.cf, 1
 cunova.tk, 1
+cuo.net, 1
 cuoc.org.uk, 1
 cuongthach.com, 1
 cuongthach.net, 1
@@ -35875,7 +36232,6 @@
 curtis-smith.uk, 1
 curtisint.com, 1
 curtisleejones.tk, 1
-curtislinville.net, 1
 curtispope.com, 1
 curtissmith.me.uk, 1
 curtissmith.uk, 1
@@ -35909,6 +36265,7 @@
 customcraft.tk, 1
 customdissertation.com, 1
 customeessay.com, 1
+customer2you.com, 1
 customercontactweekdigital.com, 1
 customerfocus.co.za, 1
 customerservicemanager.com, 1
@@ -35982,6 +36339,7 @@
 cuvva.org, 1
 cuvva.uk, 1
 cuvva.us, 1
+cuwcd.gov, 1
 cuxpool.club, 1
 cuxpool.net, 1
 cuyahogacommunitycollege.tk, 1
@@ -36055,7 +36413,6 @@
 cxcarepro.com, 1
 cxense.com, 1
 cxfund.com.cn, 1
-cxm.co.uk, 1
 cxnetwork.com, 1
 cxologic.com, 1
 cxologic.io, 1
@@ -36121,7 +36478,7 @@
 cyberex.es, 1
 cyberexplained.info, 1
 cyberfebrio.tk, 1
-cyberforensics.com, 1
+cyberfla.me, 1
 cyberforge.ml, 1
 cyberfruit.tk, 1
 cybergame-host.tk, 1
@@ -36190,7 +36547,10 @@
 cybersecurity.nz, 1
 cybersecurity.run, 1
 cybersecuritychallenge.be, 0
+cybersecuritydegreeguide.com, 1
+cybersecurityeducationguides.org, 1
 cybersecurityforum.com.br, 1
+cybersecurityguide.in, 1
 cybersecurityincidentresponse.com, 1
 cyberseguranca.com.br, 1
 cybershark.space, 1
@@ -36213,10 +36573,12 @@
 cybertinus.nl, 1
 cybertn.gov, 1
 cybertorsk.org, 1
+cybertrinity.co.uk, 1
 cybertron.cf, 1
 cybertronics.tk, 1
 cybertu.be, 1
 cyberwandelendetakjes.tk, 1
+cyberwarhq.com, 1
 cyberwars.dk, 1
 cyberweightloss.com, 1
 cyberwire.nl, 1
@@ -36264,7 +36626,6 @@
 cygnius.net, 1
 cykelbanor.se, 1
 cyklistika24.cz, 1
-cylastee.com, 1
 cylex-italia.it, 1
 cylindricity.com, 1
 cyllos.me, 1
@@ -36277,13 +36638,8 @@
 cynthiacherry.com, 1
 cyon.ch, 1
 cype.dedyn.io, 1
-cyph.audio, 1
 cyph.com, 1
 cyph.healthcare, 1
-cyph.im, 1
-cyph.io, 1
-cyph.me, 1
-cyph.video, 1
 cyph.ws, 1
 cyphar.com, 1
 cypherbot.org, 1
@@ -36295,6 +36651,7 @@
 cypressxm.com, 1
 cyprus-company-for.gr, 1
 cyprus-company-service.com, 1
+cyprusivfcentre.co.uk, 1
 cyptechost.co.ke, 1
 cyqual.com, 1
 cyrano-books.com, 1
@@ -36311,6 +36668,7 @@
 cyrokx.com, 1
 cyrozap.com, 1
 cyrusdaily.tk, 1
+cysecure.co, 1
 cysi.in, 1
 cyson.tech, 1
 cytat.tk, 1
@@ -36320,7 +36678,6 @@
 cythereaxxx.com, 1
 cytn.xyz, 1
 cyumus.com, 1
-cyvault.io, 1
 cyware.com, 1
 cz.ma, 1
 cz.nl, 1
@@ -36461,7 +36818,6 @@
 d889.app, 1
 d8891.net, 1
 d88agent.com, 1
-d88agqj.com, 1
 d88d99.com, 1
 d88siteintro.com, 1
 d898.app, 1
@@ -36471,6 +36827,7 @@
 d9397.com, 1
 d9721.com, 0
 d9728.co, 1
+d9and10sports.com, 1
 da-schaewel.de, 1
 da-tixe.ml, 1
 da-tixe.tk, 1
@@ -36490,7 +36847,7 @@
 dabedi.ir, 1
 dabhand.studio, 1
 dabi.tk, 1
-dabrecords.co.uk, 0
+dabrecords.co.uk, 1
 dabro.tk, 1
 dabstairs.com, 0
 dabuzz.tk, 1
@@ -36511,7 +36868,6 @@
 daciaforum.nl, 1
 daciamodellen.nl, 1
 daconsult.uk, 1
-dacooninternational.com, 1
 dacsanchatviet.com, 1
 dad, 1
 dad256.tk, 1
@@ -36522,7 +36878,7 @@
 daddybio.com, 1
 daddyfinger.me, 1
 daddyhax.ml, 1
-daddylive.link, 0
+daddylive.link, 1
 daddylonglegs.tk, 1
 daddyschickenshack.com, 1
 daddysfranchising.com, 1
@@ -36566,6 +36922,7 @@
 dag-konsult.com, 1
 dag-ogni.tk, 1
 dag.cn, 1
+dagallemaal.be, 1
 daganghalal.com, 1
 daganzo.tk, 1
 dagbestedingwarrie.nl, 1
@@ -36593,6 +36950,7 @@
 daie-inc.com, 1
 daikonsystems.com, 1
 daikoz.com, 1
+daili.eu, 1
 daily-puzzle.tk, 1
 daily-solution.pro, 1
 daily-sudoku.tk, 1
@@ -36607,7 +36965,6 @@
 dailyddt.com, 1
 dailydealika.com, 1
 dailydodge.com, 1
-dailydosehealth.com, 1
 dailydote.com, 1
 dailydoze.com, 1
 dailyemailinboxing.com, 1
@@ -36622,7 +36979,6 @@
 dailyjournalonline.com, 1
 dailyjunkies.com, 1
 dailyknicks.com, 1
-dailykos.com, 1
 dailykosbeta.com, 1
 dailylime.kr, 1
 dailylviv.com, 1
@@ -36671,6 +37027,7 @@
 dajiale.org, 1
 dajjal.org, 1
 dak.org, 1
+dakartmarket.com, 1
 dakcess.net, 1
 daken.hu, 1
 daki-host.tk, 1
@@ -36688,7 +37045,6 @@
 dal.net.sa, 1
 dalagore.com, 1
 dalaran.city, 1
-dalat.blog, 0
 dalat.store, 0
 dalb.in, 1
 dalbar.com, 1
@@ -36717,6 +37073,7 @@
 dallasdesignco.com, 1
 dallasescorts.net, 1
 dallasfire.gov, 1
+dallaslu.com, 1
 dallasmenshealth.com, 1
 dallaspolice.gov, 1
 dallastexas.ml, 1
@@ -36734,6 +37091,7 @@
 daltons.tk, 1
 dalux.com, 0
 damadam.pk, 1
+damades.com, 1
 damag.net, 1
 damag.org, 1
 damaged.org, 1
@@ -36789,6 +37147,7 @@
 dan124.com, 1
 dana-hilliot.tk, 1
 danaandnathan.com, 1
+danaclips.com, 1
 danadameson.tk, 1
 danads.com, 1
 danalina.by, 1
@@ -36805,6 +37164,7 @@
 danbarrett.com.au, 0
 danbergen.com, 1
 danbolig.dk, 1
+danburyfishfarms.com, 1
 danca.com, 1
 dance-colleges.com, 1
 dance-school.tk, 1
@@ -36846,7 +37206,7 @@
 dangmai.tk, 1
 dangr.zone, 1
 danhalliday.com, 1
-danhoej.dk, 0
+danhoej.dk, 1
 danholloway.online, 1
 danhotels.co.il, 1
 danhotels.com, 1
@@ -36932,11 +37292,11 @@
 danielpeukert.cz, 1
 danielportfolio.es, 1
 danielran.com, 1
+danielroelsontwerp.nl, 1
 danielrozenberg.com, 1
 danielruiz.tk, 1
 danielsblog.org, 1
 danielshaw.co.nz, 1
-danielsixto.com, 1
 danielstach.cz, 1
 danielstiner.me, 1
 danielt.co.uk, 0
@@ -36956,7 +37316,6 @@
 danish.events, 1
 danishbytes.club, 1
 danishiqbal.tk, 1
-danismaden.com, 1
 danispage.tk, 1
 danituuu7.tk, 1
 daniweb.com, 1
@@ -36983,10 +37342,11 @@
 dannemora.tk, 1
 dannhanks.com, 1
 dannicholas.net, 1
+danniellealbrechtdesigns.com, 1
 dannon.com, 1
 danny-rohde.de, 1
 danny.fm, 1
-dannycairns.com, 1
+dannycairns.com, 0
 dannycavanagh.tk, 1
 dannydiamondsconcrete.com, 1
 dannygaidateraelgar.com, 1
@@ -37020,6 +37380,7 @@
 danselibre.org, 1
 dansemacabre.tk, 1
 danseressen.nl, 1
+dansk8bit.dk, 1
 danske.events, 1
 danskemedier.dk, 1
 danskoya.com, 1
@@ -37077,7 +37438,6 @@
 darbi.org, 1
 darc-mak.de, 1
 darc.pro, 1
-darchoods.net, 0
 darci.tech, 1
 darcyinspired.com, 1
 darcymarshall.com, 1
@@ -37276,7 +37636,6 @@
 dasler.eu, 1
 dasmailarchiv.ch, 1
 dasolindustrialpark.tk, 1
-dassolutions.eu, 1
 dastchin.live, 1
 dastchin.shop, 1
 dasteichwerk.at, 0
@@ -37303,7 +37662,6 @@
 data.gov, 1
 data.gov.me, 1
 data.govt.nz, 1
-data.haus, 1
 data.world, 1
 data18.com, 1
 data3w.nl, 1
@@ -37343,6 +37701,7 @@
 datafort.ro, 1
 datagate.com.br, 1
 datagir.ir, 0
+datagovernancetool.azurewebsites.net, 1
 datagrail.io, 1
 datagrid.ga, 1
 dataguidance.com, 1
@@ -37363,6 +37722,7 @@
 dataman.ml, 1
 datamish.com, 1
 datapiped.com, 1
+dataprivacyframework.gov, 1
 dataprivacysolution.com, 1
 dataproject.com, 1
 dataprot.net, 1
@@ -37387,7 +37747,6 @@
 datastar.net, 1
 datastream.org, 1
 datastream.re, 0
-datastudio.ca, 1
 datastudio.google.com, 1
 datasubject.com, 1
 datasubjects.com, 1
@@ -37429,7 +37788,6 @@
 dateno1.com, 1
 datenreiter.cf, 1
 datenreiter.gq, 1
-datenreiter.org, 1
 datenretter.tk, 1
 datensalat.info, 1
 datenschutz-gruenwald.de, 1
@@ -37484,6 +37842,7 @@
 datutorials.tk, 1
 daubecity.de, 1
 daubehosting.de, 1
+dauenhauer.de, 1
 daughertyplasticsurgery.com, 1
 daughtridgeenergy.com, 1
 daugoitot.com, 1
@@ -37495,7 +37854,6 @@
 dausendschoen.de, 1
 dav.com.au, 1
 davalochki.tk, 1
-davangarte.com, 0
 davaobasic.com, 1
 davd.cf, 1
 dave-pearce.com, 1
@@ -37544,7 +37902,6 @@
 davidadrian.org, 1
 davidalbert.me, 1
 davidandersson.se, 1
-davidandrewcoaching.com, 1
 davidbach.com, 1
 davidband.com.au, 1
 davidbranco.me, 1
@@ -37737,7 +38094,6 @@
 dba-support.nl, 1
 dbapress.org, 1
 dbaron.org, 1
-dbas.ca, 1
 dbas.cz, 1
 dbase.cf, 1
 dbautoservice.nl, 1
@@ -37749,7 +38105,6 @@
 dbentertainment.co.uk, 1
 dbfopraga-pn.waw.pl, 1
 dbgames.info, 1
-dbgamestudio.com, 1
 dbhome.org, 1
 dbhouse.tk, 1
 dbic.ro, 1
@@ -37762,6 +38117,7 @@
 dblfree.com, 0
 dblsuretybonds.com, 1
 dbmiller.org, 1
+dbmnet.be, 1
 dbmtv.news, 1
 dbnext.de, 1
 dboptical.com, 1
@@ -37781,6 +38137,7 @@
 dbtsai.com, 0
 dbtunder.tk, 1
 dbushell.com, 1
+dbvideo54.com, 1
 dbw678.com, 1
 dc-acupuncture.com, 0
 dc-design.tk, 1
@@ -37793,6 +38150,7 @@
 dc-solutions.at, 1
 dc-texas.com, 1
 dc-zone.com, 1
+dc.systems, 1
 dc7342.im, 1
 dcain.me, 1
 dcampusbd.com, 1
@@ -37800,6 +38158,7 @@
 dcareer.tk, 1
 dcave.net, 1
 dcbouncycastles.co.uk, 1
+dcc.moe, 1
 dccdurgor1nbl.cloudfront.net, 1
 dccode.gov, 1
 dccomputerrepair.com, 1
@@ -37948,8 +38307,8 @@
 dealandgo.co.il, 1
 dealapp.nl, 1
 dealbanana.no, 1
-dealbx.com, 1
 dealchip.tk, 1
+dealcoupons.in, 1
 dealcruiser.nl, 1
 dealdump.nl, 1
 dealerselectric.com, 1
@@ -37976,7 +38335,6 @@
 deanconsultancy.co.uk, 1
 deane.li, 1
 deano-s.co.uk, 1
-deanpearce.me, 1
 deanpearce.net, 1
 dear-children.ga, 1
 dear-olivia.com, 1
@@ -38052,8 +38410,9 @@
 debricked.com, 1
 debrunet.com, 1
 debrunet.net, 1
-debrunet.nl, 0
+debrunet.nl, 1
 debrunet.org, 1
+debt-consolidation-reviews.org, 1
 debtmetricest.ga, 1
 debtpaypro.com, 1
 debtrecycling.com.au, 1
@@ -38088,6 +38447,7 @@
 decaturish.com, 1
 decay24.de, 0
 deceasedonline.com, 1
+decentrala.org, 1
 dechat.nl, 1
 dechetor.fr, 1
 dechow.ddns.net, 1
@@ -38104,7 +38464,6 @@
 deciso.eu, 1
 decisora.com, 1
 deck.academy, 1
-deckenplatten.org, 1
 deckersheaven.com, 1
 deckfix.co.nz, 1
 deckshop.pro, 1
@@ -38138,7 +38497,6 @@
 decorativecosmetics.tk, 1
 decorator.uk, 1
 decoratore.roma.it, 1
-decorauvent.ca, 1
 decorestilo.com.br, 1
 decorlux.bg, 1
 decorluxmuebles.com, 1
@@ -38156,6 +38514,7 @@
 decs.es, 1
 decstasy.de, 1
 decsys.work, 1
+decubex.com, 1
 dedede.ro, 1
 dedelta.net, 1
 dedeo.tk, 1
@@ -38182,6 +38541,7 @@
 dee.pe, 1
 dee.su, 1
 deechtebakkers.nl, 1
+deedixservice.com, 1
 deeds.com, 1
 deedyinc.com, 1
 deeezy.com, 1
@@ -38240,6 +38600,7 @@
 deerfieldknoll.com, 1
 deeringnh.gov, 1
 deerlycke.tk, 1
+deesse-gaia.fr, 1
 deezeno.com, 1
 defamiliehagen.com, 1
 defaultisafault.com, 1
@@ -38254,6 +38615,7 @@
 defence.pk, 1
 defenceenterprise.com, 1
 defenceiq.com, 1
+defencejobs.gov.au, 1
 defend2.org, 1
 defendanimals.com, 1
 defendas.com, 1
@@ -38315,6 +38677,7 @@
 degen-elektrotechnik.de, 1
 degenerativediscdiseaseexplained.com, 1
 degenero.es, 1
+degens.io, 1
 degentseflikkenzoekenu.be, 1
 degeo.cf, 1
 degeo.ml, 1
@@ -38339,6 +38702,7 @@
 degreecollege.tk, 1
 degreeducation.tk, 1
 degreesofcomfort.com, 1
+degreesonline.com, 1
 degressif.com, 1
 degroetenvanrosaline.nl, 1
 degrootenslot.nl, 0
@@ -38355,14 +38719,13 @@
 deiaprint.com, 1
 deidee.nl, 1
 deimos.gq, 1
-deimos.pro, 1
 deimos.ws, 1
 dein-baumdienst.de, 1
 dein-trueffel.de, 1
 dein.mx, 1
 deinballon.de, 1
 deindeal.ch, 1
-deine-gitarre.com, 1
+deineagentur.de, 1
 deinelakaien.tk, 1
 deinewebsite.de, 1
 deinjoghurt.de, 1
@@ -38396,6 +38759,7 @@
 dekodi.de, 1
 dekoh-shouyu.com, 0
 dekonijnenburcht.tk, 1
+dekorasyonu.net, 1
 dekoration.cf, 1
 dekoration.gq, 1
 dekoration.ml, 1
@@ -38408,6 +38772,7 @@
 delamoreretirement.com.au, 1
 delanomn.gov, 1
 delaquila.com.co, 1
+delartouducocon.com, 1
 delasamericas.tk, 1
 delavega.ua, 1
 delavska-hranilnica.si, 1
@@ -38432,7 +38797,7 @@
 delete.cf, 1
 deletebin.com, 1
 deletebin.org, 1
-deletecat.com, 1
+deletecat.com, 0
 delfi.ee, 1
 delfi.lt, 1
 delfi.net, 1
@@ -38483,7 +38848,7 @@
 dellasano.com, 1
 dellipaoli.com, 1
 dellirium.tk, 1
-delmarsumter.nl, 1
+delmarsumter.nl, 0
 delofderonvolmaaktheid.tk, 1
 delogo.nl, 1
 deloittequant.com, 0
@@ -38521,7 +38886,6 @@
 deltacountymi.org, 1
 deltadentalmo.com, 1
 deltadentalsc.com, 1
-deltafinanceiro.com, 1
 deltafm.tk, 1
 deltaloja.com.br, 1
 deltamusik.tk, 1
@@ -38635,6 +38999,8 @@
 dempe.tk, 1
 dempsters.ca, 0
 demsh.org, 1
+demshoesdoh.com, 1
+demuske.site, 1
 demuzere.be, 1
 demuzere.eu, 1
 demuzere.net, 1
@@ -38651,7 +39017,6 @@
 denali.net, 1
 denarium.com, 1
 denatured.tk, 1
-denbkh.ru, 0
 dencel.lv, 1
 denchik.tk, 1
 dendi.tk, 1
@@ -38663,7 +39028,7 @@
 denet.pro, 0
 denformlab.lt, 1
 dengg.name, 1
-dengi.desa.id, 1
+dengi.desa.id, 0
 dengidoma24.ml, 1
 dengisrazu.tk, 1
 dengivdolg.ml, 1
@@ -38747,6 +39112,7 @@
 dental.gq, 1
 dentalboutique.com.au, 1
 dentalcareerfinder.com, 1
+dentalcareersedu.org, 1
 dentalcolleges.tk, 1
 dentalimplantscost.com.au, 1
 dentaloptimizer.com, 1
@@ -38757,6 +39123,8 @@
 dentalsupportuk.com, 1
 dentaltalent.nl, 1
 dentalturism.com, 1
+dentcountyhealth.gov, 1
+dentdelion-plugin.com, 1
 dented.gq, 1
 dentelegan.com, 1
 dentislabor.lt, 1
@@ -38819,7 +39187,6 @@
 departamentoslosolivos.tk, 1
 departmentofdefense.tk, 1
 departmentofoncology.com, 1
-departure-transfer-reservation.com, 1
 departureboard.io, 1
 depaulmanorestate.com.au, 1
 depcompower.com, 1
@@ -38846,6 +39213,7 @@
 depijp.tk, 1
 depilazione.roma.it, 1
 depilestil.es, 1
+depiratas.com.es, 1
 depistage-bejune.ch, 1
 depleteduranium.tk, 1
 deplis.fr, 0
@@ -38926,6 +39294,7 @@
 derive.cf, 1
 derkach.io, 1
 derkarl.tk, 1
+derkuki.de, 1
 derlux.tk, 1
 dermacarecomplex.com, 1
 dermafeelstudio.com, 1
@@ -38978,7 +39347,6 @@
 desanctispro.com, 1
 desapego.com.br, 1
 desarrollamosweb.com, 1
-desarrollowp.com, 1
 descargapormega.ml, 1
 descargar-apk.org, 1
 descobrim.com, 1
@@ -39051,7 +39419,7 @@
 designformanufacturability.net, 1
 designgears.com, 1
 designgraphic.fr, 1
-designgurus.org, 1
+designgurus.org, 0
 designhuddle.com, 1
 designmodernideas.tk, 1
 designops-conference.online, 1
@@ -39059,6 +39427,7 @@
 designrhome.com, 1
 designs.codes, 1
 designsbyjanith.com, 1
+designsbyscott.ca, 1
 designsite.tk, 1
 designsociety.tk, 1
 designstripe.com, 1
@@ -39084,6 +39453,7 @@
 deskdesign.nl, 1
 deskeen.fr, 1
 deskmoz.com, 1
+desktopcentral.ath.cx, 1
 desktopd.eu.org, 0
 desktopfibra.com, 1
 desktopfx.net, 0
@@ -39100,8 +39470,6 @@
 despachomariscal.com, 1
 desperate.solutions, 1
 desperatesailors.com, 1
-desperec.ddns.net, 1
-despertadoronline.com.es, 1
 despertarparavida.org, 1
 desplainesil.gov, 1
 despoina-vandi.tk, 1
@@ -39161,6 +39529,7 @@
 detectefuite.ch, 0
 detectify.com, 1
 detectivedesk.com.au, 1
+detectiveedu.org, 1
 detecy.com, 1
 deteken.be, 1
 detekenmuze.nl, 1
@@ -39246,6 +39615,7 @@
 devafterdark.com, 1
 devagency.fr, 1
 devahi.gq, 1
+devalbert.com, 1
 devalkincentives.nl, 1
 devalps.eu, 1
 devanstavern.tk, 1
@@ -39286,6 +39656,7 @@
 develux.net, 1
 devendradox.ml, 1
 devendrameena.tk, 1
+devenir-equicoach.com, 1
 devenirconseillerbienetre.com, 1
 devensys.com, 1
 devenv.ml, 1
@@ -39298,7 +39669,6 @@
 deviante.com, 1
 deviation.tk, 1
 devicemanager.ch, 1
-devicesgadget.com, 1
 devicom.mx, 1
 devignstudios.co.uk, 1
 devil-may-cry.tk, 1
@@ -39420,7 +39790,6 @@
 dextermarket.com, 1
 dextra.tk, 1
 deyaar-sl.com, 1
-deyanadeco.com, 1
 deyute.com, 1
 dezea.net, 1
 dezeregio.nl, 1
@@ -39511,9 +39880,7 @@
 dgroyals.com, 1
 dgt-portal.de, 1
 dgtakano.co.jp, 0
-dgtcitaprevia.es, 1
 dgtl.hosting, 1
-dgtl.tools, 1
 dgtl.work, 1
 dgund.com, 1
 dgvservices.com, 1
@@ -39620,7 +39987,6 @@
 dianaconta.pt, 1
 dianadeluxe.net, 1
 dianadrive.com, 1
-dianafaraj.de, 1
 dianakaarina.tk, 1
 diananeves.pt, 0
 dianaqueeny.tk, 1
@@ -39629,7 +39995,6 @@
 dianavanderplas.tk, 1
 diane-marstboom.tk, 1
 dianefriedli.ch, 0
-dianeseaborn.com, 1
 diankou.cn, 1
 diankou.com, 1
 diankou.com.cn, 1
@@ -39666,6 +40031,7 @@
 dibacode.com, 1
 dibal.ua, 1
 dibiphp.com, 1
+dibo-ambasador.pl, 1
 dic.ae, 1
 dicaprio.tk, 1
 dicasgostosas.com, 1
@@ -39813,11 +40179,10 @@
 diennhienshop.com, 1
 diennobi.com, 1
 dienstplan.cc, 1
-diera.net, 1
+diera.net, 0
 dierabenmutti.de, 1
 dieradvies.nl, 1
 dierenartsdeconinck.be, 1
-dierencompleet.nl, 1
 dierenpagina.tk, 1
 dierenrijk.nl, 1
 dierenschilderijen.tk, 1
@@ -39842,6 +40207,7 @@
 dieterglas.de, 1
 dietergreven.de, 0
 dietfordiabetics.tk, 1
+dietherapie.tirol, 1
 diethood.com, 1
 dieti-natura.com, 1
 dieti.ga, 1
@@ -39859,6 +40225,7 @@
 dieumfrage.com, 1
 dievozodis.lt, 1
 dievturi.lv, 1
+diewerkstattcloud.com, 1
 difc.ae, 1
 diferenca.com, 1
 diferenciador.com, 1
@@ -39890,7 +40257,6 @@
 digdong.com.br, 1
 digginsmo.gov, 1
 dighans.com, 1
-digi-trax.com, 1
 digi-typ.fi, 1
 digi-typa.fi, 1
 digiaika.com, 1
@@ -39931,6 +40297,7 @@
 digino.xyz, 1
 digiparse.com, 1
 digipartindex.ch, 1
+digipassos.com, 1
 digipitch.com, 1
 digipolis.gent, 1
 digipost.no, 1
@@ -39984,6 +40351,7 @@
 digitalarchitecture.com, 1
 digitalbang.gr, 1
 digitalbd.tk, 1
+digitalbeachbrasil.com.br, 1
 digitalbitbox.com, 1
 digitalblood.eu, 1
 digitalbox.jp, 0
@@ -40022,7 +40390,6 @@
 digitaleducationarea.tk, 1
 digitaleducationpro.tk, 1
 digitalehandtekeningen.nl, 1
-digitalentertainmentnews.com, 1
 digitaleplus.fr, 1
 digitalerror.net, 1
 digitaletanker.com, 1
@@ -40031,7 +40398,6 @@
 digitalexpertsdirectory.com.au, 1
 digitalezukunft-hagen.de, 1
 digitalezukunft.nrw, 1
-digitalfind.net, 1
 digitalfoodbook.com, 1
 digitalforensicsdubai.com, 1
 digitalfortress.tech, 1
@@ -40140,7 +40506,6 @@
 digityp.fi, 1
 digitypa.fi, 1
 digivan.ml, 1
-digivita.ir, 1
 digminecraft.com, 1
 dignited.com, 1
 dignity.tk, 1
@@ -40246,6 +40611,7 @@
 dinerroboticurology.com, 1
 dinevigroup.bg, 1
 ding.gent, 1
+dingcc.com, 1
 dingcc.me, 1
 dingdong-shop.ru, 1
 dingelbob-schuhcreme.gq, 1
@@ -40269,7 +40635,6 @@
 dinos-mag.tk, 1
 dinotv.at, 1
 dintrafic.net, 1
-dinube.com, 1
 diodo.me, 1
 dioesfoto.com, 1
 diogbatech.tk, 1
@@ -40369,7 +40734,6 @@
 direwolfsoftware.ca, 1
 dirhami.com, 1
 dirigentesdigital.com, 1
-diriya.lk, 0
 dirk-dogs.tk, 1
 dirk-weise.de, 1
 dirkdavid.org, 1
@@ -40407,7 +40771,6 @@
 dirtywoman.tk, 1
 dirtywork.net, 1
 dirunreddy.tk, 1
-disaana.jp, 1
 disability-card.com, 1
 disability.gov, 1
 disabilitybeacon.com, 1
@@ -40579,6 +40942,7 @@
 disinfestazionivespe.milano.it, 1
 disinfestazionizanzare.milano.it, 1
 disinfestazionizanzare.roma.it, 1
+disinisharing.com, 1
 disisto-schiesser.com, 1
 disisto.de, 1
 disisto.nl, 1
@@ -40602,6 +40966,7 @@
 disneywallpapers.tk, 1
 disobey.net, 1
 disoluto.tk, 1
+disostruzioni.it, 1
 disougstroy.com.ua, 1
 disparada.com.br, 1
 dispatched.tk, 1
@@ -40609,7 +40974,6 @@
 dispatchitsolutions.io, 1
 dispel-photo.com, 1
 dispensarygta.com, 1
-displayenergycertificate.co.uk, 1
 displayrd.com, 1
 displaysandholders.com, 1
 disposable.link, 1
@@ -40720,6 +41084,7 @@
 diversity-otherwise.tk, 1
 diversityflags.com.au, 1
 diversityflags.nz, 1
+diversitywatch.asia, 0
 diversitywatch.co.nz, 1
 diversovariable.tk, 1
 divertidores.tk, 1
@@ -40769,7 +41134,6 @@
 dixibox.com, 1
 dixie.com, 0
 dixiepest.com, 1
-dixifuar.com, 1
 dixmag.com, 1
 dixoncountyne.gov, 1
 dixonmo.gov, 1
@@ -40819,7 +41183,6 @@
 dj-phil.fr, 1
 dj-wout.tk, 1
 dj-x.info, 1
-dj16888.com, 1
 dj16888a.com, 1
 dj16888b.com, 1
 dj16888c.com, 1
@@ -40857,7 +41220,6 @@
 djbell.tk, 1
 djbessi.tk, 1
 djbobbytables.com, 1
-djboekingskantoor.nl, 1
 djboi.tk, 1
 djboomarang.tk, 1
 djboris.com, 1
@@ -40918,8 +41280,8 @@
 djlove.tk, 1
 djluca.tk, 1
 djmafia.tk, 1
+djmania.es, 1
 djmanikbd.gq, 1
-djmarian.com, 1
 djmarlongalvao.nl, 1
 djmathew.tk, 1
 djmetrix.tk, 1
@@ -40930,7 +41292,6 @@
 djmus.tk, 1
 djnandoalmenara.tk, 1
 djnash.tk, 1
-djnasvatbuzlin.cz, 1
 djnefret.tk, 1
 djnext.tk, 1
 djnr.agency, 1
@@ -41095,12 +41456,12 @@
 dmaclinic.com, 1
 dmaglobal.com, 1
 dmarc-hd.org, 1
-dmarc.com, 1
 dmarc.dk, 1
 dmarc.io, 1
 dmarcian.com, 1
 dmarcpal.com, 1
 dmartpreneur.com, 1
+dmautomek.no, 1
 dmc-cc.de, 1
 dmc-commerce-consultants.de, 1
 dmc.ae, 1
@@ -41117,6 +41478,7 @@
 dmdiamonds.tk, 1
 dmdpayroll.com, 1
 dme.net, 1
+dme.web.id, 1
 dmehub.com, 1
 dmesg.sk, 1
 dmfd.net, 1
@@ -41176,8 +41538,6 @@
 dnapagamentos.com.br, 1
 dnapizza.com, 1
 dnash.tk, 1
-dnaspaces.eu, 1
-dnaspaces.io, 1
 dnastaffinginc.com, 1
 dnb.co.in, 1
 dnc.org.nz, 1
@@ -41193,15 +41553,15 @@
 dnfsb.gov, 1
 dngrexplorer.cf, 1
 dngsnl.com, 1
-dnhome.net, 1
-dnhome.uk, 1
+dnhome.net, 0
+dnhome.uk, 0
 dnjwpa.com.pl, 1
 dnk.company, 1
 dnmlab.it, 1
 dnms.com, 1
-dnncommunity.org, 1
 dnns.no, 1
 dnplegal.com, 1
+dnpprogramstudies.com, 1
 dnratthee.me, 1
 dnrt-esports.nl, 1
 dns-check.nl, 0
@@ -41261,9 +41621,11 @@
 do67.net, 1
 doanhai.tk, 1
 doanhnhankhanhhoa.vn, 0
+dob46.mazowsze.pl, 1
 dobavki.club, 1
 dobbshvac.com, 1
 dobledemichaeljackson.tk, 1
+doblejewel.shop, 1
 dobleseo.pro, 1
 dobookmark.ml, 1
 doboszynski.com, 1
@@ -41315,6 +41677,7 @@
 doclassworks.com, 1
 docline.gov, 1
 docloudu.info, 1
+doclub.uz, 1
 docmode.org, 1
 docogo.ga, 1
 docpc86.fr, 1
@@ -41333,12 +41696,12 @@
 doctabaila.com, 1
 doctaforum-diferidos.com, 1
 doctaforum-events.org, 1
+doctaforum-test.com, 1
 docteur-delorme.fr, 1
 doctoblog.fr, 1
 doctor-locks.co.uk, 1
 doctor.dating, 1
 doctor360.com.au, 1
-doctorapuestas.com.es, 1
 doctorbini.com, 1
 doctorcalefon.com, 1
 doctordangond.com, 1
@@ -41351,6 +41714,7 @@
 doctormartinclavo.tk, 1
 doctornaima.ml, 1
 doctornet.ml, 1
+doctorofnursingpracticednp.org, 1
 doctorpage.info, 1
 doctorperu.com, 1
 doctorpower.ga, 1
@@ -41427,7 +41791,6 @@
 doesinfotech.com, 1
 doesmycodehavebugs.today, 1
 doetwat.nl, 1
-dof.gov.ph, 1
 dofashion.tk, 1
 dofus-aide.tk, 1
 dofus.market, 1
@@ -41440,6 +41803,7 @@
 dogan.ch, 0
 doganoglu.net, 1
 dogcat.vn, 0
+dogchina.com, 1
 dogcratereview.info, 1
 dogday.tk, 1
 dogdayafternoons.biz, 1
@@ -41488,6 +41852,7 @@
 dogsite.tk, 1
 dogsnaturallymagazine.com, 1
 dogsnow.com, 1
+dogtoetreads.com, 1
 dogtowneastpowell.com, 1
 dogtrack.tk, 1
 dogualp.com, 1
@@ -41508,7 +41873,6 @@
 doit.com, 1
 doitauto.de, 1
 doj.gov.in, 1
-doja-cat.ru, 1
 dojah.io, 1
 dojifish.space, 1
 dojin.nagoya, 1
@@ -41537,8 +41901,6 @@
 dokument.tk, 1
 dokuraum.de, 1
 dokutech.fr, 1
-dolanan.tech, 1
-dolanyok.com, 1
 dolbyatmosmusiclist.com, 1
 dolce-vita-mia.tk, 1
 dolcerestaurant.us, 1
@@ -41620,6 +41982,7 @@
 domain-swiss.ch, 1
 domain.ch, 1
 domaine-aigoual-cevennes.com, 1
+domainedemanville.fr, 1
 domainedemiolan.ch, 0
 domainevanina.fr, 1
 domainexpress.de, 0
@@ -42036,7 +42399,6 @@
 dota2expert.ru, 1
 dota2free.tk, 1
 dotadotaman.tk, 1
-dotatic.com, 1
 dotbox.org, 1
 dotcircle.co, 1
 dotcomdesigns.biz, 1
@@ -42097,6 +42459,7 @@
 doubledranch.tk, 1
 doublefun.net, 1
 doubleness.gq, 1
+doublespeak.chat, 1
 doublestat.me, 1
 doubletex.de, 1
 doubleup.com.au, 1
@@ -42123,6 +42486,7 @@
 douglasmi.gov, 1
 douglasresende.tk, 1
 douglasrumbaugh.com, 0
+douglassimons.com, 1
 douglegomovie.tk, 1
 dougley.com, 1
 doujin-domain.cz, 1
@@ -42130,7 +42494,6 @@
 doujinrepublic.com, 1
 doujinshi.info, 1
 doujinspot.com, 1
-douvan.com, 1
 douzer.de, 1
 douzer.earth, 1
 douzer.industries, 1
@@ -42230,7 +42593,6 @@
 doypacky.cz, 0
 doze-cloud.tech, 1
 dozecloud.com, 1
-dozens.com, 1
 dozor.ga, 1
 dozor.gq, 1
 dozor.tk, 1
@@ -42248,18 +42610,19 @@
 dpd.com.pl, 1
 dpecuador.com, 1
 dperson.net, 1
+dpeter.me, 1
 dpfsolutionsfl.com, 1
 dpg.no, 1
 dphipartner.com, 1
 dpi-design.de, 1
 dpim.org.my, 1
+dpinse.com, 1
 dpisecuretests.com, 1
 dpjuse.tk, 1
 dpk.es, 1
 dpkk.ph, 1
 dplpmtud.com, 1
 dpm-ident.de, 0
-dpmc.govt.nz, 1
 dpmr446.fr, 1
 dpoairport.au, 1
 dpoairport.com.au, 1
@@ -42396,6 +42759,7 @@
 drakenprospero.com, 0
 drakenson.de, 1
 drakfot.se, 0
+drakia.com, 1
 drakiada.tk, 1
 drakkarbilbao.com, 1
 draknet.eu, 1
@@ -42409,7 +42773,6 @@
 dramaquarter.com, 1
 dramar.cc, 1
 dramaslayer.ga, 1
-dramasq.co, 1
 dramasq.net, 1
 dramatherapie.tk, 1
 dramaticpeople.com, 1
@@ -42540,6 +42903,7 @@
 dreamwork.financial, 1
 dreamworldstudio.tk, 1
 dreamy-flat-lyon.fr, 1
+dreamyoungs.com, 1
 dreamytheatre.com, 1
 dreamz-staging.zone, 1
 dreamz.com, 1
@@ -42582,6 +42946,7 @@
 dressestore.tk, 1
 dressify.in, 1
 dressingmaternity.fr, 1
+dressrose.com, 1
 dressshopboutique.com, 1
 dresstique.in, 1
 dreumesshakira.tk, 1
@@ -42665,6 +43030,7 @@
 drilster.nl, 1
 dring.tf, 1
 drink-team.tk, 1
+drinkablegifts.com, 1
 drinkcontrolapp.com, 1
 drinkgo.vn, 1
 drinking.tk, 1
@@ -42726,9 +43092,9 @@
 drizz.com.br, 0
 drjacquesmalan.com, 1
 drjaensch.de, 1
+drjaisejoy.com, 1
 drjart.com, 0
 drjavadrezazadeh.com, 1
-drjihsderma.com, 1
 drjoaquimserraodecastro.com.br, 1
 drjoe.ca, 1
 drjosebarrera.com, 1
@@ -42739,7 +43105,6 @@
 drkashany.ir, 1
 drkazim.com, 1
 drkhsh.at, 1
-drkmtrx.xyz, 1
 drksachsen.de, 1
 drlandis.com, 1
 drlaserskinsoprano.ro, 1
@@ -42797,7 +43162,6 @@
 droneup.pl, 1
 dronevlaming.be, 1
 droneways.tech, 1
-drongea.com, 1
 droni.cz, 1
 dronix.tk, 1
 dronografia.es, 1
@@ -42831,7 +43195,6 @@
 drosophila.tk, 1
 drost.la, 1
 drought.gov, 1
-drown.photography, 1
 drpetersenobgynal.com, 1
 drpetervoigt.ddns.net, 1
 drpetervoigt.de, 1
@@ -42875,6 +43238,7 @@
 drturner.com.au, 1
 drubn.de, 1
 druckerei-huesgen.de, 1
+drugenforcementedu.org, 1
 druggist.uk, 1
 drugpromosers.ga, 1
 drugs.com, 1
@@ -42899,6 +43263,7 @@
 drunkcalc.com, 1
 drunkendropkes.tk, 1
 drupal.org, 1
+drupalfr.be, 1
 drupalspb.org, 0
 drusantia.net, 1
 drusillas.co.uk, 1
@@ -42910,17 +43275,16 @@
 drweissbrot.net, 1
 drwilfredbrown.com, 1
 drwongsuni.com.sg, 1
+drwoods.com, 1
 dry-cleaning.tk, 1
 dryashplasticsurgery.com, 1
 dryasinakgul.com, 1
 drybjed.net, 1
-drybysuperior.com, 1
 drycreekphoto.com, 1
 drydensfairfax.com, 1
 dryerrepairaustin.com, 1
 dryerventcleaningarlington.com, 1
 dryerventcleaningcarrollton.com, 1
-dryip.com, 0
 drymx.cn, 1
 dryskin.cf, 1
 dryskin.ga, 1
@@ -43012,12 +43376,14 @@
 dsswise.org, 1
 dstamou.de, 1
 dsteiner.at, 1
+dstvnearme.co.za, 1
 dsu4.ru, 1
 dsuinnovation.com, 1
 dsv-gruppe.de, 1
 dsv-salesmanager.de, 1
 dsy4567.cf, 1
 dsyunmall.com, 1
+dt-privacyportal-ui.azurewebsites.net, 1
 dt2rmc.pt, 1
 dtbouncycastles.co.uk, 1
 dtbw.eu, 1
@@ -43051,6 +43417,7 @@
 dtnx.eu, 1
 dtnx.net, 1
 dtnx.org, 1
+dtnx.social, 1
 dtnxny.com, 1
 dtrifonov.cf, 1
 dtuaarsfest.dk, 1
@@ -43065,19 +43432,23 @@
 dualcore.tk, 1
 dualexistence.xyz, 1
 dualias.xyz, 0
-dualsun.com, 1
 dualuniverse.game, 1
 duama.top, 1
 duan-dky.me, 1
 duanre.tk, 1
 duarteeleiteconsultoria.com.br, 1
 dubai-company.ae, 1
+dubai-fashions.com, 1
 dubaiaerospace.com, 1
 dubaibliss.com, 1
+dubaicourses.com, 1
 dubaifitnesschallenge.com, 1
+dubaigrandsale.com, 1
 dubaiprivatejetcharter.com, 1
+dubairanking.com, 1
 dubairun.com, 1
 dubaisc.ae, 1
+dubaishoppingcity.com, 1
 dubaistudiocity.ae, 1
 dubaitourism.gov.ae, 1
 dubaivisa.net, 1
@@ -43086,7 +43457,6 @@
 dubcowa.tk, 1
 dubex.de, 1
 dubious-website.com, 1
-dubkov.org, 0
 dubl.tk, 1
 dublinguide.ie, 1
 dublinrail.tk, 1
@@ -43146,6 +43516,7 @@
 duediligencedataroom.com, 1
 duelhost.dk, 1
 duelingaces.com, 1
+duellin.tv, 1
 duelsow.eu, 1
 duenas.cat, 1
 duepuntozero.tk, 1
@@ -43269,7 +43640,6 @@
 dunlaptn.gov, 1
 dunmanelectric.com, 1
 dunmanpoolandspa.com, 1
-dunneworthy.com, 1
 dunningtonaudio.co.uk, 1
 dunyahalleri.com, 1
 duo-tauceti.com, 1
@@ -43308,7 +43678,6 @@
 durangoaldezaharra.tk, 1
 durangoenergyllc.com, 1
 durastudio.com, 1
-durbanlocksmiths.co.za, 1
 durcal.tk, 1
 durchblick-shop.de, 1
 durcoin.com, 1
@@ -43462,9 +43831,7 @@
 dwnld.me, 1
 dwood.store, 1
 dworzak.ch, 1
-dwscdv3.com, 1
 dwservice.net, 1
-dwtf.de, 1
 dwtm.ch, 1
 dwtonline.com, 0
 dww.hu, 1
@@ -43505,11 +43872,10 @@
 dyeager.org, 1
 dyingflame.tk, 1
 dykebaby.tk, 1
-dykleif.se, 1
 dyktig.as, 1
 dylan-motorcross.tk, 1
 dylancl.cf, 1
-dylancl.fr, 1
+dylancl.fr, 0
 dylandeconinck.cf, 1
 dylandulaney.com, 1
 dylanhansch.net, 1
@@ -43557,6 +43923,7 @@
 dynamicdesignuk.com, 1
 dynamicdiesupply.com, 1
 dynamicentertainmentdjs.com, 1
+dynamicini.org, 1
 dynamiclogodesigns.com, 1
 dynamicpl.us, 1
 dynamicplus.it, 1
@@ -43611,6 +43978,7 @@
 dz6729.com, 1
 dz68.cc, 1
 dz6957.com, 1
+dz7337.com, 1
 dzar.nsupdate.info, 1
 dzeina.ch, 0
 dzet.de, 1
@@ -43636,6 +44004,7 @@
 dzsula.hu, 1
 dzu.fund, 1
 dzu.life, 1
+dzuka.sk, 1
 dzus.tk, 1
 dzworld.com, 1
 dzyabchenko.com, 0
@@ -43691,6 +44060,7 @@
 e-generator.tk, 1
 e-geologia.tk, 1
 e-guardian.com.br, 1
+e-guestbooks.com, 1
 e-guvence.com, 1
 e-hair.tk, 1
 e-havenotime.tk, 1
@@ -43732,8 +44102,10 @@
 e-node.net, 1
 e-node.ru, 1
 e-otdyx.tk, 1
+e-patchesandcrests.com, 1
 e-peeling.tk, 1
 e-peets.tk, 1
+e-petition-petitions.net, 1
 e-placement.tk, 1
 e-planshet.tk, 1
 e-pns.com, 1
@@ -43790,6 +44162,7 @@
 e-underwear.tk, 1
 e-vau.de, 0
 e-verify.gov, 1
+e-virtus.blog, 1
 e-virtus.com, 1
 e-walks.tk, 1
 e-webos.com, 1
@@ -44168,6 +44541,7 @@
 eaglecounty.gov, 1
 eaglecountyco.gov, 1
 eaglefireid.gov, 1
+eaglegrove.gov, 1
 eaglehaslended.com, 1
 eagleindustriesltd.com, 1
 eaglelakefl.gov, 1
@@ -44215,6 +44589,7 @@
 earlsttech.ca, 1
 early-etudes.com, 1
 earlybetter.com, 1
+earlychildhoodteacher.org, 1
 earlyvoting.cf, 1
 earlyvoting.gq, 1
 earlyvoting.ml, 1
@@ -44232,7 +44607,6 @@
 earthcore.com, 1
 earthcorporation.cf, 1
 eartheld.tk, 1
-earthiq.news, 1
 earthjustice.org, 1
 earthlink.net, 1
 earthpixz.com, 1
@@ -44247,6 +44621,7 @@
 eas.ee, 0
 easaccounting.com, 1
 easew.com, 1
+easez.net, 1
 eashwar.com, 1
 easiest-way.de, 1
 easlerlaw.com, 1
@@ -44339,7 +44714,6 @@
 easyescortwebsites.com, 1
 easyfiles.ch, 1
 easyfiles.gq, 1
-easyfm.cz, 1
 easyfoto.tk, 1
 easygenerator.com, 1
 easygrow.tk, 1
@@ -44366,7 +44740,6 @@
 easypets.fr, 0
 easypost.com, 1
 easypricebook.com, 1
-easyproperty.com, 0
 easypv.ch, 1
 easyqr.codes, 0
 easyradio.gq, 1
@@ -44401,6 +44774,7 @@
 eatery.co.il, 1
 eatfitoutlet.com.br, 1
 eatfood.com.br, 1
+eatimad.com, 1
 eatingasturias.com, 1
 eatinglinks.tk, 1
 eatmebudapest.hu, 1
@@ -44424,7 +44798,6 @@
 eautolease.com, 1
 eauxdevienne.fr, 1
 eava.ga, 1
-eax.ninja, 0
 eazy.gr, 1
 eazyfreight.co.uk, 1
 eazyg.tk, 1
@@ -44441,7 +44814,6 @@
 ebakery.de, 1
 eban.bzh, 1
 ebanca.com, 1
-ebankcbt.com, 1
 ebanking.indovinabank.com.vn, 1
 ebankingabersicher.ch, 1
 ebankingbutsecure.ch, 1
@@ -44468,6 +44840,7 @@
 ebenezersbarnandgrill.com, 1
 ebenisterie-de-villenouvelle.fr, 1
 ebenvloedaanleggen.nl, 1
+eberharter-steine.at, 1
 eberspacher-rus.ru, 1
 ebertlang.com, 1
 eberwe.in, 1
@@ -44482,7 +44855,6 @@
 ebiografia.com, 1
 ebiografias.com.br, 1
 ebipl.com, 1
-ebiquity.com, 1
 ebis.cloud, 1
 ebis.info, 1
 ebisee.com, 1
@@ -44500,7 +44872,6 @@
 ebolacharts.ga, 1
 ebolavirus.tk, 1
 ebony.social, 1
-ebonybird.com, 1
 ebonyfantasies.com, 1
 ebonylog.com, 1
 ebonymgp.com, 1
@@ -44523,7 +44894,6 @@
 ebooksgratis.tk, 1
 ebooksgratuits.org, 1
 ebooksinfocus.com, 1
-ebooksmile.net, 1
 ebookspy.tk, 1
 ebookweb.gq, 1
 ebop.ch, 1
@@ -44623,6 +44993,7 @@
 eckel-edv.de, 1
 eckel-kieser-gbr.de, 1
 eckel.co, 1
+eckerl.org, 1
 eckerle-gruppe.com, 1
 eckindustries.com, 1
 eckotech.fr, 1
@@ -44662,6 +45033,7 @@
 ecocreativity.org, 1
 ecocuisinedesign.com, 1
 ecodedi.com, 1
+ecodena.com.mx, 1
 ecodepur.co.ao, 1
 ecodepur.fr, 1
 ecodesign-labo.jp, 1
@@ -44746,6 +45118,7 @@
 ecopark.tv, 1
 ecorak.de, 1
 ecored.pl, 1
+ecoresina.com, 1
 ecorp-australia.tk, 1
 ecos-ev.de, 1
 ecos.srl, 1
@@ -44862,6 +45235,7 @@
 edenfactory.tk, 1
 edenming.info, 1
 edenpureheater.tk, 1
+edenredbenefits.com, 1
 edenvalerubbleremovals.co.za, 1
 eder-steiner.at, 1
 ederasrl.it, 1
@@ -44883,10 +45257,12 @@
 edgeless.pp.ua, 0
 edgelogs.com, 1
 edgemagazine.net, 1
+edgemasterspaint.com, 1
 edgeofnoservers.com, 1
 edgeservices.co.uk, 1
 edgetalk.net, 1
 edgetechig.co.uk, 1
+edgewaterco.gov, 1
 edging.tech, 1
 edh.email, 1
 edholm.pub, 1
@@ -44943,6 +45319,7 @@
 editspace.tk, 1
 editus.it, 1
 edje.com, 1
+edjo.us, 1
 edl.com.ph, 1
 edlib.is, 1
 edlib.pics, 1
@@ -45003,6 +45380,7 @@
 eduardomaio.net, 1
 eduardosuarez.tk, 1
 eduart.tk, 1
+edubase.link, 1
 edubase.net, 1
 edubirdie.com, 1
 edublognews.tk, 1
@@ -45012,7 +45390,6 @@
 educacionit.com, 1
 educacionnm.ml, 1
 educacionvirtual.com.ar, 1
-educaenvivo.com, 1
 educaestado.com, 1
 educampus.cl, 1
 educanada.in, 1
@@ -45020,6 +45397,7 @@
 educasis.tk, 1
 educatek.es, 1
 educatie.tk, 1
+education-colleges.com, 1
 education-info.cf, 1
 education4paper.tk, 1
 educationarea.tk, 1
@@ -45199,12 +45577,14 @@
 ef.gy, 1
 efaas.nl, 1
 efag.com, 1
+efamilycare.com, 1
 efcpharma.com, 1
 efcross.com, 1
 efectococuyo.com, 1
 efeel.info, 1
 efeen.nl, 1
 efeindonesia.com, 1
+efektfoto.cz, 1
 efektyvnist.pro, 1
 efeso.co.nz, 1
 efeso.nz, 1
@@ -45412,6 +45792,7 @@
 ehlers-net.de, 1
 ehlersdanlos.dk, 1
 ehlersdanlos.tk, 1
+ehliyetsinavsorulari.org, 1
 ehmsen.nu, 1
 ehmtheblueline.com, 1
 ehne.de, 1
@@ -45532,6 +45913,7 @@
 eit-solutions.com.au, 1
 eit-web.de, 0
 eitat.com, 1
+eitbtaldea.eus, 1
 eivanec.com, 1
 eiyoushi-shigoto.com, 1
 ej.gov, 1
@@ -45601,6 +45983,7 @@
 ekobudisantoso.net, 1
 ekocleaningllc.com, 1
 ekoclin.com, 1
+ekogroszekpieklo.pl, 1
 ekokpandm.tk, 1
 ekol-2001.tk, 1
 ekol.com, 1
@@ -45611,6 +45994,7 @@
 ekong366.com, 1
 ekonomika.tk, 1
 ekonomipolitik.tk, 1
+ekonomival.se, 1
 ekonomska.tk, 1
 ekophone.bg, 1
 ekosaltis.lt, 1
@@ -45618,6 +46002,7 @@
 ekospajzka.cz, 1
 ekostecki.de, 1
 ekouniejow.pl, 1
+ekowibowo.com, 1
 ekozercy.pl, 1
 ekpj.jp, 1
 ekranos.me, 1
@@ -45634,7 +46019,6 @@
 ekvastra.in, 1
 ekwador.com, 1
 ekyu.moe, 1
-ekz-crosstour.ch, 1
 ekzcrosstour.ch, 1
 ekzotika.tk, 1
 el-cell.com, 1
@@ -45691,7 +46075,6 @@
 elbrifin.com, 1
 elbrus360.ru, 1
 elbrutoconeloso.tk, 1
-elbuenpan.cl, 1
 elburnfire.gov, 1
 elbvision.de, 1
 elbwiese.de, 1
@@ -45712,7 +46095,6 @@
 elcozinante.com, 1
 elcuadernodefilosofia.tk, 1
 eldercare.gov, 1
-eldercaring.ca, 1
 elderdevelopmentgroup.com, 1
 elderindex.org, 1
 elderjustice.gov, 1
@@ -45828,6 +46210,7 @@
 electricwestlakevillage.com, 1
 electriczone.tk, 1
 electrobaza.ru, 1
+electrobraid.com, 1
 electrocity.ie, 1
 electrocomplect.com.ua, 1
 electrodomesticos.tk, 1
@@ -45895,7 +46278,6 @@
 elektrilevi.com, 1
 elektrilevi.ee, 1
 elektrilevi.eu, 1
-elektrische-zahnbuerste24.de, 1
 elektro-adam.de, 1
 elektro-diehm.de, 1
 elektro-doerr.com, 1
@@ -45938,6 +46320,7 @@
 elektrotechnik-heisel.de, 1
 elektrotechnik-kaetzel.de, 1
 elektrotechnik-schreck.de, 1
+elektrotechniker-beck.de, 1
 elektrownie-tanio.net, 1
 elektryczka.pl, 1
 elelenin.cf, 1
@@ -45957,6 +46340,7 @@
 elementarium.ga, 1
 elementarty.com, 1
 elementarywave.com, 1
+elementblend.com, 1
 elementbookings.com, 1
 elementedigitale.ro, 1
 elementorfa.ir, 1
@@ -45998,11 +46382,11 @@
 elephants.tk, 1
 elepover.com, 1
 elesconditedelola.com, 1
-eletesstilus.hu, 1
 eletminosegert.ro, 1
 eletom.pl, 1
 eletor.com, 1
 eletor.pl, 1
+eletrati.com, 1
 eletrotel.com, 1
 elettricista-roma.it, 1
 elettricista-roma.org, 1
@@ -46060,7 +46444,6 @@
 elgustodecrecer.es, 1
 elhall.pro, 0
 elhamadimi.com, 1
-elherraderoloscabos.com, 1
 elhombrepez.tk, 1
 elhorizontal.com, 1
 elhossari.com, 1
@@ -46081,6 +46464,7 @@
 elibidore.ml, 1
 elibom.com, 1
 elicdn.com, 1
+elicom-online.com, 1
 elie.net, 1
 elielaloum.com, 1
 elif.sk, 1
@@ -46116,7 +46500,6 @@
 eliotchs.org, 1
 eliott.cc, 1
 eliottlavier.com, 1
-eliquid-manufaktur.de, 1
 elisa.ee, 0
 elisabeth-kostecki.de, 1
 elisabeth-raendel.de, 1
@@ -46154,7 +46537,6 @@
 elitegaragedoors247.com, 1
 elitehouse.tk, 1
 eliteimsolutions.com, 1
-elitel.nl, 1
 elitelandscapedesigns.ca, 1
 elitemud.tk, 1
 elitenovice.tk, 1
@@ -46188,6 +46570,7 @@
 elizaminami.com.br, 1
 eljay.cc, 1
 eljef.me, 1
+eljuzgado.es, 1
 elk.moe, 1
 elka-holzwerke.de, 1
 elka-piter.ga, 1
@@ -46202,6 +46585,7 @@
 elkmotel.at, 1
 elkodaily.com, 1
 elkonsults.com, 1
+elkovplus.cz, 1
 elkvalley-nsn.gov, 1
 ell-net.tokyo, 1
 ella-kwikmed.com, 0
@@ -46274,15 +46658,16 @@
 elobservador.tk, 1
 eloca.ls, 1
 elocals.me, 1
+elodees.com, 1
 elodieclerc.ch, 1
 elodrias.de, 1
+elog.tokyo, 1
 eloge.se, 1
 elohellp.com, 0
 elohim-spirituell.de, 1
 eloiseponnau.com, 1
 elok.eu.org, 1
 eloksal.com, 1
-elolo.ru, 1
 elon.gov, 1
 elona-wvw.de, 1
 elonaspitze.de, 1
@@ -46356,6 +46741,7 @@
 eltar.pl, 1
 eltconsultants.com.mx, 1
 eltd.com.vn, 1
+eltec.es, 1
 elteeta.com, 1
 eltern-verein.ch, 1
 elternbeiratswahl.online, 1
@@ -46416,13 +46802,13 @@
 email-verifier.tk, 1
 email.repair, 0
 email24.cf, 1
+email4u.at, 0
 emailable.com, 1
 emailablev.com, 1
 emailadressen.nl, 1
 emailalaperformance.fr, 1
 emailalias.nl, 1
 emailbusters.tk, 1
-emailconfiguration.com, 1
 emailexpress.ga, 1
 emailfreeshop.tk, 1
 emailgonderim.tk, 1
@@ -46441,6 +46827,7 @@
 emailtemporal.org, 0
 emakicms.com, 1
 emaks.tk, 1
+emaksuper.com, 1
 emalm.com, 1
 emamiltd.in, 1
 emancipator.com, 1
@@ -46511,6 +46898,7 @@
 emed.com, 1
 emedpractice.com, 1
 emeetattd.ddns.net, 1
+emeklifinans.com, 1
 emeliecrystal.net, 1
 emeliefalk.se, 1
 emeliemai.com, 1
@@ -46531,6 +46919,7 @@
 emergency-broadcast-system.tk, 1
 emergency-federal-register.gov, 1
 emergencyhvacservices.com, 1
+emergencymanagementedu.org, 1
 emergencyportal.tk, 1
 emergentvisiontec.com, 1
 emergenzaduepuntozero.it, 1
@@ -46543,6 +46932,7 @@
 emex.ro, 1
 emffren.com.tr, 1
 emfwk.com, 1
+emgadvisors.com, 1
 emi.im, 1
 emielraaijmakers.nl, 1
 emigrantes.tk, 1
@@ -46557,6 +46947,7 @@
 emilecourriel.com, 1
 emileon.gr, 1
 emilianomaccaferri.com, 1
+emiliaperkkola.fi, 1
 emiliaromagnaeconomy.it, 1
 emiliederavinspain.tk, 1
 emiliehouse.net, 1
@@ -46632,7 +47023,6 @@
 emmedicom.tk, 1
 emmepole.tk, 1
 emmerdale.me.uk, 1
-emmiwelentain.com, 1
 emmynet.de, 1
 emo-poris.com, 1
 emo.ie, 1
@@ -46641,6 +47031,7 @@
 emocionypensamiento.com, 1
 emocje.com, 1
 emoforum.tk, 1
+emoji-meaning.org, 1
 emoji.web.tr, 1
 emojikeyboard.top, 1
 emojiteka.pl, 1
@@ -46667,6 +47058,7 @@
 empathy.ca, 1
 empathyband.tk, 1
 empatico.xyz, 1
+empatify.pl, 1
 empatos.cf, 1
 emperator.com, 1
 emperola.com, 1
@@ -46692,6 +47084,7 @@
 emploi-collectivites.fr, 0
 emploi-international.net, 1
 employeeexpress.gov, 1
+employeemanual.com.au, 1
 employer.gov, 1
 employer411.com, 1
 employeradmin.com, 1
@@ -46864,6 +47257,7 @@
 endcottagevets.co.uk, 1
 ende-x.com, 1
 endeal.nl, 1
+endean.com, 1
 endeavourbiz.com, 1
 endee.de, 1
 endeksa.com, 1
@@ -46888,7 +47282,6 @@
 endless.pet, 1
 endlessdiy.ca, 1
 endlessfashion.tk, 1
-endlessmedia.co.za, 1
 endlessvideo.com, 1
 endlesswebsite.tk, 1
 endofevolution.com, 1
@@ -46901,6 +47294,7 @@
 endondehay.com, 1
 endpaydayloandebt.net, 1
 endpipe.com, 1
+endplasticwaste.org, 1
 endpointclinical.com, 1
 endrinas.com, 1
 endrust.com.au, 1
@@ -46959,8 +47353,6 @@
 energieconsultonline.nl, 1
 energiekeurplus.nl, 1
 energielabelbinneneenweek.nl, 1
-energiewechsel.de, 1
-energija-visiems.lt, 1
 energikompetens.se, 1
 energizer.eu, 1
 energoproff.com, 1
@@ -47005,6 +47397,7 @@
 energysite.tk, 1
 energysolutionstech.com, 0
 energystar.gov, 1
+energysystems.com, 0
 energytrust.tk, 1
 energyuse.net, 1
 energywisdom.tk, 1
@@ -47039,7 +47432,6 @@
 engagementlettercpa.com, 1
 engagewarnerrobinsga.gov, 1
 engagewell.com, 1
-engagingcontents.com, 1
 engagingmuscles.com, 1
 engagio.com, 1
 engalego.tk, 1
@@ -47107,6 +47499,7 @@
 englishouse.tk, 1
 englishphonopass.com, 1
 englishprovence.com, 1
+englishteacheredu.org, 1
 englishtofrench.eu, 1
 englishyamal.ru, 0
 engodnat.dk, 1
@@ -47114,11 +47507,11 @@
 engrama.tk, 1
 engrepair.com, 1
 engrish.ml, 1
-engrity.com, 1
 engso-education.eu, 1
 engso.com, 1
 engso.eu, 1
 engsoyouth.eu, 1
+engsubjav.com, 1
 engution.biz, 0
 engvid.com, 1
 engweld.co.uk, 1
@@ -47174,9 +47567,10 @@
 enlyft.com, 0
 enmieux.be, 1
 enmowe.tech, 1
-enno.mom, 1
+enno.mom, 0
 ennori.jp, 1
 ennova.com, 1
+enoahinc.com, 1
 enodais.gr, 1
 enofmusic.com, 1
 enoisdaturma.tk, 1
@@ -47230,6 +47624,7 @@
 ensley.tech, 1
 ensma.fr, 1
 ensons.de, 1
+ensonyan.com, 0
 enstroga.at, 1
 enstructo.net, 1
 ensured.com, 1
@@ -47249,13 +47644,13 @@
 enteratesoria.tk, 1
 enterclaim.com, 1
 enterdev.co, 1
-enterdown.com, 1
 enteronline.tk, 1
 enterpresence.com, 1
 enterprise-hr.com, 1
 enterprisecloudservices.inc, 1
 enterprisenetworksecurity.net, 1
 enterpriseoregon.gov, 1
+enterprisesupercenter.net, 1
 enterpriset.cf, 1
 enterprisey.enterprises, 1
 entersoftsecurity.com, 1
@@ -47263,7 +47658,6 @@
 entertaiment-news.tk, 1
 entertainerzone.tk, 1
 entertainmentblog.tk, 1
-entertainmentformitzvahs.com, 1
 entertainmentmesh.com, 1
 entertainmentsrit.tk, 1
 enterthehollow.com, 1
@@ -47325,6 +47719,8 @@
 enviosnegocios.tk, 1
 envir.ee, 0
 envirhom.com, 1
+enviro-clear.co.uk, 1
+enviroli.ch, 1
 enviroli.co.nz, 1
 enviroli.co.uk, 1
 enviroli.org.uk, 1
@@ -47405,6 +47801,7 @@
 ephesusbreeze.com, 1
 epi-lichtblick.de, 1
 epi.one, 0
+epic-semiconductors.com, 1
 epic-vistas.com, 1
 epic-vistas.de, 1
 epic.gl, 1
@@ -47436,6 +47833,7 @@
 epicridesbahamas.com, 1
 epicsecure.de, 1
 epicserver.ru, 1
+epicsoft.de, 1
 epicteam.tk, 1
 epicteller.com, 0
 epicvideofactory.com, 1
@@ -47451,7 +47849,6 @@
 epinesdeparadis.com, 1
 epiphaniusmacar.com, 1
 epiphanyofourlordchurch.com, 1
-episails.com, 1
 episkevh-plaketas.gr, 1
 episode.tk, 1
 epistas.com, 1
@@ -47478,7 +47875,6 @@
 epofta.ro, 1
 epolitiker.com, 1
 epopia.com, 1
-epos-distributor.co.uk, 1
 epos.az, 1
 eposbirmingham.co.uk, 1
 eposbrighton.co.uk, 1
@@ -47519,7 +47915,6 @@
 epsmil.it, 1
 epson.ru, 1
 epspolymer.com, 1
-epthelinkdos.tk, 1
 eptreviewer.com, 1
 epublibre.org, 1
 epvd.tk, 1
@@ -47575,6 +47970,7 @@
 equityloupe.org, 1
 equityloupe.ru, 1
 equityset.com, 1
+equitytrack.co, 0
 equityyes.org, 1
 equivid.ga, 1
 equt.cloud, 1
@@ -47625,12 +48021,10 @@
 eremex.ru, 1
 eremnews.com, 1
 erenvakfi.org, 1
-erethon.com, 1
 erfgoedeisden.tk, 1
 erfolgsmaschine.ch, 0
 ergaomnes.cz, 1
 ergaran.tk, 1
-ergo-wijs.nl, 1
 ergobaby.com, 1
 ergobyte.eu, 1
 ergobyte.gr, 1
@@ -47725,7 +48119,6 @@
 erkenntniswen.de, 1
 erkiss.club, 1
 erkiss.live, 1
-erkiss10.com, 1
 erkiss12.com, 1
 erkkiaronen.fi, 1
 erlebe-salsa.de, 1
@@ -47790,7 +48183,7 @@
 error.org, 1
 error418.nl, 1
 errortools.com, 1
-ers35.com, 1
+errror.org, 1
 ersa-shop.com, 1
 ersankaucuk.com, 1
 ersdfaredsaeem.tk, 1
@@ -47805,7 +48198,6 @@
 ert.ovh, 1
 ertebatatjelve.ir, 1
 ertel.xyz, 0
-ertelswi.spdns.org, 1
 erthisa.tk, 1
 ertvag.no, 1
 eru.cz, 1
@@ -47939,6 +48331,7 @@
 escortlistings.fr, 1
 escortlistings.ph, 1
 escortlistingsuk.co.uk, 1
+escorts.works, 1
 escortslittleblackbook.com, 1
 escortz.gq, 1
 escoteiros.tk, 1
@@ -47986,6 +48379,7 @@
 eshtapay.com, 1
 esiac.net, 1
 esicia.rw, 1
+esideshop.com, 1
 esiefektivs.lv, 1
 esigmbh.de, 1
 esignandpay.net, 1
@@ -48016,6 +48410,7 @@
 eslgrammar.org, 1
 eslint.org, 0
 eslove.jp, 1
+eslteacheredu.org, 1
 esm.run, 1
 esmalglass-itaca.com, 1
 esmart.ro, 1
@@ -48024,8 +48419,10 @@
 esmoker.bg, 1
 esmtp-mx.com, 1
 esnekkaucuk.com, 1
+esnlpr.fi, 1
 eso-database.com, 1
 eso-skillfactory.com, 1
+eso3.eu.org, 1
 esocite.la, 1
 esoko.eu, 1
 esolcourses.com, 1
@@ -48035,6 +48432,7 @@
 esono.de, 1
 esopticallabs.com, 1
 esote.net, 1
+esoteric.website, 1
 esotericastrologer.org, 1
 esotericcosmos.com, 1
 esoterik.link, 1
@@ -48042,7 +48440,7 @@
 espace-caen.fr, 0
 espace-gestion.fr, 1
 espace-habitat-francais.fr, 1
-espace-orenda.ch, 1
+espace-orenda.ch, 0
 espace-vet.fr, 1
 espace.network, 1
 espace.spb.ru, 0
@@ -48076,6 +48474,7 @@
 espejo.tk, 1
 espejocofrade.tk, 1
 espeleogel.tk, 1
+espen.cz, 1
 espenandersen.no, 1
 espeo.eu, 1
 esperantio.tk, 1
@@ -48089,6 +48488,7 @@
 espivblogs.net, 1
 esplendorecosmeticos.com.br, 1
 espocada.com, 1
+espoonkumi.fi, 1
 esport-agency.fr, 1
 esport-brande.dk, 0
 esporters.today, 1
@@ -48099,6 +48499,7 @@
 espressonews.gr, 1
 espressoservicesplus.com.au, 1
 esprihealth.com, 1
+espriler.com, 1
 espritgames.ru, 1
 espub.org, 1
 espyder.net, 1
@@ -48106,7 +48507,6 @@
 esquelario.tk, 1
 esquirebrotherhood.tk, 1
 esquirelaw.com, 1
-esquirelawfirm.com, 1
 esquirou-trieves.fr, 0
 esra.gq, 1
 esrarengizkasabahd.tk, 1
@@ -48115,10 +48515,11 @@
 esrs.gov, 1
 essaandmore.com.au, 1
 essay-writing-topics-fce.tk, 1
-essay48.com, 1
 essayads.com, 1
 essaybrand.com, 1
+essaychat.com, 1
 essaychecker.com, 1
+essaycoupons.com, 1
 essaydirectory.com, 0
 essayforsale.net, 1
 essayforum.com, 1
@@ -48142,14 +48543,13 @@
 essencesdeprana.org, 1
 essencespresso.es, 1
 essenciasparis.com.br, 1
-essenerbaeder.de, 0
 essentialinteriors.ga, 1
 essentialliving.co.uk, 1
 essentialoils.co.za, 1
 essentialoils.nl, 1
 essentialoilsimports.com, 1
+essentiapura.com, 1
 essentiel-du-mariage.com, 1
-essentiel-mkt.com, 1
 essentiel-physique.com, 1
 essentry.com, 1
 essentta.com, 1
@@ -48285,14 +48685,15 @@
 etanol.tk, 1
 etaoinwu.com, 1
 etaoinwu.win, 1
+etarskaikozmetickaulja.rs, 1
 etath.com, 1
 etaxigraz.com, 1
-etazapzap.cyou, 1
 etccooperative.org, 0
 etch.co, 1
 etch44.com, 1
 etcivil.com, 1
 etctop.tk, 1
+etdcampus.com, 1
 etdonline.co.za, 1
 etdp.co.za, 1
 etdpractices.co.za, 1
@@ -48300,6 +48701,7 @@
 etech-solution.com, 1
 etech-solution.net, 1
 etech-solutions.com, 1
+etech.com.my, 1
 etechsolution.net, 1
 eternal-chaos.tk, 1
 eternal-con.de, 1
@@ -48333,7 +48735,7 @@
 ethan.pm, 1
 ethanjones.me, 1
 ethanlew.is, 1
-ethanopp.com, 1
+ethanopp.com, 0
 ethanrjones.name, 1
 ethansailant.com, 1
 ethanyoo.com, 1
@@ -48448,7 +48850,6 @@
 etutsplus.com, 1
 etv.cx, 1
 etyd.org, 1
-etyka.cz, 1
 eu-darlehen-finanzierung.de, 1
 eu-datenbank.de, 1
 eu-gamers.com, 1
@@ -48471,7 +48872,10 @@
 eudore.org, 1
 euexia.fr, 1
 eugenegamelan.org, 1
+eugenekay.com, 0
 eugeneorourke.com, 1
+eugenesia.org, 1
+eugenics.org, 1
 eugeniocorso.com, 1
 eugenioperez.tk, 1
 eugostodefilmesbrasileiros.tk, 1
@@ -48499,7 +48903,6 @@
 eulenschmiede.de, 1
 euleres.tk, 1
 eulessplumbers.com, 1
-eumail.co, 1
 euman.ml, 1
 eumananc.ro, 1
 eumk6.ml, 1
@@ -48529,6 +48932,7 @@
 euro.se, 1
 euroairport.com, 1
 euroalter.com, 1
+euroasia-tm.com, 1
 eurobattle.tk, 1
 eurobeaute.be, 1
 eurobilltracker.tk, 1
@@ -48551,7 +48955,6 @@
 euroestetica.ec, 1
 euroexpres.info, 1
 eurofinance.com, 1
-eurofins.com, 0
 eurofire.tk, 1
 euroflora.com, 1
 euroflora.mobi, 1
@@ -48671,6 +49074,7 @@
 evakuator-tut.by, 1
 evakuator.ltd, 1
 evakuator.services, 1
+evalcom.co, 1
 evalcorp.com, 1
 evalesc.com, 1
 evalinux.com, 1
@@ -48704,6 +49108,7 @@
 evantageglobal.com, 1
 evanwang0.com, 1
 evaolson.se, 1
+evar2.com, 1
 evaria-network.fr, 1
 evasioncreole.com, 1
 evasionteam.tk, 1
@@ -48743,6 +49148,7 @@
 event-blick.de, 1
 event-fullyyours.com, 1
 event-reisen.tk, 1
+event-trac.com, 1
 event1teamstore.com, 0
 event4fun.no, 1
 event64.ru, 1
@@ -48761,7 +49167,6 @@
 eventnature.de, 1
 eventnexus.co.uk, 1
 eventosbgp.com, 1
-eventoscisco.com, 1
 eventosdeluchalibre.tk, 1
 eventosenmendoza.com.ar, 1
 eventosformativos.tk, 1
@@ -48769,6 +49174,7 @@
 eventpark.cz, 1
 eventprazdnik.ru, 1
 events.bt, 1
+events1.co.il, 1
 eventsbytma.com, 1
 eventseeker.com, 1
 eventservicestockholm.se, 1
@@ -48805,13 +49211,11 @@
 everlong.org, 1
 everly.market, 1
 evermade.fi, 1
-evermarkstudios.com, 1
 evermed.au, 1
 evermed.com.au, 1
 evernaut.com, 1
 everpcpc.com, 1
 everready.tk, 1
-eversana.com, 1
 everseo.tk, 1
 eversightwealth.com, 1
 everstrike.io, 1
@@ -48862,7 +49266,6 @@
 everything-mdaemon.com, 1
 everythingaccess.com, 1
 everythingbarca.com, 1
-everythingcebu.com, 1
 everythingcovid-19.com, 1
 everythingfree.tk, 1
 everythinginoneblog.gq, 1
@@ -48933,6 +49336,7 @@
 evojska.tk, 1
 evok.com.co, 1
 evokeearlylearning.com.au, 1
+evokewonder.com, 1
 evolucioneducativa.com.ec, 1
 evolucionestudios.com.bo, 1
 evolucionradio.tk, 1
@@ -49029,10 +49433,12 @@
 exactrealty.co.uk, 1
 exactrealty.no, 1
 exactrealty.us, 1
+exactverify.com, 1
 exadime.net, 1
 exaduosport.fr, 1
 exagoni.com.au, 1
 exagoni.com.my, 1
+exalthost.com, 1
 exam4.us, 1
 exambot.cf, 1
 exambot.ga, 1
@@ -49153,6 +49559,7 @@
 exercisekingest.ga, 1
 exerforge.com, 1
 exerforge.net, 1
+exerph.com, 1
 exerpm.tk, 1
 exesoft.ml, 1
 exeunt.tk, 1
@@ -49202,6 +49609,7 @@
 exoticaz.to, 1
 exotictravel.tk, 1
 exousiakaidunamis.pw, 1
+exousiamg.com, 1
 exoweb.ca, 1
 exp.gg, 1
 expancio.com, 0
@@ -49240,6 +49648,7 @@
 expensify.com, 1
 expensivejewelsest.ga, 1
 exper.gr, 1
+experens.com, 1
 experience.com, 1
 experiencealula.com, 1
 experienceoz.com.au, 1
@@ -49262,6 +49671,7 @@
 expertclub.tk, 1
 expertcomics.com, 1
 experteasy.com.au, 1
+expertembeleza.com.br, 1
 expertestate.org, 1
 experthive.co.za, 1
 expertly.com, 1
@@ -49288,6 +49698,7 @@
 explode.tk, 1
 explodie.org, 1
 exploflex.com.br, 1
+exploit-db.com, 1
 exploit.cz, 0
 exploit.party, 1
 exploit.ph, 1
@@ -49340,7 +49751,6 @@
 expoort.com.br, 1
 expoort.es, 1
 expoort.fr, 1
-expoort.it, 1
 expopodium.com, 1
 expoprime.tk, 1
 expopro24.ru, 1
@@ -49350,7 +49760,6 @@
 exposurecompensation.co.uk, 1
 exposurethrash.tk, 1
 expouniverse.tk, 1
-expovivienda.com.mx, 1
 expoxl.nl, 1
 express-hosting.org, 1
 express-shina.ru, 1
@@ -49445,10 +49854,10 @@
 extraspaces.co.uk, 1
 extratv.com, 1
 extraupdate.com, 1
+extreemhost.nl, 1
 extreme-addicts.tk, 1
 extreme-gaming.de, 1
 extreme-gaming.us, 1
-extreme-stock.com, 0
 extreme.co.th, 1
 extremebros.com, 1
 extremedogfence.com, 1
@@ -49488,7 +49897,6 @@
 exzibit.net, 1
 exzotikfruit.com, 1
 eyasc.nl, 1
-eye-encounters.com, 1
 eye-move.nl, 1
 eye.do, 1
 eye.security, 1
@@ -49532,6 +49940,7 @@
 eylea.us, 1
 eylif.is, 1
 eylog.co.uk, 1
+eylulsohbet.net, 1
 eynio.com, 1
 eyona.com, 1
 eyoo.link, 1
@@ -49567,7 +49976,6 @@
 ezmob.com, 1
 ezmoddingz.tk, 1
 eznetworks.com.br, 1
-ezochat.com, 1
 ezorgportaal.nl, 1
 ezpb.com, 1
 ezprints.com, 1
@@ -49735,6 +50143,7 @@
 fabricandoclientes.com.br, 1
 fabriceleroux.com, 0
 fabricio.adv.br, 1
+fabricio.eti.br, 1
 fabriciomoreira.ga, 1
 fabrik.de, 1
 fabrika-jaluzi.ru, 1
@@ -49828,7 +50237,6 @@
 facilitrak.com, 1
 facilitron.com, 1
 facility-service-muenchen.de, 1
-facility-wijs.nl, 1
 fackovcova.cz, 1
 fackovcova.eu, 1
 fackovcova.fun, 1
@@ -49865,7 +50273,6 @@
 factslider.tk, 1
 factsvision.sr, 1
 factua.nl, 1
-factum-info.net, 1
 facturama.pt, 1
 factureenlinea.com, 0
 factuur.pro, 1
@@ -49934,6 +50341,7 @@
 failstats.net, 0
 faimdevoyages.com, 1
 faimmobiliare.it, 1
+fainlogistics.com, 1
 fairbairnrealty.com, 1
 fairbill.com, 1
 fairbot.cf, 1
@@ -50055,6 +50463,7 @@
 falconfrag.com, 1
 falconi.com, 1
 falconicapital.com, 1
+falconieri.it, 1
 falconstap.tk, 1
 falcoz.net, 1
 faldoria.de, 1
@@ -50144,8 +50553,8 @@
 familievisscher.tk, 1
 familjenm.se, 1
 familjenosterlund.se, 1
-familledessaint.fr, 1
 familleenfete.fr, 1
+familleseux.net, 1
 familleshilton.com, 1
 family-clinic.tk, 1
 familyandpets.com, 1
@@ -50292,6 +50701,7 @@
 fapp.tube, 1
 fappeningthots.com, 1
 fapping.today, 1
+fapplejuice.com, 1
 fapplepie.com, 1
 fapplesauce.com, 1
 fapzone.tk, 1
@@ -50333,6 +50743,7 @@
 fareto.com, 1
 faretravel.co.uk, 1
 faretrotter.com, 1
+fareuntrasloco.it, 1
 farexpress.it, 1
 farfallapets.com.br, 1
 farfallina.nl, 1
@@ -50381,12 +50792,12 @@
 farmocracy.in, 1
 farmqa.com, 1
 farmscbdoil.com, 1
-farmtigo.com, 1
 farmtogether.com, 1
 farmvilleva.gov, 1
 farnboroughairshow.com, 1
 faro-car-hire.co.uk, 1
 faro.com, 1
+farodegracia.com, 1
 farodeluz.ca, 1
 farodistribuidora.com.br, 1
 faroes.net, 1
@@ -50425,7 +50836,6 @@
 fashionactivation.com, 1
 fashionadvice.tk, 1
 fashionagent.tk, 1
-fashionandbeautystyle.com, 1
 fashionblogs.tk, 1
 fashioncatalogues.tk, 1
 fashionchanel.tk, 1
@@ -50543,7 +50953,6 @@
 fastcup.net, 1
 fastcustomboxes.com, 1
 fastdronespro.com, 1
-fasteatlive.com, 1
 fastener.tk, 1
 fastensorozo.hu, 1
 faster-disinfestazioni.it, 1
@@ -50579,7 +50988,6 @@
 fastproxyforfree.gq, 1
 fastscanapp.com, 1
 fastserv.pl, 1
-fastspring.com, 1
 faststage.ch, 1
 fasturl.ml, 1
 fastvelocityers.ga, 1
@@ -50615,7 +51023,6 @@
 fatlabwebsupport.com, 1
 fatmixx.com, 1
 fator25.com.br, 1
-fatosmilitares.com, 1
 fatowltees.com, 1
 fatpussytube.com, 1
 fattailcall.com, 0
@@ -50703,6 +51110,7 @@
 fbf.gov, 1
 fbfwd.email, 1
 fbi.gov, 1
+fbiagentedu.org, 1
 fbigame.com, 1
 fbihr.gov, 1
 fbiic.gov, 1
@@ -50731,7 +51139,6 @@
 fcbasel.info, 0
 fcblueboys.be, 1
 fcbrasov.tk, 1
-fcburk.de, 1
 fccaracciolo-solution.tk, 1
 fccarbon.com, 0
 fcd.im, 1
@@ -50753,6 +51160,7 @@
 fcm.org.co, 1
 fcmoorsel.tk, 1
 fcode.tk, 1
+fcomputer.dk, 1
 fcosinus.com, 1
 fcporto.ws, 1
 fcprovadia.com, 1
@@ -50815,16 +51223,15 @@
 featherfan.io, 1
 feathermc.com, 1
 feathersbtq.com, 1
-featherwallet.org, 1
 featherweightlabs.com, 1
 feature-branch.nl, 1
 featured.tk, 1
 featuredcarders.ga, 1
 featuredmen.com, 1
+featurous.com, 1
 feb.gov, 1
 febeditora.com.br, 1
 febooti.com, 1
-febstudio.com, 1
 fed-shashek.spb.ru, 1
 fed51.com, 1
 fedbizopps.gov, 1
@@ -50843,10 +51250,12 @@
 federalinvestments.gov, 1
 federaljob.net, 1
 federaljobs.gov, 1
+federallawenforcement.org, 1
 federalprisonforums.com, 1
 federalregister.gov, 1
 federalreserve.gov, 1
 federalreserveconsumerhelp.gov, 1
+federalsignal.com, 1
 federasco.ga, 1
 federatedbank.com, 1
 federation.gov.au, 1
@@ -50860,12 +51269,17 @@
 fedistatus.eu, 1
 fedistatus.net, 1
 fedistatus.org, 1
+fedistatus.social, 1
+fediver.city, 1
 fediver.com, 1
+fediver.eu, 1
 fediver.net, 1
+fediver.org, 1
 fediver.social, 1
 fedivercity.com, 1
 fedivercity.eu, 1
 fedivercity.net, 1
+fedivercity.org, 1
 fedivercity.social, 1
 fediverse.observer, 1
 fedjobs.gov, 1
@@ -50950,6 +51364,7 @@
 fegame.nl, 1
 fegc-wgec.gc.ca, 1
 fegli.gov, 1
+fegunlock.com, 1
 fehlerqultur.net, 1
 fehngarten.de, 1
 fehr-online.eu, 1
@@ -51064,10 +51479,10 @@
 femmes.gc.ca, 1
 femmesaupluriel.com, 1
 femtomind.com, 1
-fena.jp, 1
 fenagav.ga, 1
 fenatrigo.com.br, 1
 fence-stlouis.com, 1
+fencebutlers.com, 1
 fencekirkwood.com, 1
 fencestlouis.co, 1
 fencestlouis.com, 1
@@ -51108,7 +51523,6 @@
 ferad.net, 1
 feras-alhajjaji.com, 1
 feraz.com.mx, 1
-ferc.gov, 1
 ferchup.com, 1
 ferenczi.ch, 1
 ferestre-bucuresti.ro, 1
@@ -51149,7 +51563,6 @@
 fermani.com.ar, 1
 fermastore.cf, 1
 fermastore.tk, 1
-fermateh.com.ua, 1
 fermemarineau.com, 1
 fermenting.studio, 0
 fermier-mag.ro, 1
@@ -51182,6 +51595,7 @@
 ferreteriaferreiro.com, 1
 ferrets.tk, 1
 ferretslife.com, 1
+ferrikomm.de, 1
 ferrin.tk, 1
 ferriswheelofficial.us, 1
 ferro-design.tk, 1
@@ -51206,6 +51620,7 @@
 fertilityquickest.ga, 1
 fertilityspace.io, 1
 fertilizers.tk, 1
+fertippt.de, 1
 ferydoonzandi.tk, 1
 fes.at, 1
 fescosales.com, 1
@@ -51241,6 +51656,7 @@
 festo.online, 1
 festrentcar.pl, 1
 fests.info, 1
+festx.co.za, 1
 fetanbus.com, 1
 fetawerelddans.tk, 1
 fetchease.com, 1
@@ -51330,6 +51746,7 @@
 ffbbb88.com, 1
 ffbbb99.com, 1
 ffbsee.net, 0
+ffc-gerlingen.de, 1
 ffccc00.com, 1
 ffccc11.com, 1
 ffccc22.com, 1
@@ -51345,6 +51762,7 @@
 ffddd22.com, 1
 ffddd33.com, 1
 ffddd44.com, 1
+ffddd55.com, 1
 ffddd66.com, 1
 ffddd77.com, 1
 ffddd88.com, 1
@@ -51352,13 +51770,16 @@
 ffeee00.com, 1
 ffeee11.com, 1
 ffeee22.com, 1
+ffeee33.com, 1
 ffeee44.com, 1
 ffeee55.com, 1
 ffeee66.com, 1
 ffeee77.com, 1
 ffeee88.com, 1
+ffeee99.com, 1
 fff-du.de, 1
 fffaa00.com, 1
+fffaa11.com, 1
 fffaa22.com, 1
 fffaa33.com, 1
 fffaa44.com, 1
@@ -51370,9 +51791,11 @@
 fffbb00.com, 1
 fffbb11.com, 1
 fffbb22.com, 1
+fffbb33.com, 1
 fffbb44.com, 1
 fffbb55.com, 1
 fffbb66.com, 1
+fffbb77.com, 1
 fffbb88.com, 1
 fffbb99.com, 1
 fffbhv.de, 1
@@ -51380,6 +51803,7 @@
 fffcc11.com, 1
 fffcc22.com, 1
 fffcc33.com, 1
+fffcc44.com, 1
 fffcc55.com, 1
 fffcc66.com, 1
 fffcc77.com, 1
@@ -51501,6 +51925,7 @@
 fgsv-kongress.de, 1
 fgtsolutions.com, 1
 fgui.de, 1
+fh-chn.com, 1
 fh-photographie.art, 1
 fh-x.de, 1
 fh14.com, 1
@@ -51513,14 +51938,16 @@
 fharbe.net, 1
 fhba.com.au, 1
 fhcdn.xyz, 1
-fhconseil.fr, 0
 fhdhelp.de, 0
 fhdhilft.de, 0
 fhersoberanes.tk, 1
 fheuschen.de, 1
 fhfaoig.gov, 1
+fhglobal-zh.com, 1
+fhglobal-zhs.com, 1
 fhi.nl, 1
 fhinds.co.uk, 1
+fhjtglobal.com, 1
 fhm.duckdns.org, 1
 fhmkh.cn, 1
 fhome.ch, 1
@@ -51632,6 +52059,7 @@
 fig.ms, 1
 figaroparrucchiere.it, 1
 figbert.com, 1
+figbytes.com, 1
 fighribali.tk, 1
 fightape.cf, 1
 fightape.ga, 1
@@ -51656,7 +52084,6 @@
 figuro.la, 1
 figuurzagers.nl, 0
 fihatest.ml, 1
-fiilacurent.net, 1
 fiilr.com, 1
 fiix.io, 1
 fija.org, 1
@@ -51666,7 +52093,6 @@
 fijisharkcount.com, 1
 fijnefeestdageneneengelukkignieuwjaar.nl, 1
 fijnewoensdag.nl, 1
-fikain.com, 1
 fiken.no, 1
 fikirtasarim.net, 1
 fikong.com, 1
@@ -51691,7 +52117,6 @@
 filehippo.com, 1
 filehippo.jp, 1
 filehorsefile.com, 1
-filehosted.net, 0
 fileio.io, 1
 filejet.io, 1
 filejo.com, 1
@@ -51731,6 +52156,7 @@
 filipn.cz, 1
 filippo.io, 1
 filippoberio.co.uk, 1
+filippodanesi.it, 1
 filipstaffa.net, 1
 filizaker.tk, 1
 filleritemsindia.com, 1
@@ -51741,6 +52167,7 @@
 film-colleges.com, 1
 film-op-tv.nl, 1
 film-storyboards.com, 0
+film-storyboards.fr, 0
 film-tutorial.com, 1
 film.ru, 1
 film365.org, 1
@@ -51785,6 +52212,7 @@
 filokiralama.name.tr, 1
 filosofare.tk, 1
 filosofia.tk, 1
+filoxenia.io, 1
 filpromer.com, 1
 filstop.com, 1
 filter-kiev.com, 1
@@ -51827,8 +52255,8 @@
 financecontrol.tk, 1
 financedepth.com, 1
 financedraft.com, 1
+financeforafrica.com, 1
 financeguest.com, 1
-financehindi.com, 1
 financeinterface.tk, 1
 financejobs.ch, 1
 financelong.com, 1
@@ -51847,10 +52275,12 @@
 financial-law.tk, 1
 financialfreedomaus.com, 1
 financialhost.org, 1
+financialhq.xyz, 1
 financialmoveers.ga, 1
 financialmoveest.ga, 1
 financialnews.today, 1
 financialopticshq.com, 0
+financialplannerworld.com, 1
 financniexperti.sk, 1
 finansa.no, 1
 finansified.com, 1
@@ -51873,11 +52303,9 @@
 fincas-ruiz.com, 1
 finch.am, 1
 finch.ga, 1
-finchi.de, 1
 finchkeeper.com, 1
 finchnest.co.uk, 1
 finchtechie.com, 1
-fincitegroup.com, 1
 fincities.tk, 1
 find-mba.com, 1
 findahero.com.au, 1
@@ -52027,7 +52455,6 @@
 fionamcbride.com, 1
 fionna.io, 1
 fiore31.fr, 1
-fiorebjj.com, 0
 fiorellaweddings.com, 1
 fiorenzaperfumhome.com.br, 1
 fioriepiante.info, 1
@@ -52050,6 +52477,7 @@
 fire-eyes.tk, 1
 fire-places.tk, 1
 fire-schools.com, 1
+fire-science-schools.com, 1
 firealarms.gq, 1
 fireballsteven.tk, 1
 firebaseio.com, 1
@@ -52073,6 +52501,7 @@
 firefighters.dating, 1
 fireflygatlinburg.com, 1
 fireglow.de, 1
+firegoby.jp, 0
 fireinthedeep.com, 0
 fireintheholevideos.tk, 1
 fireleadership.gov, 1
@@ -52100,6 +52529,7 @@
 firestickhacks.com, 1
 firestuff.org, 1
 firetotheprisons.org, 1
+firetrunk.com, 1
 fireurboss.tk, 1
 firevap.org, 1
 firewall.net.za, 1
@@ -52124,7 +52554,7 @@
 firmapi.com, 1
 firmennie-crossovki.tk, 1
 firmenwerbung-vermarktung.de, 1
-firmfoundationsconsulting.com, 1
+firmfoundationsconsulting.com, 0
 firmground.nl, 1
 firmkernel.tk, 1
 firmware.science, 1
@@ -52301,11 +52731,13 @@
 fitnessbest.com, 1
 fitnessbond.com, 1
 fitnessdergisi.com, 1
+fitnessfoodguide.com, 1
 fitnesshaber.com, 1
 fitnessimage.com.au, 1
 fitnesskarate.club, 1
 fitnessmaus.com, 1
 fitnessplanet.best, 1
+fitnesstotal.com.br, 1
 fitnessunder50.com, 1
 fitnessup.fr, 1
 fitnessupay.com, 1
@@ -52318,7 +52750,6 @@
 fito.tk, 1
 fitodifesa.it, 1
 fitpass.co.in, 1
-fitpeo.com, 1
 fitrecepty.info, 1
 fitspring.com, 1
 fittelo.cz, 1
@@ -52328,7 +52759,6 @@
 fitzsim.org, 1
 fiu.ee, 1
 fius.de, 1
-five-wyches-farm.co.uk, 1
 five.sh, 1
 fiveboosts.xyz, 1
 fivefortheroad.com, 1
@@ -52353,9 +52783,9 @@
 fixedfeeplacements.co.uk, 1
 fixedgear.tk, 1
 fixedmatch.bet, 1
-fixedpricemovers.com, 1
 fixedtoday.com.au, 1
 fixerra.tech, 1
+fixfd.com, 1
 fixfix.ch, 1
 fixfm.tk, 1
 fixforce.nl, 1
@@ -52377,7 +52807,6 @@
 fixthetimeline.org, 1
 fixturemundial.com, 1
 fixverkaufen.de, 1
-fixvoltage.ru, 1
 fiyatgrafik.com, 1
 fiyatinedir.net, 1
 fizadvocaten.nl, 1
@@ -52433,10 +52862,12 @@
 flabutelov.tk, 1
 flacandmp3.ml, 1
 flacon.tk, 1
+flacsoandes.edu.ec, 1
 fladby.org, 1
 fladnag.net, 1
 flaeskeklubben.dk, 1
 flaeskeklubben.eu, 1
+flagburningworld.com, 1
 flagcdn.com, 1
 flagfox.net, 1
 flaggorvarlden.se, 1
@@ -52466,7 +52897,6 @@
 flagthis.com, 1
 flagyl-500-mg.ga, 1
 flair.nl, 1
-flairfindr.com, 1
 flam.io, 1
 flam.studio, 1
 flaman-h7a.fr, 0
@@ -52487,6 +52917,7 @@
 flamingowomenspavilion.com, 1
 flamme-von-anor.de, 1
 flammy.tk, 1
+flamoes.be, 1
 flana.com, 1
 flanadot.com, 1
 flanagan.tk, 1
@@ -52811,6 +53242,7 @@
 floravino.de, 1
 floreg.com, 1
 florencecountywi.gov, 1
+florenceutilitieswi.gov, 1
 florencewi.gov, 1
 florenciaextrema.tk, 1
 florenciasabio.com, 1
@@ -52869,11 +53301,11 @@
 florisbrunet.com, 1
 florismouwen.com, 1
 florismouwen.nl, 1
+floristavirtual.com.br, 1
 florisvdk.net, 1
 floriswesterman.nl, 1
 florix.tk, 1
 florlola.com, 1
-flormar.com, 1
 flormidabel.nl, 1
 florp.social, 1
 flortal.de, 1
@@ -52906,12 +53338,15 @@
 flowers-city.com.ua, 0
 flowers-shops.tk, 1
 flowers.sumy.ua, 1
+flowers2moscow.com, 1
 flowersandplantsco.com, 1
 flowersbylegacy.com, 1
 flowerscaffe.com, 1
 flowersforwedding.com, 1
 flowersquito.com, 1
 flowerstateest.ga, 1
+flowerstoukraine.com, 1
+flowerstver.ru, 1
 flowertuccipornstar.com, 1
 flowerwholesale.com, 1
 flowfest.com, 1
@@ -52948,7 +53383,6 @@
 flsbanners.com, 1
 flslawyer.com, 1
 flst.link, 1
-flstaging.cloud, 1
 flubio.de, 1
 flubiostudios.com, 1
 flubiostudios.de, 1
@@ -52998,7 +53432,6 @@
 fly, 1
 fly-fjends.dk, 1
 fly.moe, 1
-flyabe.com, 1
 flyantvirtual.tk, 1
 flyavantar.com, 1
 flyawayart.tk, 1
@@ -53062,7 +53495,6 @@
 flyupture.com, 1
 flywareagle.com, 1
 flywind.ml, 1
-flywus.com, 1
 flyxll.com, 1
 flyzold.com, 1
 flyzone.tk, 1
@@ -53136,7 +53568,6 @@
 fob-iran.ru, 1
 focalforest.com, 1
 focalpoint.tk, 1
-focalpointvr.com, 1
 focanamoda.com.br, 1
 focanocliente.com.br, 1
 focus2move.com, 1
@@ -53169,6 +53600,7 @@
 fogu.com, 1
 foguest.com.br, 1
 fogway.net, 1
+foi.se, 1
 foia.gov, 1
 foiaonline.gov, 1
 foilhat.tk, 1
@@ -53191,7 +53623,6 @@
 foldertips.com, 1
 foldnfly.com, 1
 folf.codes, 1
-foliegrzewcze.pl, 1
 foliencenter24.com, 1
 folife.nl, 1
 folio.no, 1
@@ -53435,7 +53866,6 @@
 foodwithpurpose.ph, 1
 foodyankee.ga, 1
 foodylab.it, 1
-foodyshoody.com, 1
 foodzpace.com, 1
 foogle.cf, 1
 fooishbar.org, 0
@@ -53477,12 +53907,12 @@
 for-testing.tk, 1
 for.care, 1
 forabrokenrobot.tk, 1
+forallgifts.com, 1
 forallsecure.com, 1
 forat.tk, 1
 foray-jero.me, 1
 foraz.tk, 1
 forbes.com, 1
-forbesblog.org, 1
 forbeser.com, 1
 forbiddenhistory.info, 1
 forbiddenshelf.com, 1
@@ -53524,7 +53954,6 @@
 foreammatti.fi, 1
 forecastapp.net, 1
 forecastcity.com, 1
-foreclosureattorneyhouston.com, 1
 foreclosurecitiesers.ga, 1
 foredata.fi, 1
 forefront.dental, 1
@@ -53532,11 +53961,12 @@
 foreign-language-colleges.com, 1
 foreignaffairsmotorsports.com, 1
 foreignassistance.gov, 1
-foreignpharmacydirectory.com, 1
 foremail.tk, 1
 foreningssparbanken.se, 1
 forenschmiede.tk, 1
 forensic-system.com, 0
+forensicpsychologyedu.org, 1
+forensicpsychologyonline.com, 1
 forensicsciencecentral.tk, 1
 forensicsinfo.ga, 1
 forensicsinfoest.ga, 1
@@ -53570,11 +54000,9 @@
 forewordreviews.com, 1
 forex-arabia.tk, 1
 forex-giants.com, 1
-forex-site.com, 1
 forex-trading-tutorial.tk, 1
 forex-up.cf, 1
 forex.ee, 1
-forexarby.com, 1
 forexchef.de, 1
 forexcity.cf, 1
 forexclubfree.com, 1
@@ -53589,7 +54017,6 @@
 forexox.com, 1
 forexpattern.tk, 1
 forexplay.com, 1
-forexstrategieswork.com, 1
 forextickler.com, 1
 forexwine.com, 1
 forexworld.cf, 1
@@ -53598,6 +54025,7 @@
 forfortcollins.com, 1
 forfunssake.co.uk, 1
 forge.cn, 1
+forgeary.com, 1
 forgejo.cloud, 1
 forgemedia.io, 1
 forgetme.ga, 1
@@ -53661,19 +54089,20 @@
 formsite.com, 1
 formsmarts.com, 1
 formsmarts.net, 1
+formue.com, 1
 formula-ot.ru, 1
 formula.cf, 1
 formulacionquimica.com, 1
 formulastudent.de, 1
 formulaveevictoria.com.au, 1
 formup.com.pl, 1
+formvibes.com, 1
 formworkcontractorssydney.com, 1
 fornarisandres.com, 1
 fornata.it, 1
 fornaxmall.com, 1
 foro-coopfuture.tk, 1
 foro.io, 0
-foro.red, 1
 foroaranda.com, 1
 forocachacero.tk, 1
 forocbmollet.tk, 1
@@ -53690,7 +54119,6 @@
 forosdelmisterio.tk, 1
 forourselves.com, 1
 forowarhammer.tk, 1
-forresskatepark.org.uk, 1
 forrestheller.com, 1
 forrestwalkbarbershop.com.au, 1
 forro.berlin, 1
@@ -53776,9 +54204,9 @@
 fortunetireusa.com, 1
 fortwinn.gov, 1
 forty-two.ml, 1
-forty-two.nl, 1
 forty.sh, 1
 forty8creates.com, 1
+fortygordy.com, 1
 fortytwo.cloud, 1
 fortytwo.tk, 1
 forum-4.de, 1
@@ -53867,7 +54295,6 @@
 fosterwiki.com, 1
 fotbal-dubina.tk, 1
 fotbalclubcaracal.tk, 1
-fotella.com, 1
 foter.tk, 1
 fotikpro.ru, 1
 fotklinikenvarnamo.se, 1
@@ -53885,7 +54312,6 @@
 foto.by, 1
 foto.com, 1
 fotoallerlei.com, 1
-fotoanalisis.com, 1
 fotoatis.biz, 1
 fotoblog.nrw, 1
 fotobodyart.nl, 1
@@ -53942,6 +54368,7 @@
 fotozone.tk, 1
 fotp.com, 1
 fotrino.com, 1
+fotrosgroup.com, 1
 foudufafa.de, 0
 fougereettralala.fr, 1
 fougner.co, 1
@@ -53966,7 +54393,6 @@
 founderinvestors.tk, 1
 founderio.net, 1
 foundland.com, 1
-foundmyself.com, 1
 foundrehotels.com, 1
 foundries.io, 1
 foundsounds.me, 1
@@ -53992,7 +54418,6 @@
 fourseasonsgrower.com, 1
 foursight.io, 0
 fourstrategy.de, 1
-fourwaysplumber24-7.co.za, 1
 fourwaysrubbleremovals.co.za, 1
 fousekis.tk, 1
 fousetmoney.tk, 1
@@ -54032,6 +54457,7 @@
 foxpad.tk, 1
 foxpointwi.gov, 1
 foxquill.com, 0
+foxroy.com, 0
 foxsburg.xyz, 1
 foxscribbler.com, 1
 foxstreetcomms.co.za, 0
@@ -54061,7 +54487,6 @@
 fpds.gov, 1
 fpersona.com, 1
 fpgamania.com, 1
-fpgaretro.com, 1
 fpjscdn.net, 1
 fpki.sh, 1
 fpline.jp, 1
@@ -54137,6 +54562,7 @@
 framadrive.org, 1
 framadrop.org, 1
 framadvd.org, 1
+framadventure.no, 1
 framaestro.org, 1
 framaform.org, 1
 framaforms.org, 1
@@ -54205,6 +54631,7 @@
 francepandi.fr, 0
 francerent.com, 1
 francesca-and-lucas.com, 1
+francescocozza.it, 1
 francescohairsalon.co.uk, 1
 francescopalazzo.com, 1
 francescopandolfibalbi.it, 1
@@ -54259,6 +54686,7 @@
 frank-wendy.tk, 1
 frank.fyi, 1
 frankbellamy.co.uk, 1
+frankdufaux.com, 1
 franke-chemie.de, 1
 frankellawfirm.com, 1
 frankelod.com, 1
@@ -54293,7 +54721,6 @@
 franklinmo.gov, 1
 franklintownshipcarbonpa.gov, 1
 franklinvillagemi.gov, 1
-frankopol-sklep.pl, 1
 franksgreatoutdoors.com, 1
 franksiler.com, 1
 frankslaughterinsurance.com, 0
@@ -54379,7 +54806,6 @@
 frazell.net, 1
 frazeysburg.gov, 1
 frazi.tk, 1
-frbg.me, 1
 frbracch.it, 1
 frc.gov, 1
 frc.gov.au, 1
@@ -54518,7 +54944,6 @@
 freeclubpenguin.tk, 1
 freecn.xyz, 1
 freecodecamp.rocks, 1
-freecom.net, 1
 freecorner.tk, 1
 freecottage.fr, 1
 freecoursepage.net, 1
@@ -54530,6 +54955,7 @@
 freedatingonline.ml, 1
 freedeals4u.ga, 1
 freedev.cz, 1
+freedgb.com, 1
 freediomatiq.com, 0
 freedirectory.tk, 1
 freedogecrypt.tk, 1
@@ -54564,7 +54990,6 @@
 freeexampapers.com, 1
 freefallproductions.tk, 1
 freefilesync.org, 1
-freefinancialhelp.net, 1
 freefincal.com, 1
 freeflightstoitaly.ngo, 1
 freefonts.ga, 1
@@ -54574,7 +54999,6 @@
 freegame-mugen.jp, 1
 freegutters.com, 1
 freehdporn.tv, 1
-freehorseracingtv.com, 1
 freehotline.ru, 1
 freehqporno.com, 1
 freeiconspng.com, 0
@@ -54760,6 +55184,7 @@
 frekans.tk, 1
 frekat.tk, 1
 fremontcountyia.gov, 1
+fremontcountyid.gov, 1
 fremontfire.gov, 1
 fremonthills.gov, 1
 fremontmi.gov, 1
@@ -54774,6 +55199,8 @@
 frendamos-roleplay.ml, 1
 frendle.tech, 1
 frenetic.lv, 1
+frenger.co.uk, 1
+frenger.com.au, 1
 frente-popular.tk, 1
 frenzel.dk, 1
 frequence-turf.fr, 1
@@ -54833,11 +55260,9 @@
 freso.dk, 1
 fretboardforever.com, 1
 fretpal.online, 1
-fretscha.com, 1
 frettboard.com, 1
 frettennet.tk, 1
 frettirnar.is, 1
-freudedurchmachen.de, 1
 freundeskreis-tarjan.de, 1
 freundinnen-ausflug.de, 1
 freundinnen-kurzurlaub.de, 1
@@ -54864,6 +55289,7 @@
 fridolinka.cz, 1
 fried.tk, 1
 friedberg2020.de, 1
+friedbergdirectfx.ca, 1
 friedenauer-herbstfest.de, 0
 friederes.lu, 1
 friederloch.de, 1
@@ -54883,7 +55309,6 @@
 friendku.tk, 1
 friendly.pe, 1
 friendlydabs.com, 1
-friendlysiberia.com, 1
 friendofpaws.com, 1
 friendofthehoneybee.co.uk, 1
 friendofthehoneybee.org, 1
@@ -54928,6 +55353,7 @@
 frikimasters.es, 1
 frikipedia.tk, 1
 frikiteca.tk, 1
+frikitrucos.com, 1
 frikizone.tk, 1
 frikotv.tk, 1
 frilima.com.br, 1
@@ -54960,7 +55386,6 @@
 fritz-koehne-schule.de, 1
 fritzbox-forum.tk, 1
 friv-2018.ga, 1
-friv31games.com, 1
 frizo.com, 1
 frlcnews.com, 1
 frlt.one, 1
@@ -54986,6 +55411,7 @@
 from.network, 0
 from.tk, 1
 fromager.net, 1
+fromageriedepeisey.com, 1
 fromages-freres-marchand.com, 1
 fromages-freres-marchand.fr, 1
 fromages-marchand.com, 1
@@ -55006,7 +55432,6 @@
 fromthetopsalonnh.com, 1
 fromtinythings.com, 0
 fromwithin.tk, 1
-fromyourwebmaster.com, 1
 fronhadeseda.com.br, 1
 front.com, 1
 frontbaydevices.tk, 1
@@ -55017,7 +55442,6 @@
 fronterasblog.tk, 1
 frontier.bet, 1
 frontierbrasil.tk, 1
-frontierbundles.com, 1
 frontierclimate.com, 1
 frontiernetworks.co.uk, 1
 frontiers.nl, 1
@@ -55176,6 +55600,7 @@
 ftccomplaintassistant.gov, 1
 ftcefile.gov, 1
 ftcscout.org, 1
+ftfgroup.us, 1
 ftg-ru.ga, 1
 ftgeufyihreufheriofeuozirgrgd.tk, 1
 ftgho.com, 1
@@ -55190,7 +55615,6 @@
 ftmwiki.org, 1
 ftng.se, 1
 ftpmovement.tk, 1
-ftprivacy.cloud, 1
 ftptest.net, 1
 ftrac.com.br, 1
 ftrfnd.me, 1
@@ -55210,7 +55634,6 @@
 fuciam.com.co, 1
 fuck-your-false-positive.de, 1
 fuckar.ch, 1
-fuckav.ru, 1
 fuckcf.cf, 1
 fuckedintraffic.com, 1
 fuckimm.com, 1
@@ -55261,6 +55684,8 @@
 fuglede.dk, 1
 fugu.lol, 1
 fuhe-psy.com, 1
+fuhui-zhs.com, 1
+fuhuicorporate.com, 1
 fuinhas.tk, 1
 fuite.ch, 0
 fuitedeau.ch, 0
@@ -55294,7 +55719,6 @@
 fulfilmentcrowd.com, 1
 fulgaz.com, 1
 fulgenzis.com, 1
-fulijiejie.com, 0
 fulisex.com, 1
 fuliwang.info, 1
 fuliwang.us, 1
@@ -55337,6 +55761,7 @@
 fultoncountyilelections.gov, 1
 fultoncountyky.gov, 1
 fultondaleal.gov, 1
+fulup.com, 1
 fumblers.ca, 1
 fumerolles.ch, 0
 fumerx.com, 1
@@ -55357,6 +55782,7 @@
 funadvisorfrance.com, 1
 funandbounce.com, 1
 funandfriends.tk, 1
+funandlearning.es, 1
 funart.hr, 1
 funatic.nl, 1
 funatic.tk, 1
@@ -55369,6 +55795,7 @@
 functional.cc, 1
 functions-online.com, 1
 functionx.io, 1
+functori.com, 1
 funcustomshirts.com, 1
 fundacaoeveris.com.br, 1
 fundacion.in, 1
@@ -55376,6 +55803,7 @@
 fundacionfranciscofiasco.org, 1
 fundacionindigo.tk, 1
 fundacionsiempreadelante.org, 1
+fundacionsilverina.org, 1
 fundacjamatkiewy.pl, 1
 fundaekhaya.co.za, 1
 fundamentt.com, 1
@@ -55403,10 +55831,10 @@
 funeralshowest.ga, 1
 funerare-cazacu.com, 1
 funerare24.ro, 1
+funerariaalarcon.cl, 1
 funfactorleeds.co.uk, 1
 funfacts.cz, 1
 funfm.tk, 1
-funfun.com.br, 1
 funfunmstdn.tokyo, 1
 fungalforager.com, 1
 fungame.eu, 1
@@ -55623,10 +56051,11 @@
 furtodoit.com, 1
 furu-sato.com, 1
 furuse-shika.com, 1
-furuy.com, 1
+furuy.com, 0
+furworks.de, 1
 fusacity.tk, 1
 fusacovi.cf, 1
-fusarshin.com, 1
+fuse.com.vn, 1
 fuselight.nl, 1
 fuseos.net, 1
 fuseyahoken.com, 1
@@ -55642,7 +56071,6 @@
 fusionas.tk, 1
 fusionauth.io, 1
 fusionbd.net, 1
-fusionetics.plus, 1
 fusionfactory.tk, 1
 fusiongaming.de, 1
 fusionpatrol.com, 1
@@ -55689,6 +56117,7 @@
 futos.de, 1
 futrou.com, 0
 futunk.com, 1
+futunk.eu, 1
 futunk.nl, 1
 futurageindia.com, 1
 futurains.com, 1
@@ -55717,9 +56146,8 @@
 futureplan.de, 1
 futureplanet.tk, 1
 futuresinmarketing.co.uk, 1
-futuresonline.com, 1
+futuresonline.com, 0
 futuresound.tk, 1
-futuressm.com, 1
 futurestyletiling.com.au, 1
 futuretechtrends.co.uk, 1
 futurethinkers.org, 1
@@ -55731,8 +56159,8 @@
 futurezone.at, 1
 futuristacademy.io, 1
 futuristicarchitectures.tk, 1
+futuristicjobs.sk, 1
 futurity.ml, 1
-futurygames.com, 1
 fuulle.com, 1
 fuvelis.com, 1
 fuwafuwa.moe, 1
@@ -55779,6 +56207,9 @@
 fx-rating.com, 1
 fx-rk.com, 1
 fxbrokerreview.org, 1
+fxcm-arabic.com, 1
+fxcm-chn.com, 1
+fxcmapps.com, 1
 fxcopierpro.com, 1
 fxeuropa.com, 1
 fxexplained.co.uk, 1
@@ -55911,7 +56342,6 @@
 gabbyer.ml, 1
 gabe.download, 1
 gabe.house, 1
-gabe.link, 1
 gabe.pics, 1
 gabe.space, 1
 gabe.watch, 1
@@ -55954,7 +56384,7 @@
 gabrielsteens.nl, 1
 gabrielyin.com, 0
 gabryjeluk.tk, 1
-gabskent.de, 1
+gabskent.de, 0
 gabtang.com, 1
 gabtitui.gov.au, 1
 gabucho.tk, 1
@@ -56023,14 +56453,12 @@
 gagne.tk, 1
 gagnerenfant.tk, 1
 gagnerplusdargent.info, 1
-gagniard.org, 1
 gagop.org, 1
 gagor.pl, 0
 gagramore.cf, 1
 gagygnole.ch, 0
 gaheztexab.com, 1
 gaiafood.co, 1
-gaiavanderzeyp.com, 0
 gaijin.network, 1
 gaijin.systems, 1
 gaijinsystems.com, 1
@@ -56058,12 +56486,15 @@
 gaku-architect.com, 1
 gaku-nkc.net, 1
 gala.kiev.ua, 0
+galabands.info, 1
 galact.tk, 1
 galacticbusiness.com, 0
 galaksidot.tk, 1
 galaktika-znakomstv.tk, 1
 galaltosalento.it, 1
 galama.tk, 1
+galamusik-band.de, 1
+galamusikband.de, 1
 galanight.cz, 1
 galapagos.cx, 1
 galaperfume.com, 1
@@ -56094,7 +56525,6 @@
 galaxystaking.space, 1
 galaxysweeper.com, 1
 galaxytracker.tk, 1
-galbani.it, 1
 galecommercial.com, 1
 galefacialplastics.com, 1
 galenguyer.com, 1
@@ -56124,18 +56554,20 @@
 galilahiskye.com, 1
 galilei.tk, 1
 galileicompara.com, 1
+galileo.io, 1
 galileohealth.com, 1
 galim.org.il, 1
 galina.ga, 1
 galinas-blog.de, 1
+galinkltd.com, 1
 galinos.gr, 1
-galiuzvejoti.org, 1
 galive.ga, 1
 galizae-sports.tk, 1
 galj.info, 1
 gallagherperformance.com, 1
 gallaghertownshippa.gov, 1
 gallant.tk, 1
+gallatinhousecleaning.com, 1
 galle.cz, 1
 galleonwaymedical.com.au, 1
 galleriacontinua.com, 1
@@ -56170,7 +56602,6 @@
 galvinism.ink, 1
 galwaytooughterardgreenway.ie, 1
 galwew.ga, 1
-gamadomesticos.com, 1
 gamagam.gq, 1
 gamalawadforum.tk, 1
 gamalhamza.tk, 1
@@ -56182,7 +56613,6 @@
 gambiafishing.tk, 1
 gambiapagina.tk, 1
 gambinotrasporti.it, 1
-gambipedia.com, 1
 gambisti.de, 1
 gambitnash.co.uk, 1
 gambitnash.com, 1
@@ -56203,12 +56633,12 @@
 game-repack.site, 1
 game.es, 1
 game4less.com, 1
-game7.de, 1
 game818play.com, 1
 game88play.com, 1
 gameanalytics.com, 1
 gameapexlegends.com, 1
 gamebase.tk, 1
+gamebillingcentre.com, 1
 gamebits.net, 0
 gameblabla.nl, 1
 gamebrott.com, 1
@@ -56225,6 +56655,7 @@
 gamecss.ml, 1
 gamedaim.com, 1
 gameday.org.uk, 1
+gamedealsnow.com, 1
 gamedware.com, 1
 gameexpress.tk, 1
 gamefarm.ru, 1
@@ -56295,13 +56726,15 @@
 gamereactor.se, 1
 gamereader.de, 1
 gamerepository.ga, 1
-gamerepublic.hu, 1
+gamerepublic.hu, 0
 gameres.com, 1
 gamering.cf, 1
 gamerkings.tk, 1
 gamers-community.tk, 1
 gamers-paradise.tk, 1
+gamersctrl.com, 1
 gamersedge.tk, 1
+gamersflix.com, 1
 gamersgrill.com, 1
 gamersheaven.tk, 1
 gamersplace.tk, 1
@@ -56344,7 +56777,6 @@
 gamesplanet.com, 1
 gamesplanet.tk, 1
 gamesputnik.ru, 1
-gamesrar.co, 1
 gamestand.net, 1
 gamester.tv, 1
 gamesunited.tk, 1
@@ -56355,6 +56787,8 @@
 gametowndev.tk, 1
 gametube.website, 1
 gameview.tk, 1
+gamewarden.org, 1
+gamewardenedu.org, 1
 gamewayz.online, 1
 gamewinninggoal.com, 1
 gameworldcdr.tk, 1
@@ -56410,6 +56844,7 @@
 gammonvillage.com, 1
 gamv.eu, 1
 gan.wtf, 1
+ganado.org, 0
 ganaha.org, 1
 ganapati.fr, 1
 ganardinerillo.tk, 1
@@ -56449,6 +56884,7 @@
 gaojianli.me, 1
 gaojianli.tk, 1
 gaon.network, 1
+gaonvokasangi.com, 1
 gaos.org, 1
 gap150.jp, 1
 gapdirect.com, 1
@@ -56470,7 +56906,6 @@
 garagenet.com, 1
 garageportcenter.se, 1
 garagerogge.be, 1
-garagesmart.com.au, 1
 garagevanhulle-used.be, 1
 garanteasy.com, 1
 garantieabschluss.de, 0
@@ -56481,7 +56916,7 @@
 garbuz.ga, 1
 garcia-franco.com, 1
 garcia-leplus.com, 1
-garciacarrion.com, 1
+garciacarrion.com, 0
 garcialeplus.com, 1
 garciam.gt, 1
 garciaortiz.com, 1
@@ -56500,6 +56935,7 @@
 gardenplantslife.com, 1
 gardenroomsdirect.co.uk, 1
 gardensofelegance.com, 1
+gardenstatecakes.com, 1
 gardensuperstore.com.au, 1
 gardikagigih.com, 1
 gardinenzubehoer.tk, 1
@@ -56602,7 +57038,6 @@
 gastonvietto.tk, 1
 gastouderbureausnoesje.nl, 1
 gastoudererenda.nl, 1
-gastrailer.com, 1
 gastro-dino.de, 1
 gastroalianza.es, 1
 gastroboss.cz, 1
@@ -56640,7 +57075,6 @@
 gatewaytrial.com, 1
 gatewaytrust.org.uk, 1
 gathegi.ga, 1
-gather-statement.org, 1
 gatherling.com, 1
 gatherup.com, 1
 gathu.co.ke, 1
@@ -56675,12 +57109,7 @@
 gavins.stream, 1
 gavintang.me, 1
 gavlix.se, 1
-gavr.me, 1
-gavr.net, 1
-gavr.org, 1
-gavr.ru, 1
 gavr.space, 1
-gavr.xyz, 1
 gavvie.com, 1
 gaw.sh, 1
 gay-chat.it, 1
@@ -56718,6 +57147,7 @@
 gazapos.ga, 1
 gazaryan.tk, 1
 gazbonicacidmc.ga, 1
+gazeta-n1.ru, 1
 gazete.org, 1
 gazetefutbol.de, 1
 gazetekarinca.com, 0
@@ -56747,6 +57177,7 @@
 gbiotech.tk, 1
 gbk-host.de, 1
 gbk-teamplan.de, 1
+gbkom.de, 1
 gbl.selfip.net, 0
 gbmwolverine.com, 1
 gboys.net, 0
@@ -56767,6 +57198,7 @@
 gcabrasives.co.uk, 1
 gcb.com.my, 1
 gcbit.dk, 1
+gccfoodstuff.com, 1
 gcdamp.gov, 1
 gcfadvisors.com, 1
 gcgeeks.com.au, 1
@@ -56774,7 +57206,6 @@
 gchp.ie, 0
 gchq.lol, 1
 gchq.wtf, 1
-gcmsnotes.com, 1
 gcode.space, 1
 gcoded.de, 1
 gcolomboart.com, 1
@@ -56795,6 +57226,7 @@
 gd1214b.icu, 1
 gdacs.org, 1
 gdax.com, 1
+gdb.re, 1
 gddzqg.com, 1
 gdedoma.ru, 0
 gdesemena.ru, 1
@@ -56810,7 +57242,6 @@
 gdpr-pohotovost.cz, 1
 gdpr.fr, 1
 gdretrofunk.cf, 1
-gdrive.vip, 1
 gdufe.top, 1
 gdv.me, 0
 gdwservices.com, 1
@@ -56853,6 +57284,7 @@
 gebaeudeklima-schweiz.ch, 1
 gebeliktakibim.com, 1
 geben.digital, 1
+gebiert.de, 1
 geblitzt.de, 1
 gebn.co.uk, 1
 gebn.uk, 1
@@ -56898,7 +57330,6 @@
 geekeries.org, 1
 geekgao.cn, 1
 geekgear.tk, 1
-geekgirltech.com, 1
 geekhelpline.com.au, 1
 geekium.me, 1
 geeklair.net, 1
@@ -57154,6 +57585,7 @@
 generix.biz, 1
 generujdata.cz, 1
 geneseecountymi.gov, 1
+geneseetwpmi.gov, 1
 genesis-a-fresh-translation-from-hebrew-to-english.com, 1
 genesis-herbs.com, 1
 genesisblock.com, 1
@@ -57164,6 +57596,7 @@
 genesismachina.ca, 1
 genesisplay.tk, 1
 genesistoday.org, 1
+genesys-uk.com, 1
 genetargetsolutions.com.au, 1
 genetidyne.com, 1
 genetworx.com, 1
@@ -57218,7 +57651,7 @@
 genomicsinc.com, 1
 genomicsplc.com, 1
 genoog.com, 1
-genophore.com, 1
+genoplot.com, 1
 genosse-einhorn.de, 1
 genossen.ru, 1
 genossenwiese.ch, 1
@@ -57234,6 +57667,7 @@
 gensokyo.re, 1
 gensonline.eu, 1
 gentapps.com, 1
+gentas.se, 1
 gentbereikbaar.be, 1
 gentblogt.be, 1
 gentbrugsemeersen.be, 1
@@ -57300,6 +57734,7 @@
 genunlimited.ga, 1
 genunlimited.tk, 1
 genusbag.com, 1
+genuxtsg.com, 1
 genxreviewest.ga, 1
 genzdx.xyz, 1
 genzia.ga, 1
@@ -57314,6 +57749,7 @@
 geocod.tk, 1
 geocoin2016.dk, 1
 geocommunicator.gov, 1
+geocompass.at, 1
 geoconcretsa.com, 1
 geoconvention.ga, 1
 geodatasource.com, 1
@@ -57326,9 +57762,12 @@
 geoffmyers.com, 1
 geoffnussmd.com, 1
 geoffreymmoore.pw, 1
+geoffreyrichard.com, 1
 geoffsec.org, 1
 geoflowerstudio.com, 1
 geoforex.ro, 1
+geofox.eu, 1
+geofox.org, 1
 geogas.com.au, 1
 geografia-peru.tk, 1
 geographique.tk, 1
@@ -57411,7 +57850,6 @@
 georgianhistory.tk, 1
 georgiaparks.org, 1
 georgiastuartyoga.co.uk, 0
-georgiaurologist.com, 1
 georgiawrestling.tk, 1
 georgie.cc, 1
 georgiebailey.com, 1
@@ -57430,7 +57868,7 @@
 geosales.tk, 1
 geoscout.uk, 1
 geoserves.com, 1
-geosever.cz, 1
+geosever.cz, 0
 geosno.com, 1
 geospecialsers.ga, 1
 geostems.com, 1
@@ -57480,7 +57918,6 @@
 germancoding.com, 1
 germancoding.de, 1
 germancorbo.com, 1
-germancraft.net, 1
 germandarknes.net, 1
 germanicvs.tk, 1
 germaniumsoft.com, 1
@@ -57511,20 +57948,19 @@
 gerstner.it, 1
 gertjan-tamerus.tk, 1
 gertrudeco.com, 1
-geru.com.br, 1
 gerum.dynv6.net, 0
 gerwinvanderkamp.nl, 1
 ges-bo.de, 1
 gesamenvat.nl, 1
 gesath.co, 1
 gesath.com, 1
+geschenkkoerbeversand.de, 1
 geschenkkorb-ideen.de, 1
 geschenkly.de, 1
 geschichtscheck.de, 1
 geschichtswerkstatt.tk, 1
 geschmackspiloten.de, 0
 geschwinder.net, 1
-gesditel.es, 0
 geseduc.cl, 1
 gesentorno.tk, 1
 gesetz.tk, 1
@@ -57576,6 +58012,7 @@
 getbellhop.co, 1
 getbestbooks.com, 1
 getblockcard.com, 1
+getblys.com.au, 0
 getbodysmart.com, 1
 getbookked.com, 1
 getbooks.co.il, 1
@@ -57587,11 +58024,10 @@
 getbrowink.com, 1
 getbutterfly.com, 1
 getcabal.com, 1
-getcalc.com, 1
 getcare.com, 1
 getcarina.com, 1
 getchip.cc, 1
-getcloak.com, 0
+getcloak.com, 1
 getclubsoda.com, 1
 getcodelove.com, 1
 getcolq.com, 1
@@ -57607,6 +58043,7 @@
 getdishnow.tk, 1
 getdoges.tk, 1
 getdownon.it, 1
+getduds.com, 1
 geteducation.tk, 1
 geteduroam.no, 1
 getelectronics.tk, 1
@@ -57615,7 +58052,6 @@
 getescrowest.ga, 1
 getevidenceers.ga, 1
 getexipure.com, 1
-getexplor.com, 1
 getfastanswer.com, 1
 getfedora.org, 1
 getfitbee.com, 1
@@ -57660,7 +58096,6 @@
 getlawyered.com.au, 1
 getleanflorida.gov, 1
 getlibrary.com, 1
-getmacos.org, 1
 getmango.com, 1
 getmarksvoice.com, 1
 getmdl.io, 1
@@ -57716,6 +58151,7 @@
 getsmartlife.in, 1
 getsmartlook.com, 1
 getsocreative.com, 1
+getspaces.com, 1
 getstark.co, 1
 getstat.net, 1
 getstream.io, 1
@@ -57751,7 +58187,6 @@
 getyou.onl, 0
 getyour.nz, 1
 getyoureuro.tk, 1
-getyourguide.com, 1
 getyourlifestraight.com, 1
 getyournurse.de, 1
 getyourphix.tk, 1
@@ -57993,6 +58428,8 @@
 gifhelittlestars.co.uk, 1
 gifsonline.tk, 1
 gift4ever.tk, 1
+giftbaskets.ru, 1
+giftbasketsoverseas.com, 1
 giftcard.net, 1
 giftcardgranny.com, 1
 giftcardstarz.com, 0
@@ -58034,6 +58471,7 @@
 gigantron.com, 1
 gigaone.pl, 1
 gigapc.be, 1
+gigarange.org, 1
 gigarange.xyz, 1
 gigasoft.tk, 1
 gigatags.tk, 1
@@ -58064,7 +58502,6 @@
 gileadpac.com, 1
 gilescountytn.gov, 1
 gili-lankanfushi.com, 1
-giliamor.com, 1
 gilion.tk, 1
 gilium.com, 1
 gill-cote-bistro.fr, 1
@@ -58086,7 +58523,6 @@
 giltedge.travel, 1
 gim-app.tk, 1
 gim.ac.in, 1
-gimbal.ca, 1
 gimhub.com, 1
 gimme.money, 1
 gimmickmedia.de, 1
@@ -58169,6 +58605,7 @@
 girlsforum.com, 1
 girlsfucked.com, 1
 girlsgenerationgoods.com, 1
+girlsgetpied.com, 1
 girlsglimpse.cf, 1
 girlsglimpse.ga, 1
 girlsglimpse.gq, 1
@@ -58198,9 +58635,7 @@
 gistr.io, 1
 giswi.com, 1
 git-stuff.tk, 1
-git.ac.cn, 1
 git.co, 1
-git.io, 1
 git.market, 1
 git.org.il, 0
 git.sb, 1
@@ -58213,7 +58648,6 @@
 gite-bouvines.fr, 1
 gite-le-pascaud.fr, 1
 gitecolombedesbois.com, 1
-gitedegroupelatruitedor.fr, 1
 gitep.org.uk, 1
 gites-melaual.fr, 1
 gitesdeshautescourennes.com, 1
@@ -58227,6 +58661,7 @@
 githubindia.com, 1
 githubnext.com, 1
 githubuniverse.com, 1
+giti.com.sg, 1
 gitlab-apps.com, 1
 gitns.com, 1
 gitns.dev, 1
@@ -58237,6 +58672,7 @@
 gitstuff.tk, 1
 gittigidiyor.com, 1
 gittr.ch, 1
+gitvibe.com, 1
 giuem.com, 0
 giuliabonati.com, 1
 giuliano.design, 1
@@ -58304,7 +58740,6 @@
 gjengset.com, 1
 gjnoonan.co.uk, 1
 gjung.com, 1
-gk-software.com, 1
 gkb2.ru, 1
 gkbm.com, 1
 gkconsultancy.tk, 1
@@ -58350,7 +58785,6 @@
 glami.com.tr, 1
 glaminati.com, 0
 glamlivesex.com, 1
-glamluxestudios.com, 1
 glammybabes.com, 1
 glamorousgoat.nl, 1
 glamorously-built.tk, 1
@@ -58388,6 +58822,7 @@
 glassochchoklad.se, 1
 glassofdirt.tk, 1
 glassofgrape.com, 1
+glassportpapd.gov, 1
 glassrainbowtrust.org.je, 1
 glassrepairsperth.com.au, 1
 glassrom.org, 1
@@ -58434,7 +58869,9 @@
 glenmarieproperties.com, 1
 glennfitzpatrick.com, 1
 glennhamers.nl, 1
+glennwilson.co.uk, 1
 glenshere.com, 1
+glenwhitememorial.com, 1
 glenwoodpark.com, 1
 glevolution.com, 1
 glexia.com, 1
@@ -58442,7 +58879,6 @@
 gli.sh, 1
 gliagrumi.it, 1
 glibmarket.in, 1
-glickman-consulting.com, 1
 glidestep.com, 1
 glidingshop.cz, 1
 glidingshop.de, 1
@@ -58517,6 +58953,7 @@
 globalenv.online, 1
 globalepsilon.com, 1
 globalformat.de, 1
+globalfuhui.com, 1
 globalfuture.eu, 1
 globalgate.cc, 1
 globalgivingtime.com, 1
@@ -58637,6 +59074,7 @@
 gloria-mundi.eu, 1
 gloria.tv, 1
 gloriousbride.com, 1
+gloriousfoods.co.uk, 1
 glorycambodia.com, 1
 glorycamrealty.com, 1
 gloryholefucking.com, 1
@@ -58680,6 +59118,7 @@
 glutenfreeonashoestring.com, 0
 glutenfreevr.com, 1
 gluto.tk, 1
+gluware.com, 1
 gluwee.com, 1
 glxnet.com, 1
 glyam.nl, 1
@@ -58688,10 +59127,11 @@
 glyph.ws, 1
 glyptodon.com, 1
 glyxins.com, 1
+glz.ca, 1
 gm-assicurazioni.it, 1
 gm-net.jp, 1
 gm.search.yahoo.com, 0
-gm207.com, 1
+gm207.com, 0
 gm5.com.br, 1
 gmail, 1
 gmail.com, 0
@@ -58708,7 +59148,6 @@
 gmccar.it, 1
 gmcd.co, 1
 gmdu.net, 1
-gmenhq.com, 1
 gmgard.com, 1
 gmgcyouth.org, 1
 gmhostingservices.co.uk, 1
@@ -58731,7 +59170,7 @@
 gmta.nl, 1
 gmtm.com, 1
 gmtplus.co.za, 1
-gmuh.fr, 1
+gmuh.fr, 0
 gmundner.africa, 1
 gmw-hannover.de, 1
 gmw-ingenieurbuero.de, 1
@@ -58749,7 +59188,6 @@
 gnaptracker.tk, 1
 gnawa-diffusion.tk, 1
 gnax.jp, 0
-gncbilgi.com, 0
 gncsuplementos.com.br, 1
 gnetwork.eu, 1
 gnezdo.tk, 1
@@ -58817,6 +59255,7 @@
 goabase.com, 1
 goabase.net, 1
 goaheadireland.ie, 1
+goalac.org, 1
 goalbookapp.com, 1
 goalie1998.duckdns.org, 1
 goanalyse.co.uk, 1
@@ -58826,7 +59265,6 @@
 goatbot.xyz, 1
 goathub.io, 1
 goatlord.tk, 1
-goatrisksolutions.com, 1
 goatstore.ca, 1
 gobarrelroll.com, 1
 gobetweenfilms.com, 1
@@ -58918,6 +59356,7 @@
 goethe-gymnasium-stolberg.de, 1
 goetheschule-giessen.de, 1
 goetic.space, 1
+goetteesbarbershop.com, 1
 goettinger-biergarten.de, 1
 goettinger-katzenschutz.de, 1
 goetzinger-web.de, 1
@@ -58939,7 +59378,6 @@
 goge.ml, 1
 gogebic.gov, 1
 gogeeks.com.au, 1
-gogetdoc.com, 1
 gogetssl.com, 0
 gogle-analytics-srv2456.com, 1
 gogle-analytics.com, 1
@@ -59070,7 +59508,6 @@
 goldwaterfoundation.gov, 1
 goldwaterscholarship.gov, 1
 goldysoptic.bg, 1
-goldytechspecialists.com, 1
 goldzilla.eu, 1
 gole.ms, 1
 golearn.gov, 1
@@ -59161,7 +59598,6 @@
 gonenli.com, 1
 gonepal.com, 1
 gonerstudio.com, 1
-gong.io, 1
 gongik.info, 1
 gongjianwei.com, 1
 gongjuhao.com, 1
@@ -59189,6 +59625,7 @@
 goodcas.ca, 1
 goodcas.com, 1
 goodcasinos.org, 1
+goodchoiceflowers.com, 1
 gooddatingsites.ml, 1
 goodday.finance, 1
 gooddayatwork.co.uk, 1
@@ -59242,7 +59679,6 @@
 goodwin43.ru, 0
 goodyearsotn.co.uk, 1
 goofy.gr, 1
-googdesk.com, 1
 google, 1
 google-analytics.com, 1
 google-and.tk, 1
@@ -59251,7 +59687,6 @@
 google.ax, 1
 googleadvies.nl, 1
 googleandroid.cz, 1
-googlecom.gq, 1
 googlehits.com, 1
 googlekun.tk, 1
 googlemail.com, 0
@@ -59291,7 +59726,6 @@
 gopro.com, 1
 goproallaccess.com, 1
 gopronow.ga, 1
-goprozone.com, 1
 gopuntaisla.com, 1
 gopwhip.gov, 1
 goquiq.com, 1
@@ -59314,13 +59748,13 @@
 gordonquarter.org.au, 1
 gordvorets.tk, 1
 gordyf.com, 1
+gordyforty.com, 1
 gorebayairport.ca, 1
 gorebayairport.com, 1
 goremotely.net, 1
 gorenje-ru.ru, 1
 gorepriest.tk, 1
 gorf.club, 1
-gorgebelle.com, 1
 gorgeousb.com, 1
 gorgeouslyflawed.com, 1
 gorgeouspizza.co.nz, 0
@@ -59482,6 +59916,7 @@
 gourmetvitamins.ga, 1
 gouthiere.com, 1
 goutsmits-tegelwerken.nl, 1
+gouwdata.nl, 1
 gov.tc, 1
 gov.uk, 0
 govape.tk, 1
@@ -59531,7 +59966,6 @@
 gozadera.es, 1
 gpalabs.com, 1
 gpasas.mobi, 1
-gpastore.com.br, 1
 gpbdev.ru, 0
 gpccp.cc, 1
 gpcp.org, 1
@@ -59637,6 +60071,7 @@
 graduados.tk, 1
 gradualgram.com, 1
 graduatenursingedu.org, 1
+graduatewriter.com, 1
 graecum.org, 1
 graeskmad.dk, 1
 graetgossip.com, 1
@@ -59673,6 +60108,7 @@
 graftonglobe.tk, 1
 graftworld.pw, 1
 grafuroam.com, 1
+grahambaggett.com, 1
 grahambaker.ca, 1
 grahamcarruthers.co.za, 1
 grahamcluley.com, 0
@@ -59712,6 +60148,7 @@
 grand-house.gq, 1
 grand-knighki.gq, 1
 grand-sity.ru, 1
+grandblanctwpmi.gov, 1
 grandcabin.md, 1
 grandcafeatpark.nl, 1
 grandcanyon.tk, 1
@@ -59789,7 +60226,6 @@
 grantsolutions.gov, 1
 granttwpstclairmi.gov, 1
 granulate.io, 1
-graonatural.com.br, 0
 grapee.jp, 1
 grapeintentions.com, 1
 grapevine.is, 1
@@ -59821,7 +60257,6 @@
 graphpaper.studio, 1
 graphql-on-aws-appsync-book.com, 1
 graphviewer.tk, 1
-grappes.co, 1
 grapplinginsider.com, 1
 grappy.net, 1
 grasboom35plus.nl, 1
@@ -59842,6 +60277,7 @@
 graszoden.tk, 1
 gratefulwanderertravel.com, 1
 gratelin.ga, 1
+graticule.life, 1
 gratis-app.com, 1
 gratis-hosting.cf, 1
 gratis.market, 1
@@ -59849,9 +60285,11 @@
 gratisfotos.nl, 1
 gratisfullalbum.tk, 1
 gratishandy.tk, 1
+gratisliste.de, 1
 gratismuziek.tk, 1
 gratisonlinespel.tk, 1
 gratisparati.tk, 1
+gratispornox.com, 1
 gratitudeabundancepassion.com, 1
 gratius.tk, 1
 gratiz.nl, 1
@@ -59865,6 +60303,8 @@
 gravelshooters.net, 1
 gravelshooters.org, 1
 gravely.com, 1
+gravelylawn.com, 1
+gravelymower.com, 1
 gravensteengent.be, 1
 gravescountyky.gov, 1
 gravilink.com, 1
@@ -59914,6 +60354,9 @@
 great.nagoya, 1
 greatagain.gov, 1
 greataltrock.tk, 1
+greatamericaneu.com, 1
+greatamericaneurope.com, 1
+greatamericanuk.com, 1
 greatbarrierisland.nz, 1
 greatbeginningsmi.com, 1
 greatdane.com, 1
@@ -59967,7 +60410,6 @@
 greeks.tk, 1
 greekweb.tk, 1
 greeleycountyne.gov, 1
-green-adn.com, 1
 green-anarchy.tk, 1
 green-attitude.be, 1
 green-aura.ru, 0
@@ -60242,6 +60684,7 @@
 grifone.tk, 1
 grigo.ga, 1
 grigo.tk, 1
+grigoraslaw.com, 1
 grigorev.tk, 1
 grijalba.tk, 1
 grijpskerk500.tk, 1
@@ -60273,7 +60716,6 @@
 gripencrossfit.cf, 1
 gripencrossfit.gq, 1
 gripnijmegen.rip, 1
-gripopit.nl, 1
 grippingtheether.com, 1
 gripvol.nl, 1
 gripwenab.cf, 1
@@ -60327,7 +60769,7 @@
 groomscroft.com, 1
 grooove.pl, 1
 grootinadvies.nl, 1
-groots.ngo, 1
+groots.com, 1
 groove3.com, 1
 grooveguard.tk, 1
 groover.com.br, 1
@@ -60366,8 +60808,8 @@
 groundthumpingmotors.net, 1
 groundthumpinmotors.com, 1
 groundthumpinmotors.net, 1
-group-ala.com, 1
 group-digitcom.com, 1
+group-galore.com, 1
 group-project.xyz, 1
 group4layers.net, 1
 groupama.hu, 1
@@ -60380,6 +60822,7 @@
 groupe-goddi.com, 1
 groupe-neurologique-nord.lu, 0
 groupeifams.sn, 1
+groupekabowd.com, 1
 groupeleven.com, 1
 groupeonepoint.com, 1
 groupescr.fr, 0
@@ -60394,7 +60837,6 @@
 groups.google.com, 1
 groupsgyani.com, 1
 groupsh.ca, 1
-groupsite.blue, 1
 groupx.tk, 1
 grove-archiv.de, 1
 grovecity.cf, 1
@@ -60422,6 +60864,7 @@
 growling.net, 1
 growme.gq, 1
 growth-rocket.com, 1
+growth.design, 1
 growthagent.com, 1
 growthandrenewal.ca, 1
 growthinbusiness.com, 1
@@ -60455,6 +60898,7 @@
 gruener-salon-bochum.de, 1
 gruenerpass.co.at, 1
 gruenes-wp.de, 1
+gruenhagenlaw.com, 1
 gruenprint.de, 1
 gruenstreifen-ev.de, 1
 gruenwedels-restaurant.de, 1
@@ -60494,6 +60938,7 @@
 grupodecoroinhaspnsa.tk, 1
 grupodepasajeros.tk, 1
 grupodes.com.br, 1
+grupoeitb.eus, 1
 grupoellatu.tk, 1
 grupoenelcolombia.com, 1
 grupoeurodesign.com, 1
@@ -60504,7 +60949,6 @@
 grupomanquecura.tk, 1
 grupomedlegal.com, 1
 grupomonti.com.ar, 1
-grupomultiservicio.com, 1
 grupoparco.com, 1
 grupoproabienesraices.com.mx, 1
 grupos.cf, 1
@@ -60555,9 +60999,12 @@
 gse.space, 1
 gservera.com, 1
 gsfreak.pt, 1
+gshoes.bg, 1
+gsilva.org, 1
 gsimagebank.co.uk, 1
 gsiw.be, 1
 gsiw.gent, 1
+gskm.su, 1
 gslabnet.org, 1
 gslate.com, 1
 gsm-info.tk, 1
@@ -60607,7 +61054,6 @@
 gtmetrix.com, 1
 gtmhub.com, 1
 gtn-pravda.ru, 1
-gtnh.ru, 1
 gtoepfer.de, 1
 gtonline.ml, 1
 gtopala.com, 1
@@ -60768,7 +61214,6 @@
 guidesiracusa.tk, 1
 guidesorbetiere.com, 1
 guidethailande.tk, 1
-guidetoiceland.is, 1
 guidetourism.tk, 1
 guidoclub.fr, 1
 guidograuer.ch, 1
@@ -60786,6 +61231,7 @@
 guillaumematheron.fr, 1
 guille.tk, 1
 guillemagullo.tk, 1
+guillembosch.es, 1
 guillen.tk, 1
 guillouxinformatique.fr, 1
 guiltyeats.com, 1
@@ -60795,6 +61241,7 @@
 guinaliu.tk, 1
 guineapig101.com, 1
 guineapigmustach.es, 1
+guinel-johnson.fr, 1
 guinguetteclovis.com, 1
 guirossler.com.br, 1
 guise.tk, 1
@@ -60825,7 +61272,6 @@
 gulfvestors.com, 1
 gulizaroztemel.av.tr, 1
 gulkhannasir.tk, 1
-gulleyperformancecenter.com, 1
 gulliversfun.co.uk, 1
 gulliwer.tk, 1
 gulphora.tk, 1
@@ -60843,6 +61289,7 @@
 gummibande.noip.me, 0
 gummientchen.net, 1
 gumtree.ie, 1
+gun-room.com, 1
 gunauc.net, 1
 gunbot.com, 1
 gunbrig.com, 0
@@ -60870,6 +61317,7 @@
 gunzreplays.com, 1
 guochang.fun, 1
 guoda.art, 1
+guodongdou.com, 1
 guogetv.com, 1
 guohuageng.com, 1
 guoke.com, 1
@@ -60913,6 +61361,7 @@
 gustavo.website, 1
 gustavoleiloeiro.lel.br, 1
 gustavomolina.com, 1
+gustavopalitos.com.br, 1
 gustavovelasco.ml, 1
 gustavscelmins.tk, 1
 gustaw.net.pl, 1
@@ -61100,6 +61549,7 @@
 h07.cn, 1
 h09.eu, 1
 h0r.st, 1
+h0stb3rry.org, 1
 h0u5er.com, 1
 h10l.com, 1
 h10s.net, 1
@@ -61108,7 +61558,6 @@
 h1ctf.com, 1
 h1z1swap.com, 1
 h2.com.sg, 1
-h2.style, 1
 h2020faros.eu, 1
 h24.org, 1
 h2b.cz, 1
@@ -61130,9 +61579,6 @@
 h5q.net, 1
 h6729.co, 1
 h6729.com, 1
-h6852.com, 1
-h6853.com, 1
-h6913.com, 1
 h6957.co, 1
 h6p.de, 1
 h82365.com, 1
@@ -61236,6 +61682,7 @@
 hackcraft.net, 1
 hackdown.eu.org, 1
 hackdown.tech, 1
+hackdra.io, 1
 hackeado.tk, 1
 hacked.com, 1
 hackedaf.com, 1
@@ -61286,7 +61733,6 @@
 hackingand.coffee, 0
 hackingdh.com, 1
 hackingfever.tk, 1
-hackingondemand.com, 1
 hackingwithswift.com, 1
 hackintosh.eu, 1
 hackintosh.social, 1
@@ -61332,6 +61778,7 @@
 hadzaproperty.com, 1
 haeckdesign.com, 1
 haefligermedia.ch, 1
+haegele.consulting, 1
 haehnel.xyz, 1
 haehnlein.at, 1
 haemka.de, 1
@@ -61373,7 +61820,6 @@
 haiboxu.com, 1
 haiduc.tk, 1
 haifaworld.tk, 1
-haigekassa.ee, 1
 haigle.com, 1
 haigure.com, 1
 hails.info, 1
@@ -61469,12 +61915,12 @@
 haku.vn, 1
 hakufarm.vn, 1
 hakugin.me, 1
-hakuna.live, 1
 hakurei.ga, 1
 hal-9th.space, 1
 halacs.hu, 1
 halagroup.ml, 1
 halalbooking.com, 1
+halatik.com.ua, 1
 halbbit.eu, 1
 halberstadt.tk, 1
 halbich.design, 1
@@ -61503,6 +61949,7 @@
 halic.tk, 1
 halifaxma.gov, 1
 halifaxmoneyman.com, 1
+halifaxsailingclub.org.uk, 1
 halilova.ga, 1
 halilova.ml, 1
 halilova.tk, 1
@@ -61511,6 +61958,7 @@
 halimjr.com, 1
 halkakoop.com, 1
 halkbank.mk, 1
+halkoyu.org, 1
 halkyon.net, 1
 hall1c.com, 1
 hallaminternet.com, 1
@@ -61570,6 +62018,7 @@
 hamelneinfachonline.de, 0
 hamelnpsychotherapie.de, 1
 hamerslag.tk, 1
+hamgamweb.com, 1
 hamha.tk, 1
 hamibot.cn, 1
 hamibot.com, 1
@@ -61627,12 +62076,12 @@
 hana.ondemand.com, 1
 hanabi.fan, 0
 hanacademy.us, 1
-hanakaraku.com, 1
 hanakaru.tk, 1
 hanan.cz, 1
 hanatan.net, 1
 hanazono.tokyo, 1
 hanbing.it, 1
+hancevillewateral.gov, 1
 hancockcountyia.gov, 1
 hancockcountyky.gov, 1
 hancockcountymaine.gov, 1
@@ -61662,6 +62111,7 @@
 handicaps-ensemble.org, 0
 handicapzero.org, 1
 handicraftsman.tk, 1
+handigehannie.nl, 1
 handleidingkwijt.com, 1
 handlekrypto.com, 1
 handles.tech, 1
@@ -61717,16 +62167,24 @@
 haniasitek.com, 1
 hanikira.com, 1
 hanimat.pl, 1
+hanishbagga.com, 1
 hanisirfan.cf, 1
 hanjl.com, 0
 hanjuapp.com, 1
 hanke.se, 1
 hankoreas.com, 1
 hankr.com, 1
-hanksacservice.com, 1
 hanksservice.com, 1
 hanky2.com, 1
 hanlonconcrete.com, 1
+hanmandalu.com, 1
+hanmandao.com, 1
+hanmandaohang.com, 1
+hanmangu.com, 1
+hanmanlou.com, 1
+hanmanshijie.com, 1
+hanmanxia.com, 1
+hanmofu.life, 1
 hannaandersson.com, 1
 hannah.link, 1
 hannahbarrettyoga.com, 1
@@ -61756,11 +62214,11 @@
 hanschventures.com, 1
 hansen-kronshagen.de, 1
 hansen.hn, 1
-hansencx.com, 1
 hansgoes.it, 1
 hansgoes.nl, 1
 hansgoesit.nl, 1
 hanshosting.nl, 1
+hanshow.com, 1
 hansklok.tk, 1
 hansminten.com, 1
 hansmund.com, 1
@@ -61792,11 +62250,9 @@
 hapissl.com, 1
 hapivm.com, 1
 hapless.tk, 1
-haplogroup.org, 0
 happeopleindonesia.id, 1
 happiestoutdoors.ca, 1
 happii.dk, 1
-happilyeverafter.kiwi, 1
 happinera.com, 1
 happiness.solutions, 1
 happist.com, 1
@@ -61841,7 +62297,6 @@
 happygardencenter.com.br, 1
 happygreats.ml, 1
 happygreats.tk, 1
-happygutlife.com, 1
 happyheartsabode.com, 1
 happyhumans.com, 1
 happyindia.ml, 1
@@ -61904,6 +62359,7 @@
 hard.email, 1
 hardatack.tk, 1
 hardcore-hooligans.tk, 1
+hardcore-toys.com, 1
 hardcoreincest.net, 1
 hardcorejokeers.ga, 1
 hardcorejokeest.ga, 1
@@ -61949,10 +62405,12 @@
 hardwarelogin.com, 1
 hardwarelogin.rocks, 1
 hardwareschotte.de, 1
+hardwick-ma.gov, 1
 hardwickvt.gov, 1
 hardwoodhoudini.com, 1
 hardworm.tk, 1
 hardy.bz, 1
+hardyboyplant.com, 1
 hardyhaberland.com, 1
 hardzone.es, 1
 harem.tk, 1
@@ -61990,7 +62448,6 @@
 harmonicasireland.com, 1
 harmonizely.com, 0
 harmony.co.id, 1
-harmonyplace.com, 1
 harmreductionwa.org, 1
 harms.io, 1
 harmsboone.org, 1
@@ -62006,7 +62463,6 @@
 harpersbazaar.co.id, 1
 harpersvilleal.gov, 1
 harplingemark.se, 1
-harpoo.jp, 0
 harpoonlarsen.tk, 1
 harputlugil.com, 1
 harrachovskyapartman.cz, 1
@@ -62119,6 +62575,7 @@
 hasgeek.com, 1
 hash.army, 1
 hash.works, 1
+hashbl.org, 1
 hashcat.net, 1
 hashemian.com, 1
 hashes.org, 1
@@ -62181,10 +62638,13 @@
 hathai.org, 1
 hathawaydinwiddie.com, 1
 hatierchinois.fr, 1
+hatinyhouse.com, 1
 hatori.tk, 1
 hatpakha.com, 1
 hatraters.ga, 1
 hatratest.ga, 1
+hatsnet.io, 1
+hatsthings.com, 1
 hatsuharu.tk, 1
 hatsukoi-seikotsu.com, 1
 hatter.ink, 1
@@ -62223,6 +62683,7 @@
 hausverwaltung-motsch.de, 1
 hautarztzentrum.ch, 1
 hautehorlogerie.org, 1
+hautemontagne.com, 1
 hauteslatitudes.com, 1
 hautsache-friesoythe.de, 1
 hautsdefrance.fr, 1
@@ -62302,7 +62763,6 @@
 hayestwpotsegomi.gov, 1
 hayfordoleary.com, 1
 hayl.me.uk, 1
-haylerivas.com, 1
 hayleywestenra.tk, 1
 hayobethlehem.nl, 1
 hayonik.com, 1
@@ -62375,6 +62835,7 @@
 hccnet.org, 1
 hcdatn.gov, 1
 hcdonbass.com, 1
+hcelite.org, 1
 hceu-performance.com, 1
 hcfl.gov, 1
 hcfoodpantry.org, 1
@@ -62382,6 +62843,9 @@
 hcgallia.tk, 1
 hcie.pl, 0
 hclsrilanka.com, 1
+hclsw.at, 1
+hclsw.ch, 1
+hclsw.de, 1
 hclu.co, 1
 hcmuehlethurnen.ch, 1
 hcnh.gov, 1
@@ -62406,6 +62870,7 @@
 hd9397.com, 1
 hd9721.com, 1
 hd9xmovie.co, 1
+hdaccess.info, 1
 hdbigass.com, 1
 hdbits.org, 1
 hdblackporn.com, 1
@@ -62415,6 +62880,8 @@
 hdcoupler.com.au, 1
 hddrecovery.net.au, 1
 hdeaves.uk, 1
+hdepic.com, 1
+hdepic.net, 1
 hdert.com, 1
 hdevent.net, 1
 hdf.world, 1
@@ -62445,7 +62912,6 @@
 hdpornpicture.com, 1
 hdrams.com, 1
 hdrezka2018.tk, 1
-hdrsource.com, 1
 hdrtranscon.com, 0
 hds-lan.de, 1
 hdscheduleers.ga, 1
@@ -62511,6 +62977,7 @@
 health-and-beauty-news.net, 1
 health-ashlandcounty-oh.gov, 1
 health-e.org.za, 1
+health-ecore.com, 1
 health-match.com.au, 1
 health-plan-news.com, 1
 health-road.ga, 1
@@ -62562,6 +63029,7 @@
 healthcaptive.ga, 1
 healthcare.gov, 0
 healthcare4ppl.com, 1
+healthcareadministrationedu.org, 1
 healthcareagency.tk, 1
 healthcareareainfo.tk, 1
 healthcareconnexion.com, 1
@@ -62577,6 +63045,7 @@
 healthcarereviews.tk, 1
 healthcarestaffingacademy.com, 1
 healthcaresuccess.com, 1
+healthcaresystemcareersedu.org, 1
 healthcatch.ga, 1
 healthcentralasia.tk, 1
 healthcentralmedicine.tk, 1
@@ -62643,6 +63112,7 @@
 healthfortworth.tk, 1
 healthfrederick.tk, 1
 healthfreeport.tk, 1
+healthful.eu.org, 1
 healthglamour.ga, 1
 healthgoddess.ga, 1
 healthgrace.ga, 1
@@ -62832,7 +63302,6 @@
 healthyhomesofmichigan.com, 0
 healthyhomeventilation.com.au, 1
 healthyhours.tk, 1
-healthyimprovementsforyou.com, 1
 healthyindiana.tk, 1
 healthykansas.tk, 1
 healthykitchen101.com, 1
@@ -62867,7 +63336,6 @@
 heardcountyathletics.com, 1
 hearfool.cc, 1
 hearingshofar.com, 1
-hearingthecall.org, 1
 hearkener.com, 1
 heart-cartoons.tk, 1
 heart-valve-surgery.com, 1
@@ -62876,6 +63344,7 @@
 heartbound.wiki, 1
 heartcard.tk, 1
 heartchating.tk, 1
+heartcomms.com.au, 1
 heartfolder.com, 1
 heartgames.pl, 1
 hearthandhomebuyers.com, 1
@@ -62915,7 +63384,6 @@
 hearty.tw, 1
 heartyapp.com, 1
 heartyapp.tw, 1
-heartycraft.com, 1
 heartymail.com, 1
 hearusa.com, 1
 heaslip-aluminium-smelter-engineering.com, 1
@@ -62926,6 +63394,7 @@
 heatcleanerers.ga, 1
 heatcleanerest.ga, 1
 heatershop.co.uk, 1
+heatgeek.com, 1
 heatherbells.tk, 1
 heatherleysephotography.com, 1
 heathersmithcommercial.com, 1
@@ -62994,6 +63463,7 @@
 hedman.tk, 1
 hedonics.org, 1
 hedonism.org, 1
+hedonistai.org, 1
 hedonistic-imperative.com, 1
 hedonistic.org, 1
 hedonium.com, 1
@@ -63053,6 +63523,7 @@
 heikki-mikkola.tk, 1
 heikomauel.de, 1
 heikoopminiaturen.nl, 1
+heikorichter.name, 1
 heiland.io, 1
 heilbronn.tk, 1
 heiliao.in, 1
@@ -63061,7 +63532,6 @@
 heilpraktiker-maxdorf.de, 1
 heimansschildersbedrijf.nl, 1
 heimatverein-eitensheim.de, 1
-heimdallr.nl, 1
 heimdallsensors.com, 1
 heimnetze.org, 0
 heimonen.eu, 1
@@ -63089,7 +63559,6 @@
 hekat.sk, 1
 hekate.com.mx, 1
 hekeki.com, 1
-hekimim.tk, 1
 hekoro.ml, 1
 hektenkairez.com, 1
 hekwerken.tk, 1
@@ -63190,7 +63659,6 @@
 helloexit.com, 1
 hellofilters.com, 1
 helloindia.tk, 1
-hellojapan.asia, 1
 hellokashmir.tk, 1
 hellolove.sg, 1
 hellomookie.com, 1
@@ -63256,6 +63724,8 @@
 helpconnect.com.au, 1
 helpcrm.co.uk, 1
 helpekwendenihospital.com, 1
+helpinghandspartners.org, 1
+helpingupromo.com, 1
 helpkoil.com, 1
 helplightning.com, 1
 helpline.com.ua, 1
@@ -63275,6 +63745,7 @@
 helpticket.tk, 1
 helpwaarbenik.nl, 1
 helpwise.io, 1
+helpwithadoption.com, 1
 helpwithinreach.com, 1
 helpwithmybank.gov, 1
 helpwithmycheckingaccount.gov, 1
@@ -63309,9 +63780,9 @@
 hemphopper.eu, 1
 hempistore.com, 1
 hempoffset.com, 1
-hempseedhealth.com, 1
 hempsteadcitytx.gov, 1
 hems.si, 1
+hemtest.com, 1
 hen.ee, 1
 hen.ne.ke, 1
 hendersoncountyil.gov, 1
@@ -63354,6 +63825,7 @@
 henningkerstan.de, 1
 henningkerstan.org, 1
 hennymerkel.com, 1
+henradplumbing.co.uk, 1
 henri-feuillade.tk, 1
 henri.moe, 1
 henrieta-nagyova.tk, 1
@@ -63394,7 +63866,6 @@
 hentairoulette.com, 1
 hentaishit.com, 1
 hentaiworld.cc, 0
-hentaiz.pro, 1
 hentaizm.cf, 1
 hentamanga.tk, 1
 hentavfall.no, 1
@@ -63432,6 +63903,7 @@
 herbalifereport.tk, 1
 herbalkanker.tk, 1
 herbandpat.org, 1
+herbarex.bg, 1
 herbarium.cf, 1
 herberichfamily.com, 1
 herbers.tk, 1
@@ -63496,6 +63968,7 @@
 hermes-net.de, 1
 hermes-servizi.it, 1
 hermessenger.fr, 1
+hermetas.org, 1
 hermetien.tk, 1
 hermietkreeft.site, 0
 herminghaus24.de, 1
@@ -63522,6 +63995,7 @@
 herohealth.com, 1
 heroiclove.com, 1
 heroicpixel.com, 0
+heroinaaustral.com, 1
 herold.me, 1
 herold.space, 1
 heromlabs.tk, 1
@@ -63571,7 +64045,6 @@
 herzberg.site, 1
 herzfuersoziales.at, 1
 herzig.cc, 1
-herzogglass.com, 1
 herzpfa.de, 1
 herzwacht.de, 1
 herzzuherz.de, 1
@@ -63616,6 +64089,7 @@
 hetveurtheater.nl, 1
 hetvezercsarda.hu, 1
 hetwalhalla.nl, 1
+heureetka.fr, 1
 heureka.fi, 1
 heureka2.com, 1
 heuremiroir.info, 1
@@ -63625,6 +64099,7 @@
 heutger.net, 1
 hev.edu.ee, 1
 heveacom.com, 1
+hevertonfreitas.com.br, 1
 hevo.io, 1
 hevoapp.com, 1
 hevodata.com, 1
@@ -63696,6 +64171,7 @@
 hf-rpg.ml, 1
 hf51-domeinen.nl, 1
 hf51.nl, 1
+hfa3.org, 1
 hfholidays.co.uk, 1
 hfikq8.cf, 1
 hflsdev.org, 0
@@ -63738,6 +64214,7 @@
 hh9397.com, 1
 hh9721.com, 0
 hh9728.co, 1
+hhank.com, 1
 hhdelfland.nl, 1
 hhhdb.com, 1
 hhristov.tk, 1
@@ -63748,7 +64225,6 @@
 hi-million.ga, 1
 hi-million.ml, 1
 hi-newspaper.ml, 1
-hi-res.cloud, 1
 hi-res.vip, 1
 hi-techcrimes.net, 1
 hi808.net, 0
@@ -63756,8 +64232,8 @@
 hiaus.net.au, 1
 hibanaworld.com, 1
 hibari.moe, 1
+hibbingmn.gov, 1
 hibin.tk, 1
-hibiscuscoastfinancialservices.com.au, 1
 hibit.de, 1
 hibrid-turf.com, 1
 hiccupsandjuice.co.uk, 1
@@ -63770,6 +64246,7 @@
 hicts.nl, 1
 hiczp.com, 1
 hidalgoad.org, 1
+hidayatullah.com, 1
 hidbo.de, 1
 hidden.gq, 1
 hidden.nyc, 1
@@ -63872,9 +64349,9 @@
 highlatitudestravel.com, 0
 highlevelwoodlands.com, 1
 highlifegayrimenkul.com, 1
+highlightsfootball.com, 1
 highlightsfootball.net, 1
 highlnk.com, 1
-highlycompressedzip.co, 1
 highnation.ml, 1
 highperfection.com, 1
 highperformance.ie, 1
@@ -63906,6 +64383,7 @@
 highwaytohoell.de, 1
 highwayzen.org, 1
 highworldnet.ga, 1
+higilimpmaringa.com.br, 1
 higilopocht.li, 1
 higueras.tk, 1
 hii.or.th, 1
@@ -63944,6 +64422,7 @@
 hillcottagessuffolk.co.uk, 1
 hillcountryoralsurgery.com, 1
 hillcrestplumber.co.za, 1
+hillenbrand.com, 1
 hillexplorer.com, 1
 hillhiker.com, 1
 hillier-swift.co.uk, 1
@@ -63969,7 +64448,6 @@
 hiltonsedonaresort.com, 1
 hiltonwaikoloavillage.com, 1
 hilunetan.tk, 1
-himachalgraminbank.org, 1
 himalaya-masala.at, 1
 himalayanoutback.com, 1
 himarijuana.tk, 1
@@ -63985,6 +64463,7 @@
 himic.ru, 1
 himiku.com, 1
 himj.de, 1
+himnosycanticos.org, 1
 himpler.com, 0
 himprom.com, 1
 hin10.com, 1
@@ -63995,9 +64474,9 @@
 hindibaba.tk, 1
 hindigalaxy.com, 1
 hindikibindi.tk, 1
+hindimeinjankari.com, 1
 hindimeseekhe.tk, 1
 hindimoviedownload.net, 1
-hindsband.com, 1
 hindu-temple.tk, 1
 hinduradio.tk, 1
 hindustantimes.ml, 1
@@ -64021,7 +64500,6 @@
 hipecompany.tk, 1
 hipeople.com.br, 1
 hiper-humor.tk, 1
-hiperbusinessblog.hu, 1
 hipercultura.com, 1
 hipermenu.com, 1
 hipersuli.hu, 1
@@ -64030,6 +64508,7 @@
 hiphopbolivia.tk, 1
 hiphopdates.de, 1
 hiphopfashion.tk, 1
+hipkneeortho.com.sg, 1
 hipnos.net, 1
 hipnosisypsicoterapia.com, 1
 hipnosisyterapias.com, 1
@@ -64044,6 +64523,7 @@
 hippomovers.com, 1
 hippopotamuses.org, 1
 hips.com, 1
+hipstermamaproductions.com, 1
 hipsterpixel.co, 1
 hiptwist.tk, 1
 hipuranyhou.cz, 1
@@ -64081,6 +64561,7 @@
 hiringprocess.careers, 1
 hiringrise.com, 1
 hirisejanitorial.com, 1
+hirmankala.com, 1
 hiro-dc.info, 1
 hirobbie.com, 1
 hiromi.eu.org, 1
@@ -64215,7 +64696,6 @@
 hiyacar.co.uk, 1
 hiyuki2578.net, 1
 hizakura.nl, 1
-hizhina-hagrida.ru, 1
 hj-mosaiques.be, 1
 hj.rs, 1
 hj111777.com, 0
@@ -64257,11 +64737,9 @@
 hk.search.yahoo.com, 0
 hk130.com, 1
 hkamran.com, 1
-hkan.tv, 0
 hkas.org.hk, 1
 hkconcept.lu, 1
 hkd.cn, 1
-hkhk.edu.ee, 1
 hkkangenwater.org, 1
 hkl-gruppe.de, 1
 hklbgd.org, 1
@@ -64344,12 +64822,12 @@
 hnntube.com, 1
 hno-arzt-thomitzek.de, 1
 hno-norderstedt.de, 1
+hnojik.cz, 1
 hnrk.io, 1
 hnsseed.com, 1
 hntuin.nl, 1
 hny.co, 1
 hnyp.hu, 1
-ho188.net, 1
 ho918.net, 1
 hoaas.no, 1
 hoagiandpita.com, 1
@@ -64367,11 +64845,11 @@
 hobbiesworld.tk, 1
 hobby-drechselei.de, 1
 hobby-lover.com, 1
+hobby4geek.com, 1
 hobbybrauer.de, 1
 hobbydo.cf, 1
 hobbydo.ga, 1
 hobbydo.gq, 1
-hobbysfinden.de, 1
 hobbyvogue.com, 1
 hobbyweeklyers.ga, 1
 hobbyweeklyest.ga, 1
@@ -64476,13 +64954,11 @@
 hoiku-map.tokyo, 0
 hoiku-navi.com, 0
 hoing.io, 1
-hoiquanadida.com, 1
 hoistfinance.co.uk, 1
 hoistsdirect.com, 1
 hojalatero.tk, 1
 hojat.tk, 1
 hoka.com, 1
-hokejovykalendar.cz, 1
 hoken-okazaki.com, 1
 hoken-wakaru.jp, 1
 hokende.com, 1
@@ -64496,6 +64972,7 @@
 hokusya.com, 1
 holacannx.com, 1
 holacbdoils.com, 1
+holad.de, 1
 holadinero.es, 0
 holadinero.mx, 0
 holainternet.tk, 1
@@ -64550,9 +65027,11 @@
 hollandwi.gov, 1
 hollermann.eu, 1
 hollinsbookstore.com, 1
+hollistermo.gov, 1
 hollisters.servepics.com, 1
 hollmann.international, 1
 hollomanfss.marketing, 1
+hollowman.ml, 1
 hollowrap.com, 1
 hollowwinds.xyz, 1
 hollybanks.net, 1
@@ -64565,6 +65044,7 @@
 hollyloless.org, 1
 hollyspringsms.gov, 1
 hollywoodbios.com, 1
+hollywoodsmilesfl.com, 1
 hollywoodstars.tk, 1
 hollyworks.com, 1
 holmenwi.gov, 1
@@ -64588,10 +65068,10 @@
 holstein.tk, 1
 holstphoto.com, 1
 holtcountyne.gov, 1
-holtkampfinancieeladvies.nl, 1
 holtslander.ca, 1
 holubowski.com, 1
 holundersberg.de, 1
+holuxe.com, 1
 holvonix.com, 1
 holychaos.tk, 1
 holycrosscatholics.org, 1
@@ -64804,6 +65284,7 @@
 homeforum.tk, 1
 homegang.ga, 1
 homegardendecoration.tk, 1
+homegardengift.com, 1
 homegardeningforum.com, 1
 homegardenresort.nl, 1
 homegeo.ga, 1
@@ -64838,6 +65319,7 @@
 homelabquotes.com, 1
 homeland.ie, 1
 homelandsecurity.gov, 1
+homelandsecurityedu.org, 1
 homelaps.com, 1
 homeletter.ga, 1
 homelib.cf, 1
@@ -64860,6 +65342,7 @@
 homensdeouro.com.br, 1
 homenumber.ga, 1
 homeodynamics.com, 1
+homeoesp.org, 1
 homeofbeer.nl, 1
 homeofceline.tk, 1
 homeofjones.net, 1
@@ -64899,6 +65382,7 @@
 homero.tk, 1
 homesbyayres.com, 1
 homeschoolinkorea.tk, 1
+homesconnect.com, 1
 homeseguridad.com, 1
 homeseller.com, 1
 homeserve.es, 1
@@ -65000,7 +65484,6 @@
 honeycrypt.com, 1
 honeygirl.tk, 1
 honeyspot.de, 1
-honeysucklewhite.com, 1
 honeytracks.com, 1
 honeyuniversity.net, 1
 honeyxlips.com, 1
@@ -65099,7 +65582,6 @@
 hops-and-ashes.de, 1
 hopscotch.cz, 1
 hopscotchmodel.com, 1
-hopzone.net, 1
 hor.rent, 1
 hor.website, 1
 horablanquiazul.tk, 1
@@ -65156,6 +65638,7 @@
 horoca.net, 1
 horochx.org, 0
 horodance.dk, 1
+horoscope-sound-healing.com, 1
 horoscopimages.tk, 1
 horoscopo.ml, 1
 horotoday.tk, 1
@@ -65167,6 +65650,7 @@
 horrormovies.gr, 1
 horrorserv.com, 1
 horrycountysc.gov, 1
+hors.coffee, 1
 horsa.cc, 1
 horsa.io, 1
 horsa.xyz, 1
@@ -65184,6 +65668,7 @@
 horsemanshipdentistryschool.com, 1
 horseplanet.tk, 1
 horsewithnoname.com, 1
+horsgroup.com, 1
 horsky.me, 1
 horstfuchs.tk, 1
 horstmanshof.eu, 1
@@ -65230,6 +65715,7 @@
 hospitalcruzvermelha.pt, 1
 hospitaldaluz.pt, 1
 hospitaldebarcelona.cat, 1
+hospitaldelaconcepcion.com, 1
 hospitality-colleges.com, 1
 hospitalrecords.com, 1
 hospitalsanjuandedios.es, 1
@@ -65243,8 +65729,6 @@
 host.ax, 1
 host.com.tw, 1
 host2100.xyz, 1
-host24.com.pk, 1
-host2be.com, 0
 hostadvice.com, 1
 hostalk.net, 1
 hostalsanmarcos.tk, 1
@@ -65425,7 +65909,6 @@
 hotellamm.it, 1
 hotellaserenella.it, 1
 hotello.io, 1
-hotelmadhuwanvihar.com, 1
 hotelmap.com, 1
 hotelmariasas.it, 1
 hotelmarinaadria.com, 1
@@ -65526,7 +66009,6 @@
 hottie.at, 1
 hotting.nl, 1
 hottoys.tk, 1
-hottubspasnewcastle.co.uk, 1
 hotvehs.com, 1
 hotvideosgalleries.com, 1
 hotwaterspecialist.com.au, 1
@@ -65582,6 +66064,7 @@
 houseremodels.tk, 1
 housese.at, 1
 housesinportugal.net, 1
+housesittingparaguay.com, 1
 housesmartdecore.tk, 1
 housestationlive.com, 1
 housesumo.com, 1
@@ -65590,6 +66073,7 @@
 housingauctions.net, 1
 housingcenter.com, 1
 housingloan.jp, 1
+housingokc.gov, 1
 houston-probate-law.com, 1
 houstonaudubon.org, 1
 houstonauthorizedrepair.com, 1
@@ -65674,7 +66158,6 @@
 howtoboy.com, 1
 howtocurekennelcough.com, 1
 howtodesignwebsite.com, 1
-howtofixwindows.com, 1
 howtofreelance.com, 1
 howtogeek.com, 1
 howtogeekpro.com, 1
@@ -65701,6 +66184,7 @@
 howtutu.link, 1
 howtutu.net, 1
 howtutu.org, 1
+howtutu.social, 1
 howudoin.tk, 1
 howunadeydoam.ng, 1
 howwhy.tw, 1
@@ -65737,6 +66221,7 @@
 hpsldc.com, 1
 hpv-info.ee, 1
 hpvtimmerwerken.nl, 1
+hq.marketing, 1
 hq77.ru, 1
 hqblog.cn, 0
 hqmovies.club, 1
@@ -65752,7 +66237,6 @@
 hr-intranet.com, 0
 hr-nielsen.tk, 1
 hr-praemien-santander.de, 1
-hr-tech.shop, 1
 hr-toys.shop, 1
 hr98.tk, 1
 hrabogados.com, 1
@@ -65778,6 +66262,7 @@
 hrgt.eu, 1
 hristijanspirovski.tk, 1
 hristov.help, 1
+hriveralaw.com, 1
 hrjfeedstock.com, 1
 hrjfeedstock.org, 1
 hrjob.ml, 1
@@ -65809,6 +66294,7 @@
 hrsa.gov, 1
 hrseoservice.com, 1
 hrstapps-dev.com, 1
+hrtech.shop, 1
 hrtechnologypro.cf, 1
 hrtpova.gov, 1
 hru.gov, 1
@@ -66098,7 +66584,7 @@
 huissier-vosges.com, 1
 huit.re, 1
 huitaodang.com, 1
-huk-autoservice.de, 1
+huk-autoservice.de, 0
 hukkatavara.com, 1
 hukuhauchi.com, 1
 hulaginswoodworking.com, 1
@@ -66122,6 +66608,7 @@
 huma-auto.club, 0
 human-centricity.com, 1
 human-clone.com, 1
+human-dev.io, 1
 human-parasites.tk, 1
 human-shinri.com, 1
 humana-medicaresupplement.com, 1
@@ -66138,6 +66625,8 @@
 humaninterest.com, 1
 humanistgruppen.tk, 1
 humanit.com.au, 1
+humanity.com, 1
+humanize.security, 1
 humanlocation.net, 1
 humanresources.gq, 1
 humanresourcesedu.org, 1
@@ -66146,6 +66635,7 @@
 humanrights.tk, 1
 humansense.nl, 1
 humanservicesedu.org, 1
+humanshiftpaper.com, 1
 humantouchmassagechairs.com, 1
 humanzee.com, 1
 humara.tk, 1
@@ -66214,7 +66704,6 @@
 hund.io, 1
 hund.ml, 1
 hundamosantena3.tk, 1
-hunde.io, 1
 hundedekken.tk, 1
 hundeschule.tk, 1
 hundestudios.tk, 1
@@ -66241,6 +66730,7 @@
 hunhold.it, 1
 hunhold.net, 1
 hunhold.org, 1
+huniverse.co, 1
 hunngard.com, 1
 hunqz.com, 1
 hunstoncanoeclub.co.uk, 1
@@ -66257,7 +66747,6 @@
 hunting.ml, 1
 huntingdonlifesciences.com, 1
 huntingdonsmithfieldpa.gov, 1
-huntinggamesupplies.com, 1
 huntingnewfoundlandlabrador.com, 1
 huntingspirits.tv, 1
 huntingtonestateproperties.com, 1
@@ -66316,7 +66805,6 @@
 hutchinsonmn.gov, 1
 huthacks.com, 1
 huto.ml, 1
-hutten.eu, 1
 huttotxedc.gov, 1
 huurwoordenaar.nl, 1
 huuto.tk, 1
@@ -66326,6 +66814,7 @@
 huwshepheard.com, 1
 huxcoconstruction.com, 1
 huxley.net, 1
+huynhviet.com, 1
 huyvu.nl, 1
 huzurmetal.net, 1
 huzurpansiyonfirtinavadisi.com, 1
@@ -66336,6 +66825,7 @@
 hv-portal.de, 1
 hv.se, 1
 hva.cl, 1
+hvacschool.org, 1
 hvanmeldung.de, 1
 hvanmeldung.online, 1
 hvcoksvote.gov, 1
@@ -66353,7 +66843,7 @@
 hvtuananh.com, 1
 hvylya.net, 1
 hw8.eu, 1
-hw923.com, 0
+hw923.com, 1
 hwag-pb.de, 1
 hwasung.com.vn, 1
 hwe.nz, 1
@@ -66453,7 +66943,6 @@
 hypar.io, 1
 hyparia.fr, 1
 hyparia.org, 1
-hype.tech, 1
 hypelifemagazine.com, 1
 hypemgmt.com, 1
 hyper-matrix.org, 1
@@ -66479,6 +66968,7 @@
 hypermonkey.tk, 1
 hypernode.com, 1
 hyperonline.tk, 1
+hyperpop.ca, 1
 hyperreal.chat, 1
 hyperreal.info, 1
 hypershell.tk, 1
@@ -66504,6 +66994,7 @@
 hypnosis.edu, 1
 hypnotizedgirls.ml, 1
 hypnovir.us, 1
+hypocretins.com, 1
 hypocrites.tk, 1
 hypogeal.com, 1
 hypokalkulacka.sk, 1
@@ -66551,6 +67042,7 @@
 hzbk.org, 0
 hztgzz.com, 1
 hzwc.nl, 1
+hzz.sh, 1
 i--b.com, 1
 i-0v0.in, 1
 i-3c.co.jp, 1
@@ -66636,7 +67128,6 @@
 iaata.info, 1
 iab-diva.ru, 1
 iabot.tk, 1
-iacc.cl, 1
 iacee.org, 1
 iaco.li, 1
 iacono.com.br, 0
@@ -66645,7 +67136,6 @@
 iadore.tk, 1
 iadttaveras.com, 1
 iae.one, 1
-iaeste.or.jp, 1
 iaf.gov, 1
 iaf.nu, 1
 iafd.com, 1
@@ -66681,6 +67171,7 @@
 iamsadmax.ga, 1
 iamsainknight.tk, 1
 iamsamaskom.tk, 1
+iamtam.tech, 1
 iamtheib.me, 1
 iamtonyarthur.com, 1
 iamtrainsafe.co.uk, 1
@@ -66707,7 +67198,7 @@
 ianwalsh.org, 0
 iap.network, 0
 iapro.com, 1
-iapws.com, 1
+iapws.com, 0
 ias-gruppe.net, 1
 ias.ua, 1
 iassess.eu, 1
@@ -66774,6 +67265,7 @@
 iblog.pk, 1
 iblowdry.com, 1
 iblsoft.com, 1
+ibm.gov.in, 1
 ibmaspera.com, 1
 ibmix.de, 1
 ibnsinatrust.com, 1
@@ -66784,7 +67276,6 @@
 iboy1069.com, 0
 ibpegasus.tk, 1
 ibps-recruitment.in, 1
-ibpservice.de, 1
 ibpsrecruitment.co.in, 1
 ibq.life, 1
 ibra.org.uk, 1
@@ -66810,7 +67301,6 @@
 ibz.be, 1
 ic3.gov, 1
 icafecash.com, 1
-icaleo.org, 0
 icams-portal.gov, 1
 icanhazpass.com, 1
 icanseeyou.tk, 1
@@ -66823,6 +67313,7 @@
 icas-nsn.gov, 1
 icasas.mx, 1
 icasnetwork.com, 1
+icastgo.com, 1
 icasture.top, 1
 icatt.nl, 1
 icbemp.gov, 0
@@ -66896,6 +67387,7 @@
 ichitaso.com, 1
 ichkeria.info, 1
 ichtroje.tk, 1
+ichuck.rocks, 1
 ici-freewares.tk, 1
 ici.ac.nz, 1
 ici.ms, 1
@@ -67135,6 +67627,7 @@
 idesoft.info, 1
 idesoft.net, 1
 idesoft.org, 1
+idesoftinnovacion.com, 1
 idesoftinnovacion.es, 1
 idev-hub.com, 1
 idev.games, 1
@@ -67142,7 +67635,7 @@
 idexxpublicationportal.com, 1
 idf64.com, 1
 idf64.org, 1
-idfarm.co.kr, 1
+idfarm.co.kr, 0
 idfc.gov, 1
 idgateway.co.uk, 1
 idgr.de, 1
@@ -67200,6 +67693,7 @@
 idtechnowizard.com, 1
 idtheft.gov, 1
 idubaj.cz, 1
+idvchile.cl, 1
 idventure.de, 1
 idvl.de, 1
 idweblog.com, 1
@@ -67233,6 +67727,7 @@
 ierei.net, 1
 ieros.it, 1
 ies-italia.it, 0
+iesegconseil.fr, 1
 iesonline.co.in, 1
 iesucreipi.edu.co, 1
 iet.co.za, 1
@@ -67319,6 +67814,7 @@
 igamingpocketdirectory.com, 1
 igamingsuppliers.com, 1
 igarage.nl, 0
+igarchitects.com.au, 1
 igdb.com, 1
 igdn.de, 1
 igenuinebeauty.co.jp, 1
@@ -67367,6 +67863,7 @@
 ignet.gov, 1
 ignite.cz, 1
 ignitedmindz.in, 1
+igniteenergy.co.uk, 1
 ignitelocal.com, 1
 ignytebrands.com, 1
 igocarwraps.com, 1
@@ -67374,6 +67871,8 @@
 igor-usov.tk, 1
 igorandandre.com, 1
 igorrealestate.com, 1
+igorshishkin.com, 1
+igorshishkin.ru, 1
 igorvisi.com, 1
 igorvlasov.tk, 1
 igorvracar.com, 1
@@ -67437,6 +67936,7 @@
 ihost.md, 1
 ihostup.net, 1
 ihouseu.com, 1
+ihr-finanzcockpit.de, 1
 ihr-hausarzt-kleinmachnow.de, 1
 ihre-ernaehrung.de, 1
 ihre-pflege-sachsen.de, 1
@@ -67567,6 +68067,7 @@
 ikudo.top, 1
 ikulist.me, 1
 ikumi.us, 1
+ikutin.id, 1
 ikvts.de, 1
 ikwildjworden.com, 1
 ikwileendomein.tk, 1
@@ -67686,6 +68187,7 @@
 illusia.tk, 1
 illusionephemere.com, 0
 illusionsdoptique.com, 1
+illusionsix.ca, 1
 illusionunlimited.com, 1
 illusiveshop.com, 1
 illustrate.biz, 1
@@ -67713,11 +68215,9 @@
 ilovelwy.com, 1
 iloveporn.ml, 1
 ilovesamara.tk, 1
-iloveseo.com, 1
 ilovesnow.ml, 1
 ilovestickers.gr, 1
 ilovethiscampsite.com, 1
-iloveviral.org, 1
 ilovewallpaper.tk, 1
 iloveyoutoo.tk, 1
 ilovias-farm.fr, 1
@@ -67725,10 +68225,10 @@
 ilpescara.it, 1
 ilpiacenza.it, 1
 ilpl.me, 0
+ilpuntosano.it, 1
 ilrg.com, 1
 ils-savaient.fr, 1
 ilsaperedelgusto.it, 1
-ilsc.ngo, 0
 ilsedelangeforum.tk, 1
 iltec.ru, 1
 iltis.rocks, 1
@@ -67755,7 +68255,6 @@
 im-internet-geld-verdienen.tk, 1
 im-razmakh.ru, 1
 im-s.net, 1
-im2net.com, 1
 im4h.de, 1
 im4h.eu, 1
 im4h.info, 1
@@ -67770,7 +68269,6 @@
 image.wtf, 1
 image4arab.tk, 1
 imagealbums.tk, 1
-imagebin.ca, 1
 imagecom.tk, 1
 imagecurl.com, 1
 imagecurl.org, 1
@@ -67828,6 +68326,7 @@
 imask.ml, 1
 imask.tk, 1
 imason.com, 1
+imatraelekter.ee, 1
 imawasn-consulting.com, 1
 imaya.tk, 1
 imbdagency.com, 1
@@ -67861,6 +68360,7 @@
 imexm.mx, 1
 imexmed.com.gt, 1
 imfacademy.com, 1
+imfblog.com, 1
 imforza.com, 1
 img.mg, 1
 img.ovh, 1
@@ -67879,6 +68379,7 @@
 imi-rhapsody.eu, 0
 imibo.com, 1
 imicroscope.tk, 1
+imigrant.dk, 1
 imigrasilampung.co.id, 1
 imin.co, 1
 imine.ru, 1
@@ -67958,7 +68459,7 @@
 immoisrael.be, 1
 immoisrael.ch, 1
 immoisrael.co.il, 1
-immoisrael.com, 1
+immoisrael.com, 0
 immoisrael.de, 1
 immoisrael.eu, 1
 immoisrael.fr, 1
@@ -67972,7 +68473,6 @@
 immoraldoctors.tk, 1
 immortal-it.tk, 1
 immortal-pc.info, 1
-immortal.org.in, 1
 immortal.run, 1
 immortalcorporation.tech, 1
 immortallove.tk, 1
@@ -68027,7 +68527,6 @@
 impeka.in, 1
 impelup.com, 1
 impendulo.org, 1
-impera.at, 1
 imperator-janssens.tk, 1
 imperdin.com, 1
 imperdintechnologies.com, 1
@@ -68176,7 +68675,6 @@
 inanan.cf, 1
 inanec.gq, 1
 inaned.ga, 1
-inantrantung.com, 1
 inara.cz, 1
 inares.org, 1
 inarizona.tk, 1
@@ -68189,7 +68687,6 @@
 inboxen.org, 1
 inboxsms.tk, 1
 inbrain-api-v2.azurewebsites.net, 1
-inbrand.agency, 1
 inc-news.ru, 1
 incarceratedwombats.com, 1
 incarter.ga, 1
@@ -68205,7 +68702,6 @@
 incertint.com, 1
 inchargeus.net, 1
 inchcape-fleet-autobid.co.uk, 1
-inchealth.org, 1
 inchenaim.com, 1
 inchidi.id, 1
 incident.dk, 1
@@ -68241,6 +68737,7 @@
 incrediblez.tk, 1
 increment.com, 1
 incrementation.net, 0
+increso.it, 1
 incrom.com, 0
 inculate.tk, 1
 incurvy.de, 1
@@ -68310,7 +68807,6 @@
 indianculture.gov.in, 1
 indiandramasonline.tk, 1
 indianengineer.tk, 1
-indianerschmuck24.de, 1
 indianet.tk, 1
 indiangamingreport.com, 1
 indianhairextension.tk, 1
@@ -68353,6 +68849,7 @@
 indieweb.rocks, 1
 indigartbeading.ca, 1
 indigartbeading.com, 1
+indigenous.gov.au, 1
 indigestiblesuppuration.tk, 1
 indignes-strasbourg.tk, 1
 indigo.pet, 1
@@ -68485,7 +68982,6 @@
 inference.biz.tr, 1
 inferiousbypasser.cf, 1
 infermiere.roma.it, 1
-infernal.rs, 1
 infertilitycure.tk, 1
 inffin-portal.com, 1
 inffin-portal.de, 1
@@ -68581,6 +69077,7 @@
 infoamin.com, 1
 infoapis.net, 1
 infobae.com, 1
+infobanca.es, 1
 infobanglanet.tk, 1
 infobasquet.tk, 1
 infobiznes.cf, 1
@@ -68608,6 +69105,7 @@
 infodis.com, 1
 infoduv.fr, 1
 infoeccos.com, 1
+infofamouspeople.com, 1
 infoflora.ch, 1
 infofp.tk, 1
 infogai.tk, 1
@@ -68669,6 +69167,7 @@
 informaticapremium.com, 0
 informaticien.tk, 1
 informaticmousset.tk, 1
+informatico.pt, 1
 informaticoalicante.tk, 1
 informaticolamancha.tk, 1
 informatiger.net, 1
@@ -68856,11 +69355,9 @@
 inglessantacruz.tk, 1
 inglestotal.tk, 1
 ingo-schlueter.de, 1
-ingolonde.pw, 1
 ingoschlueter.de, 1
 ingrammicrocloud.com, 1
 ingresatupedido.com, 1
-ingresomedicina.com, 1
 ingresosautomaticos.tk, 1
 ingresospasivosyafiliados.online, 1
 ingridbai.me, 1
@@ -68943,10 +69440,8 @@
 inline-sport.cz, 1
 inlinea.ch, 1
 inlineskates.tk, 1
-inlink.ee, 1
-inlink.eu, 1
-inlink.ltd, 1
 inlocon.de, 1
+inlomax.com, 1
 inlovechocolate.store, 1
 inlt.com, 1
 inmaaa.cf, 1
@@ -68969,6 +69464,7 @@
 inmoveskates.com, 1
 inmucrom.com, 1
 inmucrom.es, 1
+inmueblescaribe.com, 1
 inmuseworld.tk, 1
 inmusicfestival.com, 1
 inmyhead.tk, 1
@@ -69092,6 +69588,7 @@
 insanb.com, 1
 insancendekiams.sch.id, 1
 insane.zone, 1
+insaneair.co.uk, 1
 insanedevs.com, 1
 insanepyro.tk, 1
 insanity.zone, 1
@@ -69111,6 +69608,7 @@
 insertcoins.net, 1
 insertcredit.com, 1
 insertface.com, 1
+insertnext.com, 1
 inshapenutrition.com.br, 1
 inshared.nl, 1
 inshop.hu, 1
@@ -69179,6 +69677,7 @@
 inspiredhousewife.com, 1
 inspiredlife.fun, 1
 inspiredrealtyinc.com, 1
+inspireplanner.com, 1
 inspiresurgery.com, 1
 inspirez-vous-sophro.com, 1
 inspiringtips.com, 1
@@ -69253,6 +69752,8 @@
 institutoessencia.com, 1
 institutogiuseppe.com, 1
 institutogiuseppe.com.ar, 1
+institutolancaster.com, 1
+institutoliderar.edu.co, 1
 institutomaritimocolombiano.com, 1
 institutulcultural.ro, 1
 instocktho.cc, 1
@@ -69331,7 +69832,6 @@
 integratedbms.co.za, 1
 integratedmedicalonline.com, 1
 integratedphysio.com.au, 1
-integratemyschool.com, 1
 integration-mouvements-oculaires.com, 1
 integrator.io, 1
 integrisaviation.com, 1
@@ -69339,6 +69839,7 @@
 integritree.ca, 1
 integrity.gov, 1
 integritydetail.com, 1
+integrityfirstloans.com, 1
 integritygeeks.com, 1
 integrityglobal.com, 1
 integrityhomecontractors.com, 1
@@ -69358,13 +69859,11 @@
 intelekta.es, 1
 intelhost.cl, 1
 intelhost.com, 1
-intelhost.com.ar, 1
 intelhost.com.br, 1
 intelhost.com.co, 1
 intelhost.com.mx, 1
 intelhost.com.pe, 1
 intelhost.net, 1
-intelics.com.au, 1
 intelius.cf, 1
 intellar.com, 1
 intelldynamics.com, 1
@@ -69439,6 +69938,7 @@
 intercom-attachments-9.com, 1
 intercom-attachments.com, 1
 intercom-attachments.eu, 1
+intercom-language.training, 1
 intercom-mail.com, 1
 intercom-mail.eu, 1
 intercom-sheets.com, 1
@@ -69487,6 +69987,7 @@
 interiorsnmore.com, 1
 interisaudit.com, 1
 interitus.tk, 1
+interkulturban.cc, 1
 interlan.se, 1
 interlapse.tk, 1
 interlecwa.com, 0
@@ -69511,6 +70012,7 @@
 internalportal.net, 1
 international-arbitration-attorney.com, 1
 international-books.org, 1
+international-business-world.com, 1
 international-friends.net, 1
 international-genealogy-services.com, 1
 international.expert, 1
@@ -69524,6 +70026,7 @@
 internationalfrom.com, 1
 internationalgse.com, 1
 internationaljoustingleague.tk, 1
+internationalrelationsedu.org, 1
 internationalrugsdallas.com, 1
 internationalschool.it, 1
 internationalstudentassociation.com, 1
@@ -69533,7 +70036,6 @@
 internet-drive.tk, 1
 internet-gazeta.ga, 1
 internet-israel.com, 1
-internet-pornografie.de, 0
 internet-tv4u.tk, 1
 internet.org, 1
 internet42.tk, 1
@@ -69589,7 +70091,6 @@
 internist.ru, 1
 interparcel.com, 1
 interphoto.by, 1
-interplex.com, 1
 interpol.gov, 1
 interpret.cn, 1
 interpretacjawynikowbadan.info.pl, 1
@@ -69662,7 +70163,9 @@
 intr0.com, 1
 intr0.tk, 1
 intracdf.net, 1
+intracellulartherapies.com, 1
 intrack.net.au, 1
+intracom.com, 0
 intradayseasonals.com, 1
 intrador.com, 1
 intrafi.com, 1
@@ -69715,7 +70218,6 @@
 invantive.net, 1
 invantive.nl, 1
 invantive.org, 1
-invariant.me, 1
 invasion.com, 1
 invasivespeciesinfo.gov, 0
 invata-ma.ro, 1
@@ -69775,7 +70277,6 @@
 investigazione.roma.it, 1
 investinestonia.com, 0
 investingdiary.cn, 1
-investingindiscovery.com, 1
 investingnews.com, 1
 investingnews.com.au, 1
 investingoal.com, 1
@@ -69791,7 +70292,6 @@
 investirfazbem.com.br, 1
 investirsolidaire.fr, 1
 investisiya.az, 1
-investissementimmobilier.be, 0
 investisseur-nomade.fr, 1
 investisseur-or-matieres.com, 1
 investlatam.com, 1
@@ -69823,12 +70323,12 @@
 invictuscapital.com, 1
 invidious.rocks, 1
 invidis.de, 1
-invincia.com, 1
 invinoaustria.cz, 1
 invisible-college.com, 1
 invisiblehat.ventures, 1
 invisiblejiujitsu.co.uk, 1
 invisibles.ch, 0
+invisionary.tech, 1
 invisionary.tk, 1
 invisitone.com, 1
 invistics.com, 1
@@ -69838,7 +70338,6 @@
 invitebiz.tk, 1
 invitepeople.com, 1
 invitescafe.com, 1
-invitescene.com, 1
 invitia.net, 1
 invito.tk, 1
 invoiced.com, 1
@@ -69877,9 +70376,8 @@
 iocp.org, 0
 ioctl.cc, 1
 iocurrents.com, 0
-iocus.fun, 1
+iocus.fun, 0
 iodb.ru, 1
-iodine.com, 1
 iodu.re, 1
 ioga.tk, 1
 iogm-official.id, 1
@@ -69989,6 +70487,7 @@
 iparkki.com, 1
 ipass.live, 1
 ipcareers.net, 1
+ipcim.com, 1
 ipclabs.tk, 1
 ipcmali.ml, 1
 ipcom.com.br, 0
@@ -70073,6 +70572,7 @@
 iproducemusic.com, 1
 iproductrepair.com, 1
 iproskills.com, 1
+iprpetitiondenied.com, 1
 ips-consult.nl, 1
 ips-sachsen.de, 1
 ipschool.spb.ru, 1
@@ -70128,7 +70628,6 @@
 iqtechportal.com, 1
 iqtek.solutions, 1
 iqteksolutions.com, 1
-iquitosmall.com, 1
 iqwst.com, 1
 iraanswersers.ga, 1
 iraanswersest.ga, 1
@@ -70153,7 +70652,6 @@
 iranian.lgbt, 1
 iranjeunesse.com, 1
 iranjob.tk, 1
-iranlicorice.com, 1
 iranlinks.tk, 1
 iranonline.tk, 1
 iranophiles.com, 1
@@ -70250,7 +70748,6 @@
 irisws-staging.co.uk, 1
 irisws-testing.co.uk, 1
 iritual.ru, 1
-irjavan.com, 1
 irkfap.com, 1
 irkutsk-studygood.ga, 1
 irkutsk38.tk, 1
@@ -70265,6 +70762,7 @@
 irmo.hr, 1
 irmonline.tk, 1
 iroams.com, 1
+irob.co.jp, 1
 iroiroaruyo.net, 1
 iroise.ch, 1
 iroisedh.fr, 1
@@ -70306,7 +70804,6 @@
 iroquoiscountyil.gov, 1
 irpadafrique.ml, 1
 irr.ink, 1
-irr52.ru, 0
 irr59.ru, 1
 irrational.net, 1
 irrewilse.se, 1
@@ -70320,6 +70817,7 @@
 iruniruten.tk, 1
 irvingtonnj.gov, 1
 irvingtx.gov, 1
+irwincounty-ga.gov, 1
 irwinvalera.com, 1
 iryodatumoguide.com, 1
 irzumshafiq.tk, 1
@@ -70350,7 +70848,6 @@
 isaaczais.com, 1
 isaaya.com, 1
 isab.run, 1
-isab.top, 1
 isabelaflores.com, 1
 isabelcaviedes.com, 1
 isabellahoopsentertainment.com, 1
@@ -70425,6 +70922,7 @@
 isistomie.com, 0
 isitan.com, 1
 isitcoffeetime.com, 1
+isitdaytime.com, 1
 isitdoneyet.gov, 1
 isitef.com, 1
 isitnuclearwaryet.com, 1
@@ -70436,6 +70934,7 @@
 iskaron.de, 1
 iskaz.rs, 1
 iskconbd.org, 1
+iskconnews.org, 0
 iskconperth.com, 1
 iskin.xyz, 0
 iskkk.com, 1
@@ -70464,7 +70963,7 @@
 islamicarchitecturalheritage.com, 1
 islamicnews.tk, 1
 islamicsolution.tk, 1
-islaminbremen.de, 1
+islaminbremen.de, 0
 islamipages.tk, 1
 islamisgreat.tk, 1
 islamiyet.gen.tr, 0
@@ -70493,6 +70992,7 @@
 islandpumpandtank.com, 0
 islandsbanki.is, 1
 islandsofgreenturtles.tk, 1
+islatortuga.eu, 1
 islcustomsbrokers.com, 1
 islekyapi.com, 1
 islensktlambakjot.is, 1
@@ -70509,10 +71009,11 @@
 islykaithecutest.ml, 1
 ismail-biber.tk, 1
 ismailtoraman.com.tr, 1
-ismat.com, 1
+ismat.com, 0
 ismekkurs.com, 1
 ismena.bg, 1
 isminc.com, 1
+ismywebsitepenalized.com, 1
 isn.cz, 1
 isn.education, 1
 isnot.ai, 1
@@ -70526,6 +71027,7 @@
 isoindonesiacenter.com, 0
 isoip.org, 1
 isolatiehal.nl, 1
+isolation-exterieure-thermique.fr, 1
 isolde.com, 1
 isole-lofoten.it, 1
 isolta.com, 1
@@ -70571,6 +71073,7 @@
 israelbiblicalstudies.com, 1
 israelcareersers.ga, 1
 israelcareersest.ga, 1
+israelflorist.com, 1
 israelimtovim.co.il, 1
 israelitas.tk, 1
 israelitopbox.ga, 1
@@ -70588,12 +71091,12 @@
 isreedyinthe.uk, 1
 isreedyinthe.us, 1
 isreedyintheuk.com, 1
+isrib.com, 1
 issaias.net, 0
 issaquah.cam, 1
 issasfrissa.se, 1
 isscouncil.com, 1
 issea.wiki, 1
-isseenterprises.com, 1
 issforum.org, 1
 issho.jp, 1
 issio.net, 1
@@ -70616,6 +71119,7 @@
 istanbulhaberleri.tk, 1
 istanbulhomes.com, 1
 istanbulmasajsalonu.tk, 1
+istanbulweb.gen.tr, 1
 istdas.lol, 1
 istec.com.ua, 1
 istech.com.tr, 1
@@ -70643,7 +71147,6 @@
 istitutovivaldi.it, 1
 istkurznochkanzler.at, 1
 istogether.com, 1
-istorage-uk.com, 1
 istories.media, 1
 istorija-balkana.tk, 1
 istormsolutions.co.uk, 1
@@ -70694,7 +71197,6 @@
 it-maker.eu, 1
 it-ngo.com, 1
 it-novosti.tk, 1
-it-ottweiler.de, 1
 it-perm.tk, 1
 it-rotter.de, 1
 it-seems-to.work, 1
@@ -70718,7 +71220,6 @@
 it76.tk, 1
 it82.com, 1
 it9.bar, 1
-ita2a.it, 1
 itabenar.tk, 1
 itactiq.com, 1
 itactiq.info, 1
@@ -70801,7 +71302,6 @@
 itds-consulting.com, 1
 itds-consulting.eu, 1
 itdutchie.com, 1
-itebgarcia.com, 1
 itechbrand.com, 1
 itechfast.tk, 1
 itechpros.com.au, 1
@@ -70820,7 +71320,6 @@
 itempathy.com, 1
 iteon.pl, 1
 iteracy.com, 1
-iternalnetworks.com, 0
 itero.eu, 1
 iterror.co, 1
 itexpert12.tk, 1
@@ -70843,7 +71342,6 @@
 ithinc.net, 1
 ithjalpforetag.se, 1
 ithmaarbank.com, 1
-ithosting.hu, 1
 ithot.ro, 1
 ithuthuat.vn, 1
 itidying.com, 1
@@ -70934,6 +71432,7 @@
 itsayardlife.com, 1
 itsbananas.life, 1
 itsburning.nl, 1
+itscalculator.com, 1
 itsch-itsche.com, 1
 itsdcdn.com, 1
 itsebeauty.com, 1
@@ -70979,9 +71478,11 @@
 itstatic.tech, 1
 itstimetravel.com, 1
 itsuka-world.com, 1
+itsumleo.com, 1
 itsundef.in, 0
 itsupport24.tk, 1
 itsupportguys.com, 1
+itswincer.com, 1
 itsynergy.co.uk, 1
 itt-shop.bg, 1
 itt-shop.com, 1
@@ -71023,7 +71524,6 @@
 itzine.ru, 1
 itzkavin.tk, 1
 itzlive.tk, 1
-iu.edu.sa, 1
 iua.com.au, 1
 iubuniversity.tk, 1
 iurisnovagestion.es, 0
@@ -71042,9 +71542,8 @@
 ivan1874.cf, 1
 ivan1874.dynu.net, 1
 ivan770.me, 1
-ivana-models-escorts.com, 1
-ivana-models-escortservice.de, 1
 ivanaleksandrov.com, 1
+ivanartiles.com, 1
 ivanbenito.com, 1
 ivancacic.com, 0
 ivandafish.net, 1
@@ -71052,7 +71551,6 @@
 ivanesalud.com, 1
 ivanilla.org, 1
 ivanime.com, 1
-ivankj.com, 1
 ivankuchin.tk, 1
 ivanmeade.com, 1
 ivanov.icu, 1
@@ -71116,7 +71614,6 @@
 ivrn.net, 1
 ivs-tech.ru, 1
 ivsign.net, 1
-ivx.gallery, 1
 ivy-league-colleges.com, 1
 ivyandrose.co, 1
 ivyhelpers.com, 1
@@ -71139,6 +71636,7 @@
 iwatchcops.com, 1
 iwatchcops.org, 1
 iwatchla.net, 1
+iwate-shien-r5.com, 1
 iwate-tabipro-ver4.jp, 1
 iwatt.sk, 1
 iwch.tk, 1
@@ -71188,7 +71686,6 @@
 iyinolaashafa.com, 1
 iymark.com, 1
 iyn.me, 1
-iyo.moe, 1
 iyouewo.com, 1
 iyoumu.top, 1
 iyspanel.com, 1
@@ -71528,6 +72025,7 @@
 jake.nom.za, 1
 jake.rodeo, 1
 jakegyllenhaal.ga, 1
+jakehamblin.com, 1
 jakejnx.com, 1
 jakemansfield.com, 1
 jakereynolds.co, 1
@@ -71540,13 +72038,13 @@
 jako.tk, 1
 jakob-kruse.de, 0
 jakob-server.tk, 1
-jakobbuis.nl, 1
 jakobczyk.org, 1
 jakobejitblokaci.cz, 1
 jakobhildebrand.de, 1
 jakobkrigovsky.com, 1
 jakobs.systems, 1
 jakobssystems.net, 1
+jakpost.net, 1
 jakpremyslet.cz, 1
 jakse.fr, 1
 jaksel.id, 1
@@ -71664,7 +72162,6 @@
 jammysplodgers.co.uk, 1
 jamonesrute.com, 1
 jamonsilva.com, 1
-jamstallt.se, 1
 jamstatic.fr, 0
 jamusa.tk, 1
 jamyeprice.com, 0
@@ -71675,7 +72172,6 @@
 jan-daniels.de, 1
 jan-graca.tk, 1
 jan-hill.com, 1
-jan-koek.nl, 1
 jan-melcher.de, 1
 jan-reiss.de, 1
 jan-rieger.de, 1
@@ -71687,11 +72183,11 @@
 janada.cz, 1
 janaundgeorgsagenja.eu, 1
 janavish.tk, 1
-janbennink.com, 1
 janbilek.cz, 1
 janbjerke.no, 1
 janbretschneider.de, 1
 janbruckner.de, 1
+jancosales.com, 1
 jandenhertog.nl, 1
 jandesign.at, 1
 jandev.de, 1
@@ -71699,7 +72195,6 @@
 jandonkers.com, 1
 jandroegehoff.de, 1
 janduchene.ch, 1
-jandy.com, 1
 jane.com, 1
 janelauhomes.com, 1
 janelle-jamer.tk, 1
@@ -71778,7 +72273,6 @@
 japanesephotosite.tk, 1
 japanesque.ru, 1
 japaniac.de, 1
-japaninsides.com, 1
 japanknives.tk, 1
 japannext.co.jp, 1
 japanphilosophy.com, 0
@@ -71846,7 +72340,7 @@
 jarski.eu, 1
 jas-ac.com, 1
 jas-team.net, 1
-jasasosmedia.com, 1
+jasasewaspg.com, 1
 jasawebbisnis.com, 0
 jasch.tk, 1
 jaschaa.de, 1
@@ -71882,6 +72376,7 @@
 jasonwongwr.com, 1
 jasper.link, 1
 jasper.pt, 1
+jasperhugo.com, 1
 jasperhuttenmedia.com, 1
 jaspernbrouwer.nl, 1
 jasperpatterson.com, 1
@@ -71928,7 +72423,6 @@
 javedali.tk, 1
 javedhasrat.com, 1
 javfree.me, 1
-javhdmovies.com, 1
 javi-soleil.tk, 1
 javierbalvin.com, 1
 javierbarrio.com, 1
@@ -71945,7 +72439,6 @@
 javmobile.net, 1
 javorina.tk, 1
 javsod.top, 1
-javtv.cc, 1
 jawharati.tk, 1
 jawn.ca, 1
 jawo2008.pl, 1
@@ -72011,6 +72504,7 @@
 jbctransport.ca, 1
 jbdesignfoundations.com, 1
 jbdillon.com, 1
+jberlife.com, 1
 jberlife.marketing, 1
 jbeta.is, 1
 jblackweb.com, 1
@@ -72032,6 +72526,7 @@
 jcadg.com, 1
 jcaicedo.com, 1
 jcaicedo.tk, 1
+jcanals.com, 1
 jcb.com, 1
 jcbgolfandcountryclub.com, 1
 jccars-occasions.be, 1
@@ -72173,7 +72668,6 @@
 jeans-stores.tk, 1
 jeansbutik.tk, 1
 jeansdemodacol.com, 1
-jeansdiscounter.de, 1
 jeanslee.tk, 1
 jeansmoda.tk, 1
 jeansstyle.tk, 1
@@ -72222,8 +72716,10 @@
 jeffcloninger.net, 1
 jeffdaviscountyga.gov, 1
 jeffersoncountyks.gov, 1
+jeffersoncountyne.gov, 1
 jeffersoncountyny.gov, 1
 jeffersoncountypa.gov, 1
+jeffersonknoxohio.gov, 1
 jeffersonkyattorney.gov, 1
 jeffersonohio.gov, 1
 jeffersonregan.co.uk, 1
@@ -72348,6 +72844,7 @@
 jeps.fi, 1
 jeremiahbenes.com, 1
 jeremiahlee.com, 1
+jeremiebt.com, 1
 jeremy-chen.org, 1
 jeremy-gautier.com, 1
 jeremy.hu, 1
@@ -72361,7 +72858,6 @@
 jeremynally.com, 1
 jeremyness.com, 1
 jeremysnotes.com, 1
-jeremytcd.com, 1
 jeremywinn.com, 1
 jeremywinn.xyz, 1
 jericamacmillan.com, 1
@@ -72418,6 +72914,7 @@
 jessecharlie.info, 1
 jessecharlie.org, 1
 jessecharlienaser.com, 1
+jesseerbach.com, 1
 jessekaufman.com, 1
 jesseklaver.nl, 1
 jessem.fr, 1
@@ -72511,6 +73008,7 @@
 jewishphilanthropies.org, 1
 jewishquotations.com, 1
 jexler.net, 1
+jey-line.de, 1
 jez.nl, 1
 jezebel.com, 1
 jezebelsromance.com, 1
@@ -72518,7 +73016,6 @@
 jezero.tk, 1
 jezura.cz, 1
 jezzicat.org, 1
-jf-avenidasnovas.pt, 1
 jf-beco.pt, 1
 jf-fotos.de, 1
 jf-igrejanovadosobral.pt, 1
@@ -72526,7 +73023,6 @@
 jf886.cc, 1
 jfbst.net, 1
 jfcare.dk, 1
-jfe-et.co.jp, 1
 jfgselbitztal.tk, 1
 jfhr.de, 1
 jfhr.me, 1
@@ -72542,6 +73038,7 @@
 jg-tc.com, 1
 jg078.com, 1
 jgaffers.net, 1
+jgeverest.com, 1
 jgid.de, 1
 jgke.fi, 1
 jgmenterprises.ca, 1
@@ -72566,7 +73063,6 @@
 jhill.de, 1
 jhmrcm.com, 1
 jhollandtranslations.com, 1
-jhoncampos.com, 1
 jhonesmarcos.tk, 1
 jhonmurillo.ml, 1
 jhost.gq, 1
@@ -72575,7 +73071,6 @@
 jiacl.com, 1
 jiahao.codes, 1
 jialiangkang.com, 1
-jialinwu.com, 1
 jiami.dog, 0
 jianbin.wang, 1
 jiangmei.ml, 1
@@ -72695,7 +73190,6 @@
 jinliming.ml, 1
 jino.gq, 1
 jinshabu.net, 1
-jintaiyang123.org, 1
 jiogo.com, 1
 jiourl.com, 1
 jip2011.jp, 1
@@ -72703,6 +73197,7 @@
 jirehlov.cn, 1
 jirehlov.com, 1
 jiretvariedades.com, 1
+jiri-vincour.cz, 1
 jiriholy.cz, 1
 jirkanch-ayollar.ga, 1
 jirkanch-ayollar.ml, 1
@@ -72743,8 +73238,8 @@
 jjsmaccountants.com, 1
 jjspartyhire.co.uk, 1
 jjsummerboatparty.co.uk, 1
+jjunglefruit.net, 1
 jjzmaj.tk, 1
-jk-entertainment.biz, 1
 jk-forensics.de, 1
 jk-regeltechnik.de, 1
 jk-rjevka.gq, 1
@@ -72831,7 +73326,7 @@
 jmorahan.net, 1
 jmp.chat, 1
 jmpb.hu, 1
-jms8.net, 0
+jms8.net, 1
 jmservices.pro, 1
 jmsjms.cc, 1
 jmsjms.me, 1
@@ -72870,12 +73365,14 @@
 joachimvanrossenberg.com, 1
 joanmoreira.tk, 1
 joannechtler.com, 1
+joannekemarchal.nl, 1
 joanofarcmtcarmel.org, 1
 joansoy.com, 1
 joaobautista.com, 0
 joaojunior.com, 1
 joaoorvalho.com, 1
 joaopaulopaim.com.br, 1
+joaopinto.pt, 1
 joaosampaio.com, 1
 joaosampaio.com.br, 1
 joaosantos.net.br, 1
@@ -72924,6 +73421,8 @@
 jobs.su, 1
 jobs.ua, 1
 jobs4sales.ch, 1
+jobscan.co, 1
+jobsconnected.com, 1
 jobscore.com, 1
 jobscout24.ch, 1
 jobseekeritalia.it, 1
@@ -72966,6 +73465,7 @@
 jodbush.com, 1
 jodlajodla.si, 1
 jodyboucher.com, 0
+jodyshop.com, 1
 joe-st.de, 1
 joe262.com, 1
 joearodriguez.com, 1
@@ -73052,13 +73552,13 @@
 johannes.io, 1
 johannes.wtf, 1
 johannesen.tv, 1
-johannesschmuelling.de, 1
 johannfritsche.de, 1
 johanpeeters.com, 1
 johansf.tech, 1
 johego.org, 1
 johlmike.com, 1
 john2point0.com, 1
+johnabraham.net, 1
 johnathanhasty.com, 1
 johnball.co, 1
 johnbeerens.com, 1
@@ -73106,6 +73606,7 @@
 johnnybsecure.com, 1
 johnnycastlepornstar.com, 1
 johnnydoe.tk, 1
+johnnyofans.com, 1
 johnnysandaire.com, 1
 johnocallaghan.tk, 1
 johnopdenakker.com, 1
@@ -73123,6 +73624,7 @@
 johnstownpa.gov, 1
 johnstownrockcowi.gov, 1
 johnswarbrick.com, 1
+johnthenerd.com, 1
 johntomasowa.com, 1
 johntrujillomd.com, 1
 johnvanhese.nl, 1
@@ -73131,6 +73633,7 @@
 johnyytb.be, 1
 johutha.ch, 1
 joi-dhl.ch, 0
+joi.onl, 1
 join-aomori.jp, 1
 join.com, 1
 joinamericacorps.gov, 1
@@ -73190,6 +73693,7 @@
 jomagus.de, 1
 jomibe.de, 1
 jomjohor.my, 1
+jomla.ae, 1
 jomo.tv, 1
 jomsolat.tk, 1
 jon8rfc.homeip.net, 1
@@ -73261,6 +73765,7 @@
 jonin.tk, 1
 jonin2.tk, 1
 jonincharacter.com, 1
+jonipuhakka.fi, 1
 jonirrings.com, 1
 jonizatorywody24.pl, 1
 jonkerkamman.tk, 1
@@ -73292,6 +73797,7 @@
 jooksuratas.ee, 1
 jooli.tk, 1
 joom.com, 1
+joomag.com, 1
 joomearaweb.tk, 1
 joomla-leipzig.com, 1
 joomlaclub.ch, 1
@@ -73321,12 +73827,11 @@
 jordancards.com, 1
 jordandevelopment.com, 1
 jordanhamilton.me, 1
-jordankmportal.com, 1
-jordanlys.com, 1
 jordanmetal.tk, 1
 jordanmlu.nl, 1
 jordannight.net, 1
 jordanp.engineer, 1
+jordanpark.com, 1
 jordanprice.ml, 1
 jordanprogrammer.tk, 1
 jordanrey.net, 1
@@ -73341,6 +73846,7 @@
 jordibelgraver.eu, 1
 jordibelgraver.xyz, 1
 jordioller.com, 1
+jordjord.com, 1
 jorexenterprise.com, 1
 jorgelopezorquesta.tk, 1
 jorgemarquez.es, 1
@@ -73375,7 +73881,6 @@
 josefottosson.se, 1
 josefranca.pt, 0
 josegpt.com, 1
-josejimenezgonzalez.es, 1
 josejorques.tk, 1
 joseluisberrocal.tk, 1
 josemariavazquez.com, 1
@@ -73404,6 +73909,7 @@
 joserecetas.com, 1
 josericaurte.com, 1
 josestiller.de, 1
+joseventos.com, 1
 joshanders.com, 1
 joshbyrne.com.au, 1
 joshdiamant.com, 1
@@ -73418,7 +73924,6 @@
 joshking.com, 1
 joshliba.com, 1
 joshlovephotography.co.uk, 1
-joshmoulin.com, 1
 joshrickert.com, 1
 joshruppe.com, 1
 joshs.photos, 1
@@ -73492,7 +73997,6 @@
 jovisa.com.tw, 1
 joworld.net, 0
 joy-ride.yokohama, 1
-joyamojewelry.com, 1
 joyas.gt, 1
 joyatlife.com, 1
 joybuggy.com, 1
@@ -73513,7 +74017,6 @@
 joymaxiptv.co, 1
 joymaxiptv.com, 1
 joyofcookingandbaking.com, 1
-joyofhaskell.com, 1
 joyorganicscoupons.com, 1
 joyouscare.co.uk, 1
 joyousisle.com, 1
@@ -73527,7 +74030,6 @@
 jp.kg, 1
 jp.md, 1
 jp404.com, 1
-jp4f.de, 1
 jpalala.io, 0
 jpan007.com, 1
 jpanetta.tk, 1
@@ -73563,6 +74065,7 @@
 jpngamerswiki.com, 1
 jpod.cc, 1
 jpope.org, 1
+jppc.net, 1
 jppcadvertising.com, 1
 jpph.org, 1
 jpr.io, 1
@@ -73577,7 +74080,6 @@
 jpst.it, 1
 jpvermogensregie.com, 1
 jpvfinanceira.net, 1
-jpvisual.com, 1
 jqlin.com, 1
 jqlsql.com, 1
 jqpowerwash.com, 1
@@ -73662,6 +74164,7 @@
 jso-crescendo.ch, 1
 json.download, 1
 json.id, 1
+json2bot.chat, 1
 jsonbeautifier.net, 1
 jsonformatter.net, 1
 jsonsinc.com, 1
@@ -73691,7 +74194,6 @@
 jtp.id, 1
 jtrocinski.com, 1
 jtrojanowska.pl, 1
-jts3servermod.com, 1
 jttech.se, 1
 ju-edu.tk, 1
 ju-rex.eu, 1
@@ -73709,7 +74211,6 @@
 juanitia.com, 1
 juanitofatas.com, 1
 juanjomontecinos.tk, 1
-juanjovega.com, 1
 juanmanuel.tk, 1
 juanmapauso.tk, 1
 juanmasuarez.tk, 1
@@ -73746,7 +74247,6 @@
 judochatest.ga, 1
 judoprodeti.cz, 1
 judosaintdenis.fr, 1
-juduo.tv, 1
 judybai.me, 1
 judykatura.pl, 1
 juegosalcubo.es, 1
@@ -73760,7 +74260,6 @@
 juergmeier.ch, 1
 juezz.top, 1
 jufem.tk, 1
-jugendbildungshaus-luegsteinsee.de, 1
 jugendfeuerwehr-vechta.de, 1
 jugendforum-schaafheim.de, 1
 jugendhackt.org, 1
@@ -73876,7 +74375,6 @@
 jumibow.com, 1
 jumio.com, 1
 jummedia.com.au, 1
-jumoutinho.com.br, 1
 jump4funinflatables.co.uk, 1
 jumpalitan.tk, 1
 jumpandbounce.co.uk, 1
@@ -73951,6 +74449,7 @@
 junkiedownload.tk, 1
 junkracing.tk, 1
 junksleep.com, 1
+junksupply.com, 1
 junktojewels.com.au, 1
 junkyardtuning.tk, 1
 juno.co.uk, 1
@@ -73969,7 +74468,6 @@
 jura-reiseschutz.de, 1
 jura-versicherungen.de, 1
 juragan.ga, 1
-juragananime.id, 1
 juraganhp.com, 1
 juragantembakau.com, 1
 jurancic.com, 1
@@ -74022,7 +74520,6 @@
 justanotherday.tk, 1
 justasdelish.com, 1
 justbelieverecoverypa.com, 1
-justblogbaby.com, 1
 justbookexcursions.com, 1
 justbooktransfers.com, 1
 justboom.co, 1
@@ -74033,6 +74530,7 @@
 justchunks.net, 1
 justement.ch, 1
 justfashionnow.com, 1
+justfencingcheshire.co.uk, 1
 justfoodfordogs.com, 1
 justformen.org, 1
 justforschools.co.uk, 1
@@ -74049,6 +74547,7 @@
 justice.gov, 1
 justiceforjameela.org, 1
 justifinetwork.com, 1
+justifyloans.com, 1
 justin-p.me, 1
 justin-tech.com, 1
 justin3d.nl, 1
@@ -74061,6 +74560,7 @@
 justinsinkula.com, 1
 justinstago.com, 1
 justinstandring.com, 1
+justinswagerman.nl, 1
 justkidsdental.com, 1
 justknigi.gq, 1
 justlovecoffeefranchise.com, 1
@@ -74086,6 +74586,7 @@
 justt-watch-now.xyz, 1
 justtalk.site, 1
 justupdate.me, 1
+justwannalearn.com, 1
 justweather.org, 1
 justwikipedia.com, 1
 justyardsign.com, 1
@@ -74169,6 +74670,7 @@
 jyoti-fairworks.org, 0
 jyprj.com, 1
 jyrilaitinen.fi, 1
+jysecurity.com, 1
 jyvaskylantykkimies.fi, 1
 jz.lc, 1
 jzagorulko.com, 1
@@ -74194,6 +74696,7 @@
 k-pan.com, 1
 k-plant.com, 1
 k-pture.com, 0
+k-s-edition.ru, 1
 k-sails.com, 1
 k-scr.me, 1
 k-system.de, 1
@@ -74265,10 +74768,8 @@
 k86921.com, 0
 k86929.com, 0
 k86930.com, 1
-k86966.com, 1
 k86967.com, 0
 k86990.com, 1
-k86991.com, 0
 k87.app, 1
 k87021.com, 1
 k87073.com, 0
@@ -74376,7 +74877,6 @@
 kaanhaa.com, 0
 kaaniche.xyz, 1
 kaany.io, 1
-kaaraali.fr, 0
 kaas.wtf, 1
 kaasbesteld.nl, 1
 kaatha-kamrater.se, 1
@@ -74428,8 +74928,8 @@
 kacy-kisha.com, 1
 kada.lk, 1
 kada.mobi, 1
-kada.tv, 1
 kadalove.net, 1
+kadeatwood.com, 1
 kadenafss.com, 1
 kadenba.ch, 1
 kadence.tk, 1
@@ -74444,7 +74944,6 @@
 kadinhayati.com, 1
 kadinsaglikhaber.tk, 1
 kadinvesaglik.tk, 1
-kadix.com.br, 1
 kado-ya.jp, 1
 kadolis.com, 1
 kadro.com.pl, 1
@@ -74476,12 +74975,11 @@
 kaggle.com, 1
 kagi.com, 1
 kagicomb.org, 1
-kagisoonline.co.za, 1
+kagisoonline.co.za, 0
 kagithanemantolama.com, 1
 kagl.me, 1
 kagomesashi.tk, 1
 kaguramea.fr, 1
-kagutech.com, 1
 kaha.co.id, 1
 kahane.org, 1
 kahmad.in, 1
@@ -74685,7 +75183,6 @@
 kamey-steuerberatung.de, 1
 kami-riha.com, 1
 kamien-ogrodowy.tk, 1
-kamikaichimaru.com, 0
 kamikami.eu, 1
 kamikatse.net, 1
 kamikatzerl.net, 1
@@ -74726,6 +75223,7 @@
 kan3.de, 1
 kana-mono.biz, 1
 kana.me, 1
+kanabun.top, 1
 kanaete-uranai.com, 1
 kanag.pl, 1
 kanal-c.net, 1
@@ -74752,6 +75250,8 @@
 kandr.net, 1
 kandra.com.br, 1
 kandrahechiceravudu.com, 1
+kanduit.live, 1
+kandwliquor.com, 1
 kanecastles.com, 1
 kanecountyhospitalut.gov, 1
 kanecountyil.gov, 1
@@ -74784,9 +75284,10 @@
 kanna.cf, 1
 kannabia.com, 1
 kannata.ml, 1
-kano.fan, 1
+kano.fan, 0
 kano.tk, 1
 kanootours.com, 1
+kanosuki.com, 0
 kanotijd.nl, 1
 kanoumokuzai.co.jp, 1
 kanpian369.com, 1
@@ -74905,7 +75406,7 @@
 karen-homestay.tk, 1
 karencatering.com, 1
 karenerdos.com.au, 1
-karenroldan.net, 1
+karenroldan.net, 0
 karenvien.ga, 1
 karenza.design, 1
 karewan.ovh, 1
@@ -75020,7 +75521,6 @@
 kashis.com.au, 1
 kashmirartquest.tk, 1
 kashousing.tk, 1
-kashsports.com, 1
 kashta-svgeorgi.com, 1
 kasiafricagroup.org, 1
 kasinobonus.com, 1
@@ -75055,10 +75555,12 @@
 kastgroup.com, 1
 kastmedia.com, 1
 kastorsky.ru, 0
+kastuvas-tau.lt, 1
 kasu.ga, 1
 kasvall.com, 1
 kasyna-internetowe.com, 1
 kat.cat, 1
+kat.tf, 1
 kat4at.tk, 1
 katachistore.com, 1
 katagena.com, 1
@@ -75104,6 +75606,7 @@
 kateysagal.tk, 1
 kathakkachakkar.com, 1
 kathardt.de, 1
+katherineandkegan.love, 1
 katherineswynford.tk, 1
 kathleendeisher.com, 1
 kathless.com, 1
@@ -75113,7 +75616,6 @@
 kathy.best, 1
 kathy.lgbt, 1
 kathy.link, 1
-kathyformaryland.com, 1
 kathyschlitzer.com, 1
 kati-raumplaner.de, 1
 kati0.com, 1
@@ -75187,6 +75689,7 @@
 kavkaz-info.tk, 1
 kavkaz.cf, 1
 kavli-express.gr, 1
+kavorka.me, 0
 kavovary-kava.cz, 1
 kawabeest.tk, 1
 kawadoart.com, 1
@@ -75213,7 +75716,6 @@
 kayit.co.uk, 1
 kayleen.net, 1
 kaylielaw.com, 1
-kaylyn.ink, 0
 kayne.com, 1
 kayon.cf, 1
 kayscs.com, 1
@@ -75243,7 +75745,6 @@
 kaztest.tk, 1
 kazu-techlab.com, 1
 kazu.click, 1
-kazu123.net, 1
 kazuhirohigashi.com, 1
 kazumi-clinic.com, 1
 kazumi.ooo, 1
@@ -75298,7 +75799,6 @@
 kbsinflatablekingdom.co.uk, 1
 kbst.se, 0
 kbtairmont.com, 1
-kbterapicenter.se, 1
 kbtit.jp, 1
 kbz.fr, 1
 kc-holzfaeller.de, 1
@@ -75337,7 +75837,6 @@
 kdcinfo.com, 1
 kdcompany.ru, 1
 kde-je-skladem.cz, 1
-kdex.de, 1
 kdistech.nz, 1
 kdjsa.com, 1
 kdl-group.pl, 1
@@ -75391,7 +75890,6 @@
 keechain.io, 1
 keeckee.ml, 1
 keeforcecloud.com, 1
-keeg.me, 1
 keekmix.nl, 1
 keelandlong.com, 1
 keeley.net, 1
@@ -75406,6 +75904,7 @@
 keep.moe, 1
 keepa.com, 1
 keepagree.gq, 1
+keepclean.me, 0
 keeperapp.com, 1
 keeperklan.com, 0
 keepersecurity.com, 1
@@ -75461,6 +75960,7 @@
 keio-formula.com, 1
 keioni.com, 1
 keiralewis.co.uk, 1
+keirna.com, 1
 keisaku.org, 1
 keishi.co.jp, 1
 keishiando.com, 1
@@ -75552,6 +76052,8 @@
 kelvinchung.tk, 1
 kelvinfichter.com, 0
 kelyan.fr, 1
+kelyon.es, 1
+kelyon.eu, 1
 kemahtx.gov, 1
 kemanai.akita.jp, 1
 kemand.com, 1
@@ -75561,7 +76063,6 @@
 kemerovo.ml, 1
 kemerovo.tk, 1
 kemerovo42.tk, 1
-kemet-international.com, 1
 kemet.co.uk, 1
 kemhan.go.id, 1
 kemono.party, 1
@@ -75602,7 +76103,6 @@
 keniasfamilychildcare.com, 1
 keniff.gq, 1
 kenlewis.com, 1
-kenmartin.ru, 1
 kennebec.gov, 1
 kennedy.cf, 1
 kennedy.ie, 1
@@ -75686,7 +76186,6 @@
 keritial.eu.org, 1
 kerkdienststream.nl, 1
 kerkeslager.com, 1
-kerkukkitapcisi.com, 1
 kermadec.com, 1
 kermadec.net, 1
 kermispagina.tk, 1
@@ -75704,7 +76203,6 @@
 kerp.se, 0
 kerpen-renovieren.de, 1
 kerrcountytx.gov, 1
-kerrdental.com, 1
 kerrnel.com, 1
 kerroscale.in, 1
 kerryconsulting.com, 1
@@ -75738,6 +76236,7 @@
 kesslerandsons.com, 1
 kesteren.org, 1
 ketamine.co.uk, 1
+ketamine.uk, 1
 ketchcdn.com, 1
 ketemulagi.com, 1
 ketgioisu.tk, 1
@@ -75890,7 +76389,6 @@
 kfbl.cc, 1
 kffs.ru, 1
 kfgleasing.pl, 1
-kfgsa.pl, 1
 kfirba.me, 1
 kfispiff.com, 1
 kfm.ink, 0
@@ -75915,7 +76413,6 @@
 kgunion.com, 1
 kgv-zappendorf.tk, 1
 kh.pub.sa, 1
-kha.com, 1
 khabar24.tk, 1
 khachhangvietnam.tk, 1
 khadishalatina.com, 1
@@ -75960,7 +76457,6 @@
 khetzal.info, 1
 khey-tv.fr, 1
 khg-orchester.de, 1
-khimno.com, 1
 khipu.com, 1
 khm.v.ua, 1
 khmb.ru, 0
@@ -76017,12 +76513,13 @@
 kibonnu.com, 1
 kibrit.com.tr, 1
 kichemalamut.tk, 1
-kicirdekorasyon.com, 1
 kick-in.nl, 1
 kickasscanadians.ca, 1
 kickasspoker.com, 1
 kickback-studios.com, 1
 kickedmycat.com, 1
+kickex.com, 1
+kickico.com, 1
 kickitfootball.com.au, 1
 kickitupcoaching.com, 1
 kicksecure.com, 1
@@ -76099,12 +76596,12 @@
 kiebel.de, 1
 kiedys.net, 1
 kiefnersoftware.com, 1
+kiehls.pt, 1
 kiehost.tk, 1
 kiekin.org, 1
 kiekko.pro, 1
 kielux.de, 1
 kielwi.gov, 1
-kienhuon.com, 1
 kienlen.org, 1
 kienviethung.com, 1
 kieran.de, 1
@@ -76125,7 +76622,6 @@
 kievholod.in.ua, 1
 kievkiralikotel.com, 1
 kievlove.tk, 1
-kievparus.com.ua, 1
 kif.rocks, 0
 kiffmarks.com, 1
 kifid.nl, 1
@@ -76156,6 +76652,7 @@
 kikki.io, 1
 kikoskia.com, 1
 kiku.pw, 1
+kilencamping.no, 0
 kilian.gallery, 1
 kilianvalkhof.com, 1
 kiliframework.org, 1
@@ -76189,6 +76686,7 @@
 kiloton.tk, 1
 kilpiapp.com, 1
 kilte.tk, 1
+kim-coiffure.fr, 1
 kima.de, 1
 kimai.cloud, 1
 kimama-protein.jp, 1
@@ -76223,7 +76721,6 @@
 kims-academy.com, 1
 kimsesizlereumutol.tk, 1
 kimsufi-jordi.tk, 1
-kimthanhvietnam.com, 1
 kimtran.kim, 1
 kimtstore.com, 1
 kimverly.no, 1
@@ -76261,6 +76758,7 @@
 kinanbudotenero.tk, 1
 kinandcarta.com, 1
 kinarino-mall.jp, 1
+kinas.co.uk, 1
 kinautas.com, 1
 kinbev.com, 1
 kindan.net, 1
@@ -76301,6 +76799,7 @@
 kinebamps.be, 1
 kinebioquimica.com, 1
 kinecenter.ec, 1
+kinecle.com, 1
 kinencoin-tv.com, 1
 kinepolis-studio.ga, 1
 kinescopecdn.net, 1
@@ -76309,7 +76808,6 @@
 kinesiologiodense.dk, 1
 kinesiologiskolen-syd.dk, 1
 kinesiologiuddannelsen.dk, 1
-kineticit.com.au, 1
 kinetikos.com.au, 1
 kinetiq.com, 1
 kinfule.tk, 1
@@ -76322,6 +76820,7 @@
 kingchess.vip, 1
 kingclass.cn, 1
 kingcourriel.fr, 1
+kingdirectionaldrilling.com, 1
 kingdomcitymo.gov, 1
 kingdomcrawlers.tk, 1
 kingdominnergy.com, 1
@@ -76358,7 +76857,6 @@
 kingsley.cc, 1
 kingsolomoncages.com, 1
 kingsound.tk, 1
-kingspalacepainting.com, 1
 kingstake.network, 1
 kingston-fear.com, 1
 kingstonga.gov, 1
@@ -76377,6 +76875,7 @@
 kinky-books.com, 1
 kinkyinlaws.com, 1
 kinmunity.com, 1
+kinnerfisch.cn, 1
 kinnikinnick.com, 0
 kino-boom.tk, 1
 kino-dom.tk, 1
@@ -76419,10 +76918,10 @@
 kinowork.tk, 1
 kinozone.tk, 1
 kinschots.eu, 1
-kinsei.jp, 1
 kinshipnd.com, 1
 kintanalodge.fr, 1
 kintawifi.com, 1
+kinter.media, 1
 kinto.pro, 1
 kintone.com, 1
 kintore.tv, 1
@@ -76518,6 +77017,7 @@
 kiseimarriage.com, 1
 kisel.org, 1
 kish-takhfif.com, 1
+kishcar.co, 1
 kisiselveri.com, 1
 kiskeedeesailing.com, 1
 kislovodsk-zamok.tk, 1
@@ -76526,7 +77026,6 @@
 kismy.tk, 1
 kismyder.tk, 1
 kissanime.moe, 1
-kissen.li, 1
 kisser.name, 1
 kissesb.net, 1
 kissgyms.com, 1
@@ -76535,6 +77034,7 @@
 kissmateszabolcs.hu, 1
 kissmycreative.com, 1
 kissoft.ro, 1
+kisspeptin.com, 1
 kisstube.tv, 1
 kistenmacher.net, 1
 kistipro.tk, 1
@@ -76572,7 +77072,6 @@
 kitconcept.de, 1
 kite-surf.tk, 1
 kite-surfen.tk, 1
-kiteadventure.nl, 1
 kiteboard-selbstbau.tk, 1
 kitebowl.ru, 1
 kitenation.com, 1
@@ -76692,7 +77191,6 @@
 kkgn.nl, 1
 kki.org, 1
 kkiskra.tk, 1
-kkju.tv, 1
 kkk0011.com, 0
 kkk101.com, 0
 kkk102.com, 0
@@ -76715,6 +77213,7 @@
 kksg-sulzbach.de, 1
 kksg.com, 0
 kksshop.com, 1
+kkutu.xyz, 0
 kkws.co, 1
 kkyy.me, 1
 kkzxak47.com, 1
@@ -76725,6 +77224,7 @@
 klacki.de, 1
 klackingtownshipmi.gov, 1
 klad.tk, 1
+kladson.com, 1
 kladzdor.ga, 1
 kladzdor.tk, 1
 klaim.us, 1
@@ -76742,6 +77242,7 @@
 klarmobil-empfehlen.de, 1
 klart.se, 1
 klassen.tk, 1
+klassenfahrt-tirol.at, 1
 klassiekballet.tk, 1
 klassika.cf, 1
 klassika.tk, 1
@@ -76749,10 +77250,13 @@
 klaudialeszczynska.pl, 1
 klauke-enterprises.com, 1
 klaukegear.eu, 1
+klaus-pforte.de, 1
 klausapp.com, 0
 klausbrinch.dk, 0
 klausen.dk, 1
+klausfischer.info, 1
 klausfoerster.tk, 1
+klauspforte.de, 1
 klauswissmann.com, 1
 klautshop.com, 1
 klavarog.tk, 1
@@ -76769,7 +77273,6 @@
 kleebauerhof.com, 1
 kleen.tk, 1
 kleft.org, 1
-kleidermarkt-vintage.de, 1
 kleidertauschpartys.de, 1
 kleim.fr, 1
 kleinblogje.nl, 0
@@ -76867,7 +77370,6 @@
 klmgewinnspiel.de, 1
 klmhouses.com, 1
 klocast.com, 1
-klocker-ausserlechner.com, 1
 klocksnack.se, 0
 kloclabs.com, 1
 klogeschichten.net, 1
@@ -76878,7 +77380,6 @@
 klose.family, 1
 klosko.net, 1
 klosterruine.de, 1
-kloudboy.com, 0
 kloza.tk, 1
 kls-desk.com, 1
 kls-platform.com, 1
@@ -76907,6 +77408,7 @@
 km8.co, 1
 kma.ua, 1
 kmb-chat.de, 1
+kmc-kosmetik.de, 1
 kmdarkmaster.tk, 1
 kmdevelop.com, 1
 kmecnc.com, 1
@@ -76961,6 +77463,7 @@
 knighkidoma.tk, 1
 knightsblog.de, 1
 knightsbridge.net, 1
+knightsbridgewine.com, 1
 knightsweep.com, 0
 knighulki.cf, 1
 knigi-free.cf, 1
@@ -76980,6 +77483,7 @@
 knittingstory.cf, 1
 kniwweler.com, 1
 knize.tech, 1
+knizhniy.com, 1
 knjazevac.tk, 1
 knjizevic.at, 0
 knkv.nl, 1
@@ -77061,6 +77565,7 @@
 kobrin.tk, 1
 kobtsev.tk, 1
 kobudo49.fr, 1
+koc.hu, 1
 kocaelihaber.tk, 1
 kocaeliyiseyret.com, 1
 koccoo.ga, 1
@@ -77114,7 +77619,7 @@
 koehn.com, 1
 koelbli.ch, 1
 koeldezomerdoor.nl, 1
-koelnerkarneval.de, 1
+koelnerkarneval.de, 0
 koelnmafia.de, 1
 koelschs.de, 1
 koenberkhout.nl, 1
@@ -77171,7 +77676,6 @@
 kokakiwi.net, 1
 kokankart.com, 1
 koketteriet.se, 1
-kokica.si, 1
 kokk.loan, 1
 koko.news, 1
 koko5000.com, 1
@@ -77190,7 +77694,6 @@
 kokuryu.ch, 1
 kokwatersport.nl, 1
 kokyu-caba.com, 1
-kol7sry.news, 1
 kolabtree.com, 1
 kolaci.tech, 1
 kolaczek.cz, 1
@@ -77256,7 +77759,6 @@
 komichcapital.com, 1
 komicloud.com, 1
 komidoc.com, 1
-komiksbaza.pl, 1
 komikstation.co, 1
 kominfo.go.id, 0
 kominki-sauny.pl, 1
@@ -77279,7 +77781,6 @@
 komodolabs.com, 1
 komoju.com, 1
 komok.co.uk, 1
-komon.co.jp, 1
 komornikmroczek.pl, 1
 komp-plus.tk, 1
 komp247.pl, 1
@@ -77312,14 +77813,12 @@
 kondi-flex.org, 1
 kondi-save.biz, 1
 kondo-kougei.co.jp, 1
-kondomshop.org, 1
 konducars.nl, 1
 konectbus.co.uk, 1
 konetsu.tk, 1
 konf.ga, 1
 konfekcjonowanie.com, 1
 konfiskator.online, 1
-konflikte-als-chance.de, 1
 konflikthaus.de, 1
 konfliktklaerer.de, 1
 konfrontation.tk, 1
@@ -77369,7 +77868,6 @@
 konsultermedipv6.se, 1
 kontabilitet.tk, 1
 kontaxis.org, 1
-kontek.net, 1
 kontenido.net, 1
 kontent.ai, 1
 kontikifinance.com, 0
@@ -77498,6 +77996,7 @@
 koroleva.ml, 1
 korolevstvo-movie.ml, 1
 koroli.tk, 1
+korona-m.bg, 1
 korona-serial.net, 1
 koroshkabir.tk, 1
 korrelzout.nl, 1
@@ -77508,7 +78007,6 @@
 kortarsmagyarfesto.tk, 1
 kortgebyr.dk, 1
 korund.tk, 1
-korves.net, 1
 koryfi.com, 1
 kos4all.com, 1
 kos9078.com, 1
@@ -77562,12 +78060,12 @@
 kosturk.ru, 1
 kostya.ws, 1
 kostyumi.tk, 1
+kosupayoi.com, 1
 kosuzu.moe, 1
 koszmetics.com, 1
 kot.gay, 1
 kotaartsklan.com, 1
 kotaev.tk, 1
-kotajakarta.info, 1
 kotak.us, 1
 kotakanimeid.com, 1
 kotakoo.id, 1
@@ -77651,7 +78149,6 @@
 kpinterface.com, 1
 kpinvest.eu, 1
 kpizlog.rs, 1
-kpk.edu.ee, 1
 kplastics.in, 1
 kplasticsurgery.com, 1
 kplnet.net, 1
@@ -77747,7 +78244,6 @@
 krc.link, 1
 krch.tk, 1
 krd93.ru, 1
-kre8tiv.de, 1
 kreanoid-clientportal-aus-dev.azurewebsites.net, 1
 kreanoredact-portal-aus-dev.azurewebsites.net, 1
 kreasim32.co.id, 1
@@ -77784,7 +78280,7 @@
 kreditvergleich.org, 1
 kreditzirkus.de, 1
 krednal.ru, 1
-kredobank.com.ua, 0
+kredobank.com.ua, 1
 kredytzen.pl, 0
 kreen.org, 1
 krefindo.de, 1
@@ -77802,7 +78298,6 @@
 krenstetter.at, 1
 kreolis.net, 1
 kresimir-blazevic.tk, 1
-krestanskydarek.cz, 1
 kretaforum.dk, 1
 kretschmann.consulting, 1
 kreuzbergflieger.de, 1
@@ -77831,7 +78326,6 @@
 krinetzki.de, 0
 kringla.xyz, 1
 kringloopwinkels.tk, 1
-krings.nl, 1
 krinnovations.ie, 1
 kripa.tk, 1
 kriptodede.com, 1
@@ -77841,7 +78335,6 @@
 kriptopod.com, 1
 kriptopodgon.tk, 1
 kriptosec.com, 1
-kriptovijesti.net, 1
 krisboeckmans.tk, 1
 krise-chance.ch, 1
 krisenintervention-deutschland.de, 1
@@ -77879,7 +78372,6 @@
 kristyvonkashyyyk.net, 1
 kriswauters.tk, 1
 kritik.com.br, 1
-kritikawebu.cz, 1
 kriyayoga.fr, 1
 kriyayoga.mx, 1
 krizevci.info, 1
@@ -77929,15 +78421,18 @@
 krti.com.ua, 1
 krtl.top, 1
 krubik.tk, 1
+kruchefssensors.azurewebsites.net, 1
 kruchheartbeatdev.azurewebsites.net, 1
+kruchsensorsdev.azurewebsites.net, 1
 krudel.tk, 1
 kruemelundkruemel.de, 1
 krug-munroe.wedding, 1
 krugerengelbrecht.co.za, 1
 krugermillions.org, 1
-krugernationalpark.org.za, 0
+krugernationalpark.org.za, 1
 krugersdorpplumber24-7.co.za, 1
 krugoval.hr, 1
+krugson.net, 1
 kruidenboeket.be, 1
 kruin.net, 1
 kruis.tk, 1
@@ -78040,7 +78535,6 @@
 ks3737.com, 1
 ks380.com, 1
 ks381.com, 1
-ks382.com, 1
 ks386.com, 1
 ks3888.com, 1
 ks5000.com, 1
@@ -78069,7 +78563,6 @@
 ks680.com, 1
 ks6887.com, 1
 ks79.app, 1
-ks8.com, 1
 ks8.net, 1
 ks8112.com, 1
 ks8113.com, 1
@@ -78108,7 +78601,6 @@
 ksamaps.com, 1
 ksar.tk, 1
 ksauhs-med.com, 1
-ksbe.edu, 1
 ksbkrasnodar.ru, 1
 kscarlett.com, 1
 kscds.gov, 1
@@ -78142,6 +78634,7 @@
 ksradio.it, 1
 ksrevenue.gov, 1
 ksrv.jp, 1
+ksst.by, 1
 kst-dlvr.tk, 1
 kst-service.tk, 1
 kstdlvr.by, 1
@@ -78217,7 +78710,6 @@
 kubota.com.au, 1
 kubotapower.com.au, 1
 kubotek3d.com, 1
-kuboweb.it, 1
 kubrakov.ml, 1
 kubrick.tk, 1
 kubusadvocaten.nl, 1
@@ -78234,7 +78726,6 @@
 kudofoto.com, 1
 kudoran.tk, 1
 kudoway.com, 1
-kueche-co.de, 0
 kuechler.info, 1
 kuehndel.org, 1
 kuehnel-online.eu, 1
@@ -78252,12 +78743,13 @@
 kuinin.tk, 1
 kuisus.com, 1
 kuitunenguthrie.tk, 1
-kuju.tv, 1
 kukal.cz, 1
 kukeri-karlovo.tk, 1
 kuketz-blog.de, 1
 kuketz-security.de, 1
 kukiulpindo.com, 0
+kukla.club, 1
+kukla.io, 1
 kuko-crews.org, 1
 kukuku.fun, 1
 kukuma.tk, 1
@@ -78317,7 +78809,6 @@
 kungsangsgymnasiet.se, 1
 kunitomo.jp, 1
 kunnen.tech, 1
-kunra.de, 1
 kunri.tk, 1
 kunsanfss.com, 1
 kunst-im-kokon.de, 1
@@ -78353,7 +78844,6 @@
 kupkabn.de, 1
 kupleno.com, 1
 kuplukover.by, 1
-kupone.com.br, 1
 kuponmail.tk, 1
 kuponydoher.cz, 1
 kuppingercole.com, 1
@@ -78364,6 +78854,7 @@
 kupujemprodajem.com, 1
 kura.gg, 1
 kurafuto.homeip.net, 1
+kuralreklam.com, 1
 kurani.tk, 1
 kuraraynoritake.eu, 1
 kurashino-mall.com, 1
@@ -78462,6 +78953,7 @@
 kuukkanen.net, 1
 kuunlamaailm.ee, 1
 kuwago.io, 1
+kuwaitmegadeals.com, 1
 kuwichitagastro.com, 1
 kuwichitaim.com, 1
 kuzbass-pwl.ru, 1
@@ -78519,7 +79011,6 @@
 kwedo.com, 1
 kwench.com, 1
 kwi.li, 1
-kwickpackaging.com, 1
 kwieben.com, 1
 kwik.cx, 1
 kwikmed.eu, 0
@@ -78610,7 +79101,6 @@
 kynect.gov, 1
 kynjatshai.com, 1
 kyobostory-events.com, 1
-kyobusiness.com, 1
 kyochon.fr, 1
 kyoox.ch, 1
 kyoox.io, 1
@@ -78642,6 +79132,7 @@
 l-a-b-a.ru, 1
 l-atelier-c.com, 1
 l-i-r.tk, 1
+l-ink.eu.org, 1
 l-lab.org, 1
 l-poya.ch, 1
 l.td, 1
@@ -78671,6 +79162,7 @@
 l7world.com, 1
 l82365.com, 1
 l8x.tech, 1
+l9.fr, 1
 l9297.co, 1
 l9297.com, 1
 l9397.com, 1
@@ -78710,6 +79202,8 @@
 lab-advancedservicesportal.com, 1
 lab-oborud.com, 1
 lab-recherche-environnement.org, 1
+lab24.pl, 1
+laba.ua, 1
 labacanisima.tk, 1
 labadusa.com, 1
 labambi.pl, 1
@@ -78756,7 +79250,6 @@
 labor-augsburg-mvz.de, 1
 laboratoriodemarketingb3.com, 1
 laboratorioespressobz.it, 1
-laboratoriolopezsalcedo.es, 1
 laboratoriomolina.tk, 1
 laborbluesers.ga, 1
 laborbluesest.ga, 1
@@ -78791,7 +79284,6 @@
 laby.link, 1
 laby.me, 1
 laby.one, 0
-labyrinth-technologies.com, 1
 labyrinthinetool.de, 1
 labyrinthus.tk, 1
 lacaey.se, 1
@@ -78816,6 +79308,7 @@
 lacfm.cf, 1
 lachain.io, 1
 lachainedesentrepreneurs.fr, 1
+lachaussettedebrasparts.fr, 1
 lachaussettedelocquirec.fr, 1
 lachlan-harris.com, 1
 lachlan.com, 1
@@ -78831,7 +79324,6 @@
 lackfer.tk, 1
 lackierereischmitt.de, 1
 laclaque.ch, 0
-laclecmoi.com, 1
 lacledelareussite.com, 0
 lacledeslan.com, 1
 lacledeslan.org, 1
@@ -78878,6 +79370,7 @@
 ladelicateparenthese.com, 1
 ladenzeile.at, 1
 ladenzeile.de, 1
+ladepeche.fr, 1
 ladies-shoes.tk, 1
 ladiescode.tk, 1
 ladiesrapide.tk, 1
@@ -78912,11 +79405,11 @@
 ladyboyreports.com, 1
 ladyboytube.tv, 1
 ladybugjam.com, 1
+ladybugjunction.com, 1
 ladyestelle.org, 1
 ladyisabell666.com, 1
 ladyjanitor.com, 1
 ladykarame.org, 1
-ladyklub.ru, 1
 ladylatoria.net, 1
 ladylikeit.com, 1
 ladymadd.fr, 1
@@ -78940,8 +79433,6 @@
 laedia.com, 1
 laegemiddelstyrelsen.dk, 1
 laembajadamexico.com, 1
-laemen.com, 0
-laemen.nl, 0
 laemiliafutbol.tk, 1
 laempresa.tk, 1
 laencina.tk, 1
@@ -78982,7 +79473,6 @@
 lafraia.com.br, 1
 lafsc.co.uk, 1
 lafuriadelguardiancelta.tk, 1
-lafyne.eu, 1
 lag-fan.tk, 1
 lag-gbr.gq, 1
 lagaleria-ag.com, 1
@@ -79058,6 +79548,7 @@
 lajornadafilipina.com, 1
 lajusta.tk, 1
 lak-berlin.de, 0
+lak.li, 1
 lakabina.tk, 1
 lakatos.tk, 1
 lakatrop.com, 1
@@ -79127,7 +79618,6 @@
 lalunedangkor.com, 0
 lalunya.com, 1
 lalyre-corcelles.ch, 0
-lam.ngo, 0
 lamafioso.com, 1
 lamai-crochets.fr, 1
 lamaisondufort.fr, 1
@@ -79220,6 +79710,7 @@
 lan-divy.fr, 1
 lan-x.no, 1
 lan.biz.tr, 1
+lan.re, 1
 lana.swedbank.se, 1
 lanabello.com.br, 1
 lanaengel.com, 1
@@ -79240,10 +79731,10 @@
 lancelucido.tk, 1
 lancemanion.com, 1
 lancerm.com, 1
+lancertactical.eu, 1
 lanceyip.com, 1
 lanchong.tk, 1
 lancyvbc.ch, 0
-land-schlachterei-reinke.de, 1
 land.nrw, 0
 landart.tk, 1
 landassessmentservices.com, 1
@@ -79262,7 +79753,6 @@
 landhuisweekend.nl, 1
 landinfo.no, 1
 landingear.com, 1
-landingsencicoaqp.com, 1
 landingtransport.com, 1
 landkind.com, 1
 landkreis-augsburg.de, 1
@@ -79343,10 +79833,11 @@
 languageguesser.com, 1
 languageio.com, 1
 languagekeyboard.net, 1
+languages.services, 1
 languages2learn.com, 1
 languagesandnumbers.com, 1
 languageterminal.com, 1
-langworth.com, 1
+langworth.com, 0
 langzijn.nl, 1
 lanhhuyet510.tk, 1
 lanispa.com, 1
@@ -79370,7 +79861,6 @@
 lansechensilu.com, 1
 lanselot.com, 1
 lansenou.com, 1
-lansewu.com, 0
 lansilesia.tf, 1
 lansingvotes.gov, 1
 lansink.it, 1
@@ -79408,6 +79898,7 @@
 laostiaradio.tk, 1
 laotravoz.tk, 1
 laowang.run, 1
+laoying.tv, 1
 laozhu.me, 1
 lapageamelkor.org, 1
 lapaginadejuanjo.tk, 1
@@ -79418,7 +79909,6 @@
 laparoscopyhospital.com, 1
 lapasticcerianaturale.store, 1
 lapatiala.com, 1
-lapatio.dk, 1
 lapazsheriff.org, 1
 lapcameradongnai.com, 1
 lapcamerahochiminh.com, 1
@@ -79439,6 +79929,7 @@
 lapinmalin.tk, 1
 lapismagico.com, 1
 lapix.com.co, 1
+laplace.live, 1
 laplacesicherheit.de, 1
 laplasadalsol.tk, 1
 laplazita.tk, 1
@@ -79491,6 +79982,7 @@
 larax.tk, 1
 larbertbaptist.org, 1
 larch.gq, 1
+larche.org.pl, 1
 larchmontbuzz.com, 1
 larchmontny.gov, 1
 lareclame.fr, 1
@@ -79527,6 +80019,7 @@
 larpkalender.ch, 1
 larptreff.de, 1
 larry.buzz, 1
+larryandprisca.it, 1
 larryli.cn, 1
 larrysalibra.com, 1
 lars-kusch.de, 1
@@ -79576,12 +80069,12 @@
 laserpunch.tk, 1
 lasersandbacon.com, 1
 lasersolutions.tk, 1
-lasertalk.org, 1
 lasertel.com.pk, 1
 lasfolladoras.com, 1
 lashpilot.com, 1
 lasik-safely.com, 1
 lasiodora.tk, 1
+lasittellecosmetiques.com, 1
 lasix-medication.cf, 1
 lasix-medication.gq, 1
 lasix-medication.tk, 1
@@ -79637,6 +80130,7 @@
 lastrada.tk, 1
 lastrik.ch, 1
 lastsunset.tk, 1
+lasttootinaws.com, 1
 lasttweetinaws.com, 1
 lastville.com, 1
 lasuzefc.fr, 1
@@ -79691,7 +80185,6 @@
 latestsonglyrics.ml, 1
 latetrain.cn, 1
 latexmattress.com, 1
-latexspuitenspecialist.nl, 1
 lathamlabs.com, 1
 lathamlabs.net, 1
 lathamlabs.org, 1
@@ -79709,7 +80202,6 @@
 latinoguysporn.com, 1
 latintoy.com, 0
 latinwomen.tk, 1
-latitudes.online, 1
 latitudesign.com, 0
 latka.tk, 1
 latnetwork.com, 1
@@ -79810,7 +80302,7 @@
 lava.moe, 1
 lavabit.com, 1
 lavabit.no, 1
-lavadoras.info, 1
+lavadodesalascdmx.mx, 1
 lavaggio.it, 1
 lavaggista.it, 1
 lavaldostana.es, 1
@@ -79870,6 +80362,7 @@
 lawdepot.ca, 1
 lawebdeljose.tk, 1
 lawebnobasta.tk, 1
+lawenforcementedu.net, 1
 lawguidesingapore.com, 1
 lawhery.com, 1
 lawlessenglish.com, 1
@@ -79918,6 +80411,7 @@
 lawyer.cf, 1
 lawyerboksburg.co.za, 1
 lawyerdigital.co.bw, 1
+lawyeredu.org, 1
 lawyermidrand.co.za, 1
 lawyerscredentialsers.ga, 1
 lawyerscredentialsest.ga, 1
@@ -79951,6 +80445,7 @@
 lazerus.pw, 1
 lazibeach.tk, 1
 lazisbaiturrahman.org, 1
+lazismuprovgorontalo.or.id, 0
 lazistance.com, 1
 lazo.futbol, 1
 lazonacartagena.tk, 1
@@ -79988,6 +80483,7 @@
 lbi.plus, 0
 lbihrhelpdesk.com, 1
 lbing.eu, 0
+lbio.nl, 1
 lbiplus.de, 0
 lbj.tw, 1
 lbjlibrary.gov, 1
@@ -80008,7 +80504,6 @@
 lc10086.com, 1
 lc18.vip, 1
 lc1800.com, 1
-lc1818.net, 1
 lc2500.com, 1
 lc3708.com, 1
 lc3714.com, 1
@@ -80088,7 +80583,6 @@
 lc8dc28.com, 1
 lc8guidance.com, 1
 lc9108.com, 1
-lc9158.com, 1
 lc9256.com, 0
 lc98.net, 1
 lc9852.com, 1
@@ -80169,7 +80663,7 @@
 le-therapeute.com, 1
 le-traiteur-parisien.fr, 0
 le-upfitter.com, 1
-le0.me, 1
+le0.me, 0
 le0n.ddns.net, 1
 le0yn.ml, 1
 le130rb.com, 1
@@ -80188,7 +80682,6 @@
 leaderoftheresistance.com, 0
 leaderoftheresistance.net, 0
 leadersaudit.ga, 1
-leadership-conference.net, 1
 leadership-insight.nz, 1
 leadfrp.com, 1
 leadgem.co.uk, 1
@@ -80226,7 +80719,6 @@
 leakedbabes.tv, 1
 leakedminecraft.net, 1
 leakfix.nl, 1
-leakforums.net, 1
 leaknet.tk, 1
 leales.org, 1
 lealove.net, 1
@@ -80284,6 +80776,7 @@
 learnk12.org, 1
 learnlux.com, 1
 learnosity.com, 1
+learnoutlive.com, 1
 learnpedestal.com, 1
 learnpianogreece.com, 1
 learnpine.com, 0
@@ -80299,10 +80792,10 @@
 learntosurfcaparica.com, 1
 learntosurflisbon.com, 1
 learntotradethemarket.com, 1
-learntradingforexnow.com, 1
 learntube.cz, 0
 learnupon.com, 1
 learnwelsh.cymru, 1
+learnwithcorne.com, 1
 learso.com.ua, 1
 leasecar.uk, 1
 leaseit24.com, 1
@@ -80391,6 +80884,7 @@
 lechrismaran.com, 1
 lecken.tk, 1
 leclaire.com.br, 1
+leclicbazar.com, 1
 lecoinchocolat.com, 1
 leconnecteur-biarritz.fr, 1
 lecoquelicot.info, 1
@@ -80443,6 +80937,7 @@
 leech.tk, 1
 leeclemens.net, 0
 leecountyfl.gov, 1
+leecountync.gov, 1
 leedsmoneyman.com, 1
 leee.eu.org, 1
 leefbaargijzegem.be, 1
@@ -80462,7 +80957,7 @@
 leena.ai, 1
 leenaluhtanen.net, 1
 leendebroekertfonds.nl, 1
-leepakjsc.com, 1
+leepakjsc.com, 0
 leere.me, 1
 leerkotte.eu, 1
 leerliga.de, 1
@@ -80475,7 +80970,6 @@
 leetbunny.tk, 1
 leetcode.com, 1
 leetcode.net, 1
-leetgamers.asia, 1
 leetizia.net, 1
 leetsaber.com, 1
 leetsuliangkkproduction.tk, 1
@@ -80502,6 +80996,7 @@
 lega-dental.com, 1
 legacktem.com, 1
 legacy.bank, 1
+legacyfarmstx.com, 1
 legacygame.ga, 1
 legacygame.gq, 1
 legacyofkain.tk, 1
@@ -80628,12 +81123,12 @@
 legilimens.de, 1
 legioiedifrancy.com, 1
 legion.ge, 1
-legion.hosting, 1
 legionisci.com, 1
 legioniv.org, 1
 legions.tk, 1
 legionwood.tk, 1
 legiscontabilidade.com.br, 1
+legislationupdateservice.co.uk, 1
 legit.nz, 1
 legitcorp.com, 1
 legitedelaguiole.com, 1
@@ -80655,6 +81150,7 @@
 legro.tk, 1
 legterm.cz, 1
 legyenkianegykereked.hu, 1
+lehifibernetwork.gov, 1
 lehighcountypa.gov, 1
 lehighvalleypeds.com, 1
 lehmanns.de, 1
@@ -80682,7 +81178,6 @@
 leilakaleva.fi, 1
 leilautourdumon.de, 1
 leilonorte.com, 1
-leiloonart.com, 1
 leiming.co, 1
 leipzig.photo, 1
 leipziger-triathlon.de, 1
@@ -80710,7 +81205,7 @@
 lejlax.com, 1
 lejournaldublog.com, 1
 lekarkabajkopisarka.pl, 1
-lekitable.fr, 0
+lekitable.fr, 1
 lekkergoings.nl, 1
 lekkerleben.de, 1
 leko.tk, 1
@@ -80752,13 +81247,11 @@
 lemitti.com, 1
 lemler.family, 1
 lemmamedia.com, 1
-lemmy.ca, 0
 lemni.top, 1
 lemoine.at, 1
 lemonadefashion.com, 1
 lemonardo.ga, 1
 lemoncloud.eu.org, 1
-lemondrops.xyz, 1
 lemoniax.com, 1
 lemonop.com, 1
 lemonparty.co, 1
@@ -80840,6 +81333,7 @@
 lensual.space, 1
 lenta-ru.tk, 1
 lentanews.ml, 1
+lentesbrasil.com, 1
 lentivo.com, 1
 lentusaudio.nl, 1
 lenuagebauche.org, 1
@@ -80992,6 +81486,7 @@
 lescomptoirsdepierrot.com, 1
 lesconcours.tk, 1
 lescoquetteriesdenais.fr, 1
+lescouturesdisa.fr, 1
 lescrapdesfilles.fr, 1
 lescrieursduweb.com, 1
 lesdeuxfilles.be, 1
@@ -81003,7 +81498,6 @@
 lesgitesdusapey.fr, 0
 lesgoodnews.fr, 1
 lesh.eu, 1
-leshetu.com, 0
 leshok.tk, 1
 leshop.ch, 1
 lesin.tk, 1
@@ -81014,6 +81508,7 @@
 lesmaisonsdaudrey.com, 1
 lesmamy.ch, 0
 lesmatinesdheres.fr, 1
+lesmills-redirect-test.azurewebsites.net, 1
 lesmontagne.net, 1
 lesnet.co.uk, 1
 lesnoticiesdensergialarcon.site, 1
@@ -81021,6 +81516,7 @@
 lesours.in, 1
 lespatriotes.tk, 1
 lespecialiste-pradelexcellence.com, 1
+lespepinspunk.org, 1
 lesperlesdunet.tk, 1
 lespinasse.org, 1
 lesplatanes.ch, 0
@@ -81029,8 +81525,9 @@
 lesptitspasdelyne.fr, 1
 lesptitstutos.fr, 1
 lesquatredauphins.fr, 0
-lesrepairesmontluconnais.com, 1
 lessavonnables.fr, 1
+lesschwab-privacyportal-ui.azurewebsites.net, 1
+lesschwabdatagovernancetool.azurewebsites.net, 1
 lessets-graphiques.com, 1
 lessiamia.net, 1
 lessing.consulting, 1
@@ -81077,7 +81574,6 @@
 letmebet.de, 1
 letmepost.com, 1
 letnik.tk, 1
-leto12.xyz, 1
 letocar.com, 1
 letote.com, 0
 letraba.com, 1
@@ -81133,6 +81629,7 @@
 letturaveloce.tk, 1
 letusdothehomework.com, 1
 letustravel.tk, 1
+letvikar.dk, 1
 letweedoo.com, 1
 letzi-immobilien.ch, 1
 leuchtmann.ch, 1
@@ -81165,6 +81662,7 @@
 levelupdisability.com.au, 1
 leveluplv.com, 1
 leveluprankings.com, 1
+levelx.team, 1
 levendwater.org, 1
 levensbron.nl, 1
 leventismotors.com.ng, 1
@@ -81187,6 +81685,7 @@
 levitate.ro, 1
 levitatingx.com, 1
 levitation.tk, 1
+levlagom.com, 1
 levna-knihovna.cz, 1
 levolor.com, 1
 levothyroxineonline.gq, 1
@@ -81208,7 +81707,6 @@
 lewiscountyny.gov, 1
 lewisdatasecurity.com, 1
 lewisjuggins.co.uk, 1
-lewisllewellyn.me, 1
 lewismcyoutube.uk, 1
 lewt.me, 1
 lex-legal.com.ua, 1
@@ -81223,7 +81721,6 @@
 lexe.club, 1
 lexgo.be, 1
 lexgo.lu, 1
-lexic.co, 1
 lexico.pt, 1
 lexicography.online, 1
 lexicore.ga, 1
@@ -81267,7 +81764,6 @@
 lezwatchtv.com, 0
 lezzetyurdu.com.tr, 1
 lfashion.eu, 1
-lfaz.org, 1
 lfc.com.pl, 1
 lfcnsv.de, 1
 lff.club, 1
@@ -81315,7 +81811,6 @@
 lhasaapso.com.br, 1
 lhconsult.tk, 0
 lheinrich.org, 1
-lhero.org, 1
 lhffinanceira.online, 1
 lhisp.com, 1
 lhm.de, 1
@@ -81349,6 +81844,7 @@
 liamelliott.me, 1
 liamlin.me, 1
 lian-in.net, 1
+liana.site, 1
 liangbi.ml, 1
 liange.com, 1
 liangfaner.com, 1
@@ -81393,6 +81889,7 @@
 libelulaweb.tk, 1
 liberad.fr, 1
 liberal.ru, 1
+liberalartsedu.org, 1
 liberale-demokraten.de, 1
 liberalis.tk, 1
 liberapay.com, 1
@@ -81452,10 +81949,10 @@
 libot.eu.org, 1
 libpdf.org, 1
 libportal.cf, 1
-libra.com, 1
 libractes.tk, 1
 libraideos.tk, 1
 librairieducontretemps.com, 1
+librairiez.com, 1
 librairiezbookstore.com, 1
 libramedia.ru, 1
 libranet.eu, 1
@@ -81508,6 +82005,7 @@
 libstaffer.net, 1
 libstick.org, 1
 libstock.si, 1
+liburanjogja.co.id, 1
 libwizard.com, 1
 libwizard.net, 1
 libyanexpert.ml, 1
@@ -81679,7 +82177,6 @@
 lifeslonglist.com, 1
 lifesoccer.tk, 1
 lifestorage.com, 1
-lifestrongacademy.org, 1
 lifestyle.bg, 1
 lifestyle7788.com, 1
 lifestyledoctor.in, 1
@@ -81713,7 +82210,6 @@
 ligadosgames.com, 1
 ligare-fp.com, 1
 ligaro.nl, 1
-light-home.pl, 1
 light.law, 1
 light.mail.ru, 1
 lightbearer.tk, 1
@@ -81760,6 +82256,7 @@
 lightningwirelabs.com, 1
 lighto.pk, 1
 lightography.com, 1
+lightpod.com.au, 1
 lightquantum.moe, 1
 lightrun.com, 1
 lights.co.uk, 1
@@ -81772,7 +82269,7 @@
 lightsproject.com, 1
 lightstands.xyz, 1
 lightstep.com, 0
-lighttp.com, 1
+lighttp.com, 0
 lightupcollective.co.uk, 1
 lightweighthr.com, 1
 lightwitch.org, 0
@@ -81806,13 +82303,13 @@
 likans.tk, 1
 like-boss.ga, 1
 like-rabota.tk, 1
-likea.fi, 1
 likeable.com, 1
 likeablehub.com, 1
 likeageek.tk, 1
 likeany.com, 1
 likebee.gr, 1
 likebot.ml, 1
+likecrabwalkslowly.ml, 1
 likefast.tk, 1
 likefluence.com, 1
 likegeeks.com, 1
@@ -81866,6 +82363,7 @@
 liliweb.tk, 1
 liljohnsanitary.net, 1
 lillalisa.tk, 1
+lillaparken.se, 1
 lillbrothers.com, 1
 lille.ml, 1
 lillieprivat.org, 1
@@ -81876,6 +82374,7 @@
 lillylove.net, 1
 lillypornokatze.net, 1
 lillywhitehotelgroup.com.au, 1
+lilola.de, 1
 lilomatrixcorner.fr, 1
 lilou-sportswear.com, 1
 lilpwny.com, 1
@@ -81933,7 +82432,7 @@
 limitshareest.ga, 1
 limiturls.ga, 1
 limnt.cn, 1
-limo.pl, 1
+limo.pl, 0
 limo.sh, 1
 limoairporttoronto.net, 1
 limoforsale.com, 1
@@ -81975,6 +82474,7 @@
 lincolncountysheriffok.gov, 1
 lincolncountytn.gov, 1
 lincolncountywy.gov, 1
+lincolnfinewines.com, 1
 lincolnil.gov, 1
 lincolnimps.tk, 1
 lincolnmoneyman.com, 1
@@ -81993,14 +82493,17 @@
 lindamadu.com.br, 1
 lindanblog.com, 1
 lindaolsson.com, 1
+lindapark.com, 1
 lindazi.com, 1
 lindbladcruises.com, 1
-lindeal.com, 1
+lindeal.com, 0
 linden-nj.gov, 1
 linden.me, 0
 linden.tk, 1
+lindenfd-nj.gov, 1
 lindenlibrary-nj.gov, 1
 lindentx.gov, 1
+lindependant.fr, 1
 lindependant.ml, 1
 lindernational.com, 1
 lindeskar.se, 1
@@ -82012,6 +82515,7 @@
 lindnerhof-taktik.de, 1
 lindnerhof.info, 1
 lindnerova.cz, 1
+lindo.ru, 1
 lindogdahl.dk, 1
 lindon.pw, 1
 lindoors.tk, 1
@@ -82023,6 +82527,7 @@
 lindseyadelman.com, 1
 lindseyfansite.tk, 1
 lindskogen.se, 1
+lindung.pp.ua, 1
 line-magazine.com, 1
 line.biz, 1
 line.co.nz, 0
@@ -82137,7 +82642,6 @@
 linkthis.me, 1
 linkthis.ml, 1
 linkthisstatus.ml, 1
-linktio.com, 1
 linkto.cf, 1
 linku.com, 1
 linkurio.us, 1
@@ -82154,6 +82658,7 @@
 linmarrdavao.com, 1
 linmi.cc, 1
 linnaeusgroup.co.uk, 1
+linncfs.top, 1
 linncounty-ia.gov, 1
 linncountyelections-ia.gov, 1
 linncountyiowa.gov, 1
@@ -82184,7 +82689,7 @@
 linotrac.com, 1
 linotrac.nl, 1
 linotype.tk, 1
-linpx.com, 1
+linpx.com, 0
 linqhost.nl, 1
 linshiyouxiang.com, 1
 linss.com, 1
@@ -82254,6 +82759,7 @@
 linvosges.com, 1
 linx.net, 1
 linxmind.eu, 1
+linxtter.com, 1
 linz.eu.org, 1
 linzi.me, 1
 linzyjx.com, 1
@@ -82286,7 +82792,6 @@
 lipovka.tk, 1
 lipowebsite.tk, 1
 lippu1.fi, 1
-lipsumtech.com, 1
 liptor.gq, 1
 lipturess.tk, 1
 liq.com.br, 1
@@ -82427,6 +82932,7 @@
 litecoinnews.club, 1
 litehost24.tk, 1
 litemere.org, 1
+litemere.us, 1
 litemind.com, 0
 liteminer.cf, 1
 litepay.ch, 1
@@ -82486,7 +82992,7 @@
 littlefamilyadventure.com, 1
 littlefingersindia.com, 1
 littlefiredragon.tk, 1
-littlefool.de, 0
+littlefool.de, 1
 littlegiants.edu.au, 1
 littlegleemonster.com, 1
 littlehacker.tk, 1
@@ -82558,7 +83064,6 @@
 live-news.gq, 1
 live-tv-channels.org, 1
 live-z-rejstejna.cz, 1
-live.ac.cn, 1
 live2play.ml, 1
 live2travelmore.us, 1
 live4k.media, 1
@@ -82593,10 +83098,12 @@
 livedomain.at, 1
 livedrawtogel.id, 1
 liveevents.ee, 1
+liveflooring.com, 1
 livefoot.fr, 1
 liveforspeed.se, 1
 livefortheviews.com, 1
 livehomecams.co.uk, 1
+liveinmelbourne.vic.gov.au, 1
 liveint.org, 1
 liveit.pt, 1
 liveita.com, 1
@@ -82684,7 +83191,6 @@
 livinglifesecurely.com, 1
 livinglink.be, 1
 livinglocalapp.com, 1
-livingorganicnews.com, 1
 livingoutdoors.ga, 1
 livingtired.org, 1
 livingtohearsix.com, 1
@@ -82712,9 +83218,11 @@
 livy.one, 1
 lixi.today, 1
 lixiaoyu.live, 1
+lixis.com, 1
 lixtick.com, 1
 lixx.org, 1
 liyin.date, 1
+liying-sub.buzz, 1
 liyingcloud.org, 1
 liz-ate.com, 1
 liz-fry.com, 1
@@ -82775,12 +83283,10 @@
 ll9397.com, 1
 ll9728.co, 1
 llac.org, 1
-llamerapido.com, 1
 llanelli-radio-club.tk, 1
 llanowar.tk, 1
 llantasysuspensiones.shop, 1
 llave.io, 1
-llbcpa.com, 1
 llccd.eu.org, 1
 llcgeek.com, 1
 llcig.com, 1
@@ -82789,8 +83295,10 @@
 lleidanoticies.com, 1
 llemoz.com, 1
 lligwy.co.uk, 0
+llinck.fr, 1
 llinternational.tk, 1
 llm-guide.com, 1
+lloretparty.de, 1
 lloyd-day.me, 1
 lloydrogerspencer.com, 1
 llrpartners.com, 1
@@ -82835,6 +83343,7 @@
 lnoldan.com, 1
 lnovus.ru, 0
 lnsolucoesfinanceiras.com.br, 1
+lnxy.eu, 1
 lnyltx.cn, 1
 lnzphoto.com, 1
 lo-li.icu, 0
@@ -82890,6 +83399,7 @@
 locabir.cf, 1
 locadoraequiloc.com.br, 1
 locais.org, 1
+local-shop.com, 1
 local360.net, 1
 localassocier.tk, 1
 localbandz.com, 1
@@ -82901,6 +83411,7 @@
 localcdn.org, 1
 localcleann.uk, 1
 localcrew.eu, 1
+localcrew.nl, 1
 localcryptopremium.com, 1
 localcryptos.com, 1
 locald.at, 1
@@ -82911,7 +83422,6 @@
 localexpress.io, 1
 localfloridanews.com, 1
 localhorst.duckdns.org, 1
-localhost.cat, 1
 localiq.com, 1
 localize.live, 1
 localized.tk, 1
@@ -82987,6 +83497,7 @@
 locker.plus, 1
 locker3.com, 1
 lockerroomstories.com, 1
+locketurf.com, 1
 lockify.com, 1
 lockless.tk, 1
 locklock.com.br, 1
@@ -83012,6 +83523,7 @@
 locksmithlivoniami.com, 1
 locksmithmadisonheights.com, 1
 locksmithmesquitetexas.com, 1
+locksmithmidrand24-7.co.za, 1
 locksmithmissouricity.com, 1
 locksmithsammamishwa.com, 1
 locksmithsanantoniotexas.com, 1
@@ -83031,8 +83543,6 @@
 locksmithunit.es, 1
 locksoflove.org, 1
 locksport.org.nz, 1
-locktightimpact.com, 1
-locktonportal.com, 1
 lockwoodchristmastreefarm.com, 1
 loco.gg, 1
 locomotionds.com, 1
@@ -83044,6 +83554,7 @@
 locus-dashboard.com, 1
 locus.ml, 1
 locus.tk, 1
+locustvalleyvet.com, 1
 locutusvader.com, 1
 lodash.com, 0
 loddeke.eu, 1
@@ -83106,6 +83617,7 @@
 logfile.at, 1
 logfile.ch, 1
 logfinish.com, 1
+logfro.de, 1
 logfurnitureplace.com, 1
 logheavenvt.com, 1
 logic8.ml, 1
@@ -83123,6 +83635,10 @@
 logicne-hise.si, 1
 logicnets.com, 1
 logico.ar, 1
+logicsale.com, 1
+logicsale.de, 1
+logicsale.fr, 1
+logicsale.it, 1
 logicz.top, 1
 logimap.cz, 1
 login.corp.google.com, 1
@@ -83135,6 +83651,7 @@
 login.yahoo.com, 0
 logingate.hu, 1
 loginsecure.eu, 1
+loginvovchyk.ru, 1
 loginwithmc.com, 1
 logipdv.pt, 1
 logismarket.com, 1
@@ -83170,6 +83687,7 @@
 logosnet.com.br, 1
 logosradio.tk, 1
 logostock.jp, 1
+logowik.com, 1
 logram.io, 1
 lograr.me, 1
 logrhythm.com, 1
@@ -83323,7 +83841,6 @@
 lombard.co.uk, 1
 lombard.ie, 1
 lombardiaeconomy.it, 1
-lombardiave.com, 1
 lombri-agro.com, 1
 lomex.tk, 1
 lomgo.cf, 1
@@ -83337,7 +83854,7 @@
 lomza.tk, 1
 lon-so.com, 1
 lona.io, 1
-lonasdigital.com, 1
+lonasdigital.com, 0
 lonavla.tk, 1
 loncarlyonjenkins.com, 1
 loncat.co.id, 1
@@ -83363,6 +83880,7 @@
 londonsoccer.tk, 1
 londontrivia.gq, 1
 londonvetspecialists.vet, 1
+londynelliot.com, 1
 lone-gunman.be, 1
 lone-wolf.tk, 1
 lonelybitcoin.com, 1
@@ -83414,6 +83932,7 @@
 long68.net, 1
 long688.com, 0
 long8032.com, 1
+longbeachroleplay.de, 1
 longboatlocal.com, 1
 longbridge.hk, 1
 longbsants.com, 1
@@ -83443,7 +83962,6 @@
 longportpd.org, 1
 longsexyshop.com.br, 1
 longstride.net, 1
-longtaitouwang.com, 0
 longtake.ir, 1
 longtermcare.gov, 1
 longtermrentalsportugal.com, 1
@@ -83529,7 +84047,6 @@
 lorddominion.tk, 1
 lordfutbol.tk, 1
 lordgandalf.nl, 1
-lordgeorgeanson.com, 1
 lordgrant.tk, 1
 lordiii.de, 1
 lordkrishna.tk, 1
@@ -83629,9 +84146,9 @@
 loss.no, 1
 lossaicos.tk, 1
 lossandthemourningafter.com, 0
+losseo.net, 1
 lost-bit.tk, 1
 lost-illusions.tk, 1
-lost-in-place.com, 1
 lost-perdidos-hiatus.tk, 1
 lostandfound.mu, 1
 lostandfoundsoftware.com, 1
@@ -83666,6 +84183,7 @@
 loteamentoabertocapivari.com.br, 1
 lotekk.gq, 1
 lotereiki.tk, 1
+loteriasdominicana.com.do, 1
 lothai.re, 1
 lothlorien.ca, 0
 lotimena.com, 1
@@ -83705,6 +84223,7 @@
 loueurmeublegestion.expert, 1
 louhomeworkouts.com, 1
 louisa.tk, 1
+louisacounty.gov, 1
 louisacountyia.gov, 1
 louisapolicefoundation.com, 1
 louisapolicefoundation.org, 1
@@ -83718,11 +84237,13 @@
 louisianamo.gov, 1
 louisianamusicfactory.com, 1
 louisiananetzero.gov, 1
+louisiananursery.com, 1
 louisville.gov, 1
 louisvillecarguys.com, 1
 louisvilleconnections.ga, 1
 louisvillefilmfestival.org, 1
 louisvillene.gov, 1
+louisvilleohio.gov, 1
 louiza.tk, 1
 loujaxx.net, 1
 loukas-stoltz.fr, 1
@@ -83813,12 +84334,10 @@
 lovemesomegadgets.com, 1
 lovemiku.info, 1
 lovemoon.tk, 1
-lovemoon.xyz, 1
 lovemybubbles.com, 1
 lovenet.tk, 1
 loveni.me, 1
 lovenwishes.com, 1
-loveph.one, 1
 loveplanets.tk, 1
 lovepremierevents.com, 1
 lover-bg.com, 1
@@ -83843,6 +84362,7 @@
 lovin.ga, 1
 lovin.tk, 1
 loving-house.com, 1
+lovingbody.yoga, 1
 lovink.net, 1
 lovizaim.ru, 1
 lovlyhorses.tk, 1
@@ -83889,7 +84409,7 @@
 lozhka-mernaya.tk, 1
 lp-support.nl, 0
 lp177.fr, 1
-lpacademy.com.br, 1
+lpc.fun, 1
 lpcd-lafla.gov, 1
 lpcdops-lafla.gov, 1
 lpchemicalsolution.tk, 1
@@ -83899,7 +84419,6 @@
 lpfan.tk, 1
 lph.saarland, 1
 lphispano.tk, 1
-lpid.org, 0
 lpiem.fr, 1
 lpkosovo.tk, 1
 lplbullets.com, 1
@@ -83920,6 +84439,7 @@
 lrc.cn, 1
 lrcr.ch, 0
 lrdo.net, 1
+lrfix.com, 1
 lriese.ch, 1
 lrn.com, 1
 lroc.com.au, 1
@@ -83928,7 +84448,6 @@
 lrv-grobbendonk.tk, 1
 ls-alarm.de, 1
 ls-rp.es, 1
-lsal.fr, 1
 lsal.me, 1
 lsbricks.com, 1
 lsbttiq.org, 1
@@ -83937,6 +84456,7 @@
 lsc.ee, 1
 lsc.moe, 1
 lscache.de, 1
+lschimanski.de, 1
 lsdev.biz, 1
 lsfnet.org, 1
 lsg2021acm.com, 1
@@ -83946,7 +84466,6 @@
 lskgreendevelop.com, 1
 lskgreenenergy.com, 1
 lskgreengroup.com, 1
-lskl.fi, 1
 lspdonline.gq, 1
 lsquo.com, 1
 lsscreens.de, 1
@@ -83979,6 +84498,7 @@
 ltls.org, 1
 ltmw.xyz, 1
 ltn-tom-morel.fr, 1
+ltn.pw, 1
 ltonlinestore.in, 0
 ltransferts.com, 1
 ltservers.net, 1
@@ -83992,7 +84512,6 @@
 luan.ma, 1
 luanvancaohoc.com, 1
 luanxt.tk, 1
-luatan.com, 1
 luathungson.vn, 1
 lubar.me, 1
 lubbockyounglawyers.org, 1
@@ -84004,6 +84523,7 @@
 luc-nutrition.tk, 1
 luc-oberson.ch, 0
 luc.li, 1
+luca-app.de, 1
 luca-steeb.com, 1
 lucacastelnuovo.nl, 1
 lucaconrads.de, 1
@@ -84126,7 +84646,6 @@
 ludothek-burgdorf.ch, 1
 ludovic-frank.fr, 1
 ludovic-muller.fr, 1
-ludovicfernez.com, 1
 ludovicozitelli.it, 1
 ludum-polus.xyz, 1
 ludum.pl, 1
@@ -84138,7 +84657,6 @@
 luedeke-bremen.eu, 1
 lueersen.homedns.org, 1
 luehne.de, 1
-lueira.com, 1
 luelistan.net, 0
 luematecidos.com, 1
 luematecidos.com.br, 1
@@ -84216,7 +84734,6 @@
 lukaswiden.com, 1
 lukaszczyk.de, 1
 lukaszderlatka.pl, 1
-lukasztkacz.com, 1
 lukaszuk.pl, 1
 lukaszwojcik.com, 0
 lukaszwojcik.net, 1
@@ -84281,7 +84798,6 @@
 luminsmart.com, 1
 lumitop.com, 1
 lumixtar.com, 1
-lumizor.com.ua, 1
 lummi-nsn.gov, 1
 lumminary.com, 1
 lumoa.me, 1
@@ -84290,7 +84806,6 @@
 lumpenrock.tk, 1
 lumpov.com, 1
 lumpy.ga, 1
-lums.se, 1
 lumsa.university, 1
 lumsdens.ga, 1
 lumus-grafikdesign.de, 1
@@ -84308,9 +84823,9 @@
 lunafag.ru, 1
 lunagrill.com, 1
 lunai.re, 1
-lunakit.org, 1
 lunalove.de, 1
 lunalovely.net, 1
+lunaluna.com, 1
 lunalya.de, 1
 lunanova.moe, 1
 lunaonline.tk, 1
@@ -84358,6 +84873,7 @@
 luoh.cc, 1
 luoh.me, 1
 luohua.im, 1
+luojan.com, 1
 luoli.one, 1
 luoliguan10.com, 1
 luoliguan11.com, 1
@@ -84453,7 +84969,6 @@
 luxedentalfl.com, 1
 luxedition.ru, 0
 luxegram.co, 1
-luxegram.co.za, 1
 luxehomecompany.com, 1
 luxelyhome.com, 1
 luxemburgsite.tk, 1
@@ -84566,7 +85081,6 @@
 lymia.moe, 1
 lymiahugs.com, 1
 lyna.ml, 1
-lynamhomeloans.com.au, 1
 lyncag.org, 1
 lyndhurstohio.gov, 1
 lyndo.ga, 1
@@ -84625,6 +85139,7 @@
 lyscnd.com, 1
 lysel.net, 1
 lysergion.com, 1
+lysethcreation.com, 1
 lyst.co.uk, 1
 lyteclinic.com, 0
 lytkins.ru, 1
@@ -84662,10 +85177,10 @@
 m-generator.com, 1
 m-h-b.fr, 1
 m-hydravlika.com.ua, 1
-m-idav.ru, 1
 m-idea.jp, 1
 m-monitor.pl, 1
 m-mts.ru, 1
+m-nasiri.com, 1
 m-net.de, 1
 m-o-v-i-e.tk, 1
 m-o-x.de, 1
@@ -84705,6 +85220,7 @@
 m36533.com, 1
 m3globalresearch.com, 1
 m3ntor.tech, 1
+m3rck.ch, 1
 m42-gmbh.de, 1
 m426.ch, 1
 m4all.gr, 1
@@ -84773,6 +85289,7 @@
 mabulledu.net, 1
 mabusalah.tk, 1
 mac-i-tea.ch, 0
+mac-iphone.com, 1
 mac-world.pl, 1
 mac.biz.tr, 1
 mac.osaka.jp, 1
@@ -84828,6 +85345,7 @@
 machineidle.com, 1
 machinerysafety101.com, 1
 machineseeker.com, 1
+machineseeker.es, 1
 machinetransport.com, 1
 machinio.com, 1
 machissenefre.ga, 1
@@ -84901,9 +85419,9 @@
 madagui.net, 1
 madamasr.com, 1
 madamcougar.com, 1
+madame-kosmetikstudio.de, 1
 madameblueimages.com, 1
 madamegarage.nl, 1
-madamove.com, 1
 madbicicletas.com, 1
 madbin.com, 1
 madbouncycastles.co.uk, 1
@@ -85000,9 +85518,9 @@
 madrespect.com, 1
 madrid-open.com, 1
 madridagency.com, 1
-madridartcollection.com, 1
 madride.tk, 1
 madridistas.com, 1
+madscientistwebdesign.com, 1
 madskauts.tk, 1
 madskill.tk, 1
 madskills.tk, 1
@@ -85095,11 +85613,11 @@
 magentaize.net, 1
 magentazorg.nl, 1
 magento-ecommerce.co.za, 0
-magentodevelopment.co.uk, 1
 magentrix.com, 1
 magenx.com, 1
 magepro.fr, 1
 magescobd.com, 1
+magesy.blog, 0
 magesypro.com, 1
 magewell.nl, 1
 maggianos.com, 1
@@ -85149,7 +85667,6 @@
 magicpill.com.au, 1
 magicsms.pl, 1
 magicspaceninjapirates.de, 1
-magicstay.com, 1
 magictable.com, 1
 magictallguy.tk, 1
 magicthecreation.tk, 1
@@ -85212,6 +85729,7 @@
 magneticarrow.com, 1
 magneticarrowdev.com, 1
 magneticattraction.com.au, 1
+magnetoai.com, 1
 magnetoscopio.tk, 1
 magnetoterapiapertutti.com, 1
 magnetpass.uk, 1
@@ -85220,7 +85738,6 @@
 magnetto.ga, 1
 magnettracker.com, 1
 magnetvpn.com, 1
-magnewspress.com, 1
 magniezetassocies.fr, 1
 magnifact.com, 1
 magnific.tk, 1
@@ -85273,6 +85790,7 @@
 maharishikaa.org, 1
 mahaskacountyia.gov, 1
 mahatenders.gov.in, 1
+mahatmarice.com, 1
 mahavirmandirpatna.org, 1
 mahawi.sk, 1
 mahayana.tk, 1
@@ -85332,6 +85850,7 @@
 mail-delivery.ga, 1
 mail-ink.com, 1
 mail-rotter.de, 1
+mail-routing.net, 1
 mail-settings.google.com, 1
 mail-signatures.com, 1
 mail.ch, 1
@@ -85376,10 +85895,10 @@
 mailingwork.de, 1
 mailinizer.com, 1
 mailinyzer.com, 1
+mailjet.com, 1
 mailjunkey.tk, 1
 maillotdefoot.tk, 1
 maillotfoot.tk, 1
-mailmag.net, 0
 mailmaid.de, 1
 mailman.ml, 1
 mailmaster.tk, 1
@@ -85418,6 +85937,7 @@
 mainhattan-handwerker.de, 1
 mainhuyahan.tk, 1
 mainlined.org, 1
+mainserver.co.za, 1
 mainstaysafetywedge.com, 1
 mainstortho.com, 1
 mainstreetartisans.com, 1
@@ -85485,7 +86005,6 @@
 majisign.co.uk, 1
 majkassab.com, 1
 majkl.me, 1
-majkl578.cz, 1
 majkyto.cz, 1
 majlovesreg.one, 1
 majolka.com, 1
@@ -85510,7 +86029,6 @@
 makeaoffice.nl, 1
 makebadge.com, 0
 makechanges.com.au, 1
-makecharcoal.com, 1
 makedin.net, 1
 makedonija.net.mk, 1
 makeh2o.com, 1
@@ -85541,6 +86059,7 @@
 maketheconnection.net, 1
 maketheneighborsjealous.com, 1
 maketodiet.com, 1
+makeupartistedu.org, 1
 makeupevelinua.cf, 1
 makeupevelinua.ga, 1
 makeupillusion.com, 1
@@ -85556,7 +86075,7 @@
 maki.cafe, 1
 makilingchallenge.tk, 1
 making-it.nl, 1
-makingbusinessmatter.co.uk, 0
+makingbusinessmatter.co.uk, 1
 makingmemoney.cf, 1
 makingmemoney.ga, 1
 makingmemoney.gq, 1
@@ -85579,8 +86098,9 @@
 maksa.ga, 1
 maksima.kh.ua, 1
 maksimmrvica.tk, 1
+maksimyugai.com, 1
 maksmedia.tk, 1
-maksnet.net, 1
+maksnet.net, 0
 maksonshop.ga, 1
 maksoud-karim.net, 1
 maksport.ml, 1
@@ -85632,14 +86152,13 @@
 male-cats-spray.ml, 1
 malebooks.ml, 1
 malecialis.com, 1
+malecki.tk, 1
 malecondemusique.fr, 1
-malediven.biz, 1
 maleevcues.com, 1
 malego.be, 1
 malekperiodontics.com, 1
 malenaamatomd.com, 1
 malenyflorist.com.au, 1
-maleperformancepills.com, 1
 malermeister-kessler.de, 1
 malermeister-tichnau.de, 1
 malesoowki.blog, 1
@@ -85674,7 +86193,6 @@
 malinmethod.com, 1
 malisheva-blog.cf, 1
 malisheva-blog.ga, 1
-maliskovik.si, 1
 maliweb.ml, 1
 maljaars-fotografie.nl, 1
 malkalni.lv, 1
@@ -85703,7 +86221,6 @@
 malltina.com, 0
 malmomusikskola.se, 1
 malmyzh.tk, 1
-malond.com, 1
 malone.link, 0
 maloneyja.com, 1
 maloosakpet.ir, 1
@@ -85744,6 +86261,7 @@
 mamanakormit.tk, 1
 mamanecesitaungintonic.com, 1
 mamanetplus.fr, 1
+mamanzaris.com, 1
 mamaplus.net, 1
 mamasorganizedchaos.com, 1
 mamastyle.store, 1
@@ -85876,6 +86394,7 @@
 manga-passion.de, 1
 manga-republic.com, 1
 manga1000.top, 1
+manga1001.xyz, 1
 manga168.com, 1
 mangaarabics.com, 1
 mangabond.tk, 1
@@ -85886,7 +86405,6 @@
 mangafreak.tk, 1
 mangagaga.tk, 1
 mangahigh.com, 1
-mangaide.com, 1
 mangajp.top, 1
 mangakita.net, 1
 mangalindustries.com, 1
@@ -85938,7 +86456,6 @@
 manif-est.info, 1
 manikinuk.tk, 1
 manilacrawl.com, 1
-manimassage.fr, 1
 maniorpedi.com, 1
 maniosglass.gr, 1
 manipil.ch, 0
@@ -86105,7 +86622,6 @@
 manzanagroup.ru, 1
 manzanita-nsn.gov, 1
 manzoorahmed.com, 1
-manzunadh.com, 1
 maomihz.com, 1
 maone.net, 1
 maorilandfilm.co.nz, 1
@@ -86130,13 +86646,11 @@
 maoshuai.store, 1
 maoshuai.top, 1
 maoshuai.tw, 1
-maoshuai.us, 1
 maoshuai.vip, 1
 maoshuai.wang, 1
 maoshuai.win, 1
 maoshuai.xyz, 1
 maowtm.org, 1
-maowushi.net, 1
 maozedong.red, 1
 map-immo.fr, 1
 map4erfurt.de, 1
@@ -86219,6 +86733,7 @@
 marcbeije.com, 1
 marcberndtgen.de, 1
 marcceleiro.com, 1
+marcdietschi.com, 1
 marcel-preuss.de, 1
 marcel-waldvogel.ch, 1
 marcelabarrozo.tk, 1
@@ -86242,6 +86757,7 @@
 marcelwolf.coach, 1
 marcenariaembh.com.br, 1
 marcgoertz.de, 1
+march-consulting.jp, 1
 marcha.org.ar, 1
 marchagen.nl, 1
 marche-nordic-jorat.ch, 0
@@ -86328,6 +86844,7 @@
 margo.ml, 1
 margolis.gq, 1
 margotbworldnews.tk, 1
+margotdesign.ovh, 1
 margots.biz, 1
 margots.life, 1
 margots.tech, 1
@@ -86370,6 +86887,7 @@
 marie-pettenbeck-schule.de, 1
 marie-psy.fr, 1
 marie.club, 1
+mariealber.cz, 1
 mariearthur.fr, 1
 mariecurie.tk, 1
 mariedanielle.it, 1
@@ -86405,7 +86923,6 @@
 marinasmad.com, 1
 marinat.de, 1
 marinat2012.de, 1
-marinatecnicavocal.com, 1
 marinazarza.es, 1
 marinbusinesscenter.ch, 0
 marine.gov, 1
@@ -86433,8 +86950,10 @@
 marioncountyar.gov, 1
 marioncountyil.gov, 1
 marioncountyiowa.gov, 1
+marioncountyms.gov, 1
 marioncountyohio.gov, 1
 marioncountytn.gov, 1
+mariontwpcvxmi.gov, 1
 marioserver.ml, 1
 mariospizzaoxford.co.uk, 1
 mariouniversalis.fr, 1
@@ -86469,7 +86988,6 @@
 mark-dietzer.de, 1
 mark-semmler.de, 1
 mark1998.com, 1
-markaconnor.com, 1
 markandrosalind.co.uk, 1
 markantalyamasajsalonu-bayanmasoz-cim.cf, 1
 markco.fi, 1
@@ -86507,6 +87025,7 @@
 marketingbab.com, 1
 marketingbrandingnews.com, 1
 marketingbrandingnews.net, 1
+marketingcareeredu.org, 1
 marketingco.nl, 1
 marketingconcafe.com, 1
 marketingdesignu.cz, 1
@@ -86524,6 +87043,7 @@
 marketingtrendnews.com, 1
 marketingtutor.net, 1
 marketingvirtuales.com, 1
+marketingwelt-lipp.de, 1
 marketingypublicidaddigital.com.mx, 1
 marketio.ai, 1
 marketizare.ro, 1
@@ -86570,7 +87090,6 @@
 markocloud.com, 1
 markoglou.com.gr, 1
 markoh.co.uk, 1
-markowewesele.pl, 1
 markprof.ru, 1
 markpulido.net, 1
 markri.nl, 1
@@ -86588,8 +87107,8 @@
 markstevenkirk.com, 1
 markstickley.co.uk, 1
 markt-heiligenstadt.de, 0
+markt8asten.nl, 1
 marktcontact.com, 1
-markterweele.nl, 1
 marktgemeinde-glonn.de, 1
 marktgorman.com, 1
 marktguru.at, 1
@@ -86681,10 +87200,12 @@
 marseillekiteclub.com, 1
 marshaiargentina.com, 1
 marshall-allman.tk, 1
+marshallcoms.gov, 1
 marshallcountyillinois.gov, 1
 marshallcountywv.gov, 1
 marshallruskwi.gov, 1
 marshallscastles.com, 1
+marshallsheriffms.gov, 1
 marshallwilson.com, 1
 marshfieldvillagevt.gov, 1
 marshfieldvt.gov, 1
@@ -86699,6 +87220,7 @@
 marta-chat.ga, 1
 marta.uz, 0
 martacooks.com, 1
+martapratsmakeup.com, 1
 martasibaja.com, 1
 martdev.com, 1
 martec.dk, 1
@@ -86706,7 +87228,6 @@
 martelange.ovh, 1
 martellosecurity.com, 1
 martemeo-wetterau.de, 1
-marten-buer.de, 0
 martensson.io, 1
 marthajackson.co.uk, 1
 marthakenney.com, 1
@@ -86745,6 +87266,7 @@
 martineric.tk, 1
 martinfresow.de, 1
 martinhal.cn, 1
+martinhal.com, 1
 martinhal.cz, 1
 martinhal.pl, 1
 martinhalfamilyblog.com, 1
@@ -86828,6 +87350,7 @@
 marxpark.tk, 1
 mary-e-kay.tk, 1
 maryamghorbani.com, 1
+maryannhaircpa.com, 1
 marycliffpress.com, 1
 marycowanceramics.com, 1
 maryeileen90.party, 1
@@ -86839,6 +87362,7 @@
 marylandbasementandcrawlspacewaterproofing.com, 1
 marylandtaxes.gov, 1
 marylandtraditions.org, 1
+maryleemacdonald.org, 1
 maryluzturismo.co, 1
 marymaloney.tk, 1
 marypierce.tk, 1
@@ -86846,7 +87370,6 @@
 maryrose.org, 1
 marytetzstore.com.br, 1
 marywet.net, 1
-marzio.co.za, 1
 mas.be, 1
 mas.bg, 1
 masadaoffensive.com, 1
@@ -86869,7 +87392,6 @@
 maschinen.email, 1
 maschinensucher.de, 1
 mascorazon.com, 1
-mascosolutions.com, 1
 mascotarios.org, 1
 mascoteando.net, 1
 masculina.com.br, 1
@@ -86883,8 +87405,7 @@
 masfloss.net, 1
 mashairi.co.ke, 1
 mashandco.it, 1
-mashandco.tv, 1
-masharphomecooking.com, 1
+masharphomecooking.com, 0
 mashcl.com, 1
 mashek.net, 1
 mashin.al, 1
@@ -86947,6 +87468,8 @@
 massagecupping.com, 1
 massagegunadvice.com, 1
 massagekartan.ga, 1
+massages-du-monde-charente.fr, 1
+massagetherapylicense.org, 1
 massagetherapyschoolsinformation.com, 1
 massagik.ml, 1
 massanews.com, 1
@@ -87019,8 +87542,12 @@
 masterpro1.ru, 1
 masterquest.tk, 1
 masters-burrell.co.uk, 1
+masters-education.com, 1
+masters-in-special-education.com, 1
 mastersadistancia.com, 1
 mastersindatascience.org, 1
+mastersinesl.org, 1
+mastersinlibraryscience.net, 1
 mastersofscale.com, 1
 mastersplace.tk, 1
 masterstation.net, 1
@@ -87030,6 +87557,7 @@
 mastertent.com, 1
 masterton.com.au, 1
 mastertutoriales.com, 0
+masterunblock.com, 1
 mastervision.tk, 1
 masterwank.com, 1
 masterwayhealth.com, 1
@@ -87069,7 +87597,6 @@
 matarrosabierzo.com, 1
 matatabimix.com, 1
 matatall.com, 1
-matbea.com, 1
 matbettv.com, 1
 matc.net, 1
 match.audio, 1
@@ -87087,7 +87614,6 @@
 matchpointusa.com, 1
 matchupmagic.com, 1
 matco.ca, 1
-matdesign-prod.com, 1
 mate.academy, 1
 mate.software, 1
 matega.hu, 1
@@ -87166,6 +87692,7 @@
 mathschool.lt, 1
 mathsource.ga, 1
 mathspace.co, 1
+mathteacheredu.org, 1
 mathys.io, 1
 mati.gq, 1
 mati.tk, 1
@@ -87226,7 +87753,6 @@
 matsushima-kosodate.com, 1
 matt-brooks.com, 1
 matt-royal.com.cy, 1
-matt.gd, 1
 matt.re, 1
 mattab.xyz, 1
 mattadams.info, 1
@@ -87332,7 +87858,7 @@
 matts.world, 1
 mattsavin.me, 0
 mattshi.com, 1
-mattsmotorclub.com, 1
+mattslack.me, 1
 mattsvensson.com, 1
 mattwill.be, 1
 matucloud.de, 1
@@ -87417,6 +87943,7 @@
 mawrex.tech, 1
 max-anime.tk, 1
 max-apk.com, 0
+max-cafe.cz, 1
 max-moeglich.de, 1
 max-went.pl, 1
 max.gov, 1
@@ -87569,7 +88096,6 @@
 mayflowerbocawina.tk, 1
 mayflowercreative.com, 1
 mayflowerfairytales.com, 1
-mayhutmuibep.com, 1
 mayito.tk, 1
 mayki.ga, 1
 maykitut.tk, 1
@@ -87620,7 +88146,10 @@
 mbaasy.com, 1
 mbaestlein.de, 1
 mbainflatables.co.uk, 1
+mbakustik.de, 1
+mbanogmat.com, 1
 mbar.us, 1
+mbarbadun.es, 0
 mbardot.com, 0
 mbasic.facebook.com, 0
 mbcars.be, 0
@@ -87658,6 +88187,7 @@
 mburaks.com, 1
 mburns.duckdns.org, 1
 mbvelden.nl, 1
+mbw.org.au, 1
 mbwemmel-usedcars.be, 1
 mbwsignup.com, 1
 mc-auth.com, 1
@@ -87732,6 +88262,7 @@
 mcgillsbuses.co.uk, 1
 mcgovernance.com, 1
 mcgrand.shop, 1
+mcgregortx.gov, 1
 mch2022.org, 1
 mchaelkordomain.tk, 1
 mchan.us, 1
@@ -87863,7 +88394,6 @@
 mditsa.de, 1
 mdiv.pl, 1
 mdjobsite.com, 1
-mdkhorshedalam.com, 1
 mdl.co.ua, 1
 mdlayher.com, 1
 mdleom.com, 1
@@ -87894,7 +88424,6 @@
 me-soft.nl, 1
 me.com.br, 1
 me.net.nz, 0
-me.tc, 1
 me.vu, 1
 me7878.com, 1
 mea.com.lb, 1
@@ -87902,6 +88431,7 @@
 meadowfenfarm.com, 1
 meadowviewfarms.org, 1
 meadstats.com, 1
+meadvillems.gov, 1
 mealcast.ml, 1
 mealpedant.com, 1
 meals.lv, 1
@@ -87922,7 +88452,9 @@
 meapbot.pro, 1
 measiedu.org, 1
 measureaustralia.com.au, 1
+measurementsolutionsinc.com, 1
 measureyourpenis.today, 1
+meat-education.com, 1
 meat.org.uk, 1
 meatfoods.com.br, 1
 meatfreecarnivore.com, 1
@@ -87936,7 +88468,6 @@
 mebelipalitra.ru, 0
 mebelisk.com.br, 1
 mebelnik.pro, 1
-mebeloffice.com.ua, 1
 mebelok.com, 1
 mebelradom.com, 1
 mebelshik.tk, 1
@@ -88353,7 +88884,6 @@
 mediabookdb.de, 0
 mediabooks.ml, 1
 mediaboutique.nl, 1
-mediaboxfree.com, 1
 mediacenter.dynv6.net, 1
 mediacluster.de, 1
 mediacolor.fr, 1
@@ -88363,7 +88893,6 @@
 mediafly.com, 1
 mediafocus.biz, 1
 mediaforkids.org, 1
-mediafresco.com, 1
 mediagetnews.tk, 1
 mediagrand.net, 1
 mediagus.com, 1
@@ -88378,7 +88907,6 @@
 mediamarket42.tk, 1
 mediamonitors.net, 1
 mediamora.nl, 1
-mediamuda.com, 1
 medianbases.ga, 1
 medianewsk.com, 1
 mediantechnologies.com, 1
@@ -88397,7 +88925,6 @@
 mediassist.in, 1
 mediassisttpa.in, 1
 mediasst.com, 1
-mediastroke.com, 1
 mediataput.ga, 1
 mediathekview.de, 1
 mediation-mv.de, 1
@@ -88420,13 +88947,14 @@
 medical-centr.tk, 1
 medical-contact.de, 1
 medical-instinct.de, 1
-medical-safety-system.com, 1
 medical-tiny.com, 1
 medical-tiny.de, 1
 medicalabroad.org, 0
 medicalaegis.com, 1
 medicalassistantadvice.com, 1
+medicalassistantschools.com, 1
 medicalauction.ga, 1
+medicalbillingcodingworld.com, 1
 medicalbillrights.gov, 1
 medicalcountermeasures.gov, 1
 medicaldispute.tk, 1
@@ -88512,7 +89040,6 @@
 meditadvisors.com, 1
 meditarenargentina.org, 1
 meditateinolympia.org, 1
-meditation-kompass.de, 1
 meditation-music.shop, 1
 meditation-rennes.org, 1
 meditel.nl, 1
@@ -88527,6 +89054,7 @@
 mediziner-goettingen.tk, 1
 medja.net, 1
 medklee.com, 1
+medkliniks.ru, 1
 medlineplus.gov, 1
 medmark.com, 1
 mednet-communities.net, 1
@@ -88567,7 +89095,6 @@
 medunovi.com, 1
 medusa.wtf, 1
 meduza.io, 1
-medved1.ru, 1
 medvedikorenka.cz, 1
 medvedivka.tk, 1
 medvedka-nasekomoe.tk, 1
@@ -88630,6 +89157,7 @@
 mega-byte.nl, 0
 mega-feeling.de, 1
 mega-jeans.ru, 1
+mega-loteria.com, 0
 mega.co.nz, 1
 mega.io, 0
 mega.nz, 1
@@ -88641,6 +89169,7 @@
 megabounce.co.uk, 1
 megabouncingcastles.com, 1
 megacellenerji.com, 1
+megadimensao.com.br, 1
 megadrol.com, 1
 megaelements.com, 1
 megaelettrostimolatore.com, 1
@@ -88666,6 +89195,7 @@
 megalol.tk, 1
 megalonomia.ml, 1
 megam.host, 1
+megamarket-russia.ru, 1
 megamarkey.de, 0
 megamillions.tk, 1
 megamisja.pl, 1
@@ -88690,6 +89220,7 @@
 megaron.at, 1
 megasesso.com, 1
 megasitesoficial.tk, 1
+megasunsunglasses.bg, 1
 megateam.tk, 1
 megatom.net.br, 1
 megatyumen.ru, 1
@@ -88750,6 +89281,7 @@
 meijwebdesign.nl, 1
 meikampf.de, 1
 meikan.moe, 1
+meiksbar.de, 0
 meiler.cf, 1
 meilleur-casino-fiable.com, 1
 meilleursavis.fr, 1
@@ -88761,7 +89293,6 @@
 mein-gehalt.at, 1
 mein-muehlhausen.bayern, 1
 mein-neuer-garten.de, 1
-mein-tortenladen.de, 1
 mein-webportal.de, 0
 meinbetriebsrat24.de, 1
 meincenter-meinemeinung.de, 1
@@ -88769,9 +89300,9 @@
 meine-email-im.net, 1
 meine-finanzanalyse.de, 1
 meine-immofinanzierung.de, 1
+meine-lebensenergie-staerken.de, 1
 meineip.eu, 1
 meineit.dvag, 1
-meinema.nl, 1
 meinereiseangebote.de, 1
 meinevorlagen.com, 1
 meineweidegans.at, 1
@@ -88779,7 +89310,6 @@
 meineziege.de, 1
 meinforum.net, 1
 meinhard.com, 1
-meinmed.at, 1
 meinstartinsleben.com, 1
 meinstartinsleben.de, 1
 meintragebaby.de, 1
@@ -88810,7 +89340,6 @@
 mejorator.net, 1
 mejorator.org, 1
 mejorespatineteselectricos.es, 1
-mejoreswebscitas.com, 1
 mejorfiltrodeagua.com, 1
 mejorlimpiafondos.com, 1
 mejovonakowogov.gq, 1
@@ -88838,6 +89367,7 @@
 melanie-schwarze.de, 1
 melaniebernhardt.com, 1
 melaniec-thebest.tk, 1
+melaniegowen.com, 1
 melaniegruber.de, 1
 melanieschweiger.com, 1
 melanin.cf, 1
@@ -88854,6 +89384,7 @@
 melbetua.com, 1
 melbourne.dating, 1
 melbourneapartments.website, 1
+melbournebushwalkers.org.au, 1
 melbournecivilcelebrant.tk, 1
 melbournefringe.com.au, 1
 melbournehookah.com.au, 1
@@ -88872,7 +89403,6 @@
 melectronics-ostschweiz.ch, 1
 meledia.com, 0
 melenchatsmelenchiens.fr, 1
-melhorconsorcio.com.br, 1
 melhoresmarcasdenotebook.com.br, 1
 melhorproduto.com.br, 1
 meli-deluxe.org, 1
@@ -88897,7 +89427,6 @@
 melkoghonning.no, 1
 mellika.ch, 1
 mellonexia.ml, 1
-melloni.consulting, 1
 mellonne.com, 1
 melnessgroup.com, 1
 melodee.de, 1
@@ -88908,7 +89437,6 @@
 melodiouscode.com, 1
 melodiouscode.net, 1
 melodiouscode.uk, 1
-melodrama.com.ar, 1
 melody-lyrics.com, 1
 melody.my, 1
 melodycenter.de, 1
@@ -89047,6 +89575,7 @@
 mensagensaniversario.com.br, 1
 mensagensdeconforto.com.br, 1
 mensagensperfeitas.com.br, 0
+mensajesdecumpleanos.info, 1
 mensajeurbano.tk, 1
 mensajitos.tk, 1
 mensarena.gr, 1
@@ -89067,6 +89596,7 @@
 mentalcalculations.tk, 1
 mentalcraft.tk, 1
 mentalevolution.tk, 1
+mentalhealthcounselorlicense.com, 1
 mentalhealthmn.org, 1
 mentalhealthtimes.tk, 1
 mentalizes.tk, 1
@@ -89082,10 +89612,8 @@
 menti.com, 1
 mentimeter.com, 1
 mentiq.az, 1
-mentita.de, 1
 mentolo.tk, 1
 mentor.gov, 1
-mentorbizlist.com, 1
 mentoringauchan.es, 1
 mentors4stem.org, 1
 menu.fyi, 1
@@ -89116,6 +89644,7 @@
 mepresto.com, 1
 meps.net, 1
 mera.ddns.net, 1
+merabsurviladze.com, 1
 merafsolutions.com, 0
 meraki.hu, 1
 meralda.eu, 1
@@ -89127,7 +89656,6 @@
 meraldamulder.org, 1
 meran.in, 1
 meransuedtirol.com, 1
-meravirsa.com, 1
 mercadobitcoin.com.br, 1
 mercadocampesino.com.co, 1
 mercadohype.tk, 1
@@ -89214,10 +89742,11 @@
 merikserver.tk, 1
 merionwest.com, 1
 meripohi.edu.ee, 1
+meritcb.eu, 1
+meritsol.com, 1
 meritus.com.au, 1
 merkatal.com, 1
 merkattumaa.tk, 1
-merkbagus.id, 1
 merkchest.tk, 1
 merke.tk, 1
 merkel.me, 1
@@ -89265,6 +89794,8 @@
 mesbonnesrecettes.com, 1
 mescaline.com, 1
 mescaline.org, 1
+mescaline.uk, 1
+mescaline.wiki, 1
 mesdagh.be, 1
 mesec.cz, 1
 mesh.gov, 1
@@ -89310,6 +89841,7 @@
 messure.ru, 1
 messymom.com, 1
 mest3s.com.br, 1
+mestache.com, 1
 mestazitrka.cz, 1
 mesterbold.dk, 1
 mestovpohybu.cz, 1
@@ -89324,6 +89856,7 @@
 meta4.be, 1
 metaalshopper.nl, 1
 metablog.xyz, 1
+metabound.co.uk, 1
 metabox.io, 1
 metacareers.com, 1
 metachthonia.io, 1
@@ -89429,6 +89962,7 @@
 meteocuenca.tk, 1
 meteohuertamur.tk, 1
 meteonederbetuwe.nl, 1
+meteopievedicampo.ddns.net, 1
 meteoradar.ch, 1
 meteorapp.space, 1
 meteosat.tk, 1
@@ -89471,7 +90005,6 @@
 metro-detroit.com, 1
 metro-vet.co.uk, 1
 metro-web.net, 1
-metro2dev.com, 1
 metroarchive.jp, 1
 metrobank.com.ph, 1
 metrobriefs.com, 0
@@ -89546,7 +90079,6 @@
 mews-demo.com, 1
 mews.li, 1
 mewsuppasitstudio.com, 1
-mewtea.org, 1
 mex-it-up.com, 1
 mexaliu.ml, 1
 mexby.com, 1
@@ -89567,11 +90099,13 @@
 meyer-horn.de, 1
 meyeraviation.com, 1
 meypell.com, 1
+meyrawinkel.nl, 1
 meys.io, 1
 mezcal.amsterdam, 1
 mezedokamomata.tk, 1
 meziblog.cz, 1
 mezinfo.tk, 1
+mezio.pt, 1
 mezquetillas.tk, 1
 mezzanine.net, 1
 mezzoettaro.it, 1
@@ -89600,12 +90134,11 @@
 mfr-lameignanne.fr, 1
 mfrepair.com, 1
 mfsquad.com, 1
+mft-license.com, 1
 mft.global, 1
 mfxbe.de, 0
 mfxer.com, 1
 mfxm.fr, 1
-mg-culture.net, 1
-mg-productions.net, 1
 mgae.com, 1
 mgateamtm.site, 1
 mgatreeservices.com, 1
@@ -89655,6 +90188,7 @@
 mh2.at, 1
 mha.fi, 1
 mhabdullah.tk, 1
+mhadegree.org, 1
 mhadot.com, 1
 mhainfantandtoddler.com, 1
 mhalfter.de, 1
@@ -89672,10 +90206,8 @@
 mhh.de, 0
 mhi.com, 1
 mhi.web.id, 1
-mhiler.com, 1
 mhilger.de, 1
 mhjuma.com, 1
-mhk.edu.ee, 1
 mhmfoundationrepair.com, 1
 mhonline.fr, 1
 mhtdesign.net, 1
@@ -89698,7 +90230,6 @@
 miability.com, 1
 miabitch.net, 1
 miablow.net, 1
-miacordeonstereo.com, 1
 miacuario.cl, 1
 miadennees.com, 1
 miagentemicasa.com, 1
@@ -89706,6 +90237,7 @@
 miah.top, 1
 mialma.live, 1
 miamibeachcommunitychurch.com, 1
+miamidadeclerk.gov, 1
 miamifl.casa, 1
 miamifl.homes, 1
 miamimosque.org, 1
@@ -89840,6 +90372,7 @@
 michalklabnik.cz, 1
 michalkozak.cz, 1
 michalkral.tk, 1
+michalmlozniak.com, 1
 michalpodraza.pl, 1
 michalspacek.com, 1
 michalspacek.cz, 1
@@ -89847,6 +90380,7 @@
 michalszotkowski.cz, 1
 michalwiglasz.cz, 1
 michaonline.de, 1
+micharts.biz, 1
 michasfahrschule.com, 1
 michel-kratochvil.tk, 1
 michel-pilaert.coach, 1
@@ -89858,7 +90392,6 @@
 michelbenita.com, 1
 michelcoumes.com, 1
 michele.ga, 1
-michele.ml, 1
 michelegreenmd.com, 1
 michelgolfier.ml, 1
 michelinb2b.com, 1
@@ -89890,7 +90423,6 @@
 mickael.org, 1
 mickel.tk, 1
 mickelvaessen.com, 1
-mickgeorge.co.uk, 1
 mickybottenberg.com, 1
 mickyfanclub.tk, 1
 micled.com, 1
@@ -89927,6 +90459,7 @@
 microhydrony.org, 1
 microjovem.pt, 1
 microl.ink, 1
+microloan.pk, 1
 microlog-online.de, 1
 microlog.org, 1
 micromagic.fi, 1
@@ -89949,13 +90482,13 @@
 microwesen.de, 1
 microworkers.com, 1
 microzubr.com, 1
-micruity.com, 1
 mics-notrack.com, 1
 micsell.com, 1
 micsoft.gq, 1
 miculturaservicios.gob.do, 1
 midaero.co.uk, 1
 midair.io, 1
+midam.sk, 1
 midamericapiering.com, 1
 midasauctions.com, 1
 midasbay-free.ml, 1
@@ -89971,14 +90504,15 @@
 middletowndelcopa.gov, 1
 middletownri.gov, 1
 mide.gob.do, 1
-midenza.com, 1
 mideo.tk, 1
 midgawash.com, 1
 midi-coquillages.com, 1
+midi-olympique.fr, 1
 midia.tk, 1
 midiaid.de, 1
 midial.cz, 1
 midiet.co.za, 1
+midilibre.fr, 1
 midislandrealty.com, 0
 midkam.ca, 1
 midlandcountymi.gov, 1
@@ -90034,6 +90568,7 @@
 mighit.ml, 1
 mightycause.com, 1
 mightyfive.tk, 1
+mightygadget.com, 1
 mightytext-ios.tk, 1
 mightytips.biz, 1
 mightytips.hu, 1
@@ -90064,6 +90599,7 @@
 migueloblitas.tk, 1
 miguelpallardo.tk, 1
 miguia.tv, 1
+mihaco.nl, 1
 mihaiordean.com, 1
 mihalgrameno.ml, 1
 mihalicka.com, 1
@@ -90143,6 +90679,7 @@
 mijnvogaanvraag.nl, 1
 mijnwefact.nl, 1
 mika.moe, 1
+mikado-rybak.ru, 1
 mikadoe.nl, 1
 mikaelf.com, 0
 mikaeljansson.net, 1
@@ -90165,7 +90702,6 @@
 mikebelanger.ca, 1
 mikeblog.site, 1
 mikeburns.tk, 1
-mikecameronyyc.com, 1
 mikecapson.com, 0
 mikecb.org, 1
 mikechasejr.tk, 1
@@ -90182,14 +90718,14 @@
 mikemooresales.com, 1
 mikeowens.us, 1
 mikeprocopio.com, 1
-mikerichards.email, 1
+mikerichards.email, 0
 mikerichards.gallery, 1
 mikerichards.photography, 1
 mikerichards.photos, 1
 mikerichards.pictures, 1
 mikerichardsphotography.com, 1
 mikeschaffnerphotography.com, 1
-mikesplumbingswfl.com, 1
+mikesplumbingswfl.com, 0
 mikesystems.tk, 1
 miketabor.com, 1
 miketheuer.com, 1
@@ -90242,7 +90778,6 @@
 miku.party, 1
 mikumiku.stream, 1
 mikunosworld.com, 1
-mikunova.ru, 1
 mikusa.xyz, 1
 mikysgrill.it, 1
 mil-spec.ch, 0
@@ -90312,6 +90847,7 @@
 miliodemendralejo.tk, 1
 militaria.hu, 1
 military-equipment.tk, 1
+military-veteran.com, 1
 militaryaviationsafety.gov, 1
 militaryconsumer.gov, 1
 militaryfetish.tk, 1
@@ -90364,6 +90900,7 @@
 millesime-communication.fr, 1
 millettable.com, 1
 millhill.org.uk, 1
+millhousen.tech, 1
 milliarden-liste.de, 1
 millibirlik.tk, 1
 millibitcoin.jp, 1
@@ -90377,13 +90914,13 @@
 millioncombolist.tk, 1
 milliongrounds.com, 1
 millionlearn.org, 1
-millionpugs.com, 1
 millionseha.com, 1
 millistream.com, 1
 millix.com, 1
 millnet.cloud, 1
 millonario.tk, 1
 millscountyiowa.gov, 1
+millscountytx.gov, 1
 millsidecentre.org, 1
 milltime.se, 1
 millwoodwa.gov, 1
@@ -90420,7 +90957,6 @@
 mimikov.cz, 1
 mimithedog.com, 1
 mimm.gov, 1
-mimmog.it, 1
 mimocad.io, 1
 mimoesthetic.com, 1
 mimonia.cf, 1
@@ -90508,7 +91044,6 @@
 minebbs.com, 1
 minebier.dk, 1
 minebitcoin.tk, 1
-minecast.xyz, 1
 minecity.fun, 1
 minecraft-forum.eu, 1
 minecraft-game.ga, 1
@@ -90584,6 +91119,7 @@
 minhyukpark.com, 1
 mini-igra.tk, 1
 mini-piraten.de, 1
+mini-zoo.club, 1
 mini2.fi, 1
 minialbums.ga, 1
 miniatomium.tk, 1
@@ -90602,13 +91138,13 @@
 minifree.org, 1
 minigames.com, 1
 minigermanauto.com, 1
+minigolf-oase.com, 0
 minigolf-reisinger.com, 1
 minigolfandgames.co.uk, 1
 minikidz.es, 1
 minikin.tk, 1
 minikneet.com, 1
 miniliga.at, 1
-minilu.de, 1
 minimal-apps.de, 1
 minimal-nothing.ml, 1
 minimal-website.ch, 0
@@ -90697,7 +91233,6 @@
 minto.cc, 1
 mintogardens.org.au, 1
 minton.systems, 1
-mintosherbs.com, 1
 mintosoft.net, 1
 mintse.com, 0
 minttang.cn, 0
@@ -90743,6 +91278,7 @@
 mir.do, 1
 mir.pe, 1
 mir24.tk, 1
+mira.fun, 1
 mira.systems, 1
 mira.vip, 1
 mirabella.tk, 1
@@ -90953,6 +91489,7 @@
 mistressnadine.tk, 1
 mistressofbeads.tk, 1
 mistyoverlookranch.com, 1
+misupport.dk, 1
 misura.re, 1
 miswonline.nl, 1
 mit-dem-rad-zur-arbeit.de, 0
@@ -90969,6 +91506,7 @@
 mitarbeitermotivation-anleitungen.de, 1
 mitarrangement.dk, 1
 mitchell.id, 1
+mitchell.to, 1
 mitchellcountync.gov, 1
 mitchelmore.ca, 1
 mitchkalf.nl, 0
@@ -90997,8 +91535,6 @@
 mitior.net, 1
 mitjafelicijan.com, 1
 mitjavila.com, 1
-mitnetz-gas.de, 1
-mitnetz-strom.de, 1
 mitokashi.ml, 1
 mitranlogistik.com, 1
 mitraseo.tk, 1
@@ -91035,7 +91571,6 @@
 miui.kr, 1
 miukimodafeminina.com, 1
 mivestuariolaboral.com, 1
-mividalaboral.info, 1
 mividasecreta.tk, 1
 mivm.cn, 1
 mivne.co.il, 1
@@ -91079,6 +91614,7 @@
 mixmovi.com, 1
 mixnix.tk, 1
 mixnmojo.com, 1
+mixom.by, 1
 mixom.net, 1
 mixon.tk, 1
 mixpanel.com, 1
@@ -91095,6 +91631,7 @@
 miyasyou.com, 1
 miyatakaikei.com, 1
 miyavru.com, 1
+miyazakian.com, 1
 miyoshi-kikaku.co.jp, 1
 miyoshi-kikaku.com, 0
 miyugirls.com, 1
@@ -91118,7 +91655,7 @@
 mjacobson.net, 1
 mjanja.ch, 1
 mjasm.org, 1
-mjbeventspr.com, 1
+mjbeventspr.com, 0
 mjcstsul2022.tk, 1
 mjf.cz, 1
 mjgroup.io, 1
@@ -91131,6 +91668,7 @@
 mjrlegends.com, 1
 mjsacco-dwi.com, 1
 mjsacco.com, 1
+mjscustomcreations.com.au, 1
 mjsports.bet, 1
 mjstudios.tech, 0
 mjstudios.tk, 1
@@ -91147,6 +91685,7 @@
 mkakh.xyz, 1
 mkala.ru, 1
 mkalisch.de, 1
+mkbassist.nl, 0
 mkbd.ru, 1
 mkbeindhoven.nl, 1
 mkbet.tk, 1
@@ -91171,7 +91710,6 @@
 mkeysolutions.at, 1
 mkeysolutions.com, 1
 mkeysolutions.de, 1
-mkfs.fr, 1
 mkg-laposte.info, 1
 mkg-pch.com, 1
 mkg-wiebelskirchen.de, 1
@@ -91179,6 +91717,7 @@
 mkie.cf, 1
 mkinfo.com.br, 1
 mkjl.ml, 0
+mkjoyeria.cl, 1
 mkk.de, 1
 mkkcrafts.com, 1
 mkkkrc.ru, 1
@@ -91303,6 +91842,7 @@
 mmphub.com, 1
 mmprojects.nl, 1
 mmr.ua, 1
+mmrepair.in, 1
 mms.is, 1
 mmsmotor.com.hk, 1
 mmsteelny.com, 1
@@ -91446,6 +91986,7 @@
 mobilgelir.com, 1
 mobilhaber.ga, 1
 mobilhondatangsel.com, 1
+mobilidadeurbana.ind.br, 1
 mobilificio.roma.it, 1
 mobilisation-generale.org, 0
 mobiliteit.gent, 1
@@ -91456,6 +91997,7 @@
 mobiliteitsbedrijfstadgent.be, 1
 mobiliteitstadgent.be, 1
 mobility-events.ch, 1
+mobility-services.eu, 1
 mobilityworks.eu, 0
 mobilityworld.tk, 1
 mobilize.us, 1
@@ -91516,7 +92058,6 @@
 moda-line.ml, 1
 moda-querida.de, 1
 modacompleta.com.br, 1
-modacruz.com, 1
 modafilmdmodafinil.com, 1
 modafinil.wiki, 1
 modafinilici.com, 1
@@ -91564,8 +92105,6 @@
 modelearth.org, 1
 modelfotografie.tk, 1
 modeli.tk, 1
-modelisme-rc.net, 1
-modelisme-voiture-rc.fr, 1
 modelist.com.ua, 1
 modell-lq.net, 1
 modellaspa.pl, 1
@@ -91579,6 +92118,7 @@
 modem7.com, 1
 modemaille.com, 0
 modemchild.net, 1
+modemguides.com, 1
 modenatoday.it, 1
 modenodf.ru, 1
 modenuit.fr, 1
@@ -91595,15 +92135,13 @@
 moderngentlemen.net, 1
 moderniknihovna.cz, 1
 modernindia.ml, 1
-modernize.com, 1
-modernizr.com, 1
+modernizr.com, 0
 modernliferoleplay.cf, 1
 modernmomarchy.com, 1
 modernqr.com, 1
 modernrelations.dk, 1
 modernsaas.net, 1
 modernsavage.coach, 1
-modernteacher.co.za, 1
 moderntech.dk, 1
 moderntld.net, 1
 moderntrailers.com.au, 1
@@ -91645,6 +92183,7 @@
 modum.by, 1
 modusawperandi.com, 1
 modusgames.com, 1
+modusit.co.za, 1
 modusmundi.com, 1
 modvigilonlinerx.com, 1
 modxvm.com, 1
@@ -91667,6 +92206,7 @@
 moegi.ml, 1
 moego.me, 1
 moego.pet, 1
+moehl.eu, 1
 moehrke.cc, 1
 moekes.amsterdam, 1
 moeking.me, 1
@@ -91730,7 +92270,6 @@
 mohot.shop, 1
 mohr-maschinenservice.de, 1
 mohsen-pashootan.vercel.app, 1
-moht.com.sg, 1
 moi-sait.tk, 1
 moikolhoz.ml, 1
 moikolhoz.tk, 1
@@ -91833,7 +92372,6 @@
 molti.hu, 1
 molusk.ml, 1
 molwick.com, 1
-molymet.com, 1
 mom.life, 1
 moma.co.uk, 1
 moment-terroir.ch, 1
@@ -91895,6 +92433,7 @@
 monad.io, 1
 monagenceentreprise-caap.fr, 1
 monakasatmasr.com, 1
+monamurlite.ru, 0
 monarch.security, 1
 monarchcleanersnc.com, 1
 monarchelectric.com, 1
@@ -91916,6 +92455,7 @@
 monde.win, 1
 mondechenoafrance.tk, 1
 mondedie.fr, 1
+mondial.vn, 1
 mondo-it.ch, 1
 mondo.rs, 1
 mondocellulari.tk, 1
@@ -91928,12 +92468,12 @@
 mondzorgaanzee.nl, 1
 mondzorgparkzicht.nl, 1
 monechafaudage.com, 1
-moneni.com, 1
 moneoci.com.br, 1
 monerogamez.com, 1
 monese.com, 1
 moneshaq.fr, 1
 moneta-rossii.ru, 1
+monetenfuchs.de, 1
 monetize.ml, 1
 monetki.net, 1
 money-book.jp, 1
@@ -91983,7 +92523,6 @@
 moneytamer.com, 1
 moneytech.tk, 1
 moneytoday.se, 1
-moneytreelifestyle.com, 1
 monfilm.tk, 1
 monforte.tk, 1
 mongla168.net, 1
@@ -92014,6 +92553,7 @@
 monitor365.ch, 1
 monitorbandwidth.net, 1
 monitorbox.jp, 1
+monitorchain.com, 1
 monitord.at, 1
 monitordownloadsers.ga, 1
 monitorga.tk, 1
@@ -92037,7 +92577,6 @@
 monkeys.pt, 1
 monkeysorce.tk, 1
 monkeytek.ca, 1
-monkeytravel.com, 1
 monkeyttack.net, 1
 monlissagebresilien.com, 1
 monloyer.quebec, 1
@@ -92109,6 +92648,7 @@
 montagnainitalia.com, 1
 montagne-experience.fr, 1
 montaguehotel.com, 1
+montala.com, 1
 montanabiack.de, 1
 montanacreativitymovement.tk, 1
 montanaonlinedivorce.com, 1
@@ -92133,6 +92673,7 @@
 montevue.co.za, 1
 montgomerycountyal.gov, 1
 montgomerycountyclerkoh.gov, 1
+montgomerycountyhealthky.gov, 1
 montgomerycountyia.gov, 1
 montgomerycountyil.gov, 1
 montgomerycountync.gov, 1
@@ -92157,7 +92698,6 @@
 montre-luxe-occasion.com, 1
 montrealcatadoptions.com, 1
 montrealwi.gov, 1
-montreat.edu, 1
 montredeal.fr, 1
 montres-mh-besancon.fr, 1
 montroseflorida.com, 1
@@ -92193,7 +92733,6 @@
 moola.market, 1
 moolah.rocks, 1
 moom20101234567890.tk, 1
-moon-soft.com, 1
 moon.fish, 1
 moon.lc, 0
 moonagic.com, 1
@@ -92208,7 +92747,6 @@
 moondoor.tk, 1
 moondrop.org, 1
 moondsee.de, 1
-moonexam.com, 1
 moonfist.eu, 1
 moonfreak.tk, 1
 moonhaa.com.br, 1
@@ -92265,6 +92803,7 @@
 moosic.co, 1
 moosikapp.ml, 1
 moosikapp.tk, 1
+moosmann-moehrle.de, 1
 moosmaus.tk, 1
 moot-info.co.za, 1
 moov.tk, 1
@@ -92322,7 +92861,6 @@
 mordovia.gq, 1
 mordovia.tk, 1
 mordoviya.tk, 1
-mordrum.com, 1
 more-hikkoshi.com, 1
 more-terrain.de, 1
 moreal.co, 1
@@ -92466,6 +93004,7 @@
 moselwi.gov, 1
 moseracctg.com, 1
 moserhof.it, 1
+moservice.id, 1
 mosfet.cz, 1
 mosfetkiller.de, 1
 mosharof-hossain.ml, 1
@@ -92495,6 +93034,7 @@
 mosselle.ro, 1
 mosshi.be, 1
 mossipanama.com, 1
+mossplants.ru, 1
 mosst.com.tr, 1
 mossylog.tk, 1
 most.tk, 1
@@ -92503,6 +93043,7 @@
 mostazaketchup.com, 1
 mostbet.com, 1
 mostbet2.com, 1
+mostbetr.com, 1
 mostc.is, 1
 mosteplitsa.ru, 0
 mosternaut.com, 1
@@ -92539,7 +93080,6 @@
 motherhoodinblack.com, 1
 motherlondon.com, 1
 motherofsorrows.net, 1
-mothersalwaysright.com, 1
 mothership.de, 1
 mothersmediaonline.ga, 1
 motichi.cf, 1
@@ -92601,8 +93141,10 @@
 motoridiricerca.tk, 1
 motorline.ru, 1
 motorring.ru, 1
+motorsactu.com, 1
 motorslopers.tk, 1
 motorsplus.com, 0
+motorsport-passion.com, 1
 motortecbrasil.com.br, 1
 motortg.it, 1
 motortrend.com, 1
@@ -92611,7 +93153,6 @@
 motorzone.od.ua, 1
 motoselfservices.fr, 1
 motosfreedom.com, 1
-motosierra10.info, 1
 motospaya.com, 1
 motostorie.blog, 0
 mototax.ch, 1
@@ -92646,6 +93187,7 @@
 mouff.li, 1
 mouldboard.ga, 1
 moulin-pomerol.com, 1
+moultonpdtx.gov, 1
 moultriecountyil.gov, 1
 mound.ga, 1
 moundvillewi.gov, 1
@@ -92657,6 +93199,7 @@
 mountainbell.net, 1
 mountainchalet.blue, 1
 mountaincitytx.gov, 1
+mountaindiscovery.org, 1
 mountaingrovemo.gov, 1
 mountainroadschool.org, 1
 mountainsmokes.com, 1
@@ -92673,6 +93216,7 @@
 mountknowledge.nl, 1
 mountpost.tk, 1
 mountvernonin.gov, 1
+mountvictoryohio.gov, 1
 mountwashington-ma.gov, 1
 mouracloset.com.br, 1
 mourassiloun.com, 1
@@ -92699,6 +93243,7 @@
 moveon4.com, 1
 moveon4.de, 1
 moveonca.com, 1
+moveonfr.com, 1
 moveonlite.com, 1
 moveonru.com, 1
 movepin.com, 1
@@ -92708,7 +93253,6 @@
 moveyourass.tk, 1
 movfun.ga, 1
 movie-download.cz, 1
-movie-fast.com, 0
 movie-infos.net, 1
 movie-sounds.org, 1
 movie1000.com, 1
@@ -92742,6 +93286,7 @@
 moviles.com, 1
 moviltronix.com, 1
 movimento-terra.it, 1
+movimentoterra.roma.it, 1
 moving-pixtures.de, 1
 movingjokesers.ga, 1
 movingjokesest.ga, 1
@@ -92792,6 +93337,7 @@
 mp3noi.com, 1
 mp3skull.cf, 1
 mpa-pro.fr, 1
+mpadegree.org, 1
 mpak.tk, 1
 mpamag.com, 1
 mpc-hc.org, 1
@@ -92809,6 +93355,7 @@
 mpgu.tk, 1
 mphold.ru, 1
 mphprogram.com, 1
+mphprogramslist.com, 1
 mphwinkel.nl, 1
 mpi.org, 1
 mpintaamalabanna.it, 1
@@ -92845,7 +93392,9 @@
 mr-bills.com, 1
 mr-brown.tk, 1
 mr-coffee.net, 1
+mr-englischkurse.de, 1
 mr-labo.jp, 1
+mr-moulding-knives.com, 0
 mr-nachhilfe.de, 0
 mr-plomberie.com, 0
 mr-wolf.nl, 0
@@ -92871,7 +93420,6 @@
 mrautomazioni.it, 1
 mrazek.biz, 1
 mrbeardcbd.es, 1
-mrbighungary.hu, 1
 mrbit-casino-na-dengi.info, 1
 mrbounce.com, 1
 mrbouncescrazycastles.co.uk, 1
@@ -92907,7 +93455,6 @@
 mrgusercontent.ru, 1
 mrhc.ru, 1
 mrhookupsd.com, 1
-mrhori.org, 1
 mrhost.biz, 1
 mri.community, 1
 mrichard333.com, 1
@@ -92987,6 +93534,7 @@
 mrzonk.cf, 1
 ms-australia.de, 1
 ms-ch.ch, 1
+ms-fassmoebel.de, 1
 ms-gesellschaft.at, 1
 ms-rss.com, 0
 ms-wissenschaft.de, 0
@@ -93016,6 +93564,7 @@
 msgmon.com, 1
 msgr.com, 1
 msgs.ee, 1
+msgtrust.com, 1
 msh100.uk, 1
 msha.gov, 1
 mshemailmarketer.com.au, 1
@@ -93052,7 +93601,7 @@
 mspark.tk, 1
 mspatexas.com, 1
 mspcc.org, 1
-msphotographics.de, 1
+msphotographics.de, 0
 mspnocsupport.com, 1
 mspsocial.net, 1
 msquadrat.de, 0
@@ -93078,7 +93627,6 @@
 msu.edu.tr, 1
 msuess.me, 1
 msuna.net, 1
-msuplants.com, 1
 msv-limpezas.pt, 1
 mswdtemplate.com, 1
 msx.org, 1
@@ -93131,7 +93679,6 @@
 mtfwiki.net, 1
 mtfwiki.org, 1
 mtfwiki.xyz, 1
-mtgolden.com, 1
 mtgoptex.com, 1
 mtgsuomi.fi, 1
 mthd.link, 1
@@ -93201,7 +93748,6 @@
 muafakatmalaysia.ml, 1
 muarstabyggmarknad.tk, 1
 mubase.dk, 1
-mubitv.com, 1
 muble.tk, 1
 muceniece.tk, 1
 muchbetterthancash.com, 1
@@ -93293,7 +93839,6 @@
 mujoco.org, 1
 muk-kobetsu.com, 1
 mukilteoeuropeanautorepair.com, 1
-mukli.hu, 1
 muku-flooring.com, 1
 mula.tk, 1
 mulaisehat.com, 1
@@ -93344,7 +93889,6 @@
 multimediapc.de, 1
 multimediaworld.tk, 1
 multimediosmonti.com, 1
-multinationalforce.com, 1
 multipassword.com, 1
 multiplex-rc.de, 1
 multiplex.tk, 1
@@ -93407,6 +93951,7 @@
 mundocristiano.tk, 1
 mundodalua.tk, 1
 mundodapoesia.com, 1
+mundodaprogramacao.com.br, 1
 mundodasmensagens.com, 1
 mundodastribos.com, 1
 mundodewill.com.br, 1
@@ -93457,6 +94002,7 @@
 munzlocal10.org.nz, 1
 muoivancauhoivisao.com, 1
 mup-republicanos.tk, 1
+muqqabla.com, 1
 mur-parfait.com, 1
 mur-vegetal-interieur.fr, 1
 muradiyetemizlik.com, 1
@@ -93519,7 +94065,6 @@
 musclecarresearch.com, 1
 musclecarsillustrated.com, 1
 musclecarus.com, 1
-musclegrowth.net, 1
 muscles.cf, 1
 muscolinomusic.com, 1
 muscularbabes.net, 1
@@ -93778,6 +94323,7 @@
 mwlcouriers.com, 1
 mwmopd.gov, 1
 mwms.nl, 1
+mwnonline.net, 0
 mwohlfarth.de, 1
 mwork.tech, 1
 mwpromotion.fr, 1
@@ -93792,6 +94338,7 @@
 mww.moe, 1
 mx-moto.fr, 0
 mx-quad.fr, 0
+mx-solutions.net, 1
 mx.org.ua, 1
 mx.search.yahoo.com, 0
 mx5international.com, 1
@@ -93824,6 +94371,7 @@
 my-force-user-content.com, 1
 my-gps-tracker.co.uk, 1
 my-health-homes.com, 1
+my-host.com, 1
 my-host.ovh, 1
 my-how-to-draw.com, 1
 my-hps.de, 1
@@ -93904,6 +94452,7 @@
 myanmar-responsiblebusiness.org, 1
 myanmar.gov.mm, 1
 myapexcard.com, 1
+myappworx.com, 1
 myaquariumclub.com, 1
 myaquaterra.tk, 1
 myareaf2a.com, 1
@@ -94035,7 +94584,7 @@
 mycreditcardcenter.com, 1
 mycreditunion.gov, 1
 mycredy.com, 1
-mycrm.coach, 1
+mycrm.coach, 0
 mycrowdstack.com, 1
 mycrypnet.io, 1
 mycts.org, 1
@@ -94226,6 +94775,7 @@
 myhmz.bid, 1
 myhollywoodnews.com, 1
 myhome-24.pl, 1
+myhomeworkpapers.com, 1
 myhoor.ga, 1
 myhostname.net, 1
 myhotel.sk, 1
@@ -94333,6 +94883,7 @@
 mymartinbeckeropenhab.de, 1
 mymartinbeckeropenhab.eu, 1
 mymartinhalchiado.com, 1
+mymartinhalresidences.com, 1
 mymb.pm, 1
 mymcc.gift, 1
 mymed.de, 1
@@ -94400,7 +94951,6 @@
 mynn.io, 0
 mynn.ml, 1
 mynook.info, 1
-mynortoncomnu16.com, 1
 mynr.ai, 1
 mynrg.gr, 1
 mynutrientcloud.com, 1
@@ -94447,7 +94997,6 @@
 mypetsvetsltd.co.uk, 1
 myphamaplus.org, 1
 mypharmjar.com, 1
-myphotographytips.com, 1
 myphotonics.ml, 1
 myphotos.ga, 1
 myphotoshopbrushes.com, 1
@@ -94594,6 +95143,7 @@
 myservices.digital, 1
 myservik.ml, 1
 myseu.cn, 1
+mysexpedition.com, 1
 mysexvids.net, 1
 mysexycard.com, 1
 mysexydate.de, 1
@@ -94659,6 +95209,7 @@
 mystream.com, 1
 mystreet.ga, 1
 mystrength.com, 1
+mystrix-esports.eu, 1
 mystudy.me, 1
 mystudycart.com, 1
 mystudymap.tk, 1
@@ -94684,7 +95235,6 @@
 mythen-fonds.ch, 1
 mythenfonds.ch, 1
 mythicdelirium.com, 1
-mythiqueamerique.fr, 1
 mytime.fr, 1
 mytime.gl, 1
 mytimer.tk, 1
@@ -94947,6 +95497,7 @@
 nafezly.com, 1
 nafhomes.com, 1
 nafhroaviano.com, 1
+nafilia.com, 1
 nafod.net, 1
 naga-semi.com, 1
 naga-wedding.tk, 1
@@ -94992,6 +95543,7 @@
 nai-job.jp, 1
 naia.me, 1
 naide.ee, 1
+naidoc.org.au, 1
 naifix.com, 1
 naijabeat.com, 1
 naijapower.com, 1
@@ -94999,6 +95551,7 @@
 naijaxnet.com.ng, 1
 naijmobile.com, 1
 naika.clinic, 1
+nailartstudio.it, 1
 nailattitude.ch, 0
 nailchiodo.com, 1
 nailclub.tk, 1
@@ -95022,12 +95575,12 @@
 najbezpieczniejsze.pl, 1
 najdou.cz, 1
 naji-astier.com, 1
-najiflix.fr, 1
 najprzepis.pl, 1
 najrecept.sk, 1
 naka.io, 1
 nakaci.de, 1
 nakacide.com, 1
+nakada-shika.com, 1
 nakada4610.com, 1
 nakagawa-d.co.jp, 1
 nakagawa-s.jp, 1
@@ -95087,11 +95640,13 @@
 namaanakperempuan.net, 1
 namacindia.com, 1
 namalelaki.com, 1
+namamala.com, 1
 namaperempuan.com, 1
 namastehomecooking.com, 1
 namastenaturo.fr, 1
 namazon.org, 1
 namazvakitleri.com.tr, 0
+namclear.com.na, 1
 namdak.com, 1
 name.am, 1
 name.ax, 1
@@ -95114,7 +95669,6 @@
 nametalent.com, 1
 namethatporn.com, 1
 namethissymbol.com, 1
-nametiles.co, 1
 namevirus.com, 1
 namevirus.net, 1
 namevirus.org, 1
@@ -95124,6 +95678,7 @@
 namikawatetsuji.jp, 1
 naminam.de, 1
 namlcftc.gov.ae, 1
+nammont.com, 1
 namoro.com.pt, 1
 namozagy.com, 1
 namrs.net, 1
@@ -95163,6 +95718,7 @@
 nanfangstone.com, 1
 nange.cn, 1
 nangluongxanhbinhphuoc.com, 1
+nangwizard.net, 1
 nanhuimed.com, 1
 nanhuitop.com, 1
 naninossoftware.tk, 1
@@ -95235,6 +95791,7 @@
 naplestotalgarage.com, 1
 napo.tk, 1
 napoleonoutlawed.tk, 1
+napolict.com, 1
 napolinissanctparts.com, 1
 napolitoday.it, 1
 napominanie.ml, 1
@@ -95263,6 +95820,7 @@
 narayanahealth.org, 1
 narazaka.net, 1
 narcissism.tk, 1
+narco-center.com, 1
 narcoticsanonymous.tk, 1
 narda-sts.com, 1
 nardamiteq.com, 1
@@ -95300,6 +95858,7 @@
 narrenverein-wolkenschieber.de, 1
 narrow.one, 1
 narthollis.net, 1
+naruchnie-chasi.com, 1
 narushil-pdd.cf, 1
 narushil-pdd.ga, 1
 narushil-pdd.gq, 1
@@ -95374,6 +95933,7 @@
 nastationztv.com, 1
 nastjenka.tk, 1
 nastunya.tk, 1
+nastyapetrovaflorist.ru, 1
 nastycomics.eu, 1
 nastysclaw.com, 1
 nasvyazi.ga, 1
@@ -95404,7 +95964,6 @@
 natashavaz.nl, 1
 natashki.tk, 1
 natasjaversantvoort.nl, 1
-natation-nsh.com, 0
 natchmatch.com, 1
 natcredit.ru, 1
 nate.sh, 1
@@ -95456,7 +96015,6 @@
 nationalbankhelp.gov, 1
 nationalbanknet.gov, 1
 nationalcashoffer.com, 1
-nationalcrimecheck.com.au, 1
 nationalcybersecuritysociety.org, 1
 nationalemployertraining.co.uk, 1
 nationalexpress.de, 1
@@ -95468,6 +96026,7 @@
 nationaljobservice.com, 1
 nationalmall.gov, 1
 nationalmap.gov, 1
+nationalmower.com, 1
 nationalopera.ml, 1
 nationalpriorities.org, 1
 nationalreentryresourcecenter.org, 1
@@ -95528,6 +96087,7 @@
 naturalstyle.tk, 1
 naturana.news, 1
 naturaprint.fr, 1
+naturart.pt, 1
 nature-avenue.com, 1
 natureandculture.org, 0
 naturebar.co, 1
@@ -95540,6 +96100,7 @@
 naturelk.org, 1
 naturemeadows.in, 1
 naturesbest.co.uk, 1
+natureshive.org, 1
 naturesupply.eu, 1
 naturevalley.com, 1
 naturheilkunde-sabine-klein.de, 1
@@ -95555,6 +96116,7 @@
 natusvita.com, 1
 natusvita.com.br, 1
 natuurinhuisheerenveen.tk, 1
+natuurkundegeflipt.nl, 1
 natuurlijk.tk, 1
 natuurlijkehaarkleuring.nl, 1
 natuurophaarmooist.nl, 1
@@ -95577,7 +96139,6 @@
 naut.ca, 1
 nautiboat.it, 1
 nauticlink.com, 1
-nauticlux.com, 1
 nautika.tk, 1
 nautiljon.com, 1
 nautours.de, 1
@@ -95591,6 +96152,7 @@
 navalkejigo.tk, 1
 navaneethnagesh.com, 1
 navarrete.tk, 1
+navasoft.com.tr, 1
 naveengranites.com, 1
 navegarea.tk, 1
 naveka.ga, 1
@@ -95613,7 +96175,6 @@
 navoiyrapmafia.tk, 1
 navot.co.il, 1
 navoto.com, 1
-navroopsahdev.in, 1
 navstevnik.sk, 1
 navycs.com, 1
 nawabarzoo.in, 1
@@ -95627,6 +96188,7 @@
 naxe.lv, 1
 naxsnaps.co.uk, 1
 nayanaas.com, 1
+nayankasturi.eu.org, 1
 nayapakistan.tk, 1
 nayapay.com, 1
 nayatel.com, 1
@@ -95672,7 +96234,6 @@
 nba2k.net, 1
 nba2k.tw, 1
 nba2kcn.com, 1
-nba2kcontest.com, 1
 nba2kmods.com, 1
 nba2kmt.com, 1
 nba2kmy.team, 1
@@ -95707,12 +96268,10 @@
 nbhwj.com, 1
 nbib.gov, 1
 nbis.gov, 1
-nbl-forklift.com, 1
 nbm.gov, 1
 nbotvinnik.com, 1
 nbr.uno, 1
 nbrain.de, 1
-nbrii.com, 1
 nbriresearch.com, 1
 nbrown.us, 1
 nbtc.com, 1
@@ -95753,11 +96312,13 @@
 nchangfong.com, 0
 nchomeownerassistance.gov, 1
 nchrd.org, 1
+nci-eg.com, 1
 nci.com.es, 1
 ncic.gg, 1
 ncil4rehab.com, 1
 ncjdigital.com, 1
 ncjrs.gov, 1
+nck64.uk, 1
 nckseyecare.com, 1
 ncksrv.com, 1
 ncksrv.email, 1
@@ -95823,7 +96384,6 @@
 ndscreening.com, 1
 ndtblog.com, 1
 ndum.ch, 1
-nduna.dk, 1
 ndvlaw.com, 1
 ndvr.com, 1
 ndx.ee, 1
@@ -95884,6 +96444,7 @@
 nebulise.com, 1
 nec-x.com, 1
 necd.me, 1
+necio.ca, 1
 neckbeard.xyz, 1
 necord.com, 1
 necormansir.com, 1
@@ -95971,6 +96532,7 @@
 negociosparaoptimistas.com, 1
 negociosurbanos.net, 1
 negoya-shokai.info, 1
+negozimoda.it, 1
 negoziointimo.com, 1
 negr.gay, 1
 negr.link, 1
@@ -96028,6 +96590,7 @@
 nekomimix.net, 1
 nekondiciya.cf, 1
 nekonet.us, 1
+nekos.us, 1
 nekosc.com, 1
 nekox.ml, 1
 nekrasowsky.ml, 1
@@ -96041,6 +96604,7 @@
 nelegal-edition.tk, 1
 nelflex.com.br, 1
 nelhage.com, 1
+nelipak.com, 1
 neljaenergia.ee, 1
 nella-project.org, 1
 nellacms.org, 1
@@ -96059,6 +96623,7 @@
 nelsonworldwide.com, 1
 nelswong.com, 1
 nelty.be, 1
+nely.rocks, 1
 nema.gov.au, 1
 nemagiya.tk, 1
 nemahacountyne.gov, 1
@@ -96091,7 +96656,6 @@
 nenco.nl, 1
 nenderus.su, 1
 neneko.moe, 1
-nengzhen.com.cn, 0
 nenkin-kikin.jp, 1
 neno.io, 1
 neo-novarion.com, 1
@@ -96160,7 +96724,6 @@
 neosys.eu, 1
 neot-shacked.com, 1
 neotech-solutions.com, 1
-neotiv-care.com, 1
 neotiv.com, 1
 neotracker.io, 0
 neovapo.com, 1
@@ -96254,7 +96817,6 @@
 nertus.ua, 1
 nerull7.info, 1
 nerv.com.au, 1
-nerv.org.cn, 1
 nerven.se, 1
 nervi.ga, 1
 nesabamedia.com, 1
@@ -96351,7 +96913,6 @@
 neteye.ru, 1
 netfabb.com, 1
 netface.com.br, 1
-netfeeds.eu, 1
 netferie.de, 1
 netferie.dk, 1
 netferie.no, 1
@@ -96398,6 +96959,7 @@
 nethui.nz, 1
 nethunter.top, 1
 netica.fr, 0
+netig.net, 1
 netim.pl, 1
 netipbox.com, 1
 netjobz.tk, 1
@@ -96449,9 +97011,7 @@
 netrino.io, 1
 netrogue.ninja, 1
 netronix.be, 1
-netroworx.com, 1
 netrunner.xyz, 1
-netrustcontractor.com, 0
 nets.com.sg, 1
 netschool.tk, 1
 netsearch.ga, 1
@@ -96560,7 +97120,6 @@
 netzpolitik.org, 1
 netzspielplatz.de, 0
 netzsv.website, 1
-netztest.at, 1
 netzvieh.de, 1
 netzwerk-kvp.de, 1
 netzwerk-lq.com, 1
@@ -96588,6 +97147,7 @@
 neuralink.com, 1
 neurexcellence.com, 1
 neurobiology.com, 1
+neurochip.co.uk, 1
 neurocny.cloud, 1
 neurococi.eu, 1
 neurococi.org, 1
@@ -96621,7 +97181,6 @@
 nevadafiber.net, 1
 nevadamentalhealth.com, 1
 nevam.cf, 1
-neve.in.ua, 1
 never-afk.de, 0
 never-mind.tk, 1
 never-more.tk, 1
@@ -96633,6 +97192,7 @@
 nevergonnatouchit.tk, 1
 nevergreen.io, 1
 neverhood-tv.tk, 1
+neverland.link, 1
 neverness.tk, 1
 nevers.fr, 1
 neverwasinparis.com, 1
@@ -96678,6 +97238,7 @@
 newarkohio.gov, 1
 newasa.ga, 1
 newasianbistro.com, 1
+newaygo.gov, 1
 newaygocountymi.gov, 1
 newbabylon.tk, 1
 newbackup.ml, 1
@@ -96748,6 +97309,7 @@
 newenglandtek.com, 1
 newenglandworkinjury.com, 1
 newfacialbeautycream.com, 1
+newfairfieldct.gov, 1
 newfangledscoop.com, 1
 newfiepedia.ca, 1
 newflavor.design, 1
@@ -96771,11 +97333,10 @@
 newind.info, 1
 newinf.at, 1
 newipswichnh.gov, 1
-newissuesmagazine.com.ng, 1
+newissuesmagazine.com.ng, 0
 newjerseyvideography.com, 1
 newjianzhi.com, 0
 newkaliningrad.ru, 1
-newknd.com, 1
 newlegalsteroid.com, 1
 newlifefund.org, 1
 newlight.net.br, 1
@@ -96784,6 +97345,7 @@
 newlovers.gq, 1
 newlynamed.com, 1
 newlytricks.ml, 1
+newmadridcountymo.gov, 1
 newman.ga, 1
 newmansown.co.uk, 1
 newmarketbouncycastlehire.co.uk, 1
@@ -96793,6 +97355,7 @@
 newmedia.gotdns.com, 1
 newmediaone.net, 1
 newmeproducts.com, 1
+newmex.com.br, 1
 newmilfordct.gov, 1
 newmusic.org, 1
 newmusicjackson.org, 1
@@ -96814,6 +97377,7 @@
 newportbus.co.uk, 1
 newporthomehealth.com, 1
 newportit.com, 1
+newportri.gov, 1
 newposts.ru, 1
 newpraguemn.gov, 1
 newpress24.tk, 1
@@ -96862,6 +97426,7 @@
 newsclue.org, 1
 newscreak.com, 1
 newscultural.tk, 1
+newsdesk.social, 1
 newsdiff.eu, 1
 newsdiff.nl, 1
 newsdiffs.eu, 1
@@ -96901,12 +97466,12 @@
 newsmotor.info, 1
 newsmyth.org, 1
 newsnfl.tk, 1
-newsniz.com, 1
 newspawn.net, 1
 newspower.ir, 1
 newspriest.com, 1
 newsprix.com, 1
 newspsychology.com, 1
+newsquare.biz, 1
 newsreach.org, 1
 newsteadccc.com.au, 1
 newstel.tk, 1
@@ -96976,13 +97541,14 @@
 nexiodev.com, 1
 nexiodevopslocal.com, 1
 nexiopay.com, 1
+nexiopaydev.com, 1
 nexiopaydevopslocal.com, 1
 nexiopaysandbox.com, 1
 nexiopaystg.com, 1
 nexiosandbox.com, 1
 nexiostaging.com, 1
 nexiumgeneric.tk, 1
-nexlight.be, 1
+nexlight.be, 0
 nexon.com.au, 1
 nexril.net, 0
 nexs.gg, 1
@@ -97038,11 +97604,9 @@
 nextnet.cc, 1
 nextnowagency.com, 0
 nextos.com, 1
-nextprotocol.tech, 1
 nextrader.guru, 0
 nextrasp.it, 1
 nextrec.site, 1
-nextrend.co, 1
 nextright.tk, 1
 nextsound.tk, 1
 nextsource.com, 1
@@ -97118,6 +97682,7 @@
 nft-dev-web.azurewebsites.net, 1
 nft-qa-web.azurewebsites.net, 1
 nft-uat-web.azurewebsites.net, 1
+nft.io, 1
 nftnow.com, 1
 nftshowroom.com, 1
 ng-musique.com, 1
@@ -97127,6 +97692,7 @@
 ngawa-avocat-paris.fr, 1
 ngc.gov, 0
 ngclearing.com, 0
+ngecezt.ddns.net, 1
 ngefics.tk, 1
 ngegame.id, 1
 ngelag.com, 1
@@ -97143,6 +97709,7 @@
 ngla.gov, 1
 ngmisr.com, 1
 ngmx.com, 1
+ngmx.eu, 1
 ngmx.net, 1
 ngmx.nl, 1
 ngmx.org, 1
@@ -97175,7 +97742,6 @@
 ngxmetrics.com, 1
 ngxpkg.com, 1
 nh.ee, 1
-nhacpro.me, 1
 nhadonghanh.com, 1
 nhai.gov.in, 1
 nhakinh.net, 1
@@ -97195,6 +97761,7 @@
 nhhoteljobs.nl, 1
 nhimf.org, 1
 nhjvillalmanzo.tk, 1
+nhk.jp, 1
 nhnieuws.nl, 1
 nhome.ba, 1
 nhps.org, 1
@@ -97208,11 +97775,11 @@
 ni-mate.com, 1
 ni.sb, 1
 ni.search.yahoo.com, 0
+niaa.gov.au, 1
 niadd.com, 1
 niagara.ru, 0
 niagaraconstruction.org, 1
 niagarafalls.ca, 1
-niagaraschoice.org, 1
 niallator.com, 1
 nianubo.net, 1
 niawier-wetsens.tk, 1
@@ -97280,7 +97847,6 @@
 nice.ch, 1
 nice.com, 1
 niceactimize.com, 1
-niceass.pics, 1
 niceassphotos.com, 1
 niceb5y.net, 0
 nicecockb.ro, 1
@@ -97349,6 +97915,7 @@
 nicks-autos.com, 1
 nickscomputers.nl, 1
 nickserv.eu, 1
+nickserv.social, 1
 nickserve.com, 1
 nickserve.eu, 1
 nickserve.net, 1
@@ -97371,7 +97938,7 @@
 nico.st, 1
 nicochinese.com, 1
 nicoforconi.it, 1
-nicofy.com, 1
+nicofy.com, 0
 nicogrosser.de, 0
 nicoknibbe.nl, 1
 nicokroon.nl, 1
@@ -97391,9 +97958,11 @@
 nicolas-simond.ch, 1
 nicolas-simond.com, 1
 nicolaschelly.tk, 1
+nicolascoolman.com, 1
 nicolasfrebert.fr, 1
 nicolasfriedli.ch, 1
-nicolasiung.me, 1
+nicolashervaud.com, 1
+nicolasiung.me, 0
 nicolaslogerot.com, 1
 nicolasprovost.tk, 1
 nicolaszambetti.ch, 1
@@ -97404,7 +97973,7 @@
 nicolemathew.com, 1
 nicoleta-prestescu.tk, 1
 nicolettajennings.com, 1
-nicolettevandervalk.nl, 1
+nicolettevandervalk.nl, 0
 niconico.ooo, 1
 nicoobank.com, 1
 nicoobook.net, 1
@@ -97550,12 +98119,12 @@
 nijzoon.nl, 0
 nik.io, 1
 nika-travel.ga, 1
-nikabazar.ir, 1
 nikahplus.com, 1
 nikahsekeri.tk, 1
 nikami.tk, 1
 nikandcara.com, 1
 nikant.tk, 1
+nikashoping.ir, 1
 nikastores.ir, 1
 nikavandenbos.nl, 1
 nikavenus.com, 1
@@ -97575,6 +98144,7 @@
 nikitenko.tk, 1
 nikitin.photo, 1
 nikitina.ml, 1
+nikka.systems, 1
 nikkasystems.com, 1
 nikkei225jp.com, 1
 nikkila.me, 1
@@ -97695,7 +98265,6 @@
 ninpang.com, 1
 ninrio.com, 1
 ninsin-akachan.com, 1
-nintendo-europe-media.com, 1
 nintendocarddelivery.com, 1
 nintendocollectionsystem.com, 1
 nintendohill.com, 0
@@ -97719,6 +98288,7 @@
 nippon.plus, 1
 nipponkaigi.info, 1
 nipponkempoph.tk, 1
+nipponkousei.com, 1
 nipponnews.tk, 1
 nipponprinting.co.jp, 1
 nipponsteelwelding-thai.co.th, 1
@@ -97765,17 +98335,20 @@
 nitromaster.tk, 1
 nitromtb.org, 1
 nitropanel.com, 0
-nitropur.com, 1
 nitropur.de, 1
 nitrous-networks.com, 0
 nitschinger.at, 1
 nittel-gaertner.at, 1
+nitter.hu, 0
 nitter.net, 1
 niu.edu.tw, 1
 niuco.com.br, 1
 niunaimilk.cn, 0
 niutennici.tk, 1
+nivaad.com, 1
 nivarussia.ml, 1
+niveau-klatsch.com, 1
+niveau-texter.de, 1
 nivel03.com, 1
 nivoit.cf, 1
 niwoo.es, 1
@@ -97789,6 +98362,7 @@
 nixie.fashion, 1
 nixonlibrary.gov, 1
 nixops.me, 1
+nixpare.com, 1
 nixplus.tk, 1
 nixrepair.nl, 1
 nixsub.tk, 1
@@ -97880,6 +98454,7 @@
 nmegent.be, 1
 nmeoverbetuwe.nl, 1
 nmfinanciallaw.com, 1
+nmgks.com, 1
 nmijudiciary.gov, 1
 nmmlp.org, 1
 nmontag.com, 1
@@ -97907,9 +98482,11 @@
 nnc.ink, 1
 nnc.moe, 0
 nndfn.com, 1
+nnet.ca, 1
 nnews.tk, 1
 nnkkserver02.ddns.net, 1
 nnlm.gov, 1
+nnn.tf, 1
 nnnn.loan, 1
 nnnnn.click, 1
 nnnovel.com, 1
@@ -97926,6 +98503,8 @@
 no-more-gray-hair.ga, 1
 no-more-gray-hair.gq, 1
 no-more-gray-hair.ml, 1
+no-n.at, 1
+no-nat.de, 1
 no-real.tk, 1
 no-terrorism.tk, 1
 no-war-on-iraq.tk, 1
@@ -98034,7 +98613,6 @@
 noellimpag.me, 0
 noemax.com, 1
 noeontheend.com, 1
-noestema.com, 1
 noexcusesc.gov, 1
 noexec.org, 1
 nofilter.gq, 1
@@ -98048,7 +98626,9 @@
 nogfwsite.com, 1
 nogger.nl, 1
 nogluten.com, 1
+nogmat.org, 1
 nogradhont.hu, 1
+nogre.com, 1
 nogyogyaszat.eu, 1
 nohats.ca, 1
 nohkan.fr, 0
@@ -98058,11 +98638,6 @@
 nohungerfoodbank.org, 1
 nohup.se, 1
 nohup.xyz, 1
-noid.email, 1
-noid.eu, 1
-noid.in, 1
-noid.is, 1
-noid.nu, 1
 noideas.tk, 1
 noiglosujemy.com.pl, 1
 noiglosujemy.pl, 1
@@ -98109,7 +98684,6 @@
 nomada.gt, 1
 nomadaregalos.com, 1
 nomadcasino.com, 1
-nomadese.com, 1
 nomadichome.com, 1
 nomadichome.org, 1
 nomadichomes.com, 1
@@ -98119,8 +98693,8 @@
 nomadistatravel.com, 1
 nomadix.com, 1
 nomadlist.com, 1
+nomadphile.com, 1
 nomadproject.io, 0
-nomadstays.com, 1
 nomadworld.net, 1
 nomasfraudecolorado.gov, 1
 nomaspicaduras.com, 1
@@ -98128,11 +98702,13 @@
 nomee6.xyz, 1
 nomenclator.org, 1
 nomerel.com, 1
+nomerodekors.no, 1
 nomesbiblicos.com, 1
 nomial.co.uk, 1
 nomifensine.com, 1
 nomik.xyz, 1
 nominapro.mx, 1
+nomo.com, 1
 nomore112.org, 1
 nomsing.tk, 1
 nomtechbytes.com, 1
@@ -98145,7 +98721,7 @@
 nonemail.ch, 1
 nonemu.ninja, 1
 nonnaloreta.it, 1
-nono.fi, 1
+nono.fi, 0
 nono303.net, 1
 nonobstant.cafe, 1
 nonpareilonline.com, 1
@@ -98239,7 +98815,6 @@
 nordformstore.dk, 1
 nordgravite.fr, 1
 nordhealth.com, 1
-nordicbroker.fi, 1
 nordicirc.com, 1
 nordico.club, 1
 nordicportalen.tk, 1
@@ -98293,7 +98868,6 @@
 normanbauer.com, 1
 normandgascon.com, 1
 normandy.tk, 1
-normankranich.de, 1
 normco.re, 0
 normity.nl, 1
 norml.fr, 1
@@ -98322,6 +98896,7 @@
 northbendface.com, 1
 northbengaltourism.com, 1
 northboot.xyz, 0
+northbranch-md.com, 1
 northbranfordct.gov, 1
 northbranfordpdct.gov, 1
 northbrisbaneapartments.com.au, 1
@@ -98389,7 +98964,6 @@
 northwest-events.co.uk, 1
 northwestimaging.com, 1
 northwoodoh.gov, 1
-northwoodsfish.com, 1
 northwoodstudios.org, 1
 northzone.ml, 1
 norwalkct.gov, 1
@@ -98472,7 +99046,6 @@
 notarkrauss.de, 1
 notary-tx.com, 1
 notary24.ru, 1
-notaryassistant.com, 1
 notashamedministry.org, 1
 notbolaget.se, 1
 notbot.es, 1
@@ -98495,14 +99068,16 @@
 notenarchiv.eu, 1
 notepam.com, 1
 notequal.me, 1
+noterro.com, 1
 notesforpebble.com, 1
-noteshare.net, 1
 noteskeeper.ru, 1
 notfunny.tk, 1
+notgerman.com, 1
 nothinbutnets.com, 1
 nothinfancy.ca, 1
 nothing.net.nz, 1
 nothing.org.uk, 1
+nothingbundtcakes.com, 1
 noti.tg, 1
 noticiaelmundo.com, 1
 noticiasdeautos.site, 1
@@ -98595,7 +99170,6 @@
 novalevante.info, 1
 novalite.rs, 1
 novalnet.de, 1
-novanetnettoyage.fr, 0
 novanetwork.ml, 1
 novanice.net, 1
 novantaphotonics.com, 1
@@ -98606,7 +99180,7 @@
 novashare.io, 1
 novasprint.tk, 1
 novatech.net, 1
-novatelecom.cl, 1
+novatelecom.cl, 0
 novavax.com, 0
 novaway.ca, 1
 novaya.media, 1
@@ -98686,6 +99260,7 @@
 novrazbb.com, 1
 novsti.cf, 1
 novu.com, 1
+novumclinic.pl, 1
 novumnet.com.br, 1
 novumsafe.com, 1
 novurania.com, 1
@@ -98704,7 +99279,6 @@
 nowarning.cc, 1
 nowbb.tk, 1
 nowcomplete.com.br, 1
-nowe-kasyna.org, 1
 nowebsite.tk, 1
 nowecor.de, 1
 noweigh.co.uk, 1
@@ -98762,12 +99336,12 @@
 nptelegraph.com, 1
 nptn.tk, 1
 npu.best, 1
+npw.ca, 1
 npws.net, 1
 nqesh.blog, 1
 nqesh.net, 1
 nqesh.org, 1
 nqesh.ph, 1
-nqeshreviewer.com, 1
 nqhomeinsurance.gov.au, 1
 nqwebdesign.com, 1
 nr1hosting.com, 1
@@ -98781,13 +99355,12 @@
 nrd.gov, 1
 nrdstd.io, 1
 nreihofer.de, 1
-nrelate.com, 1
 nrev.ch, 1
-nrg.edu.ee, 1
 nrj-plomberie.com, 1
 nrkn.fr, 1
 nrldc.in, 0
 nrm.co.nz, 1
+nrpyrenees.fr, 1
 nrsmart.com, 1
 nrsweb.org, 1
 nrthcdn.me, 1
@@ -98816,6 +99389,7 @@
 nsepapa.com, 1
 nserrao.com, 1
 nsfw-story.com, 1
+nsfw.dk, 1
 nshipster.cn, 1
 nshipster.co.kr, 1
 nshipster.com, 1
@@ -98851,9 +99425,11 @@
 nst-maroc.com, 1
 nstatic.xyz, 1
 nstd.net, 1
+nsteck.com, 1
 nstnet.org, 1
 nsu.pw, 1
 nsure.us, 1
+nsv.ee, 1
 nsworks.com, 0
 nszero.tk, 1
 ntags.org, 1
@@ -98903,6 +99479,7 @@
 nuansagoal.co, 1
 nubank.com.br, 1
 nube.com.br, 1
+nube.ninja, 1
 nubehogar.nsupdate.info, 1
 nubian.cf, 1
 nubian.tk, 1
@@ -98949,6 +99526,7 @@
 nuespacios.com, 1
 nuestrasdanzashn.tk, 1
 nuevacombarbala.tk, 1
+nuevaimagenpublicidad.es, 1
 nuevapublicidad.tk, 1
 nuevaya.com.ni, 1
 nuffield.nl, 1
@@ -98965,6 +99543,7 @@
 nuitec.com.br, 1
 nuits-franciliennes.fr, 1
 nuke-masters.tk, 1
+nukegeyobo.jp, 1
 nukeiso.ml, 1
 nukeportal.ml, 1
 nukeportal.tk, 1
@@ -98999,7 +99578,6 @@
 nuls.io, 1
 numancia.tk, 1
 numarasorgulama.tel, 1
-numbed.xyz, 1
 number.me, 1
 numbercult.net, 1
 numbermunchers.net, 1
@@ -99067,6 +99645,8 @@
 nursemom.ca, 1
 nurserystory.co.uk, 1
 nurses.dating, 1
+nurseslabs.com, 1
+nursing-school-degrees.com, 1
 nursing-school2.tk, 1
 nursingconsultant.ca, 1
 nursinglicensure.org, 1
@@ -99109,7 +99689,6 @@
 nutrition.gov, 0
 nutritiondynamixrd.com, 1
 nutritioned.org, 1
-nutritionfitness.fr, 1
 nutritious.cf, 1
 nutrizionista.roma.it, 1
 nutroeffect.com, 1
@@ -99170,6 +99749,7 @@
 nvtpower.com, 1
 nvtz.nl, 1
 nvz-kennisnet.nl, 1
+nw-risk.com, 1
 nwaafund.org, 1
 nwbc.gov, 0
 nwea.nl, 1
@@ -99202,7 +99782,6 @@
 nxnt.link, 1
 nxplinc.com, 1
 nxstudios.tk, 1
-nxth.io, 1
 nxtport.eu, 1
 nxznews.com, 1
 nya-cloud.com, 1
@@ -99248,6 +99827,7 @@
 nydig.com, 0
 nydnxs.com, 0
 nyecountynv.gov, 1
+nyerjakekszekkel.hu, 1
 nyerjazoreoval.hu, 1
 nyerjenaheraval.hu, 1
 nyfurnitureoutlets.com, 1
@@ -99265,9 +99845,10 @@
 nylasercenter.com.pl, 1
 nylevemusic.com, 1
 nylipa.gov, 1
+nyliveauctions.com, 1
 nyloc.de, 1
 nym.at, 1
-nynadynasir.co.id, 1
+nynadynasir.co.id, 0
 nynadynasir.my.id, 1
 nyoka.io, 1
 nyoka.ru, 1
@@ -99342,6 +99923,7 @@
 o-dvor.tk, 1
 o-n-s.co.jp, 1
 o-results.ch, 1
+o-ta-su-ke.net, 1
 o00.eu, 1
 o00228.com, 1
 o0c.cc, 1
@@ -99440,7 +100022,6 @@
 obec-krakovany.cz, 1
 obecvinodol.tk, 1
 obed-doma.tk, 1
-obeid.ch, 1
 obejor.com.ng, 1
 obelisco.tk, 1
 obelix05.duckdns.org, 1
@@ -99474,10 +100055,6 @@
 obj.moe, 1
 object.earth, 1
 objectcache.pro, 1
-objectcomp.de, 1
-objectcomp.eu, 1
-objectcomp.net, 1
-objectcomp.org, 1
 objectif-securite.ch, 1
 objectif-terre.ch, 0
 objectif-vancouver-2010.fr, 1
@@ -99508,6 +100085,7 @@
 oboivam.ru, 1
 obomne.tk, 1
 obozrevatel.tk, 1
+obpr.gov.au, 1
 obra.com.br, 1
 obrabotka-zakazow.tk, 1
 obraideal.com, 1
@@ -99570,6 +100148,7 @@
 occultisme.tk, 1
 occultumproductions.tk, 1
 occupational-therapy-colleges.com, 1
+occupationaltherapylicense.org, 1
 occupations.org.ru, 1
 occupy4elephants.tk, 1
 occupybakersfield.tk, 1
@@ -99581,6 +100160,7 @@
 ocdhub.co.za, 1
 ocealy.com, 1
 ocean-of-love.ml, 1
+ocean-sun.com, 1
 oceanaway.tk, 1
 oceanborn.ml, 1
 oceanborn.tk, 1
@@ -99631,7 +100211,6 @@
 ochsenfeld-fotografie.de, 1
 ochsenfeld.co, 1
 ochsundjunior.ch, 1
-ochsundjunior.swiss, 1
 ociaw.com, 1
 ocimumcdn.net, 1
 ockendenhemming.co.uk, 1
@@ -99704,7 +100283,6 @@
 octopoos.org, 1
 octopub.tk, 1
 octopus-apps.be, 1
-octopus-code.org, 1
 octothorpe.club, 1
 octothorpe.ninja, 1
 octovpn.com, 1
@@ -99748,6 +100326,7 @@
 odensc.me, 1
 odenvilleal.gov, 1
 odeonentertainment.co.uk, 1
+odesigning.com, 1
 odessalove.tk, 1
 odete.com.br, 1
 odezdaotto.tk, 1
@@ -99774,7 +100353,7 @@
 odmaster.com.br, 1
 odnostranichnik.tk, 1
 odo-pro.ru, 1
-odolbeau.fr, 1
+odo.online, 1
 odonata-editions.fr, 1
 odonti.com, 1
 odontoguia.co, 1
@@ -99829,7 +100408,6 @@
 oessi.eu, 1
 oesterbaron.nl, 1
 oetzies-quiz.com, 1
-oevkg.at, 1
 of-sound-mind.com, 1
 of2106.dnsalias.org, 1
 of2m.fr, 1
@@ -99924,7 +100502,6 @@
 officinegenerale.com, 1
 officium.tech, 1
 offis.de, 0
-offlimo.com, 1
 offlineauthentication.com, 1
 offpages.cf, 1
 offpages.gq, 1
@@ -99987,7 +100564,7 @@
 oglen.ca, 1
 oglix.com.br, 1
 ogmworld.tk, 1
-ognedoor.ru, 1
+ognedoor.ru, 0
 ognemet.net, 1
 ognyan.tk, 1
 ogo-knigi.ml, 1
@@ -100032,8 +100609,6 @@
 ohiot21.gov, 1
 ohiotobacco21.gov, 1
 ohiowebtech.com, 1
-ohlalalaarbitrazh.xyz, 1
-ohlalalastavki.xyz, 1
 ohling.org, 1
 ohlmeier.com, 1
 ohlmeier.net, 1
@@ -100052,7 +100627,6 @@
 ohoreviews.com, 1
 ohrange-music.tk, 1
 ohreally.de, 1
-ohrenbergpasta.de, 0
 ohrus.mx, 1
 ohsohairy.co.uk, 1
 ohtoy.com, 1
@@ -100164,7 +100738,6 @@
 okosg.kr, 1
 okotelecom.ml, 1
 okpo.tk, 1
-okproductkey.com, 1
 okqubit.net, 1
 okr.pub, 1
 okremarketing.com, 1
@@ -100215,6 +100788,7 @@
 olb.de, 1
 olbat.net, 1
 olcayanar.com, 1
+olcayirmak.com.tr, 1
 olcbrookhaven.org, 1
 old-computer-club.ml, 1
 old-times.ga, 1
@@ -100281,7 +100855,7 @@
 olegchursin.com, 0
 olegon.ru, 1
 oleksandr-petrusenko.com, 1
-oleksii.name, 1
+oleksii.name, 0
 olemon.eu.org, 1
 olenergie.com, 1
 olenergie.fr, 1
@@ -100313,7 +100887,6 @@
 olifant.fr, 0
 oligenesi.it, 1
 olightstore.ro, 1
-olihar.com, 1
 olimpicmoradebre.tk, 1
 olimpikfit.com, 1
 olimpoao.tk, 1
@@ -100407,6 +100980,7 @@
 olwm.com, 1
 olxa.tk, 1
 olxdir.tk, 1
+olydent.com, 0
 olyfed.com, 1
 olygazoo.com, 1
 olymp-arts.world, 1
@@ -100474,7 +101048,6 @@
 omenprinting.com.au, 1
 omeopatiadinamica.it, 1
 omerdemirel.com.tr, 1
-omersalaj.com, 1
 omert.tk, 1
 omerta.tk, 1
 omertabeyond.com, 1
@@ -100486,7 +101059,6 @@
 omf.link, 1
 omfmf.tk, 1
 omgbouncycastlehire.co.uk, 1
-omgcenter.org, 1
 omgit.works, 1
 omgpu.com, 1
 omgqueensland.com.au, 1
@@ -100535,6 +101107,7 @@
 omniteck.com, 1
 omnitrack.org, 1
 omnitrattore.it, 1
+omnits.pro, 1
 omniverse.ru, 1
 omny.info, 1
 omorashi.org, 1
@@ -100565,6 +101138,7 @@
 on-tech.co.uk, 1
 on-the-wave.com, 1
 on-tv.tk, 1
+on-wert.de, 1
 on2it.net, 1
 on2it.nl, 1
 on3.com, 1
@@ -100577,6 +101151,7 @@
 onahonavi.com, 1
 onair.ovh, 1
 onarto.com, 1
+onavstack.net, 1
 onbase.com, 1
 onbettertech.com, 1
 onbley.com.br, 1
@@ -100610,7 +101185,6 @@
 ondevamosjantar.com, 1
 ondiet.biz, 1
 ondoorgrond.tk, 1
-ondrei.one, 1
 ondrej.org, 1
 ondrejhoralek.cz, 1
 ondrejsramek.cz, 1
@@ -100623,6 +101197,7 @@
 one-page.org, 1
 one-pixel.tk, 1
 one-resource.com, 1
+one-s.co.jp, 1
 one-tab.com, 1
 one2team.com, 1
 one3oneapartments.com, 1
@@ -100653,7 +101228,7 @@
 oneclub.ua, 1
 onedaygrandcanyonrafting.com, 1
 onedeal.com.ua, 1
-onedetermination.com, 1
+onedetermination.com, 0
 onediversified.com, 1
 onedoc.ch, 1
 onedot.nl, 1
@@ -100738,7 +101313,6 @@
 onetcodeconnector.org, 1
 onetech.it, 1
 onetestatatime.com, 1
-onetime.info, 1
 onetly.com, 1
 onetonline.org, 1
 onetouchreveal.com, 1
@@ -100794,7 +101368,7 @@
 oniuq.com, 1
 onix.eu.com, 1
 onixcco.com.br, 1
-onkfaktor.de, 0
+onkfaktor.de, 1
 onkologiya.ga, 1
 onkyousa.com, 1
 onlanka.com, 1
@@ -100909,7 +101483,10 @@
 onlinemarketingmuscle.com, 1
 onlinemarketingtraining.co.uk, 1
 onlinemashini.bg, 1
+onlinembapage.com, 1
 onlinemediamasters.com, 1
+onlinemedicalassistantprograms.net, 1
+onlinemphdegree.net, 1
 onlinemswprograms.com, 1
 onlinenewspaperclassifieds.com, 1
 onlinepay.tk, 1
@@ -100919,6 +101496,7 @@
 onlinepokies.me, 1
 onlineporno.cc, 1
 onlineprogrammingbooks.com, 1
+onlinepsychologydegrees.com, 1
 onlineradio.com.pl, 1
 onlineradio.id, 1
 onlineradio.pp.ua, 1
@@ -100932,7 +101510,9 @@
 onlineseminar.nl, 1
 onlineshop-helgoland.de, 1
 onlineshopsatkhira.tk, 1
+onlinesim.com, 1
 onlinesorusor.cf, 1
+onlinespielcasino.de, 1
 onlinesports.cf, 1
 onlinesports.tk, 1
 onlinestoresite.com.au, 1
@@ -101001,6 +101581,7 @@
 onoranzefunebri.roma.it, 0
 onore.org, 1
 onourwifi.com, 0
+onoweb.be, 1
 onpatient.com, 1
 onpaws.com, 1
 onpay.io, 1
@@ -101050,6 +101631,7 @@
 ontrip.kr, 1
 ontsnappingskamer.nl, 1
 ontwerpdenkers.nl, 0
+onul.works, 1
 onurdemirezen.com, 1
 onurer.net, 1
 onurerhan.com, 1
@@ -101138,6 +101720,9 @@
 open-banking-access.uk, 1
 open-bs.com, 1
 open-bs.ru, 1
+open-ctp.com, 1
+open-ctp.net, 1
+open-ctp.org, 1
 open-data-apps.org, 1
 open-desk.org, 1
 open-domotics.info, 1
@@ -101194,11 +101779,14 @@
 opencpes.net, 1
 opencpes.org, 1
 opencrm.co.uk, 1
+openctp.com, 1
+openctp.net, 1
+openctp.org, 1
 opendata.cz, 1
 opendataincubator.eu, 1
-opendecide.com, 1
 opendolls.com, 1
 opendsp.ru, 1
+openendpoint.tools, 1
 openevic.info, 1
 openexec.com, 1
 openexec.net, 1
@@ -101274,6 +101862,7 @@
 openspa.webhop.info, 1
 openspot.tk, 1
 opensquares.org, 1
+opensrc.one, 1
 openssl.org, 1
 openstandia.jp, 1
 openstem.com.au, 1
@@ -101282,7 +101871,7 @@
 opentable.com, 1
 opentable.com.au, 1
 opentrack.info, 1
-opentrader.com.au, 1
+opentrader.com.au, 0
 opentrash.org, 1
 openverse.com, 0
 openvision.tk, 1
@@ -101335,6 +101924,7 @@
 opioids.co.uk, 1
 opioids.com, 1
 opioids.gov, 1
+opioids.uk, 1
 opioneers.ga, 1
 opioneers.tk, 1
 opiskelijaradio.com, 1
@@ -101413,6 +102003,7 @@
 opticaltest.com, 1
 opticamasvision.com, 1
 opticasocialvision.com, 1
+opticianedu.org, 1
 opticiansri.org, 1
 opticoolheadgear.com, 1
 opticsexplorer.com, 1
@@ -101451,9 +102042,9 @@
 optimizer.cn, 1
 optimom.ca, 1
 optimon.io, 1
-optimumhit.com, 1
 optimummenhealth.com, 1
 optimumpacific.net, 1
+optimumvikingsatcom.com, 1
 optimumwebdesigns.com, 1
 optimus.io, 1
 optimuscrime.net, 1
@@ -101503,7 +102094,6 @@
 oqpo.ru, 1
 oqrqtn7ynmgc7qrgwd-ubhdvfiymfbjrh5ethdti8.com, 0
 oqwebdesign.com, 1
-ora-ks.com, 1
 orablanket.co.nz, 1
 oracaodocredo.com.br, 1
 oracle-support.nl, 1
@@ -101562,12 +102152,10 @@
 orbits.ga, 1
 orbitum.fr, 1
 orbitum.space, 1
-orbo.org.in, 1
 orbu.net, 1
 orca.pet, 0
 orcada.co, 1
 orcahq.com, 1
-orcamais.com.br, 1
 orcamarine.tk, 1
 orcas.tk, 1
 orcawiki.nl, 1
@@ -101641,7 +102229,6 @@
 oreshinya.xyz, 1
 oreskylaw.com, 1
 orestadit.dk, 1
-oresundsbron.com, 1
 oreto.de, 0
 orevan.net, 1
 orevan.org, 1
@@ -101922,7 +102509,6 @@
 osmiorniczkowo.pl, 1
 osmosebox.com, 1
 osmosis-inversa.online, 1
-osmosis.org, 1
 osmre.gov, 1
 osmt.cc, 1
 osnova.cz, 1
@@ -101941,6 +102527,8 @@
 osrsmap.net, 1
 osrsplugins.xyz, 1
 ossdiabolo.tk, 1
+osservatorionessuno.it, 1
+osservatorionessuno.org, 1
 ossigeno.tk, 1
 ossipee-nh.gov, 1
 ossrox.org, 1
@@ -102031,6 +102619,7 @@
 oticasvisao.net.br, 1
 otimismoemrede.tk, 1
 otinane.eu, 1
+otipax.ru, 1
 otiumtech.com, 1
 otixz.com, 1
 otkm-stuttgart.tk, 1
@@ -102081,7 +102670,6 @@
 ottogroup.com, 1
 ottomanbedsuk.tk, 1
 ottoproject.io, 0
-ottorinoferilli.com, 1
 ottoversand.at, 1
 otuts.eu, 1
 otvaracie-hodiny.sk, 1
@@ -102202,7 +102790,6 @@
 outetc.com, 1
 outfaced-dancestudio.de, 1
 outfit-weimar.eu, 1
-outfunnel.com, 1
 outgress.com, 1
 outgrow.co, 1
 outhwaite.com, 1
@@ -102211,7 +102798,6 @@
 outlaw-star.tk, 1
 outletapex.com, 1
 outletstoresmalls.com, 1
-outletszone.com, 1
 outline.ski, 1
 outline.vn, 1
 outlook.com, 1
@@ -102231,11 +102817,9 @@
 outsideconnections.com, 1
 outsiders.paris, 0
 outsidershairboutique.com, 1
-outsidetheboxcreation.com, 1
 outsidology.com, 1
 outsize.tk, 1
 outsourcify.net, 1
-outsourcingdenomina.co, 1
 outsourcingnominabogota.com, 1
 outstack.vote, 1
 outstanding.tk, 1
@@ -102248,6 +102832,7 @@
 ovago.com, 1
 ovalle.tk, 1
 ovallevirtual.tk, 1
+ovationhand.com, 1
 ovbr.ru, 1
 ovc.gov, 1
 ovcttac.gov, 1
@@ -102320,7 +102905,6 @@
 ovez.ga, 1
 ovhcdn.pw, 1
 ovidro.pt, 0
-oviedoacrepair.com, 1
 ovirt.org, 1
 oviser.ml, 1
 ovisy.com, 1
@@ -102337,6 +102921,8 @@
 owatonna.gov, 1
 owatonnagrows.gov, 1
 owdeutschland.org, 1
+owdex.com, 1
+owefkwef8lkj.com, 1
 owensboroky.gov, 1
 owenschumacher.tk, 1
 owensmith.website, 1
@@ -102361,13 +102947,13 @@
 owlbee.it, 1
 owlbee.nl, 1
 owldevelopers.tk, 1
+owlexa.com, 1
 owlhollowbakery.com, 1
 owln.ai, 1
 owlnull.me, 1
 owlscrap.ru, 1
 owlsec.io, 1
 owlvilleers.ga, 1
-owmobility.com, 1
 ownagepranks.com, 1
 ownc.at, 1
 owncloud.ch, 1
@@ -102407,6 +102993,7 @@
 oxia.me, 1
 oxialive.fr, 1
 oxiame.eu, 1
+oxide.social, 1
 oxidecomputer.net, 1
 oxidecomputer.social, 1
 oxidescooters.co.uk, 1
@@ -102436,13 +103023,14 @@
 oxymoron.tk, 1
 oxynux.xyz, 1
 oxytocin.org, 1
+oxytocin.wiki, 1
 oxyx.tk, 1
 oxz.me, 1
 oxzeth3sboard.com, 1
+oya.ai, 1
 oyal.co.uk, 1
 oyama-conf.com, 1
 oyama-karate.tk, 1
-oyantec.com, 1
 oyap.ca, 1
 oyaphwcdsb.com, 1
 oyapkprdsb.ca, 1
@@ -102479,6 +103067,7 @@
 ozdevelopment.com, 1
 ozel-ders.tk, 1
 ozelgitardersi.tk, 1
+ozelguvenlik.com.tr, 1
 ozellaruck.tk, 1
 ozgurbozkurt.com, 1
 ozgurgokmen.net, 1
@@ -102511,7 +103100,6 @@
 p-p.site, 1
 p-pac.com, 0
 p-pc.de, 1
-p-soc.com.br, 1
 p-store.net, 1
 p-t.io, 1
 p.ac, 1
@@ -102522,7 +103110,7 @@
 p1-acc.nl, 1
 p1-apps.nl, 1
 p1-test.nl, 1
-p10.ru, 1
+p10.ru, 0
 p1984.nl, 0
 p1cn.com, 1
 p1group.com, 1
@@ -102569,6 +103157,7 @@
 paal.network, 1
 paanews.com, 1
 paarberatung-hn.de, 1
+paardekoopergroup.com, 1
 paardenhulp.nl, 1
 paardensportbak.nl, 1
 paarissohail.tk, 1
@@ -102625,7 +103214,6 @@
 pacecare.com, 1
 pacecounsel.com, 1
 paceda.nl, 1
-paceinvestmentclub.com, 1
 pacelink.de, 1
 pacemakers.ml, 1
 pacenterforhearingandbalance.com, 1
@@ -102638,6 +103226,7 @@
 pacificaent.net, 1
 pacificarperu.com, 1
 pacificautobody.net, 1
+pacificbags.com.au, 1
 pacificbeachpub.com, 1
 pacificblue.kiwi, 1
 pacificblue.software, 1
@@ -102670,7 +103259,6 @@
 packagist.org, 0
 packair.com, 1
 packandseal.in, 1
-packaware.com, 1
 packedagain.com, 1
 packer.io, 0
 packetapp.ru, 1
@@ -102683,6 +103271,7 @@
 packliberte.org, 1
 packservice.es, 1
 packtracking.org, 1
+packwire.com, 1
 paclease.com.my, 1
 pacman.ltd, 1
 pacobarbera.tk, 1
@@ -102722,10 +103311,8 @@
 paediatricdata.eu, 0
 paedlink.ca, 1
 paesa.es, 1
-paeseendo.com.br, 1
 paesi.info, 1
 paf-events.ch, 0
-paff.xyz, 1
 paga.red, 1
 pagalnew.com, 1
 pagalofacil.com, 1
@@ -102750,6 +103337,7 @@
 page-audit.ru, 0
 page-engine.tk, 1
 page-speed.ru, 1
+page.lgbt, 1
 page12.tk, 1
 pageboard.fr, 1
 pageboard.io, 1
@@ -103080,6 +103668,7 @@
 panicroomgames.ch, 1
 panictours.tk, 1
 panier-legumes.bio, 1
+panierscadeauxinternationaux.com, 1
 paniigielka.pl, 1
 paniniamerica.net, 1
 panino.gr, 1
@@ -103110,7 +103699,6 @@
 panoraven.com, 1
 panorays.com, 1
 panoti.com, 0
-panpa.ca, 1
 panpsychism.com, 1
 panpsychist.com, 1
 pansec.de, 1
@@ -103125,6 +103713,7 @@
 pantai.com.my, 1
 pantallanotebook.cl, 1
 pantallasyescenarios.com, 0
+pantas.com, 1
 pantavv.xyz, 1
 pantera.tk, 1
 panthenolplus.co.uk, 1
@@ -103133,9 +103722,11 @@
 pantheoncrafters.com, 1
 pantheonuk.org, 1
 pantherage.co.uk, 1
+panthercitysand.com, 1
 panthi.lk, 1
 pantingly.tk, 1
 pantou.org, 0
+pantryjars.com, 1
 pants-off.xyz, 0
 pantsu.club, 1
 pantsuservice.tk, 1
@@ -103177,7 +103768,6 @@
 papastratosmazi.gr, 1
 papatest24.de, 1
 papaya.me.uk, 1
-papayaglobal.com, 1
 papayapay.com, 1
 papayapythons.com, 1
 papelariaestacaodopapel.com.br, 1
@@ -103185,12 +103775,10 @@
 papelisimo.es, 1
 papendal.com, 1
 papendal.nl, 1
-paper-republic.org, 1
 paper.sc, 1
 paper.wf, 1
 paperandpage.com, 1
 papercanyon.com, 1
-papergamer.co.uk, 1
 paperhoney.by, 1
 papermuseum.jp, 1
 paperopedia.com, 1
@@ -103312,7 +103900,6 @@
 pardal.tk, 1
 pardanaud.com, 1
 pardnoy.com, 1
-pareachat.com, 1
 parebrise-rouen.fr, 1
 paredesdecoura.pt, 0
 parejaideal.es, 1
@@ -103333,6 +103920,7 @@
 parentsintouch.co.uk, 1
 parentsmaster.com, 1
 parenttheirpassion.com, 1
+parequity.com, 1
 paretoit.com, 1
 paretorule.cf, 1
 parfum-best.ml, 1
@@ -103377,7 +103965,6 @@
 parina.vn, 1
 parinc.com, 1
 pario.li, 1
-paripariparitraff.online, 1
 paripesa.com, 1
 paripesa.ng, 1
 paris-elysees.com, 0
@@ -103394,12 +103981,14 @@
 parisfranceparking.de, 1
 parisfranceparking.fr, 1
 parisfranceparking.nl, 1
+parishoftheholycross.org, 1
 parishome.jp, 1
 parismalleg.com, 1
 parisnormandyimmobilier.com, 1
 parisprovincedemenagements.fr, 1
 parissportifs.com, 1
 paritexpressions.com, 1
+pariu.online, 1
 pariwaarmedia.com, 1
 parizhanka.tk, 1
 park-trek.com, 1
@@ -103432,9 +104021,10 @@
 parkers.gq, 1
 parkers.ml, 1
 parkers.tk, 1
+parkersweeper.com, 1
 parket.gq, 1
 parketsn.ru, 0
-parkettdielen.net, 1
+parkinggaragecleaningchicago.com, 1
 parkinggaragepressurewashingchicago.com, 1
 parkinginparis.fr, 1
 parkingmasters.be, 1
@@ -103449,6 +104039,7 @@
 parkos.nl, 1
 parkpoint-capitalhills.com, 1
 parkr.io, 1
+parkrangeredu.org, 1
 parkrunstats.servehttp.com, 1
 parkscandles.com, 1
 parkseed.com, 1
@@ -103459,6 +104050,7 @@
 parkviewcity.com.pk, 1
 parkviewmotorcompany.com, 1
 parkwayminyan.org, 1
+parkweiher.koeln, 1
 parkwhiz.com, 1
 parlakjurnal.com, 1
 parlament.cf, 1
@@ -103477,6 +104069,7 @@
 parodesigns.com, 1
 paroisses-theix-surzur.com, 1
 parokia.hu, 1
+parolededieu.org, 1
 paroli.pl, 1
 parolu.io, 1
 paronubi.com, 1
@@ -103490,6 +104083,7 @@
 parquestejo.pt, 1
 parquettista.milano.it, 1
 parquettista.roma.it, 1
+parquettisti.roma.it, 1
 parratennis.com.au, 1
 parrocchiadimeana.tk, 1
 parrocchiamontevecchia.it, 1
@@ -103503,8 +104097,8 @@
 parsec.app, 1
 parsemail.org, 1
 parser.nu, 1
+parsi.com, 1
 parsonsfamilyhomes.com, 1
-parspanel.com, 1
 parsuv.ir, 1
 part-of-that-world.com, 1
 part.la, 1
@@ -103533,8 +104127,6 @@
 partisan-berlin.tk, 1
 partituras.tk, 1
 partner-finden.tk, 1
-partner-summit-2023.com, 1
-partner.sh, 1
 partnerbeam.com, 1
 partnerchik.tk, 1
 partnerforex.tk, 1
@@ -103576,6 +104168,7 @@
 partyhireliverpool.co.uk, 1
 partykanal.cz, 1
 partymat.de, 1
+partymusikband.de, 1
 partypearl.de, 1
 partypeeps.tk, 1
 partyphoto.tk, 1
@@ -103600,7 +104193,6 @@
 pascal-koelsch.de, 1
 pascal-ua.tk, 1
 pascal-wittmann.de, 1
-pascal90.de, 1
 pascalchristen.ch, 1
 pascalgames.tk, 1
 pascalhargarter.de, 1
@@ -103627,7 +104219,6 @@
 paslc.gov, 1
 pasnederland.tk, 1
 pasnine.my.id, 1
-pasnyburiat.pl, 1
 pasquinelli-truebag.ch, 1
 pass.org.my, 1
 passa.org, 1
@@ -103820,11 +104411,11 @@
 patriciaroy.co, 1
 patrick-omland.eu, 1
 patrick-robrecht.de, 1
+patrick.dark.name, 1
 patrick.my-gateway.de, 1
 patrick21.ch, 1
 patrickaudley.ca, 1
 patrickaudley.com, 1
-patrickbrosi.de, 1
 patrickbusch.net, 1
 patrickcontainerrotator.ga, 1
 patrickdankers.nl, 1
@@ -103846,6 +104437,7 @@
 patris-querre.com, 1
 patrisnews.com, 1
 patrocinio.com.br, 1
+patrogers.org, 1
 patrycjamichera.com, 1
 patryk.cf, 1
 patrz.eu, 1
@@ -103887,7 +104479,7 @@
 paulcoldren.org, 1
 pauld.codes, 1
 pauldeconinck.tk, 1
-paulevers.nl, 1
+paulfc.com, 1
 paulgerberrealtors.com, 1
 paulgo.io, 1
 paulharrisoncars.com, 1
@@ -103902,7 +104494,6 @@
 pauljrowland.co.uk, 1
 pauljzak.com, 1
 paullockaby.com, 1
-paulmarc.org, 1
 paulmarvin.tk, 1
 paulmilligan.co.uk, 1
 pauloalcobianeves.pt, 1
@@ -104020,12 +104611,15 @@
 paycom.com, 1
 paycomdfw.com, 1
 paycomonline.com, 1
+paycore.com, 1
 paycore.io, 1
+payctest.com, 1
 paydarplasticsurgery.com, 1
 paydayloanskentucky.org, 1
 paydepot.com, 1
 paydigital.pt, 1
 paydoor9.com, 1
+payeasy.tech, 1
 payexpresse.com, 1
 payfare.com, 1
 payfazz.com, 1
@@ -104055,6 +104649,7 @@
 paymongo.help, 1
 paymore.org, 1
 paymyphysician.com, 1
+paynexpay.com, 1
 payonline-api.xyz, 1
 payop.com, 1
 paypac.com.au, 1
@@ -104112,6 +104707,7 @@
 pbcialis.com, 1
 pbcknd.ml, 1
 pbcpao.gov, 1
+pbdigital.org, 0
 pbern.xyz, 1
 pbest.tk, 1
 pbla.biz, 1
@@ -104184,7 +104780,6 @@
 pcipal.com, 1
 pcisecuritystandards.org, 1
 pcissc.org, 1
-pckartel.biz, 1
 pckurzypd.sk, 1
 pclicensekeys.com, 1
 pcloud.com, 1
@@ -104311,7 +104906,6 @@
 peakd.com, 1
 peakhillre.ga, 1
 peakhomeloan.com, 1
-peakperformance.hr, 1
 peaksalesrecruiting.com, 1
 peakseoservices.co.uk, 1
 peaksloth.com, 1
@@ -104376,7 +104970,6 @@
 pedalia.cc, 1
 pedalirovanie.tk, 1
 pedalr.eu, 1
-pedalsbarcelona.com, 1
 peddy.dyndns.org, 1
 peddyland.tk, 1
 pediatersucha.sk, 1
@@ -104443,7 +105036,6 @@
 peerjs.com, 1
 peername.com, 1
 peerpressurecreative.com, 1
-peers.cloud, 1
 peers.gq, 1
 peers.tk, 1
 peersquaders.ga, 1
@@ -104462,7 +105054,6 @@
 pegas-studio.net, 1
 pegasnet.tk, 1
 pegdown.org, 1
-pegrum.rocks, 1
 pegundugun.tk, 1
 peifi.de, 0
 peinture-77.fr, 1
@@ -104559,6 +105150,7 @@
 penguin-stats.io, 1
 penguin.co.uk, 1
 penguinclientsystem.com, 1
+penguindominatrix.com, 1
 penguindrum.moe, 1
 penguinos.tk, 1
 penguinprotocols.com, 1
@@ -104569,6 +105161,7 @@
 penholder.ga, 1
 peni.tk, 1
 peniarth.cymru, 1
+peninsula360.com, 1
 peninsulaadvancedurology.com, 1
 penispumpen.se, 1
 pennan.tk, 1
@@ -104593,7 +105186,6 @@
 pens-money.cf, 1
 pens-money.ga, 1
 pens-money.gq, 1
-pens.com, 1
 pensacolafl.gov, 1
 pensacolawinterfest.org, 1
 pensador.com, 1
@@ -104738,6 +105330,7 @@
 peredoz.tk, 1
 pereezd.ml, 1
 peregrinefund.org, 1
+peregrinus.es, 1
 peremena.ml, 1
 perenne.ee, 1
 perennialwomens.com, 1
@@ -104749,7 +105342,7 @@
 perevod-tekst-pesni.ru, 1
 perewall.tk, 1
 perez-marrero.com, 1
-perezdecastro.org, 1
+perezdecastro.org, 0
 perezplumbinginc.com, 1
 perf1.com, 1
 perfare.net, 1
@@ -104778,7 +105371,6 @@
 perfectsize.pl, 1
 perfectsnap.co.uk, 1
 perfectsoft.tk, 1
-perfectteenporn.com, 1
 perfecttits.net, 1
 perfectweb.today, 1
 perfectworldbot.tk, 1
@@ -104788,6 +105380,7 @@
 perferxprecision.com, 1
 perfmatters.io, 1
 perfmed.ro, 1
+perforlabs.com, 1
 performance-advertising.de, 1
 performance.gov, 1
 performancehealth.com, 0
@@ -104817,6 +105410,7 @@
 peridotcapitalpartners.com, 1
 perigon.ch, 1
 perini.com.au, 1
+perinton.gov, 1
 periodex.co, 1
 periodicojerez.info, 1
 periodicomirador.com, 1
@@ -104925,6 +105519,7 @@
 personalpages.us, 1
 personalrecreationaltourguides.com, 1
 personaltrainer-senti.de, 1
+personaltraineredu.org, 1
 personalwebsite.services, 1
 personcar.com.br, 1
 persondatakonsulenterne.dk, 1
@@ -104979,6 +105574,7 @@
 pescadorcomunicacao.com, 1
 pescamagnetica.pt, 1
 pescanetworks.tk, 1
+pescans.com, 1
 pescco.com.br, 1
 pesinatsizsenetle.com, 1
 pesitalia.tk, 1
@@ -105038,6 +105634,7 @@
 petdir.ga, 1
 petdish.ga, 1
 petdollar.ga, 1
+peteacheredu.org, 1
 petech.ro, 1
 petelew.is, 1
 petemerges.com, 1
@@ -105085,13 +105682,13 @@
 peters.consulting, 1
 petersburgmi.gov, 1
 peterseninc.com, 1
-peterslavik.com, 1
 petersonbrosrealty.com, 1
 petersport.ee, 1
 petersweb.me.uk, 1
 petertrevor.com, 1
 petervaldesii.com, 0
 petervantriet.nl, 1
+peteschmidt.com.au, 1
 petevagabond.com, 1
 petfa.ga, 1
 petfame.ga, 1
@@ -105114,6 +105711,7 @@
 petimagine.ga, 1
 petit-archer.com, 1
 petit-bebe.fr, 1
+petitbleu.fr, 1
 petite-annonce.tk, 1
 petite-maison.ch, 0
 petiteframes.com, 1
@@ -105226,6 +105824,7 @@
 peyad.com, 1
 peyote.com, 1
 peyote.org, 1
+peyote.wiki, 1
 peyukoshop.com, 1
 pf.dk, 1
 pfa.or.jp, 1
@@ -105260,7 +105859,6 @@
 pfk.org.pl, 1
 pflan.dk, 1
 pflanzen-shop.ch, 1
-pflanzkompass.at, 1
 pflege.ch, 1
 pfmeasure.com, 1
 pfnpc.org, 1
@@ -105303,7 +105901,6 @@
 pgnetwork.io, 1
 pgnetwork.net, 1
 pgnetwork.org, 1
-pgp.fail, 1
 pgp.lol, 1
 pgp.net, 1
 pgp.org.au, 1
@@ -105329,6 +105926,7 @@
 ph4nt0m.ddns.net, 0
 pha.pub, 1
 phablecare.com, 1
+phagyo.com, 1
 phannuoc.net, 1
 phantasia.tk, 1
 phantasie.cc, 1
@@ -105344,13 +105942,13 @@
 phantomware.tk, 1
 pharandespaces.com, 1
 pharma-iq.com, 1
-pharma24.de, 1
 pharmaabsoluta.com.br, 1
 pharmaboard.de, 1
 pharmaboard.org, 1
 pharmaceuticalcannabis.org, 1
 pharmaciechatelle.be, 1
 pharmacieplusfm.ch, 0
+pharmacy.org.pk, 1
 pharmalab.eu, 1
 pharmalab.fr, 1
 pharmapolitics.com, 1
@@ -105405,12 +106003,11 @@
 pheromeons.com, 1
 pheromoans.com, 1
 pheromoens.com, 1
-pheromonetalk.com, 1
+pheromonetalk.com, 0
 pheromonez.com, 1
 pheronome.com, 1
 pheronomes.com, 1
 pheros.com, 1
-pherotalk.com, 1
 pheroz.com, 1
 phesita.gq, 1
 phew.co.nz, 1
@@ -105520,7 +106117,6 @@
 phoenixdepositionservices.com, 1
 phoenixfrequency.ga, 1
 phoenixlpgpasig.com, 1
-phoenixmanga.com, 1
 phoenixmunicipalcourt.gov, 1
 phoenixnest.ltd, 1
 phoenixpower.tk, 1
@@ -105529,7 +106125,6 @@
 phographer.com, 1
 pholder.com, 1
 pholio.com, 1
-phone-hospital.eu, 1
 phone-service-center.de, 1
 phone-spy.ml, 1
 phone42.com, 1
@@ -105563,12 +106158,14 @@
 phonetika.org, 1
 phonetrace.tk, 1
 phonetrack.tk, 1
+phonevibrator.com, 1
 phonex.bg, 1
 phoneyourselfers.ga, 1
 phoneyourselfest.ga, 1
 phonix-company.fr, 1
 phonosynthese.tk, 1
 phonosynthesis.tk, 1
+phorcys.net, 1
 phormance.com, 1
 phosagro.biz, 0
 phosagro.com, 0
@@ -105633,7 +106230,6 @@
 photoreal.tk, 1
 photosafari.com.my, 1
 photosafaribg.com, 1
-photosaloncontest.com, 0
 photosavi.com, 1
 photosbyzachary.tk, 1
 photoscheduleers.ga, 1
@@ -105658,13 +106254,13 @@
 php-tuning.de, 1
 php.watch, 1
 phparcade.com, 1
+phparena.net, 1
 phpartners.org, 1
 phpbb-tutorials.cf, 1
 phpbbchinese.com, 0
 phpdevlabs.tk, 1
 phpdorset.co.uk, 1
 phpfashion.com, 1
-phph001.xyz, 1
 phpinfo.in.th, 1
 phpkari.cz, 1
 phpkoru.com, 1
@@ -105683,6 +106279,7 @@
 phreaker.ml, 1
 phreaknet.org, 1
 phreesia.com, 1
+phrenology.com, 1
 phrive.space, 1
 phrlegal.com, 1
 phruse.com, 1
@@ -105731,6 +106328,8 @@
 physia.gr, 1
 physicalism.com, 1
 physicalist.com, 1
+physicaltherapistassistantedu.org, 1
+physicianassistantedu.org, 1
 physicianbookest.ga, 1
 physiciansopticalservice.com, 1
 physics-schools.com, 1
@@ -105839,6 +106438,7 @@
 pickupalliance.com, 1
 pickupenc.ru, 1
 picky-palate.com, 1
+piclect.com, 1
 picme.tk, 1
 picmms.com, 1
 picobellos.tk, 1
@@ -105855,6 +106455,7 @@
 picsalesers.ga, 1
 picsastock.com, 1
 picshare.nz, 1
+picsnmore.de, 1
 picstar.tk, 1
 picsto.re, 0
 picstreak.com, 1
@@ -105871,7 +106472,6 @@
 picturevictoria.vic.gov.au, 1
 picturingjordan.com, 1
 pidelo-peru.com, 1
-pidginhost.com, 1
 pidjipi.com, 1
 pidu.jp, 1
 pie-express.xxx, 1
@@ -105883,7 +106483,6 @@
 piedroshop.nl, 1
 piekacz.co.uk, 1
 piekacz.eu.org, 1
-piekacz.net, 1
 piekacz.tel, 1
 piektraining.com, 1
 piel.ai, 1
@@ -105957,6 +106556,7 @@
 pikafederation.ca, 1
 pikaramagazine.com, 1
 pikboxstore.com, 0
+pikecoga.gov, 1
 pikecountyil.gov, 1
 pikecountyohcommissioners.gov, 1
 pikeitservices.com.au, 1
@@ -105981,7 +106581,6 @@
 pilbaraports.com.au, 1
 pildat.org, 1
 pilgermaske.org, 1
-pili-serv.ovh, 1
 piliszek.net, 1
 pill.id, 1
 pillar.fi, 1
@@ -106005,6 +106604,7 @@
 pilotknobmo.gov, 1
 pilotpov.com, 1
 pilotproject.tk, 1
+pilotsfor911truth.org, 1
 pilotshop.com, 1
 pilsen.fun, 1
 pilseta24.lv, 1
@@ -106101,6 +106701,7 @@
 pinklittlenotebook.com, 1
 pinkmango.travel, 0
 pinkoi.com, 1
+pinkoz.xyz, 1
 pinkpearl.tk, 1
 pinkplay.com.br, 1
 pinkpop.nl, 1
@@ -106190,7 +106791,6 @@
 pioneer.eu, 1
 pioneerbible.org, 1
 pioneerdr.com, 1
-pioneersenior.com, 1
 pionierboat.cf, 1
 pionierboat.ga, 1
 pionierboat.tk, 1
@@ -106199,6 +106799,7 @@
 pipa-shop.nl, 1
 pipeclub.tk, 1
 piped.video, 1
+pipelineengineeringsoftware.com, 1
 pipenav.gq, 1
 pipenny.net, 1
 piperswe.me, 1
@@ -106207,7 +106808,6 @@
 pipfrosch.com, 0
 pipglobal.com, 1
 piping-clean.com, 1
-pipoos.com, 1
 pippenainteasy.com, 1
 piprivillage.ml, 1
 piprotec.com, 1
@@ -106223,6 +106823,7 @@
 piranja-cola.de, 1
 piranjasoul.de, 1
 pirapiserver.ddns.net, 1
+pirate-proxy.biz, 1
 pirate-proxy.club, 1
 pirate-proxy.ink, 1
 pirate-proxy.one, 1
@@ -106367,7 +106968,6 @@
 pixelcrayons.com, 1
 pixelecommerce.com, 1
 pixelfiends.tk, 1
-pixelglance.com, 1
 pixelgliders.de, 1
 pixelglue.com.au, 1
 pixelhafen-design.de, 1
@@ -106386,6 +106986,7 @@
 pixelshealth.com, 1
 pixelsketch.co.uk, 1
 pixelsquared.us, 1
+pixelstouch.org, 1
 pixelstrade.com, 1
 pixeltranslating.com, 1
 pixelturkey.art, 1
@@ -106427,6 +107028,7 @@
 pizza2020andcatering.com, 1
 pizzabesteld.nl, 1
 pizzabottle.com, 1
+pizzachefs.co.za, 1
 pizzacontenta.tk, 1
 pizzacosi.nl, 1
 pizzafest.ddns.net, 1
@@ -106439,6 +107041,7 @@
 pizzaplus.tk, 1
 pizzariapartiupizza.com.br, 1
 pizzariaroma.cf, 1
+pizzarts.fr, 1
 pizzaslut.xyz, 1
 pizzeriaamadeus.hr, 1
 pizzeriasmallorca.com, 1
@@ -106460,7 +107063,6 @@
 pjuu.com, 0
 pk-master.tk, 1
 pk-soft.tk, 1
-pk.edu.ee, 1
 pk.search.yahoo.com, 0
 pk8k.com, 1
 pkautodesign.com, 0
@@ -106532,7 +107134,6 @@
 plaloo.tk, 1
 plan-immobilier.fr, 1
 plan-it-events.de, 1
-plan-und-los.de, 1
 planafy.com, 1
 planbase.com, 1
 planchasvertical.es, 1
@@ -106554,6 +107155,7 @@
 planeta-remontika.ga, 1
 planetadeti.org, 1
 planetadjs.com, 1
+planetairsports.com, 1
 planetalife.com, 1
 planetamarrom.tk, 1
 planetamend.com, 1
@@ -106626,7 +107228,6 @@
 planningsagenda.nl, 1
 plano.gq, 1
 planodesaude.net.br, 1
-planosylicencias.de, 1
 planresto.com, 1
 planrow.com, 1
 plansaude.med.br, 1
@@ -106684,6 +107285,7 @@
 plastireal.com.br, 1
 plastischechirurgie-linz.at, 1
 plastokna.tk, 1
+plastoplex.com, 1
 plastovelehatko.cz, 1
 plataformaslms.com, 1
 platanakia.tk, 1
@@ -106704,6 +107306,7 @@
 platinumcalendarest.ga, 1
 platinumcat.info, 1
 platinumgatesecurity.co.uk, 1
+platinumjubilee.gov.au, 1
 platinumkids.com.br, 1
 platinumpoolsaz.com, 1
 platinumsystems.biz, 1
@@ -106768,6 +107371,7 @@
 playdosgames.com, 1
 playdrop.ml, 1
 playelephant.com, 1
+player701.net, 1
 player701.ru, 1
 playerdb.co, 1
 playerslounge.co, 1
@@ -106788,9 +107392,8 @@
 playlisten.radio.br, 1
 playlistresearch.com, 1
 playmat.com, 1
-playmei.com, 1
+playmei.com, 0
 playmob.com, 1
-playmobi.co.uk, 1
 playnow.com, 1
 playnuganug.com, 1
 playocean.net, 1
@@ -106798,6 +107401,7 @@
 playparkhotels.com, 1
 playpirates.com, 1
 playpower.tk, 1
+playreal.cc, 1
 playreal.city, 1
 playreal.com.tw, 1
 playsnake.org, 1
@@ -106808,7 +107412,6 @@
 playstationplus.es, 1
 playstationtrophies.org, 1
 playtictactoe.org, 1
-playtoday.co, 1
 playtoearn.net, 1
 playtop.tk, 1
 playtopia.com, 1
@@ -106855,7 +107458,6 @@
 pleindedemsvaart.tk, 1
 pleine-conscience.ch, 0
 pleiospilos.com, 1
-plekker.be, 1
 plenigo.com, 1
 plenkanaotrez.ml, 1
 plentybetter.com, 1
@@ -106889,6 +107491,7 @@
 plicker.net, 1
 plikersi.tk, 1
 plikiai.tk, 1
+plintusof.by, 1
 pliosoft.com, 1
 pliroforikikoufopoulou.gr, 1
 plissee-experte.de, 1
@@ -106954,6 +107557,7 @@
 pluralpedia.org, 1
 pluricosmetica.com, 1
 plurilock.com, 1
+plus-aliance.ru, 1
 plus-project.co.uk, 1
 plus.google.com, 1
 plus.sandbox.google.com, 1
@@ -106963,6 +107567,7 @@
 plus1s.site, 1
 plusbot.tk, 1
 plusfitness.com.au, 1
+plusgrandevilledefrance.com, 1
 plushev.tk, 1
 pluslink.co.jp, 1
 plusmobile.fr, 1
@@ -107001,7 +107606,6 @@
 pm-schilderwerk.nl, 1
 pm-site.xyz, 1
 pm-tm.info, 1
-pm.by, 1
 pm.gov.au, 1
 pm.link, 1
 pm.ua, 1
@@ -107018,7 +107622,6 @@
 pmbc.org, 1
 pmbet.vip, 1
 pmbrachyeducation.ca, 1
-pmbsteelbuildings.com, 1
 pmc.gov.au, 1
 pmcancercampus.ca, 1
 pmcancerclasses.ca, 1
@@ -107045,10 +107648,10 @@
 pmklaassen.com, 1
 pmnaish.co.uk, 1
 pmnd.rs, 1
+pmoe-software.com, 1
 pmoreau.org, 1
 pmoscr.com, 1
 pmota.org, 1
-pmovies.work, 1
 pmp-art.com, 1
 pmp6.fr, 1
 pmpm.tk, 1
@@ -107072,7 +107675,6 @@
 pneu74.fr, 1
 pneuhaus-lemp.ch, 1
 pneumania.fr, 1
-pneumatikos.me, 1
 pnfiles.tk, 1
 png.am, 1
 pnggrid.com, 1
@@ -107091,6 +107693,7 @@
 po-krasivi.bg, 1
 po-sha-go-vo.ru, 1
 po.cash, 1
+po.ne, 1
 po.net, 1
 po0k.ie, 1
 poc060.com, 1
@@ -107266,6 +107869,7 @@
 podqueue.fm, 1
 podroof.com, 0
 podroof.com.au, 0
+podrozwmilczeniu.pl, 1
 podshrink.de, 1
 podvenec.tk, 1
 podycust.co.uk, 1
@@ -107303,6 +107907,7 @@
 pogodavolgograd.tk, 1
 pogodok.tk, 1
 pogomate.com, 1
+pogoswine.com, 1
 pogotowie-komputerowe.tk, 1
 pogotowiekomputeroweolsztyn.pl, 1
 pogrebeniq-sofia.com, 1
@@ -107330,6 +107935,7 @@
 pointhost.de, 1
 pointiswunderland.de, 1
 pointmaquininha.com, 0
+pointnull.com, 1
 pointpalace.tk, 1
 pointpay.io, 1
 pointpleasantbeachnj.gov, 1
@@ -107353,6 +107959,7 @@
 poitiers-ttacc-86.eu.org, 1
 pojer.me, 1
 pojoksosmed.com, 1
+pokagontownshipmi.gov, 1
 pokalsocial.de, 1
 poke.blue, 1
 pokedex.mobi, 1
@@ -107389,7 +107996,6 @@
 pokernyheder.io, 1
 pokerreligioners.ga, 1
 pokerreligionest.ga, 1
-pokersites.me.uk, 1
 pokerslab.com, 1
 pokerstarslearn.com, 1
 pokerventure.ga, 1
@@ -107437,13 +108043,13 @@
 polarbear.army, 1
 polarhome.tk, 1
 polarisapp.xyz, 1
-polarispool.com, 1
+polarispool.com, 0
 polaroidmag.com, 1
 polaschin.ch, 1
 polatas.com.tr, 1
+polatsemih.com, 1
 polbox.fr, 1
 poldrack.me, 1
-pole.net.nz, 1
 poleartschool.com, 0
 poleasingowy.net, 1
 polebarn.com, 1
@@ -107507,7 +108113,7 @@
 politicalasylum.tk, 1
 politicalscore101.com, 1
 politicaprivacidade.com, 1
-politiciancompare.com, 1
+politiciancompare.com, 0
 politicnation.com, 1
 politicobuzz.com, 1
 politicsandnews.cf, 1
@@ -107534,6 +108140,7 @@
 polkhealthforanewyou.net, 0
 polki.com, 1
 polknc.gov, 1
+polkom.com, 1
 polkswcdiowa.gov, 1
 pollen.co, 1
 pollendine.co.uk, 1
@@ -107554,6 +108161,7 @@
 polmods.com, 1
 polnischestoffe.eu, 1
 polog.tk, 1
+poloil.gov, 1
 polomack.eu, 1
 poloniainfo.com, 1
 polonialidzbark.tk, 1
@@ -107571,7 +108179,6 @@
 poltsamaalasteaed.edu.ee, 1
 poly-daitron.jp, 1
 poly-fast.com, 0
-polybius.io, 1
 polycoise.com, 1
 polycraftual.co.uk, 1
 polyfill.io, 1
@@ -107599,6 +108206,7 @@
 pomadgw.xyz, 1
 pomba.pl, 1
 pombalhome.duckdns.org, 1
+pombas.net, 1
 pomdoc.com, 1
 pomelo-paradigm.com, 1
 pomerol-au-coeur.com, 1
@@ -107646,6 +108254,7 @@
 pontodogame.com.br, 1
 pontosdevista.pt, 1
 pontosnews.gr, 1
+pontotoccountyms.gov, 1
 pontupagina.com, 1
 ponxel.com, 1
 pony-cl.co.jp, 1
@@ -107675,6 +108284,7 @@
 poolsonline.tk, 1
 poolspa.es, 1
 pooltools.net, 1
+poolvilla-margarita.net, 1
 poon.io, 1
 poopa.loan, 1
 poopjournal.rocks, 1
@@ -107742,6 +108352,8 @@
 popporn.com, 1
 poppsylvie.com, 1
 poppylala.com, 1
+popravilam.by, 1
+popravilam.com, 1
 poprostuakwarystyka.pl, 1
 popsync.io, 1
 poptattoo.tk, 1
@@ -107796,7 +108408,6 @@
 porkbun.com, 1
 porkmart.ga, 1
 porkpiesonline.co.nz, 1
-porkunikool.ee, 1
 porlote.com, 1
 porm.club, 1
 porn2019.tk, 1
@@ -107833,6 +108444,7 @@
 pornline.porn, 1
 pornline.sex, 1
 pornloupe.com, 1
+pornmad.com, 1
 pornmax.net, 1
 pornmega.net, 1
 porno-chat.it, 1
@@ -107840,7 +108452,6 @@
 porno-gif.ru, 1
 porno-stars-video.ru, 1
 pornoacademie.com, 1
-pornoanne.com, 1
 pornobilder.pics, 1
 pornoclips.net, 1
 pornodvdkopen.nl, 1
@@ -107914,12 +108525,14 @@
 portalchega.pt, 1
 portaldamizade.com, 1
 portaldocredito.pt, 1
+portaldogremista.com.br, 1
 portaleldense.tk, 1
 portalexpressservices.com, 1
 portalm.tk, 1
 portalmundo.xyz, 1
 portalpandalandia.tk, 1
 portalplatform.net, 0
+portalpower.com.br, 1
 portalsmdc.com, 1
 portalultautv.net, 1
 portalutil.com.br, 1
@@ -107986,7 +108599,6 @@
 porzellantreff.de, 1
 posadalasalbarcas.es, 1
 posaunenchor-senden.de, 1
-posbank.co.uk, 1
 posbich.net, 1
 poseidon-giesing.de, 1
 poseidonwaterproofing.info, 1
@@ -108028,11 +108640,6 @@
 post-office.tk, 1
 post-victoria.com, 1
 post.com.ar, 1
-post.how, 1
-post.icu, 1
-post.io, 1
-post.kim, 1
-post.lol, 1
 post.monster, 1
 post.tf, 1
 post4me.at, 1
@@ -108110,14 +108717,13 @@
 posukovskaschola.cz, 1
 posutochno.ml, 1
 posutochno.tk, 1
-posvq.de, 1
 posylka.de, 1
 pot-au-feu.info, 1
+potadvisor.com, 1
 potatiz.com, 1
 potato.im, 1
 potatochip.tk, 1
 potatodiet.ca, 1
-potatoinspirations.com, 1
 potatolighting.com, 1
 potatopro.com, 1
 potatosouprecipe.ml, 1
@@ -108134,7 +108740,6 @@
 poterepersonale.it, 1
 pothe.com, 1
 pothe.de, 1
-pother.ca, 1
 pothuarivu.tk, 1
 potion.ai, 1
 potionlabs.de, 1
@@ -108155,6 +108760,7 @@
 pottawatomiecountyok.gov, 1
 pottcountyks.gov, 1
 potteranderson.com, 1
+pottercountytexasvotes.gov, 1
 potterish.com, 1
 potterperfect.tk, 1
 pottershouse.tk, 1
@@ -108187,6 +108793,7 @@
 povareshka.tk, 1
 povmacrostabiliteit.nl, 1
 povomo.online, 1
+povzetki-knjig.si, 1
 pow.jp, 1
 powch-dev.com, 1
 powch-dev2.com, 1
@@ -108225,11 +108832,13 @@
 powerhousegym.co, 1
 powerinboxperformance.com, 1
 powerlifting.tk, 1
+powerling.com, 1
 powermeter.at, 1
 powerofsocialtech.com, 1
 powerpadel.com, 1
 powerpc.pt, 1
 powerplantmall.com, 1
+powerplatform.istanbul, 1
 powerplay.com, 1
 powerplayer.tk, 1
 powersaleskc.com, 1
@@ -108269,6 +108878,7 @@
 powershelleando.com.ar, 1
 powershellmagic.com, 1
 powersolusa.com, 1
+powersport.lt, 1
 powersubmitter.tk, 1
 powersurgedatasystems.com, 1
 powertecno.ml, 1
@@ -108281,6 +108891,7 @@
 powerwarranties.com, 1
 powerwellness-korecki.de, 1
 powerwheels.tk, 1
+powerwithpeople.com, 1
 powerzonewrestling.tk, 1
 poylabo.com, 1
 poynter.net, 1
@@ -108361,7 +108972,6 @@
 prachiiimohite.tk, 1
 pracownia-kasi.pl, 1
 pracowniamebli.mazury.pl, 1
-practicalbytes.de, 1
 practicalhomes.com.au, 1
 practicepanther.com, 1
 practisforms.com, 1
@@ -108371,6 +108981,7 @@
 practodev.com, 1
 pracusalev.tk, 1
 pradeek.tk, 1
+pradeepagrawal.com, 1
 pradersystems.ch, 1
 pradmin.ru, 1
 prado.it, 1
@@ -108503,6 +109114,7 @@
 preciofishbone.dk, 1
 preciofishbone.se, 1
 preciofishbone.vn, 1
+preciomedicamentos.es, 1
 preciosmejores.com, 1
 preciousdad.com, 1
 preciouspebble.co.uk, 1
@@ -108525,7 +109137,6 @@
 precisiontechcorp.com, 1
 precisionvaccinations.com, 1
 precutppf.store, 1
-predalco.be, 1
 predator-league.com, 1
 predatoria.tk, 1
 predatorworld.tk, 1
@@ -108546,7 +109157,7 @@
 preescolarsteps.com, 1
 prefabricadosdelcaribe.com, 1
 prefabrik-ev.com, 1
-prefect.cloud, 1
+prefect.cloud, 0
 prefect.io, 1
 prefereal.com, 1
 prefereal.net, 1
@@ -108556,6 +109167,8 @@
 preferredreverse.com, 1
 preferredservice.ca, 1
 prefix.eu, 1
+preflighthomeinspections.com, 1
+prefontaine.name, 1
 pregen.tk, 1
 pregnancytips.tk, 1
 pregnantorcrazy.com, 1
@@ -108568,7 +109181,6 @@
 preisser-it.de, 1
 preisser.it, 1
 prek.se, 1
-prekladyher.eu, 1
 prekladysanca.cz, 1
 prelesti.tk, 1
 prelist.org, 1
@@ -108589,6 +109201,7 @@
 premiachef.com, 1
 premier-dream.co, 1
 premier-podiatry.com, 1
+premieravenue.net, 0
 premieraviation.com, 1
 premierbouncycastles.co.uk, 1
 premiercreditmasters.com, 1
@@ -108622,6 +109235,7 @@
 premiumpeaches.com, 1
 premiumpictureframing.com, 1
 premiumplusiptv.com, 1
+premiumshop24.de, 1
 premiumsmile.ru, 1
 premiumturkey.ml, 1
 premiumweb.co.id, 1
@@ -108658,6 +109272,7 @@
 presbvm.org, 1
 presbyterian-colleges.com, 1
 preschoole.gq, 1
+preschoolteacher.org, 1
 presdesdunes.com, 1
 presence-group.com, 1
 presenciainternet.com, 1
@@ -108692,12 +109307,12 @@
 pressakey.com, 1
 pressakey.de, 1
 presscenter.jp, 1
+presscities.com, 1
 presscommunity.tk, 1
 presscuozzo.com, 1
 presseagrume.net, 1
 pressed.com, 1
 pressemeddelelse.dk, 1
-pressento.com, 1
 pressertech.com, 1
 presses.ch, 0
 pressfreedomtracker.us, 1
@@ -108718,6 +109333,7 @@
 pressureradio.com, 1
 pressurewashers.ml, 1
 pressurewashersandiego.com, 1
+presta-div-airs.fr, 1
 prestaclip.com, 1
 prestaservicesgroup.com, 1
 prestatest.tk, 1
@@ -108750,6 +109366,7 @@
 prettier.fun, 1
 pretty-liars.tk, 1
 pretty.hu, 1
+prettybrowndancers.com, 1
 prettycities.ga, 1
 prettycloud.net, 1
 prettycloud.org, 1
@@ -108758,6 +109375,7 @@
 prettykeira.tk, 1
 prettynode.com, 0
 prettyporn.com, 1
+prettysimplemom.com, 1
 prettytunesapp.com, 1
 pretzelhands.com, 0
 pretzelx.com, 1
@@ -108788,6 +109406,7 @@
 pri.email, 1
 priano.com, 1
 price-tracker.duckdns.org, 1
+priceactionhelp.com, 1
 priceblink.com, 1
 pricefx.com, 1
 pricefx.eu, 1
@@ -108834,7 +109453,9 @@
 primalsurvivor.net, 1
 primananda.com, 1
 primanota.ch, 0
+primariu.com, 1
 primary.health, 1
+primarycareconnect.com.au, 1
 primarysector.space, 1
 primasmartwatches.de, 1
 primates.com, 1
@@ -108843,12 +109464,12 @@
 primbit.ru, 1
 prime-host.ml, 1
 prime42.net, 1
-primeauconsultinggroup.com, 1
 primecreative.com.br, 1
 primecursos.com.br, 1
 primed.io, 1
 primedesigns.com.au, 1
 primeequityproperties.com, 1
+primeexecutiveoffices.com, 1
 primefinance.co.nz, 1
 primefinancial.com.au, 1
 primegiftindia.com, 1
@@ -108871,12 +109492,12 @@
 primetics.co.uk, 0
 primetimepokerparties.com, 1
 primetouchimprovements.com, 1
-primeventos.com, 1
 primeview.com, 1
 primglaz.ru, 1
 primisbank.com, 1
 primitiv.tk, 1
 primitivesbykathy.com, 1
+primo.be, 1
 primordialsnooze.com, 1
 primorus.lt, 1
 primos-tech.com, 1
@@ -108892,7 +109513,6 @@
 princemathew.tk, 1
 princemolak.ga, 1
 princes-st.org.nz, 1
-princesparktouch.com, 1
 princess.software, 1
 princessbackpack.de, 1
 princessefoulard.com, 1
@@ -108927,6 +109547,7 @@
 printableschedule.net, 1
 printbase.cz, 1
 printbigjournal.tk, 1
+printdrivers.org, 1
 printeknologies.com, 1
 printerem.hu, 1
 printerinks.com, 1
@@ -109003,6 +109624,7 @@
 privacy.ax, 1
 privacy.com.de, 1
 privacy.forsale, 1
+privacy.repair, 1
 privacybydesign.foundation, 1
 privacycentermqt.com, 1
 privacychick.com, 1
@@ -109013,6 +109635,7 @@
 privacyfenceanddeckllc.com, 1
 privacyget.tk, 1
 privacyguides.org, 1
+privacyinternational.org, 1
 privacymanatee.com, 1
 privacynow.eu, 1
 privacypro.io, 1
@@ -109045,11 +109668,11 @@
 privategiant.com, 1
 privatehd.to, 1
 privateideas.de, 1
+privateinvestigatoredu.org, 1
 privatejetschina.com, 1
 privatejetsdallas.com, 1
 privatejetsteterboro.com, 1
 privatejosh.cf, 1
-privatelabelsupplements.org, 1
 privatelist.io, 1
 privatemillionaire.com, 1
 privatenebula.eu, 1
@@ -109060,10 +109683,8 @@
 privateservice.cz, 1
 privatetrainingonline.se, 1
 privatevpn.com, 1
-privateweb.top, 1
 privatfrei.de, 1
 privatmeet.com, 1
-privatpatient-krankenhaus.de, 1
 privatstunden.express, 1
 privc.io, 1
 privcloud.cc, 1
@@ -109101,7 +109722,7 @@
 pro-alter.ch, 1
 pro-ben.sk, 1
 pro-bike.ro, 1
-pro-box.be, 0
+pro-box.be, 1
 pro-c.me, 1
 pro-co.at, 1
 pro-esb.net, 1
@@ -109128,7 +109749,6 @@
 pro-wiert.pl, 1
 pro.co.id, 1
 pro.co.il, 1
-pro3ozonio.com.br, 1
 pro4x4.com.ua, 0
 proacksecurity.com, 1
 proacousticsusa.com, 1
@@ -109147,6 +109767,7 @@
 probateandplanning.com, 1
 probationforms.com, 1
 probationnotes.com, 1
+probationofficeredu.org, 1
 probazen.com, 1
 probely.com, 1
 probiller.com, 1
@@ -109182,7 +109803,6 @@
 procode.ch, 1
 procode.gq, 1
 procomservices.com, 1
-proconjcb.com, 1
 procor.com, 1
 procore.com, 1
 procore.space, 1
@@ -109252,7 +109872,6 @@
 produkttest-online.com, 1
 produktum.eu, 1
 produra.nl, 1
-produtoitaliano.com.br, 1
 prodwa.re, 1
 prodware.fr, 1
 prodware.nl, 1
@@ -109262,6 +109881,7 @@
 proemployeeprotection.com, 1
 proemployeeprotection.net, 1
 proesb.net, 1
+proeski.com, 0
 prof, 1
 prof-toplivo.ru, 1
 prof-waldowski.de, 1
@@ -109350,7 +109970,6 @@
 proger.ml, 1
 progeste.pt, 1
 progettodighe.it, 1
-progettoforme.eu, 1
 progettograjau.com, 1
 progettonazionale.it, 1
 progezi.com, 1
@@ -109366,9 +109985,7 @@
 prograce.info, 1
 program-ace.com, 1
 program-and.work, 1
-programadaaninha.com.br, 1
 programador-web-freelance.es, 1
-programadorwp.com, 1
 programando.tk, 1
 programarya.com, 1
 programaticon.tk, 1
@@ -109461,6 +110078,7 @@
 projectplacebo.ca, 1
 projects.nl.eu.org, 1
 projectsafechildhood.gov, 1
+projectsegfau.lt, 1
 projectskynet.org, 1
 projectsmart.co.uk, 1
 projectstem.org, 1
@@ -109468,7 +110086,6 @@
 projectte.ch, 1
 projecttopics.org, 0
 projectunity.io, 1
-projectvault.ovh, 1
 projectveritasaction.com, 0
 projectview.ai, 1
 projectweb.gr, 1
@@ -109558,7 +110175,6 @@
 promoteiq.com, 0
 promoterms.com.au, 1
 promoteroute.com, 1
-promotioncentre.co.uk, 1
 promotiongeeks.com, 0
 promotionnissanauto.com, 1
 promotionvillanakarin.com, 1
@@ -109570,6 +110186,7 @@
 pron-hubs.com, 1
 pron4ik.gq, 1
 pronandi.tk, 1
+pronikoho.cz, 1
 pronto-intervento-fognature.it, 1
 pronto-intervento.net, 1
 prontointerventofognature.roma.it, 1
@@ -109666,8 +110283,7 @@
 prosperafrica.gov, 1
 prosperbot.com, 1
 prosperfit.com, 1
-prosperfit.org, 0
-prosperi.academy, 1
+prosperi.academy, 0
 prosperityprojectaz.org, 1
 prosperoarts.com.au, 1
 prosperontheweb.com, 1
@@ -109705,6 +110321,7 @@
 prostoskidki.ml, 1
 prostozaim.ml, 1
 prostye-recepty.com, 1
+prosurf.com.hr, 1
 prosurveillancegear.com, 1
 prosvet.tk, 1
 prosveta1901.tk, 1
@@ -109803,6 +110420,7 @@
 provide-vr2003-1plc.com, 1
 provide-vr2003-1plc.de, 1
 provide-vr2004-1plc.de, 1
+provide-vr2005-1plc.de, 1
 provide-vr2006-1plc.de, 1
 provide-your-image.de, 1
 providence.org, 1
@@ -109817,11 +110435,13 @@
 provisionircd.tk, 1
 provitec.com, 1
 provlas.se, 1
+proweb-design.no, 1
 prowindow.sk, 1
 prowise.com, 1
 prowpcare.com, 1
 prowrestlingevents.tk, 1
 prox.ru, 1
+proxaccess.com, 1
 proxfile.fun, 1
 proximasrl.eu, 1
 proximity.ga, 1
@@ -109830,6 +110450,7 @@
 proximoconcurso.com.br, 1
 proxirealtime.com, 1
 proxmox-airsonic.tk, 1
+proxy-bay.biz, 1
 proxy-bay.cam, 1
 proxy-bay.cc, 1
 proxy-bay.com, 1
@@ -109849,6 +110470,7 @@
 proxyhub.eu.org, 1
 proxytool.cf, 1
 proyectafengshui.com, 1
+proyectofreestyle.com, 1
 proyectosinelec.com, 1
 proyectostep.tk, 1
 prozac20mg.cf, 1
@@ -109896,7 +110518,6 @@
 przeprowadzki-warszawskie.pl, 1
 przerabianiezdjec.pl, 1
 przyciemnianieszyb.waw.pl, 1
-przyjacielkobiet.pl, 1
 ps-clinic.jp, 1
 ps-playback.com, 1
 ps-provider.co.jp, 1
@@ -109910,7 +110531,6 @@
 ps2online.tk, 1
 ps3419.org, 1
 ps4all.nl, 1
-ps5.nl, 1
 ps5ssd.com, 1
 ps8318.com, 1
 psa-travel-care.com, 1
@@ -110057,6 +110677,7 @@
 psychicfairnetwork.gq, 1
 psychicfairnetwork.ml, 1
 psychiq.com, 1
+psychische-systeme.de, 1
 psycho-familles.com, 1
 psycho-lobby.fr, 1
 psycho-news.tk, 1
@@ -110068,12 +110689,15 @@
 psychologic.tk, 1
 psychologie-hofner.at, 1
 psychologischepraktijkphilips.nl, 1
+psychologist-license.com, 1
 psychologist.ga, 1
 psychologlodz.info, 1
 psychologue-a-paris.com, 1
 psychologue-grenoble.org, 1
 psychology-ifk.com, 1
+psychologydegreeguide.org, 1
 psychologytests.tk, 1
+psychometric.careers, 1
 psychometrictest.ca, 1
 psychometrictest.co.il, 1
 psychometrictests.ca, 1
@@ -110201,12 +110825,15 @@
 publicdomainartwork.com, 0
 publichealth.cf, 1
 publichealth.gq, 1
+publichealthcareeredu.org, 1
 publichealthdegrees.org, 1
+publichealthonline.org, 1
 publicholidays.im, 1
 publicintegrity.org, 1
 publicintelligence.net, 1
 publicishealth.es, 1
 publicitar.tk, 1
+publicmarket.com, 1
 publicnode.com, 1
 publicnoticesbaycountyfl.gov, 1
 publicpartnerships.com, 1
@@ -110216,6 +110843,7 @@
 publicserviceloanforgiveness.gov, 1
 publicspeakingcamps.com, 1
 publicsuffix.org, 1
+publictechsupport.org, 1
 publictotem.ru, 1
 publicvoid.ga, 1
 publicwhip.org.uk, 1
@@ -110515,8 +111143,10 @@
 putnamvalley.gov, 1
 putnik.tk, 1
 putokaz.eu, 0
+putomani.rs, 1
 putre.io, 1
 putrock.be, 1
+putstrategii.ru, 0
 putty.org, 1
 puttymonos.club, 1
 puttymonos.work, 1
@@ -110538,7 +111168,6 @@
 puzzles-to-print.com, 1
 puzzleswaps.com, 1
 puzzyfun.net, 1
-pv-golf.com, 1
 pv-paderborn-now.de, 1
 pvalaw.com, 1
 pvamg.org, 1
@@ -110549,6 +111178,7 @@
 pvda.nl, 1
 pvdplanet.tk, 1
 pvebuilds.xyz, 1
+pvgvethospital.co.uk, 1
 pvh-membrany.ru, 1
 pvhe.pl, 1
 pvideo.cz, 1
@@ -110580,7 +111210,6 @@
 pwdsafe.com, 0
 pwe.vision, 1
 pwg-see.de, 1
-pwgenerator.net, 1
 pwn.fi, 1
 pwnedpass.tk, 1
 pwneytelecom.com, 1
@@ -110588,6 +111217,7 @@
 pwoss.xyz, 1
 pws.my, 1
 pwsplash.com, 1
+pwss.gov.au, 1
 pwud.ga, 1
 pxagency.fr, 1
 pxc-coding.com, 1
@@ -110659,6 +111289,7 @@
 pyxisfreelance.com.au, 1
 pyxo.net, 0
 pyxyp.com, 1
+pzmetallbau.de, 1
 pzpittsburgh.com, 1
 pzsearch.nl, 1
 pzu-masa.pl, 1
@@ -110728,10 +111359,8 @@
 qbd.eu, 1
 qbicheating.co.uk, 1
 qbicwashrooms.co.uk, 1
-qbit.website, 1
 qbrix.dk, 1
 qbstores.com, 1
-qbtechs.com, 1
 qbug.cf, 1
 qc.immo, 1
 qc.search.yahoo.com, 0
@@ -110752,7 +111381,6 @@
 qcstyleacademy.com, 0
 qctimes.com, 1
 qctravelschool.com, 0
-qcuarto.com.py, 1
 qcwz.com, 1
 qd6kz.net, 1
 qdabogados.com, 1
@@ -110761,7 +111389,6 @@
 qdmnotizie.it, 1
 qdon.space, 1
 qdqlh.cn, 1
-qdrama.top, 1
 qdrat.ml, 1
 qdrcst.com, 1
 qdsgroup.com, 1
@@ -110798,7 +111425,6 @@
 qicsystems.com, 1
 qifu.me, 1
 qifu.org.cn, 1
-qigehl.com, 1
 qihalu.com, 1
 qihl.gg, 1
 qike.tk, 1
@@ -110828,7 +111454,6 @@
 qiu006.com, 1
 qivonline.pt, 1
 qiwi.be, 1
-qiwi.cash, 1
 qix.ca, 1
 qixbit.com, 1
 qixi.biz, 1
@@ -110849,6 +111474,7 @@
 qlrace.com, 0
 qm-marzahnnordwest.de, 1
 qm8828.net, 1
+qm8838.net, 1
 qm8888.net, 1
 qmarket.tk, 1
 qmdcoin.com, 1
@@ -110903,17 +111529,18 @@
 qraa.qld.gov.au, 1
 qrara.net, 1
 qrbird.com, 1
+qrcode.es, 1
 qrcontagion.com, 1
 qrd.by, 1
-qredo.com, 0
 qrlab.biz, 1
 qrlab.ch, 1
 qrlab.de, 1
 qrlab.eu, 1
 qrlab.info, 1
 qrlab.net, 1
-qrlfinancial.com, 0
+qrlfinancial.com, 1
 qrpatrol.com, 1
+qrplanet.com, 1
 qrpth.eu, 1
 qruiser.com, 1
 qrz.one, 1
@@ -111012,6 +111639,7 @@
 quanquan.com.cn, 1
 quanquan.cyou, 1
 quanquan.space, 1
+quantability.net, 1
 quantaloupe.tech, 1
 quantalytics.com, 1
 quantaservices.com, 1
@@ -111182,6 +111810,7 @@
 questsocial.it, 1
 questsys.com, 1
 questthree.com, 1
+quesys.com, 1
 quetiapine.life, 1
 quetico.tk, 1
 queup.net, 1
@@ -111386,7 +112015,6 @@
 qx.se, 1
 qxazusa.xyz, 1
 qxin.info, 1
-qxpress.com.py, 0
 qxq.moe, 1
 qxzg.org, 1
 qxzg.xyz, 1
@@ -111446,7 +112074,6 @@
 r9728.co, 1
 ra-joergensen.de, 1
 ra-jurochnik.de, 0
-ra-schaal.de, 1
 ra-studio.ml, 1
 ra.vc, 1
 ra3y.xyz, 1
@@ -111530,6 +112157,7 @@
 racunalo.com, 1
 racunovodstvo-prina.si, 1
 rad-route.de, 1
+rad.plus, 1
 rad2share.com, 1
 rada-group.eu, 1
 radaar.io, 1
@@ -111568,6 +112196,7 @@
 radharanikijay.tk, 1
 radiadores.tk, 1
 radiadoresalternativos.cl, 1
+radiadoressoares.com.br, 1
 radialplus.tk, 1
 radianceswimwear.com, 1
 radiantawards.com, 1
@@ -111672,6 +112301,7 @@
 radioibiapina.tk, 1
 radioilusion.es, 1
 radioilusiones.tk, 1
+radioiman.net, 1
 radiojackienorth.tk, 1
 radiojeneverstoker.tk, 1
 radioknop.nl, 1
@@ -111684,6 +112314,7 @@
 radiolibertad.tk, 1
 radioliberty.ga, 1
 radiolla.com, 1
+radiolodz.pl, 1
 radiom.fr, 1
 radiomacuto.gq, 1
 radiomagicafm.tk, 1
@@ -111710,7 +112341,6 @@
 radioombo.xyz, 1
 radioonline.com, 1
 radioparquesur.tk, 1
-radioparty.pl, 1
 radiopatapoe.nl, 1
 radioperfect.tk, 1
 radiopharereims.tk, 1
@@ -111723,6 +112353,7 @@
 radior9.it, 1
 radioradicchio.it, 1
 radiorainbow.tk, 1
+radioranking.de, 1
 radiorecord.ml, 1
 radioregional.pt, 1
 radioremix80.tk, 1
@@ -111792,7 +112423,6 @@
 radyogemisi.com, 1
 radzikow.ski, 1
 raeder-test.azurewebsites.net, 1
-raestingar.is, 1
 raeu.me, 1
 raeven.nl, 0
 raevinnd.com, 1
@@ -111802,6 +112432,7 @@
 rafaelortiz.es, 1
 rafaelsobis.tk, 1
 rafaeltuber.cf, 1
+rafalkukla.com, 1
 rafaprialv.com, 1
 rafaroca.net, 1
 rafas.com.tr, 1
@@ -111924,7 +112555,6 @@
 raintreatment.ga, 1
 rainturtle.com, 1
 rainuk.com, 1
-rainvape.com, 1
 rainville.me, 1
 rainway.io, 1
 raipet.no-ip.biz, 1
@@ -111966,7 +112596,6 @@
 rakeshkaryana.com, 1
 raketa.travel, 1
 raketaholst.com.ua, 1
-raketaro.de, 1
 raketenfred.de, 1
 raketenwolke.de, 1
 rakibzashup.ml, 1
@@ -112082,6 +112711,7 @@
 randomactsofkindness.org, 1
 randomadversary.com, 1
 randomarticle.ml, 1
+randombig.cat, 1
 randombit.eu, 0
 randombooks.gq, 1
 randombrainwave.cf, 1
@@ -112127,6 +112757,7 @@
 rangeweb.ga, 1
 rangsmo.se, 0
 rangzol.now.sh, 1
+raniermn.gov, 1
 ranjanbiswas.in, 1
 ranjanbiswas.net, 1
 ranjeetmehta.tk, 1
@@ -112181,6 +112812,7 @@
 raphaelmoura.ddns.net, 1
 raphaelschneider.de, 1
 raphrfg.com, 1
+rapid-care.com, 1
 rapidapp.io, 1
 rapidcenter.tk, 1
 rapidcityjournal.com, 1
@@ -112227,6 +112859,7 @@
 rarediseaseday.org, 1
 rarefish.tk, 1
 raregems.io, 1
+rarehi.com, 1
 rarename.tk, 1
 rarity.tools, 1
 raritysniper.com, 1
@@ -112260,6 +112893,7 @@
 raspitec.ddns.net, 1
 rassadacvetov.com, 0
 rasset.ie, 1
+rassistem.rs, 1
 rassro.sk, 1
 rastabooks.ga, 1
 rasteniem.ru, 1
@@ -112271,7 +112905,7 @@
 ratasdesign.com, 1
 ratatosk.net, 1
 ratcliff.io, 1
-ratd.net, 0
+ratd.net, 1
 rate.is, 1
 ratebridge.com, 1
 rateddomain.ml, 1
@@ -112282,7 +112916,6 @@
 rates.ca, 1
 ratespy.com, 1
 ratethechief.com, 1
-ratgeber-guide.de, 1
 rathbonesonline.com, 1
 rathgeb.org, 1
 rathmann-couture.de, 1
@@ -112296,12 +112929,12 @@
 rationalism.com, 1
 rationalops.com, 1
 ratirl.be, 1
-ratman.xyz, 1
 ratsmicedormice.com, 1
 rattattees.com, 1
 rattenkot.io, 1
 ratujemyzwierzaki.net, 1
 ratujmydzikiekoty.org, 1
+ratunek.com.pl, 1
 ratusha.ml, 1
 rauchfrei-info.de, 1
 raulmalea.ro, 1
@@ -112347,7 +112980,6 @@
 ravimiamet.ee, 0
 ravimiregister.ee, 1
 ravinala-airports.aero, 1
-ravindran.me, 1
 raviparekh.co.uk, 1
 ravis.org, 1
 ravkavonline.co.il, 1
@@ -112481,6 +113113,7 @@
 rcbanger.tk, 1
 rcbconlinebanking.com, 1
 rccars.info, 1
+rccgstrongtowerng.org, 1
 rccom.ru, 1
 rccsc.org, 1
 rcd.cz, 0
@@ -112491,6 +113124,7 @@
 rcfl.gov, 1
 rcforex.com, 0
 rcgoncalves.pt, 1
+rch-us.info, 1
 rchavez.site, 1
 rchrdsn.uk, 1
 rcips.ky, 1
@@ -112590,6 +113224,7 @@
 reachhead.com, 1
 reachley.net, 1
 reachout-ghana.com, 1
+reachout2.nl, 1
 reachpersonalgrowth.com, 1
 reachrss.com, 1
 reachum.com, 1
@@ -112640,6 +113275,7 @@
 readyclassroomcentral.com, 1
 readycolorado.gov, 1
 readydedis.com, 1
+readyeutaw.gov, 1
 readyfiction.com, 1
 readync.gov, 1
 readyrosie.com, 1
@@ -112652,11 +113288,9 @@
 readytongue.com, 0
 readywithresourcestn.gov, 1
 reaff.com, 1
-reaforms.com.au, 1
 reaganlibrary.gov, 1
 reakcjonista.tk, 1
 reaksi.id, 1
-real-digital.co.uk, 1
 real-it.nl, 1
 real-linux.tk, 1
 real-neo.me, 1
@@ -112737,6 +113371,7 @@
 realitykings.com, 1
 realitypanel.com, 1
 realityrecoverycollective.tk, 1
+realitystarfacts.com, 0
 realitystudio.org, 1
 realitytoday.cf, 1
 realives.com, 1
@@ -112902,6 +113537,8 @@
 reckner.com, 1
 reckoning.gq, 1
 reckontalk.com, 1
+reckord-bau.de, 1
+reckord.org, 1
 reclaimmysparkle.com, 1
 reclaimyourface.eu, 1
 reclamewereldsmp.eu, 1
@@ -112967,14 +113604,13 @@
 recursosimbiopos.com, 1
 recursosmi.com.br, 1
 recursosrev.tk, 1
-recycle-plant.com, 1
+recycle-plant.com, 0
 recycle.cf, 1
 recyclebc.ca, 1
 recyclebin.email, 1
 recycledinorsett.co.uk, 1
 recycledinorsett.com, 1
 recycling.tk, 1
-recyclingsystems.de, 1
 recyklace-prochazka.cz, 1
 recyklacekovu.cz, 1
 red-button.hu, 1
@@ -112998,6 +113634,7 @@
 redaitpro.com, 1
 redarx.com, 1
 redballoonsecurity.com, 1
+redbaronpoolsupplies.com.au, 1
 redcabbage.tk, 1
 redcanary.co, 1
 redcandycane.tk, 1
@@ -113047,6 +113684,7 @@
 redearsliderturtles.com, 1
 redecsirt.pt, 1
 rededca.com, 1
+rededecuidadores.pt, 1
 redeemingbeautyminerals.com, 1
 redefertig.de, 1
 redefineyounow.com, 1
@@ -113075,6 +113713,7 @@
 redhackerteam.tk, 1
 redhandedsecurity.com.au, 1
 redhawkwa.com, 1
+redhead.id.au, 1
 redheadfuck.com, 1
 redheeler.com.br, 1
 redhillboardriders.tk, 1
@@ -113159,6 +113798,7 @@
 redstarline.be, 1
 redstarpictures.tk, 1
 redstarsurf.com, 1
+redstarwholesale.co.za, 1
 redstonehomekits.com, 1
 redstoner.com, 1
 redstonium.net, 1
@@ -113171,7 +113811,6 @@
 redtrig.ca, 1
 redtrig.com, 1
 redtsar2000papers.tk, 1
-redtubepornhd.com, 1
 redtubs.tk, 1
 redtune.jp, 1
 reducealcoholism.com, 1
@@ -113179,7 +113818,6 @@
 reducto.tk, 1
 reduktorntc-k.com.ua, 1
 redunion.tk, 1
-reduxlineberryfactorycart.com, 1
 redvent.ru, 1
 redwater.co.uk, 1
 redwaymu.cf, 1
@@ -113233,6 +113871,7 @@
 reference.be, 1
 referencement-local.info, 1
 referenceur.be, 1
+referendumcouncil.org.au, 1
 referrer.website, 1
 refertimacuan.com, 1
 reffect.io, 1
@@ -113359,6 +113998,7 @@
 regentinvest.com, 1
 regentmovies.tk, 1
 regex101.com, 1
+regg.ae, 1
 reggaesumfest.com, 1
 reggaexplosion.tk, 1
 reggea.tk, 1
@@ -113416,10 +114056,7 @@
 regression.tk, 1
 regsec.com, 1
 regtech.tk, 1
-regtify.co.uk, 1
 regtify.com, 1
-regtify.com.cy, 1
-regtify.eu, 1
 regtify.org, 1
 regtransfers.co.uk, 1
 reguladordevoltagem.com.br, 1
@@ -113434,6 +114071,7 @@
 rehabthailand.com, 1
 rehabthailand.org, 1
 rehasport-informationen.de, 1
+rehasport-marketing.de, 1
 rehau-ua.com, 1
 reher.pro, 1
 rehobothma.gov, 1
@@ -113480,7 +114118,6 @@
 reinencaressa.be, 1
 reiner-h.de, 1
 reinfer.io, 1
-reingroup.ru, 1
 reinhardtsgermanautorepair.com, 1
 reinhardtsgrimma.de, 1
 reinhart-auto.cz, 1
@@ -113506,7 +114143,6 @@
 reishikitchen.com, 1
 reishiplantkitchen.co.uk, 1
 reishiplantkitchen.com, 1
-reislustigeuropa.nl, 1
 reispower.nl, 1
 reisslittle.com, 1
 reissnehme.com, 1
@@ -113524,6 +114160,7 @@
 rejective.tk, 1
 rejects.email, 1
 rejido.tk, 1
+rejpaci.cz, 0
 rejushiiplotter.ru, 1
 rejuvetclinicpromotion.com, 1
 rekka-j.com, 1
@@ -113567,7 +114204,6 @@
 relationsproblem.nu, 1
 relatory.nl, 1
 relatosypoesias.tk, 1
-relax.hn, 1
 relaxcenternederland.nl, 1
 relaxdata.eu, 1
 relaxhavefun.com, 1
@@ -113627,7 +114263,6 @@
 remain.london, 1
 remake-projects.tk, 1
 remambo.jp, 1
-remarkmart.com, 1
 remateszarate.cl, 0
 remax-direct.co.il, 1
 remax.at, 1
@@ -113646,6 +114281,7 @@
 rememberingjordan.org, 1
 remembermidi.sytes.net, 1
 rememberthemilk.com, 0
+remembervets.com, 1
 remennik.tk, 1
 remesal.es, 1
 remessaonline.com.br, 1
@@ -113672,6 +114308,7 @@
 remix64.com, 1
 remiz.org, 1
 remmik.com, 1
+remo.health, 1
 remodelhealth.com, 1
 remodelwithlegacy.com, 1
 remonline.ru, 1
@@ -113693,6 +114330,8 @@
 remontpc.tk, 1
 remontportal.tk, 1
 remontstrong.ru, 1
+remonttikauppa.com, 1
+remontuks.ru, 1
 remora.tk, 1
 remorse.ga, 1
 remote-health.net, 1
@@ -113713,6 +114352,7 @@
 removalcellulite.com, 1
 removebg.in, 1
 removedrepo.com, 1
+removerz.ca, 1
 remptmotors.com, 0
 remrol.ru, 0
 remservices.ky, 1
@@ -113739,9 +114379,11 @@
 renderatelier.com, 1
 renderferma-cash.tk, 1
 renderloop.com, 1
+renderstack.io, 1
 renderworld.tk, 1
 renderzone.tk, 1
 rendez-vous.gq, 1
+rendezvous-cafe.co.uk, 1
 rendre-service.ch, 0
 rendutowers.org.au, 1
 rene-eizenhoefer.de, 1
@@ -113763,7 +114405,6 @@
 renewablekids.tk, 1
 renewablemaine.org, 1
 renewcleaningservices.net, 1
-renewedfreedomcenter.com, 0
 renewgsa.com, 1
 renewmedispa.com, 0
 renewpfc.com, 1
@@ -113811,6 +114452,7 @@
 rent-a-coder.de, 1
 rent-car.ga, 1
 rent-to-own-home.ga, 1
+rent.ie, 1
 rent.men, 1
 rentacar.name.tr, 1
 rentacaramerica.com, 1
@@ -113822,7 +114464,7 @@
 rentandamiosycasetas.com, 1
 rentandgoandalo.it, 1
 rentandgofalcade.it, 1
-rentaplant.hr, 1
+rentandgosestriere.it, 1
 rentasweb.gob.ar, 1
 rentberry.com, 1
 rentbrowser.com, 1
@@ -113842,7 +114484,6 @@
 rentourhomeinprovence.com, 1
 rentsbg.com, 1
 rentsucks.com, 1
-renu.ac.ug, 1
 renuo.ch, 1
 renusoni.ga, 1
 renusson.com, 1
@@ -113854,7 +114495,7 @@
 renxinge.cn, 0
 renyiyou.com, 1
 reo.gov, 0
-reolestate.com, 1
+reodar.com, 1
 reorz.com, 0
 reox.at, 1
 repaircafe-hanau.de, 1
@@ -113872,7 +114513,6 @@
 reparacionmovilesmurcia.com, 1
 repararmac.eu, 1
 reparatiecrm.nl, 1
-reparatii-injectoare-buzau.com, 1
 reparation-traceur.com, 1
 reparaturcafe-pfullendorf.de, 1
 reparizy.com, 1
@@ -113960,6 +114600,7 @@
 reroboto.eu, 1
 reroboto.net, 1
 reroboto.org, 1
+reroboto.social, 1
 reroll.tv, 1
 rerubabs.nl, 1
 rerumu.com, 1
@@ -113988,12 +114629,10 @@
 reseau007.tk, 1
 resellerprogram.ga, 1
 resellrefreshrepeat.com, 1
-reservabiosferavalledelcabriel.com, 1
 reservadecitasonline.com, 1
 reservar-un-hotel.com, 1
 reservationsair.com, 1
 reservetonshift.com, 1
-reservevaparks.com, 1
 reservilaisliitto.fi, 1
 resfriatech.com.br, 1
 reshebnik.ml, 1
@@ -114065,6 +114704,7 @@
 respinar.com, 1
 respiradores.tk, 1
 respiranto.de, 1
+respiratorytherapistlicense.com, 1
 respire-yoga.fr, 1
 respokare.com, 1
 respon.jp, 1
@@ -114088,8 +114728,6 @@
 responsivepaper.com, 1
 respostas.com.br, 1
 ressl.ch, 1
-resslovaci.net, 1
-ressourceportal.dk, 1
 ressourcesindivior.com, 1
 ressourcesleopharma.fr, 1
 ressupply.com, 1
@@ -114172,7 +114810,6 @@
 retefrati.it, 0
 reteteaz.net, 1
 retetenoi.net, 1
-retetop95.it, 1
 reth.ch, 1
 rethymnorooms.tk, 1
 reticket.me, 1
@@ -114221,12 +114858,13 @@
 retronet.nl, 1
 retropack.org, 1
 retropedal.tk, 1
-retrophoto.fr, 1
+retrophoto.fr, 0
 retropixel.ga, 1
 retroride.cz, 1
 retroroundup.com, 0
 retroskoter.tk, 1
 retroslave.ga, 1
+retroterminal.com, 1
 retrotown.ws, 1
 retrotubesporn.com, 1
 retrovideospiele.com, 1
@@ -114382,7 +115020,6 @@
 rewebsitepro.com, 1
 rewirenewsgroup.com, 1
 rewolucja1905.pl, 1
-reworktraining.org, 1
 rewrite3.com, 1
 rewriteguru.com, 1
 rewritertools.com, 1
@@ -114401,6 +115038,7 @@
 rexograph.com, 1
 rexskz.info, 1
 rextomanawato4.tk, 1
+rexuy.com, 1
 rexvin.co.id, 1
 rexxworld.com, 1
 reyesfernando.com, 1
@@ -114431,8 +115069,6 @@
 rfg.ru, 1
 rfgadvisory.com, 0
 rfgadvisorywealth.com, 0
-rfid-schutz.org, 1
-rfid-sicherheit.com, 0
 rfn.cz, 1
 rfnews.tk, 1
 rfoard.com, 1
@@ -114458,7 +115094,6 @@
 rghost.net, 1
 rgpd-elearning.com, 1
 rgpdkit.io, 1
-rgraph.net, 1
 rgservice.ml, 1
 rgtonline.com, 1
 rgz.ee, 1
@@ -114538,7 +115173,6 @@
 rian.gq, 1
 riared.net, 1
 riared.org, 1
-riaszto-szereles.eu, 1
 riaudetil.com, 1
 rib-dinslaken.com, 1
 rib-dinslaken.de, 1
@@ -114577,7 +115211,6 @@
 riceadvice.info, 1
 ricecountymn.gov, 1
 riceonline.ir, 1
-ricettesemplicieveloci.altervista.org, 1
 rich-good.com, 0
 richadams.me, 1
 richandsteph.co.uk, 1
@@ -114630,6 +115263,7 @@
 richini.com, 1
 richlandcenterwi.gov, 1
 richlandcountyoh.gov, 1
+richlandcountywi.gov, 1
 richlj.com, 1
 richlj.net, 1
 richlogic.blog, 1
@@ -114724,10 +115358,12 @@
 rightfold.io, 1
 rightfulowner.tk, 1
 rightlaw.nz, 1
+rightmovecanada.com, 1
 rightnetworks.com, 1
 rightreview.co.uk, 1
 rights.ninja, 1
 rightschool.cf, 1
+rightship.com, 1
 rightsizingcalculator.com, 1
 rightsolutionplumbing.com.au, 1
 rightstuff.link, 1
@@ -114735,7 +115371,7 @@
 rightthingrecruit.com, 1
 righttolife.org.uk, 1
 rigidlandscapes.com.au, 1
-rigintegrity.com, 1
+rigidrobotics.com, 1
 rihappy.tk, 1
 riietr.com, 1
 riigikogu.ee, 0
@@ -114778,8 +115414,10 @@
 rimorrecherche.nl, 1
 rimzim.tk, 1
 rinabhabra.com, 1
+rincat.ch, 1
 rincon-nsn.gov, 1
 rincondenoticas.com, 1
+rinconga.gov, 1
 rineke.art, 1
 ring.com, 1
 ringarang.com, 1
@@ -114794,7 +115432,6 @@
 rinka.moe, 1
 rinkhill.com, 1
 rinko-mama.com, 1
-rino.io, 1
 rinoartdistrict.org, 1
 rinsbacherhof.com, 1
 rinskeshomepage.tk, 1
@@ -114838,10 +115475,10 @@
 ripplenews.co, 1
 ripplenews.io, 1
 ripplenews.live, 1
-ripplenews.media, 1
 ripplenews.news, 1
 ripplenews.online, 1
 ripplenews.world, 1
+rippling.com, 1
 riproduzionichiavi.it, 1
 riptidetech.io, 1
 riri-tendedasole.it, 1
@@ -114868,13 +115505,13 @@
 riseproject.ro, 1
 riserehberi.com, 1
 riseshost.ml, 1
-risesmartdev.com, 1
 riseup.net, 1
 riseupelectrical.com.au, 1
 rishabh.me, 1
 rishav.top, 1
 risheriffs.gov, 1
 rishikeshan.com, 1
+rishteykaro.com, 1
 risi-china.com, 1
 risilience.com, 1
 rising-cubers.tk, 1
@@ -114882,8 +115519,8 @@
 risitas.com.ar, 1
 riskconsole.com, 1
 riskiq.com, 1
-riskiwah.xyz, 1
 riskmitigation.ch, 1
+riskstudio.com, 1
 risky.services, 1
 riskymeals.com, 1
 risman.tk, 1
@@ -114935,6 +115572,7 @@
 ritzcarltonclub.com, 1
 ritzlux.com.tw, 1
 rivaforum.de, 1
+rivago.tk, 1
 rivals.space, 1
 rivalsa.cn, 1
 rivalsa.net, 1
@@ -114968,6 +115606,7 @@
 riverweb.gr, 1
 riverwoods.gov, 1
 rivian.com, 1
+rivian.software, 1
 rivierasaints.ch, 0
 rivingtongreenwich.co.uk, 1
 rivlo.com, 1
@@ -114982,6 +115621,7 @@
 rixzz.ovh, 1
 riyono.com, 1
 rizaderindag.com, 1
+rizalpalawan.gov.ph, 1
 rizehaberleri.tk, 1
 rizer.io, 0
 rizhik.com.ua, 1
@@ -115014,6 +115654,7 @@
 rl3.de, 1
 rlahaise.nl, 0
 rlalique.com, 1
+rland.ph, 1
 rlcosmeticsurgery.com, 1
 rld.org, 1
 rlds.ch, 0
@@ -115041,10 +115682,13 @@
 rmi.com.ar, 1
 rmit.ee, 1
 rmit.me, 1
+rmitobacco.com, 1
+rml-liege.be, 1
 rmm-i.com, 1
 rmmanfredi.com, 1
 rmol.tk, 1
 rmp-gebaeudedienste.de, 1
+rmrcapitalinc.com, 1
 rmrig.org, 1
 rms.com, 1
 rms.sexy, 1
@@ -115063,7 +115707,7 @@
 rn29.me, 1
 rnag.ie, 1
 rnb-storenbau.ch, 1
-rncc.mx, 1
+rnbjunk.com, 1
 rndtool.info, 1
 rnews.tk, 1
 rngmeme.com, 1
@@ -115071,6 +115715,8 @@
 rnmkrs.co, 1
 rnoax.com, 1
 rntgroup.com, 1
+rntomsn.com, 1
+rntomsnedu.org, 1
 rnz3.net, 1
 ro.co, 1
 ro.exchange, 1
@@ -115135,6 +115781,7 @@
 robertayamashita.com.br, 1
 robertbln.com, 1
 robertcspies.de, 1
+robertdunn.net, 1
 robertg.me, 1
 robertglastra.com, 1
 robertgonzalez.tk, 1
@@ -115146,6 +115793,7 @@
 robertmusil.ml, 1
 robertocasares.no-ip.biz, 0
 robertodegroot.tk, 1
+robertodivirgilio.it, 1
 robertoentringer.com, 0
 robertof.ovh, 1
 robertoggarcia.tk, 1
@@ -115181,6 +115829,7 @@
 robinlinden.eu, 1
 robinloeffel.ch, 1
 robinminto.com, 1
+robinmurez.com, 1
 robinsoncontracting.ca, 1
 robinsonphotos.uk, 1
 robinsonstrategy.com, 1
@@ -115271,6 +115920,7 @@
 rockbridge.tk, 1
 rockcelebrities.net, 1
 rockcellar.ch, 1
+rockchiprescue.ca, 1
 rockcountyne.gov, 1
 rockcult.ru, 1
 rockenfolie.com, 0
@@ -115376,7 +116026,6 @@
 rodrigoarriaran.com, 1
 rodrigocarvalho.blog.br, 1
 rodrigodematos.tk, 1
-rodrigosalascolque.com, 1
 rodriguezsanchezabogados.es, 1
 rody-design.com, 1
 roeckx.be, 1
@@ -115459,7 +116108,6 @@
 rojavainformationcenter.com, 1
 rojiblancos.tk, 1
 rojotv.tk, 1
-roka9.de, 1
 rokade.info, 1
 rokass.nl, 1
 rokettube.tk, 1
@@ -115498,7 +116146,6 @@
 rollingcouchapp.com, 1
 rollinghillsestates.gov, 1
 rollingshuttle.org, 1
-rollingstone.co.id, 1
 rollinsmokebbqfranchise.com, 1
 rollinspass.org, 1
 rollthedice.tk, 1
@@ -115512,6 +116159,7 @@
 roma-servizi.it, 1
 romab.com, 1
 romacoffee.co.nz, 1
+romadiluna.band, 1
 romagnaoggi.it, 1
 romail.ml, 1
 romainlapoux.com, 1
@@ -115565,8 +116213,8 @@
 romenz.com, 1
 romeoferraris.com, 1
 romeoijulio.tk, 1
-rometoptentravel.com, 1
 rommelhuntermusic.tk, 1
+rommelmark.nl, 1
 rommelwood.de, 1
 romo-holidays.de, 1
 romo-holidays.dk, 1
@@ -115582,8 +116230,9 @@
 ronaldvanassen.nl, 1
 ronan-hello.fr, 1
 ronan.cf, 1
+ronandez.com, 1
 ronanrbr.com, 1
-ronasit.com, 1
+ronasit.com, 0
 ronbongamis.com, 1
 ronc.ru, 1
 roncoutilities.com, 1
@@ -115600,7 +116249,6 @@
 ronniegane.kiwi, 1
 ronnylindner.de, 1
 ronomon.com, 1
-ronvil.com, 1
 ronzertnert.xyz, 1
 roo.ie, 1
 roobet.com, 1
@@ -115713,6 +116361,7 @@
 rosalopezcortes.tk, 1
 rosamystica.tk, 1
 rosanerolife.tk, 1
+rosangar.com, 1
 rosaquest.ru, 0
 rosaserra.es, 1
 rosbass.ru, 1
@@ -115729,6 +116378,7 @@
 roseboom-bouwkundigadvies.nl, 1
 rosecoaudit.com, 1
 rosecrance.org, 1
+rosedenellandudno.co.uk, 1
 rosefloricultura.com.br, 1
 rosehishop.com, 1
 rosehosting.reviews, 1
@@ -115744,12 +116394,13 @@
 rosenheimsingles.de, 1
 rosenkavalier.tk, 1
 rosenkeller.org, 1
-roseon.net, 1
+roseon.net, 0
 roseparkhouse.com, 1
 rosesciences.com, 1
 rosesunmotor.com, 1
 rosetiger.life, 1
 rosetravel.de, 1
+rosettapeters.com, 1
 rosetteromance.tk, 1
 rosetwig.ca, 1
 rosetwig.systems, 1
@@ -115815,6 +116466,7 @@
 rotary.org.ru, 1
 rotaryceuta.tk, 1
 rotaryfunds.ga, 1
+rotarykardzhali.org, 1
 rotas-turisticas.com, 1
 rotasgastronomicas.com, 1
 rotasgastronomicas.pt, 1
@@ -115892,7 +116544,6 @@
 routerchart.com, 1
 routerclub.ru, 1
 routerctrl.com, 1
-routerlibre.com, 1
 routeto.com, 1
 routetracker.co, 1
 routeur4g.fr, 0
@@ -115923,6 +116574,7 @@
 rowingsa.asn.au, 1
 rowlog.com, 1
 rowra.org, 1
+rowsbuy.com, 1
 roxanaherguz.com, 1
 roxanaramirez.love, 1
 roxanneguinoo.tk, 1
@@ -115931,6 +116583,7 @@
 roxiesbouncycastlehire.co.uk, 1
 roxswinery.com, 1
 roxville.tk, 1
+roy-buehring.de, 1
 royal-flowers.dp.ua, 1
 royal-knights.tk, 1
 royal-life.tk, 1
@@ -115969,8 +116622,10 @@
 royal859.com, 1
 royal86.com, 1
 royal861.com, 1
+royal862.com, 1
 royal863.com, 1
 royal865.com, 1
+royal867.com, 1
 royal868.com, 1
 royal869.com, 1
 royal876.com, 1
@@ -115989,13 +116644,13 @@
 royal8866.com, 1
 royal887.com, 1
 royal8881.com, 1
+royal888888.com, 1
 royal889.com, 1
 royal896.com, 1
 royal898.com, 1
 royal899.com, 1
 royal929.com, 1
 royal939.com, 1
-royalacademy.org.uk, 1
 royalasianescorts.co.uk, 1
 royalaubar.com, 1
 royalbluewa3.cc, 1
@@ -116018,6 +116673,7 @@
 royalkitchensandfurniture.co.ug, 1
 royalmarinesassociation.org.uk, 1
 royalmech.tk, 1
+royalmedicaltrans.com, 1
 royalnissanparts.com, 0
 royaloz.ma, 1
 royalpainters.co, 1
@@ -116026,6 +116682,7 @@
 royalrace.tk, 1
 royalrestrooms.com, 1
 royalsleeping.com, 1
+royalssl.com, 1
 royalstylefit.com, 1
 royalsyouthhockey.com, 1
 royaltonvt.gov, 1
@@ -116043,7 +116700,7 @@
 royceandsteph.com, 1
 roycewilliams.net, 1
 royger.tk, 1
-roynuesca.com, 1
+royoy.com, 1
 royrevell.com, 1
 roys.design, 1
 roystowingrockford.com, 1
@@ -116066,8 +116723,8 @@
 rpa.gov, 1
 rpadonline.com, 1
 rpattisonroofing.co.uk, 0
+rpb.gov.tw, 1
 rpcinmobiliaria.net, 0
-rpcnet.net, 0
 rpg-maker.net, 1
 rpg-maker.org, 1
 rpgamers.fr, 1
@@ -116077,7 +116734,6 @@
 rpgmakers.tk, 1
 rpguilds.world, 1
 rpguru.com, 1
-rphangx.net, 1
 rpherbig.com, 1
 rphl.net, 1
 rphyncice.cz, 1
@@ -116323,6 +116979,7 @@
 rubinamillinery.com, 1
 rubinchyk.tk, 1
 rubinnadlan.co.il, 1
+rubiogafsi.com, 1
 rubirubli.tk, 1
 rubix.com, 1
 rublacklist.net, 1
@@ -116465,7 +117122,6 @@
 rummey.co.uk, 1
 rumreader.com, 1
 rumtaste.com, 1
-rumtaste.de, 1
 rumus.co.id, 1
 rumusbilangan.com, 1
 rumusrumus.com, 1
@@ -116592,12 +117248,15 @@
 rusmolotok.ru, 1
 rusnalog.ru, 1
 rusnicolas.cf, 1
+rusnum.com, 1
+rusnum.ru, 1
 rusposuda.cf, 1
 russ-portal.tk, 1
 russandol.eu, 1
 russchooljordan.tk, 1
 russell-tech.co.uk, 1
 russellappelbaum.com, 1
+russellcountyky.gov, 1
 russellenvy.com, 1
 russelljohn.net, 1
 russellmeek.net, 1
@@ -116621,6 +117280,8 @@
 russiancrimes.in.ua, 1
 russianews.cf, 1
 russianews.ga, 1
+russianflora.com, 1
+russianflora.ru, 1
 russianpostcalc.ru, 1
 russianpunkrock.tk, 1
 russianrandom.ru, 1
@@ -116632,12 +117293,13 @@
 rust.cf, 1
 rust.mn, 1
 rust.pm, 1
+rust.yokohama, 1
 rustambek.tk, 1
 rustamkhanko.gq, 1
 rustfanatic.com, 1
 rustfu.rs, 1
 rusticpathways.com.au, 1
-rusticus-consulting.de, 1
+rusticus-consulting.de, 0
 rustikalwallis.ch, 1
 rustls.com, 1
 rustls.org, 1
@@ -116665,9 +117327,7 @@
 ruthhaloho.com, 1
 ruthil.co.il, 1
 ruthil.com, 1
-ruthlavidente.com, 1
 ruthmarques.com.br, 1
-ruthmontenegro.com, 1
 rutiger.com, 1
 rutika.ru, 1
 rutorka.tk, 1
@@ -116726,6 +117386,7 @@
 rxcarbon.com, 1
 rxcom.net, 1
 rxguide.nl, 1
+rxphoto.com, 1
 rxtx.pt, 1
 rxxx.ml, 1
 ry88url.com, 1
@@ -116754,6 +117415,8 @@
 ryazagro.ru, 1
 ryazan-region.ru, 1
 ryazancity.tk, 1
+rybak-opt.ru, 1
+rybak-russia.ru, 1
 rybakova.coach, 1
 rybalku.ru, 1
 rybarski.com, 1
@@ -116770,8 +117433,12 @@
 ryd.no, 1
 rydeful.com, 1
 rydeify.com, 1
+ryder.link, 1
+rydercragie.co.uk, 1
 rydercragie.com, 1
+rydercragie.uk, 1
 rydermais.tk, 1
+ryderstatus.com, 1
 rydi.org, 1
 ryejuice.sytes.net, 1
 ryfma.com, 1
@@ -116829,6 +117496,7 @@
 s-u.pw, 1
 s-w-o-p.eu, 1
 s-yuz.com, 1
+s.ai, 1
 s.lu, 1
 s.sb, 1
 s.td, 1
@@ -116850,6 +117518,7 @@
 s26s.com, 1
 s2i.ch, 0
 s2member.com, 1
+s2n.tech, 1
 s2t.net, 1
 s36533.com, 1
 s3call.ddns.net, 0
@@ -116925,6 +117594,7 @@
 sabachat.tk, 1
 sabahattin-gucukoglu.com, 1
 sabaland.tk, 1
+sabanco.com.br, 1
 sabatikirooms.com, 1
 sabba.uk, 1
 sabbat-wildfire.tk, 1
@@ -116971,6 +117641,7 @@
 sachiepvien.net, 1
 sachinchauhan.ml, 1
 sachk.com, 0
+sachse.info, 1
 sachsenflug.de, 1
 sachsenlady.com, 1
 sachte-restaurant.de, 1
@@ -117117,12 +117788,10 @@
 safestreets.cf, 1
 safetables.ga, 1
 safethishome.com, 1
-safetradebinaryoptions.com, 1
 safetrax.in, 1
 safety-in-construction.tk, 1
 safetycloud.me, 1
 safetydrivessuccess.com, 1
-safetygoodsfair.com, 1
 safetymeasuresas.com, 1
 safetymp3.com, 1
 safetynames.com, 1
@@ -117151,6 +117820,7 @@
 sagacioussuricata.com, 1
 sagagardencentre.co.uk, 1
 sagan.tk, 1
+sagarawat.in, 1
 sagareserve.com, 1
 sagargandecha.com.au, 0
 sagasailing.dk, 1
@@ -117182,7 +117852,6 @@
 sagomedia.tk, 1
 sahabatnesia.com, 1
 sahafekitap.com, 1
-sahajbooks.com, 1
 sahalin.tk, 1
 sahalinskiy.gq, 1
 sahar.io, 1
@@ -117224,6 +117893,7 @@
 sailum.tk, 1
 sailwiz.com, 1
 saily.pl, 1
+saimedia.net, 1
 saimithrayoga.nl, 1
 saimoe.moe, 1
 saimoe.org, 1
@@ -117258,6 +117928,7 @@
 sainth.de, 0
 sainthedwig-saintmary.org, 1
 sainthelena-centersquare.net, 1
+sainthelenaparish.net, 1
 sainthelenas.org, 1
 saintisidorecyo.com, 1
 saintjamestheapostle.org, 1
@@ -117287,6 +117958,7 @@
 saipariwar.com, 1
 saipeople.net, 1
 saiputra.com, 1
+saiputra.net, 1
 sairadio.net, 1
 sairadio.net.in, 1
 sairadio.one, 1
@@ -117314,7 +117986,6 @@
 saiwebtv.com, 1
 saiyans.com.ve, 1
 sajabesaya.tk, 1
-sajamstudija.info, 1
 sajbersove.rs, 1
 sajdowski.de, 0
 sajjadzaidi.com, 1
@@ -117330,6 +118001,7 @@
 sake.my, 1
 sakellariadis.gr, 1
 sakenohana.com, 1
+sakerhetsbubblan.se, 1
 sakiborislam.com, 1
 sakipsabancimuzesi.org, 1
 sakiyamagumi.com, 1
@@ -117453,6 +118125,7 @@
 salmanravoof.com, 1
 salmelainenwalter.tk, 1
 salminencrane.tk, 1
+salmo-rybak.ru, 1
 salmonde.de, 1
 salmonella.co.uk, 1
 salmonrecovery.gov, 1
@@ -117510,7 +118183,6 @@
 saltwaterfishaspets.com, 1
 saltydogpaddle.org, 1
 saltyfacts.com, 1
-saltyfish.tech, 1
 saltykai.com, 1
 saltyproshop.com, 1
 salud-paratodos.com, 1
@@ -117521,6 +118193,7 @@
 saludsis.mil.co, 1
 saluels.servemp3.com, 1
 salukinet.tk, 1
+salunganogroup.com, 1
 salussafety.io, 1
 salut-butovo.cf, 1
 salutenaturale.com.br, 1
@@ -117556,6 +118229,7 @@
 samandroscosrestaurant.com, 1
 samanexports.in, 1
 samangel.org, 1
+samanhatami.ir, 1
 samanthabiggers.com, 1
 samanthasmith.tk, 1
 samar-leyte.tk, 1
@@ -117614,10 +118288,10 @@
 samlam.ddns.net, 1
 samlamac.com, 1
 samlaw.co.nz, 0
+sammich.social, 1
 sammichscripts.com, 1
 sammyservers.com, 1
 sammyservers.net, 1
-samoacollege.edu.ws, 1
 samodel.ml, 1
 samodel.tk, 1
 samogonka.tk, 1
@@ -117635,6 +118309,7 @@
 sample-site.click, 1
 samplefashion.nl, 1
 sampleroom.online, 1
+sampsoncountync.gov, 1
 sampurna.shop, 1
 samroelants.com, 1
 sams.wtf, 1
@@ -117650,6 +118325,7 @@
 samsonnetworks.org, 1
 samsreseller.com, 1
 samstudios.tk, 1
+samsung-easydrivers.com, 1
 samsunghalfmarathon.com, 1
 samtalen.nl, 1
 samudranesia.id, 1
@@ -117674,6 +118350,7 @@
 samwilberforce.com, 1
 samwrigley.co.uk, 1
 samwu.tw, 1
+samy.rip, 1
 samyang.tk, 1
 samystic.com, 1
 san-cassiano.com, 1
@@ -117689,6 +118366,7 @@
 sana-store.sk, 1
 sanalaile.tk, 1
 sanalikaforum.tk, 1
+sanalsergi.com, 1
 sanalturcu.com, 1
 sanandreasstories.com, 1
 sanantoniolocksmithtx.com, 1
@@ -117727,6 +118405,7 @@
 sanctus-de.tk, 1
 sanctus.co.uk, 1
 sand-and-mercury.tk, 1
+sand-bleibt.de, 1
 sand-craft.ml, 1
 sand-stoneinc.com, 1
 sand66.cc, 1
@@ -117832,7 +118511,6 @@
 sanitynet.org, 1
 sanityrant.cf, 1
 sanityrant.ml, 1
-sanjacintotitle.com, 1
 sanjanaherath.cf, 1
 sanjaymenon.xyz, 1
 sanjosecolorectal.com, 1
@@ -117869,6 +118547,7 @@
 sanpatriciocountytx.gov, 1
 sanpham-balea.org, 1
 sanqinyinshi.com.cn, 1
+sanrafaelvigo.org, 1
 sanray73.ru, 1
 sans-hotel.com, 1
 sansairyu-kuyoukai.com, 1
@@ -117885,7 +118564,6 @@
 santaclarita.gov, 1
 santacruzca.gov, 1
 santacruzgalapagoscruise.com, 1
-santacruzimoveis.com, 1
 santacruzstudio.com.mx, 1
 santafesilversaddlemotel.com, 1
 santafetx.gov, 1
@@ -117907,6 +118585,7 @@
 santarosanm.gov, 1
 santasofiastereo.tk, 1
 santaynezchumash-nsn.gov, 1
+sante-actu.com, 1
 sante-informations.com, 1
 sante.akita.jp, 1
 santegra.tk, 1
@@ -118086,6 +118765,7 @@
 sarpsb.org, 1
 sarrworld.com, 1
 sars-cov-2.com, 1
+sarto.roma.it, 1
 sartori.tk, 1
 sartoria.milano.it, 1
 sartoria.roma.it, 1
@@ -118141,7 +118821,6 @@
 satelital.tk, 1
 satellights.tk, 1
 satellite-equipment.tk, 1
-satellite-reviews.net, 1
 satellite-shop.tk, 1
 satellite-top.com, 1
 satellites.hopto.me, 1
@@ -118166,6 +118845,7 @@
 sato-legaloffice.jp, 1
 satoshilabs.com, 1
 satoshinumbers.com, 1
+satowa-network.eu, 1
 satpersian.tk, 1
 satplay.host, 1
 satradio.tk, 1
@@ -118183,7 +118863,7 @@
 saturn-test.network, 1
 saturne.tk, 1
 saturnjump.com, 1
-saturuang.id, 0
+saturnus.consulting, 1
 satwcomic.com, 1
 satyamshivamsundaram.in, 1
 sauber-lab.com, 1
@@ -118282,22 +118962,20 @@
 savicki.co.uk, 1
 savicki.cz, 1
 savicki.sk, 1
+saviezvousque.net, 1
 savilleassessment.com, 1
 savin.ga, 1
 savin.in, 1
 savinggoliath.com, 1
-savinglivesatbirth.net, 1
 savingsbondwizard.gov, 1
 savingsoftheyear.com, 1
 savingtails.org, 1
 saviynt.com, 1
-savoir.fr, 1
 savoir.ga, 1
 savonlinnatrujillo.tk, 1
 savonsuuntaporaus.fi, 1
 savoryandpartners.com, 1
 savransafari.com, 1
-savrp.in, 1
 savushkin.tk, 1
 savvycleaner.com, 1
 savvystagingaz.com, 1
@@ -118305,7 +118983,6 @@
 sawansasaram.ml, 1
 sawiday.at, 1
 sawiday.be, 1
-sawiday.com, 1
 sawiday.cz, 1
 sawiday.de, 1
 sawiday.es, 1
@@ -118315,7 +118992,6 @@
 sawiday.nl, 1
 sawiday.pl, 1
 sawiday.se, 1
-sawiday.work, 1
 sawyerroofing.com, 1
 saxeandthecity.com, 1
 saxifrageleather.com, 1
@@ -118378,7 +119054,7 @@
 sbcountyarc.gov, 1
 sbcountyatc.gov, 1
 sbcountywines.com, 1
-sbeech.uk, 1
+sbeech.uk, 0
 sbequineevac.org, 1
 sber-solutions.kz, 1
 sber-solutions.ru, 1
@@ -118403,6 +119079,7 @@
 sbli.com, 1
 sblogistica.ru, 1
 sbm.cloud, 1
+sbm.org.tr, 1
 sbmenedzsment.hu, 1
 sbmlogistik.com, 1
 sbmsite.cf, 1
@@ -118416,6 +119093,7 @@
 sborka.ml, 1
 sbpk.fr, 1
 sbpropman.co.uk, 1
+sbrc.gov, 1
 sbrouwer.org, 1
 sbrownbourne.com, 0
 sbsavings.bank, 1
@@ -118454,6 +119132,7 @@
 scaleskun.com, 1
 scaligerorooms.it, 1
 scaling.solutions, 0
+scalinx.com, 1
 scalive.tv, 1
 scallyboy.uk, 1
 scallywagsbouncycastles.co.uk, 1
@@ -118535,6 +119214,7 @@
 scenester.tv, 1
 scenetv.ga, 1
 scenicbyways.info, 1
+scented-delights.co.uk, 1
 scentiche.com, 1
 scepticism.com, 1
 scevity.com, 0
@@ -118584,7 +119264,6 @@
 schelkovo.tk, 1
 schella.network, 1
 schellebelle.tk, 1
-schellenberger.biz, 1
 schellevis.net, 0
 schemingmind.com, 1
 schemmel.net, 0
@@ -118604,11 +119283,11 @@
 schier.info, 1
 schil.li, 1
 schildbach.de, 1
-schilderennummers.nl, 1
 schiltron.tk, 1
 schimmel-test.info, 1
 schimmelnagelspecialist.nl, 0
 schindler.com, 1
+schinkelplatz.com, 1
 schipholwatch.nl, 1
 schippendale.de, 1
 schippers-it.nl, 1
@@ -118635,7 +119314,6 @@
 schlopolis.tk, 1
 schloss-gottorf.de, 1
 schloss-wackerbarth.de, 1
-schlossanger.de, 1
 schlossberg-hotel-wernigerode.de, 1
 schlossfuchs.de, 1
 schlouk-map.com, 1
@@ -118720,9 +119398,11 @@
 school-27-lpr.tk, 1
 school-33.tk, 1
 school-adventures.tk, 1
+school-counselor.org, 1
 school-id.co.uk, 1
 school-korfbal.nl, 1
 school-project.tk, 1
+school-psychologists.com, 1
 school-register.co.za, 1
 school.in.th, 1
 school16-tob.tk, 1
@@ -118754,11 +119434,13 @@
 schoolroom.ga, 1
 schoolrumble.tk, 1
 schoolsafety.gov, 1
+schoolshow.nl, 1
 schoolsineachstate.com, 1
 schoolsonice.nl, 1
 schooltransport.com.au, 1
 schooluniform.com.au, 1
 schoonheidssalon-annelies-santpoort.nl, 1
+schoonheidssalon-annelies-velserbroek.nl, 1
 schoonheym.com, 1
 schoonheym.nl, 1
 schoop.me, 1
@@ -118783,7 +119465,7 @@
 schreilechner.tk, 1
 schreinerei-jahreis.de, 1
 schreinerei-schweikl.de, 1
-schreinerei-schwenk.com, 0
+schreinerei-schwenk.com, 1
 schrijnwerkerij-deconinck.be, 1
 schrijnwerkerij-deconinck.com, 1
 schrijverspunt.nl, 1
@@ -118793,7 +119475,7 @@
 schrodingersscat.org, 1
 schroeder-immobilien-sundern.de, 1
 schroederdennis.de, 1
-schroepfi.de, 1
+schroepfi.de, 0
 schroettle.com, 1
 schrok.eu, 1
 schrolm.de, 1
@@ -118833,11 +119515,13 @@
 schutznetze24.de, 1
 schutzwerk.com, 1
 schuurmanopleidingen.nl, 1
+schuylercountyil.gov, 1
 schuylerne.gov, 1
 schuylkillcountypa.gov, 1
 schwabenhaus-ka.de, 1
 schwanke.in, 0
 schwano-dent.at, 1
+schwartinsky24.de, 1
 schwartz.pro, 1
 schwarz-gelbe-fuechse.de, 1
 schwarzegar.de, 1
@@ -118908,7 +119592,6 @@
 scientific-socialism.cf, 1
 scientific-socialism.ga, 1
 scientific-socialism.ml, 1
-scientificwomen.net, 1
 scientistsbookshelf.org, 1
 scif.com, 1
 scifplus.com, 1
@@ -118919,6 +119602,7 @@
 scintillating.stream, 1
 scionasset.com, 0
 sciooregon.gov, 1
+sciotoarts.com, 1
 sciototownship-oh.gov, 1
 scip.ch, 1
 scislowcy.pl, 1
@@ -118930,7 +119614,6 @@
 scity88.com, 1
 scjtt.fr, 1
 sckc.stream, 1
-scks.site, 1
 sclause.net, 1
 scloud.link, 1
 sclsnglssttldwn.com, 1
@@ -118942,7 +119625,6 @@
 scms.com.my, 1
 scnow.com, 1
 scoachingtherapy.com, 1
-scoala-it.ro, 0
 scoebg.org, 1
 scoep.net, 1
 scohetal.de, 1
@@ -119018,9 +119700,9 @@
 scottniven.tk, 1
 scottpilgrim.tk, 1
 scottrae.me.uk, 1
+scotts-restaurant.com, 0
 scottsbluffcountyne.gov, 1
 scottsboropdal.gov, 1
-scottscheapflights.com, 1
 scottseditaacting.com, 1
 scottshorter.com.au, 1
 scottspainting.com, 1
@@ -119059,6 +119741,7 @@
 scphotography.co.uk, 1
 scpidcard.com, 1
 scpocahontas.nl, 1
+scpower.sg, 1
 scpsecretlab.com, 1
 scpsecretlaboratory.com, 1
 scpsl.ru, 1
@@ -119118,7 +119801,7 @@
 script-sign.com, 1
 script.google.com, 1
 scripter.co, 1
-scriptgates.ru, 0
+scriptgates.ru, 1
 scripthost.org, 1
 scriptjunkie.us, 1
 scriptline.ga, 1
@@ -119131,7 +119814,6 @@
 scrod.me, 1
 scroll-to-top-button.com, 1
 scroll.com, 1
-scroll.in, 1
 scroollocker.tk, 1
 scrubcorpo.net, 1
 scruffy.ga, 1
@@ -119165,7 +119847,6 @@
 scuolaguidalame.ch, 0
 scuolamazzini.livorno.it, 1
 scuolaparentalesanpancrazio.it, 1
-scuolatdm.com, 1
 scurtam.tk, 1
 scuspd.gov, 1
 scuters.club, 1
@@ -119185,6 +119866,7 @@
 sdaniel55.com, 1
 sdarcc.gov, 1
 sdarot.buzz, 1
+sdarot.tw, 1
 sdcapp.in, 1
 sdcardrecovery.de, 1
 sdea.ca, 1
@@ -119235,7 +119917,6 @@
 sea-airinternational.tk, 1
 sea-godzilla.com, 1
 sea-machines.com, 1
-sea-man.org, 1
 sea.zapto.org, 1
 seabehind.me, 0
 seabooty.com, 1
@@ -119280,7 +119961,6 @@
 seanstaffiery.com, 1
 seaoftime.tk, 1
 seaplayhomes.com, 1
-seara-staging.net, 1
 searacon.nl, 1
 search, 1
 search-engine-optimization.xyz, 1
@@ -119353,6 +120033,8 @@
 seaviewkohchang.com, 1
 seavision-group.com, 1
 seavision-group.it, 1
+seavision-latam.com, 1
+seavision-lixis.com, 1
 seavision-usa.com, 1
 seavision.es, 1
 seavision.eu, 1
@@ -119427,7 +120109,6 @@
 secdfir.com, 1
 secgui.de, 1
 sech.me, 1
-secinto.com, 1
 secitem.de, 1
 seclimax7.pw, 1
 seclink.link, 1
@@ -119521,14 +120202,13 @@
 secure-graphic.de, 1
 secure-gw.de, 1
 secure-it-is.nl, 1
-secure-server-hosting.com, 0
+secure-server-hosting.com, 1
 secure.advancepayroll.com.au, 1
 secure.facebook.com, 0
 secure.wang, 1
 secureapplicationaccess.ca, 1
 secureapplicationaccess.com, 1
 secureauth.com, 1
-securebizneshost.eu, 1
 securebot.ga, 1
 securebuildingaccess.com, 1
 securecloudplatform.nl, 1
@@ -119548,12 +120228,12 @@
 secureinfo.pl, 1
 securelect-inspection.com, 1
 securelink.com, 1
-securemantra.net, 1
 secureo.at, 1
 secureobscure.com, 1
 secureonline.co, 1
 secureonline.nl, 1
 secureover.com, 1
+securepanel.co.uk, 1
 secureprivacy101.org, 1
 secureqbplugin.com, 1
 securerepository.net, 1
@@ -119597,13 +120277,13 @@
 securityescrownews.com, 1
 securityfest.com, 1
 securitygladiators.com, 1
+securityguard-license.org, 1
 securityheaders.com, 1
 securityheaders.io, 1
 securityheaders.nl, 1
 securityindicators.com, 1
 securitypluspro.com, 1
 securitypuppy.com, 1
-securityrussia.com, 1
 securitysense.co.uk, 1
 securitysnobs.com, 0
 securitysoapbox.com, 1
@@ -119722,6 +120402,7 @@
 seguridadsistem.tech, 1
 seguridadsistemtienda.tech, 1
 seguromail.com.br, 1
+segurosbantrab.com.gt, 1
 segurosdesaluddominicanos.com, 1
 segurosmaurobracchieri.com, 1
 segurosmr.es, 1
@@ -119819,7 +120500,6 @@
 selezionebarbrboguaccero.tk, 1
 self-business.tk, 1
 self-evident.org, 1
-self-signed.com, 1
 selfassess.govt.nz, 1
 selfbattery.ga, 1
 selfbestyou.com, 1
@@ -119883,6 +120563,7 @@
 selltogaprime.com, 1
 selltothousandhills.com, 1
 selltous.com.au, 1
+sellvitamin.com, 1
 sellwithsquare.com, 1
 sellyboard.company, 1
 selma.com, 1
@@ -119921,6 +120602,7 @@
 semesur.com, 1
 semi.social, 1
 semianalog.com, 1
+semicolon.cf, 1
 semicon.cc, 1
 semiconductors.gov, 1
 semicvetik.tk, 1
@@ -119932,7 +120614,6 @@
 semiotical.com, 0
 semiotika.tk, 1
 semira.tk, 1
-semirben.de, 1
 semiread.com, 1
 semiretire.ga, 1
 semiweb.ca, 1
@@ -119945,6 +120626,7 @@
 sempersolaris.com, 1
 semplicementelight.com, 1
 sempoctet.ca, 1
+sempreupdate.com.br, 1
 semps-2fa.de, 1
 semps-threema.de, 1
 semps.de, 1
@@ -119999,8 +120681,6 @@
 sendtrix.nl, 1
 sendy.land, 1
 sendzik.eu, 1
-senecaparkzoo.org, 1
-senego.com, 0
 senergiya.tk, 1
 senergyconsultants.com, 1
 senf-kren.at, 1
@@ -120030,6 +120710,7 @@
 senor-cheapo.nl, 1
 senork.de, 1
 senpiper.com, 1
+senres.top, 1
 senrj.be, 1
 sens2lavie.com, 1
 sense.finance, 1
@@ -120161,6 +120842,7 @@
 seolizer.de, 1
 seolord.cf, 1
 seomag.tk, 1
+seomanager.vip, 1
 seomarketing.bg, 1
 seomaton.com, 1
 seomaton.org, 1
@@ -120217,7 +120899,6 @@
 seovisits.tk, 1
 seoviziti50.tk, 1
 seovoorboekhouders.nl, 1
-seowagon.com, 1
 seowerkz.com, 1
 seowind.io, 1
 seowordpress.pl, 1
@@ -120267,7 +120948,6 @@
 sequatchiecountytn.gov, 1
 sequenceconsulting.com, 1
 sequencediagram.org, 1
-sequencing.com, 1
 sequitur.tech, 1
 sequiturs.com, 1
 sequoiaproject.org, 1
@@ -120299,6 +120979,7 @@
 serenavilage.net, 1
 serenavillage.net, 1
 serenavillageresidence.com, 1
+serenaweb.de, 1
 serendeputy.com, 1
 serenity-realms.com, 0
 serenityeditor.com, 1
@@ -120335,6 +121016,7 @@
 serial-kinder.tk, 1
 serial2000.tk, 1
 serialas.ru, 1
+serializacion.mx, 1
 serialize.gq, 1
 serialkey.info, 1
 serialms.com, 1
@@ -120404,7 +121086,6 @@
 serverbin.net, 1
 serverbit.it, 1
 serverco.com, 1
-servercore.cz, 1
 serverd.de, 1
 serverdechile.tk, 1
 serverdensity.io, 1
@@ -120418,7 +121099,7 @@
 serverlauget.no, 1
 serverlein.com, 1
 serverlist101.com, 1
-serverlog.net, 1
+serverlog.net, 0
 servermacher.de, 1
 servermaster.sk, 1
 servernerds.net, 1
@@ -120440,7 +121121,6 @@
 serveur.nl, 1
 serveursminecraft.org, 1
 servfefe.com, 1
-servgate.jp, 1
 servi-tek.net, 1
 service-centre.cf, 1
 service-soft.de, 1
@@ -120506,8 +121186,8 @@
 servmaslt.com, 1
 servn.ca, 1
 servo.org, 1
-servondesign.co.uk, 1
 servonline.de, 1
+servpress.net, 1
 servrox.solutions, 1
 servtepstore.com, 1
 servtraq-staging.azurewebsites.net, 1
@@ -120528,7 +121208,6 @@
 ses-offshore.com, 1
 sesam-biotech.com, 1
 sesamomusical.tk, 1
-sesarju.eu, 1
 sescoen.tk, 1
 seseai.ga, 1
 sesenaonline.tk, 1
@@ -120577,6 +121256,7 @@
 setxxxtube.com, 1
 seu.edu.sa, 1
 seucreditodigital.com.br, 1
+seucurioso.com, 0
 seuplano.com.br, 1
 seutens.be, 1
 seutens.eu, 1
@@ -120613,7 +121293,6 @@
 sewa.nu, 1
 sewalaptopm2i.com, 1
 sewamobilaman.com, 1
-sewandblossom.com, 1
 sewardcountyne.gov, 1
 sewatec.com, 1
 sewavillamurah.tk, 1
@@ -120644,6 +121323,7 @@
 sexgamesclub.com, 1
 sexgarage.de, 1
 sexgirlfriend.com, 1
+sexgood.com.ua, 1
 sexhab.guru, 1
 sexi-model.ru, 0
 sexivanovo.com, 1
@@ -120686,6 +121366,7 @@
 sexoyalta.love, 1
 sexoyrelax.com, 1
 sexpay.net, 1
+sexpdf.com, 1
 sexshopfacil.com.br, 1
 sexshopnet.com.br, 1
 sexsimf.red, 1
@@ -120727,8 +121408,6 @@
 sexystine.net, 1
 sexytagram.com, 1
 sexyteens.net, 1
-sexytimermegaprofit.online, 1
-sexytimerprofit.online, 1
 sexyvenushuegel.org, 1
 seyfarth.de, 1
 seykapuertasautomaticas.com, 1
@@ -120750,6 +121429,7 @@
 sfccapital.com, 1
 sfccapitalpartners.com, 1
 sfcityoption.org, 1
+sfdchub.com, 1
 sfdcopens.com, 1
 sfdev.ovh, 1
 sfdlsource.tk, 1
@@ -120898,6 +121578,7 @@
 shag-shag.ru, 1
 shahar.cc, 0
 shaharyaranjum.com, 1
+shahbeat.com, 1
 shaheedirfani.tk, 1
 shaheednawazirfani.tk, 1
 shahidafkar.tk, 1
@@ -120911,6 +121592,7 @@
 shahrsazan.tk, 1
 shahrvand.ga, 1
 shahsaadkhan.tk, 1
+shahyadmusic.com, 1
 shahzaibm.com, 1
 shaicoleman.com, 1
 shaiden-porn.com, 1
@@ -120952,7 +121634,9 @@
 shambala.cf, 1
 shambhu.info, 1
 shamed.tk, 1
+shamesofhungary.com, 1
 shamiehlaw.com, 1
+shamil.tech, 1
 shamimahmed.tk, 1
 shamimmedia.ir, 1
 shamiphotos.tk, 1
@@ -121060,7 +121744,6 @@
 sharks.football, 1
 sharkstriker.com, 1
 sharmafamily.tk, 1
-sharmalaw.com, 1
 sharondavale.org, 1
 sharonnh.gov, 1
 sharonsplace.biz, 1
@@ -121147,6 +121830,7 @@
 sheeprock.tk, 1
 sheepsound.tk, 1
 sheerchain.com, 1
+sheeru.cafe, 1
 sheet.host, 1
 sheetengine.net, 1
 sheetsindonesia.com, 1
@@ -121183,7 +121867,6 @@
 shellshock.eu, 1
 shellta.com, 1
 shellta.net, 1
-shellvatore.us, 1
 shellwhite.ga, 1
 shellwhite.tk, 1
 shelma.tk, 1
@@ -121217,6 +121900,7 @@
 shentengtu.idv.tw, 1
 sheo-tech.fr, 1
 shepherdsfriendly.co.uk, 1
+shepherdsvilleky.gov, 1
 sheptytsky.ga, 1
 sheratsuki.tk, 1
 sherbers.de, 1
@@ -121226,6 +121910,7 @@
 sheridancountywy.gov, 1
 sheriffmiamicountyks.gov, 1
 sheriffpawneecountyne.gov, 1
+sheriffpendletoncountyky.gov, 1
 sheriffwashingtoncountymaine.gov, 1
 sherissims.tk, 1
 shermancountyks.gov, 1
@@ -121242,7 +121927,6 @@
 sheweek.ml, 1
 shewillcheat.com, 1
 shft.cl, 1
-shg-pornographieabhaengigkeit.de, 0
 shgf.de, 1
 shgroup.xyz, 1
 shgt.jp, 1
@@ -121344,6 +122028,7 @@
 shinypebble.uk, 1
 shinyteethand.me, 1
 shiomiya.com, 1
+ship-safely.com, 1
 shipaik.com, 1
 shipard.com, 1
 shipard.cz, 1
@@ -121400,6 +122085,7 @@
 shiryo.ch, 1
 shishadenbosch.nl, 1
 shishamania.de, 1
+shishkin.im, 1
 shishlik.net, 1
 shit.com, 1
 shit.one, 1
@@ -121472,6 +122158,7 @@
 shodan.io, 1
 shoe.club, 1
 shoejitsu.co, 1
+shoekeys.lt, 1
 shoelevel.com, 1
 shoeline.com, 1
 shoemakerywc.com, 1
@@ -121490,6 +122177,7 @@
 shontakleinpeter.tk, 1
 shooba.net, 1
 shoobacreations.com, 1
+shooiq.com, 1
 shoot-yalla.tv, 1
 shooter.dog, 1
 shootpooloklahoma.com, 1
@@ -121521,7 +122209,6 @@
 shopandworld.net, 1
 shopapi.cz, 1
 shoparbonne.co.uk, 1
-shopatkei.com, 1
 shopazmoon.ir, 1
 shopbabymonitors.gq, 1
 shopbackyardpro.com, 1
@@ -121572,7 +122259,6 @@
 shoppe561.com, 1
 shopperexperts.com, 1
 shopperexpertss.com, 1
-shoppersvineyard.com, 1
 shoppies.tk, 1
 shopping-cart-migration.com, 1
 shopping-il.org.il, 1
@@ -121765,7 +122451,6 @@
 short-jambo.com, 1
 short-term-plans.com, 1
 short.io, 1
-short2url.in, 1
 shortaudition.com, 1
 shortaudition.net, 1
 shortaudition.tv, 1
@@ -121926,6 +122611,7 @@
 shuttelportal.nl, 1
 shuttelservices.nl, 1
 shutter-shower.com, 1
+shutterstreetblog.com, 1
 shutupbabyiknowit.party, 1
 shuvodeep.de, 1
 shux.pro, 1
@@ -121955,7 +122641,6 @@
 siamojo.com, 1
 siamrehab.com, 1
 siamserp.com, 1
-siamsnus.com, 1
 siamwatercraftpromotion.com, 1
 sianjhon.com, 1
 siatris.qc.ca, 1
@@ -121974,6 +122659,7 @@
 sibernet.tk, 1
 sibfk.org, 1
 sibgold.su, 1
+sibi.nl, 1
 sibirium-red.ga, 1
 sibiuindependent.ro, 1
 sibleycounty.gov, 1
@@ -122023,6 +122709,7 @@
 sidequestors.org, 1
 sideral.is, 1
 sideshowbarker.net, 1
+sidewalkcleaningchicago.com, 1
 sidewalkpressurewashingchicago.com, 1
 sidhbalibaba.com, 1
 sidi-smotri.ru, 1
@@ -122137,11 +122824,9 @@
 signage.red, 1
 signal.org, 0
 signal34.com, 1
-signaldp.com, 1
 signalmaps.co.uk, 1
 signature365.com, 1
 signaturechannel.com, 1
-signaturecityllc.com, 1
 signaturecountertops.com, 1
 signaturedallas.com, 1
 signatureplasticsurgery.net, 1
@@ -122229,9 +122914,11 @@
 silentneko.ga, 1
 silentsite.tk, 1
 silentsky.tk, 1
+silentsystem.com, 0
 silentsystem.it, 1
 silentundo.org, 1
 silesianus.pl, 1
+silex.live, 1
 silica-project.com, 1
 silica-project.jp, 1
 silicateillusion.org, 1
@@ -122257,6 +122944,7 @@
 silta.tk, 1
 silv.me, 1
 silv.tk, 1
+silvaserv.it, 1
 silver-fenrir.cn, 1
 silver-heart.co.uk, 1
 silver-johnes.tk, 1
@@ -122442,8 +123130,8 @@
 simoncook.org, 1
 simoncotsworth.com, 1
 simone.sh, 1
-simonehair.com, 0
 simonevans.uk, 1
+simonewebdesign.it, 1
 simonfischer.info, 1
 simonhirscher.de, 1
 simonkjellberg.com, 1
@@ -122485,6 +123173,7 @@
 simple-test-to-demonstrate-the-maximum-length-of-a-domain-name.international, 1
 simple.com, 0
 simpleartifact.com, 1
+simpleavenue.com, 1
 simplechoicesuper.com.au, 1
 simpleclassiclife.com, 1
 simpleclothing.ro, 1
@@ -122518,6 +123207,7 @@
 simpleports.eu, 1
 simpleports.net, 1
 simpleports.org, 1
+simpleprivacy.fr, 1
 simpleprojects.net, 1
 simplereport.gov, 1
 simplerezo.com, 1
@@ -122528,8 +123218,8 @@
 simpleshow.com, 1
 simplesite.hu, 1
 simplespy.tk, 1
+simplesummerreading.com, 1
 simpletax.ca, 1
-simpletherapy.com, 1
 simpletools.tk, 1
 simpletrace.nz, 1
 simplevote.ca, 1
@@ -122594,6 +123284,7 @@
 simsfinnchiropractic.com.au, 1
 simsim.in, 1
 simsimi.ml, 1
+simsmotorshop.be, 1
 simsnieuws.nl, 1
 simstarstyle.tk, 1
 simulfund.com, 0
@@ -122686,11 +123377,11 @@
 singles-berlin.de, 1
 singles-day.org.il, 1
 singlesproject.org, 1
+singleton-factory.de, 1
 singleuse.link, 1
 singlu10.org, 0
 singluten.tk, 1
 singulair-generic.tk, 1
-singularityparity.com, 1
 sinhnhatbaby.com, 1
 sini.tk, 1
 sinibaldi.me, 1
@@ -122700,6 +123391,7 @@
 sinkip.com, 1
 sinluzvenezuela.tk, 1
 sinmarea.com, 1
+sinmik.com, 1
 sinn-frei.tk, 1
 sinner-rider.tk, 1
 sinnersprojects.ro, 0
@@ -122756,7 +123448,7 @@
 sipa.pf, 1
 sipadmin.ru, 1
 sipc.org, 1
-sipd.go.id, 1
+sipd.go.id, 0
 sipede.tk, 1
 siphalor.de, 1
 sipinterdindikcilegon.id, 1
@@ -122805,6 +123497,7 @@
 sirovatka.tk, 1
 sirplus.com.ar, 1
 sirpsycho.tk, 1
+sirram.de, 1
 sirtaptap.com, 1
 sirtuins.com, 1
 sirvio.eu, 1
@@ -122845,7 +123538,6 @@
 sistema-trenirovok.ml, 1
 sistema20k.tk, 1
 sistemair.be, 1
-sistemairpro.com, 1
 sistemapronto.ml, 1
 sistemasespecializados.com, 1
 sistemista.it, 1
@@ -122888,6 +123580,7 @@
 sitecrew.cf, 1
 sitecuatui.com, 1
 sitedebelezaemoda.com.br, 1
+sitedynamix.co.uk, 1
 siteforce.com, 1
 sitehizi.com, 1
 siteintelstage.com, 1
@@ -122953,7 +123646,6 @@
 sivaexports.in, 1
 sivaru.tk, 1
 siviagra.com, 1
-sivizius.eu, 1
 sivutoimisto.fi, 1
 sivyerge.com, 1
 siw64.com, 1
@@ -123011,6 +123703,7 @@
 sk4y.net, 1
 sk8erofbodom.com, 1
 sk8israel.com, 1
+skaala.com, 1
 skachat-programmylini.ga, 1
 skachat-shablon-rezyume-na-angliyskom-yazyk.tk, 1
 skachat-zip.tk, 1
@@ -123031,13 +123724,13 @@
 skarox.eu, 1
 skarox.net, 1
 skarox.ru, 1
-skartecedu.in, 1
 skatclub-beratzhausen.de, 1
 skate.fr, 1
 skatefilms.tv, 1
 skateparkmontbriz.tk, 1
 skaterangels.tk, 1
 skaterepublic.tk, 1
+skates.guru, 0
 skatesins.ch, 1
 skatesliide.tk, 1
 skateswagger.com, 1
@@ -123110,11 +123803,13 @@
 skill.tk, 1
 skillab.ro, 1
 skillablers.com, 1
+skillatwill.com, 1
 skillavid.com, 1
 skillcore.net, 1
 skilldetector.com, 1
 skilldnsproc.com, 1
 skillled.com, 1
+skillmamba.com, 1
 skillmoe.at, 1
 skillnes.herokuapp.com, 1
 skillonnet.com, 1
@@ -123296,13 +123991,13 @@
 skybirds.org, 1
 skyblockmc.eu, 1
 skyblockmc.no, 1
-skyblond.info, 1
 skybloom.com, 1
 skyblue4.com, 1
 skyborne.tk, 1
 skybound.link, 0
 skybrary.aero, 1
 skybrary.eu, 1
+skybrary.info, 1
 skybridge.net, 1
 skyclinic.ua, 1
 skycmd.net, 1
@@ -123387,7 +124082,6 @@
 skyra.pw, 1
 skyrieptravel.com, 1
 skyrocket.site, 1
-skyrocketfinancial.org, 1
 skyrocketing.ninja, 1
 skyrosconsulting.com, 1
 skys-entertainment.com, 1
@@ -123430,7 +124124,6 @@
 sl-alarm.ru, 1
 sl-bildermacher.de, 1
 sl-informatique.ovh, 1
-sl.al, 1
 sl0.us, 1
 sl41.com.br, 1
 sl66.cc, 0
@@ -123440,8 +124133,6 @@
 slabserver.com, 1
 slabstage.com, 1
 slack-files.com, 1
-slack-gov.com, 1
-slack.com, 1
 slackline.tk, 1
 sladic.si, 0
 sladkiiflirt.ru, 1
@@ -123491,6 +124182,7 @@
 slayer.tech, 1
 slayersonline.net, 1
 slayingqueen.com, 1
+slaytec.com, 1
 slb.ru, 1
 slbetx.com, 1
 slbknives.com, 1
@@ -123535,7 +124227,7 @@
 sletaem.ml, 1
 sletat.ru, 1
 slev.tk, 1
-slevermann.de, 1
+slevermann.de, 0
 slevomat.cz, 1
 slew.gq, 1
 slezenko.tk, 1
@@ -123587,7 +124279,6 @@
 slma.tk, 1
 slmail.me, 1
 sln.cloud, 1
-slneighbors.org, 1
 slo-net.net, 1
 slo-tech.com, 1
 slo.nl, 1
@@ -123608,6 +124299,7 @@
 sloopautonoordholland.com, 1
 slootskyartisticdentistry.com, 1
 slopecountynd.gov, 1
+slopeedge.com, 1
 slopeedge.net, 1
 slopeoak.com, 1
 slopi.net, 1
@@ -123631,7 +124323,6 @@
 slotmad.com, 1
 slotsinspector.com, 1
 slotsmegacasino.com, 0
-slotsroll.co.uk, 1
 slotsup.com, 1
 slouching.ga, 1
 sloudways.com, 1
@@ -123677,7 +124368,10 @@
 slutty-girls.cf, 1
 slxh.eu, 1
 slxh.nl, 1
+slyarts.com, 1
+slycegateway.com, 1
 slycepay.com, 1
+slycereporting.com, 1
 slymak.com, 1
 slytech.ch, 0
 slytigers.tk, 1
@@ -123698,6 +124392,7 @@
 small-king.ml, 1
 smallblog.org, 1
 smallbytedesign.co, 1
+smallchanges.tv, 1
 smallchat.nl, 1
 smallcloudsolutions.co.za, 1
 smallcloudsolutions.com, 1
@@ -123714,7 +124409,6 @@
 smallsiri.gq, 1
 smallsites.eu, 1
 smalltalkconsulting.com, 1
-smalltits.pics, 1
 smalltunepress.tk, 1
 smallville.tk, 1
 smallville25.tk, 1
@@ -123776,6 +124470,7 @@
 smartbear.com, 1
 smartbiz.vn, 1
 smartblock.cloud, 1
+smartbookings.nl, 0
 smartcar.com, 1
 smartcard.tools, 1
 smartcents.gold, 1
@@ -123807,6 +124502,8 @@
 smartglassworld.net, 1
 smartgrepp.se, 1
 smartgrid.gov, 1
+smartgridsecurity.com, 1
+smartgridsecurity.org, 1
 smartguardzone.kr, 1
 smarthalal.de, 1
 smarthdd.com, 1
@@ -123833,6 +124530,7 @@
 smartlook.cz, 1
 smartlooks.es, 1
 smartmachine.com, 1
+smartmail.io, 1
 smartmail24.de, 1
 smartme.pl, 1
 smartmeal.ru, 1
@@ -123874,6 +124572,7 @@
 smartshiftme.com, 1
 smartshop.gr, 1
 smartshoppers.es, 1
+smartshousekeeper.pt, 1
 smartsitio.com, 1
 smartspace.ml, 1
 smartspace.tk, 1
@@ -123888,7 +124587,6 @@
 smartwank.com, 1
 smartweb.ge, 1
 smartwebportal.co.uk, 1
-smartwheelz.nl, 0
 smartwoodczech.cz, 1
 smartwritingservice.com, 1
 smartwurk.nl, 0
@@ -123915,7 +124613,6 @@
 smchfujuae.com, 1
 smcj.xyz, 1
 smcquistin.uk, 1
-smd-studio.top, 1
 smd-tlt.ru, 1
 smdc.com, 1
 smdcn.net, 1
@@ -123942,6 +124639,7 @@
 smicenter.tk, 1
 smicompact.com, 1
 smictecniservi.com, 1
+smiilliin.site, 1
 smikom.ru, 1
 smileback.co.uk, 1
 smilecare.ae, 1
@@ -124046,8 +124744,7 @@
 smoser.eu, 1
 smplace.com, 1
 smplr.uk, 1
-smpn10kotagorontalo.sch.id, 1
-smpnsata.sch.id, 1
+smpn10kotagorontalo.sch.id, 0
 smpositiva.com, 1
 smppcenter.com, 1
 smpred.net, 1
@@ -124065,7 +124762,7 @@
 smsben.com, 0
 smsbrana.cz, 0
 smsg-dev.ch, 0
-smsinger.com, 1
+smsinger.com, 0
 smsk.email, 1
 smskeywords.co.uk, 1
 smskmail.com, 1
@@ -124097,7 +124794,6 @@
 smvpro.dk, 1
 smx.net.br, 1
 smxconventioncenter.com, 1
-smyrilline.com, 1
 smys.uk, 1
 sn0int.com, 1
 snab-ural.ga, 1
@@ -124210,6 +124906,7 @@
 snitko.pro, 1
 snizl.com, 1
 snj.pt, 1
+snlianshang.com, 1
 snoerendevelopment.nl, 0
 snohomishsepticservice.com, 1
 snooker.tk, 1
@@ -124271,6 +124968,8 @@
 snrd.eu, 1
 snroth.de, 1
 snrub.co, 1
+sns-beta.com, 1
+sns-dev.com, 1
 sns-tg.pl, 1
 sns.hu, 1
 snsirius.cf, 1
@@ -124302,6 +125001,7 @@
 sobakasite.tk, 1
 sobaki.tk, 1
 sobatiment.fr, 1
+sobchak.blog, 0
 sobchak.ga, 1
 sobersys.com, 1
 sobieray.dyndns.org, 1
@@ -124331,6 +125031,7 @@
 sochionline.tk, 1
 soci.ml, 1
 sociaalwerknederland.nl, 1
+sociability.dk, 1
 social-class.ga, 1
 social-directory-list.tk, 1
 social-engineering.tk, 1
@@ -124365,7 +125066,7 @@
 socialhams.net, 1
 socialhp.com, 1
 socialism.tk, 1
-socialist-alliance.org, 1
+socialist-alliance.org, 0
 socialistregister.com, 1
 socialistyouth.tk, 1
 sociality.io, 1
@@ -124374,6 +125075,7 @@
 socialmarketingday.nl, 1
 socialmatch.de, 1
 socialmedia-manager.gr, 1
+socialmediadisruption.com, 1
 socialmedias.tk, 1
 socialmeeps.ml, 1
 socialnet.ml, 1
@@ -124401,6 +125103,7 @@
 socialtranslation.ga, 1
 socialtrends.pl, 1
 socialwave.tk, 1
+socialworkdegrees.org, 1
 socialworkout.net, 1
 socialworkout.org, 1
 socialworkout.tv, 1
@@ -124418,8 +125121,6 @@
 societyparty.ga, 1
 socii.network, 1
 sociobiology.com, 1
-sociocosmos.com, 1
-sociohosting.es, 1
 sociology-bg.gq, 1
 sociology-schools.com, 1
 sociologyk.nl, 1
@@ -124450,7 +125151,7 @@
 sodafilm.de, 1
 sodalai.tk, 1
 sodel-sa.eu, 1
-sodelicious.recipes, 1
+sodelicious.recipes, 0
 sodependable.com, 1
 soderestore.com, 1
 sodermans.com, 1
@@ -124511,7 +125212,7 @@
 softbit.pt, 1
 softblinds.co.uk, 1
 softchin.ir, 1
-softcom.net, 1
+softcom.net, 0
 softcompany.tk, 1
 softcomplex.com, 1
 softconcept.pt, 1
@@ -124568,7 +125269,6 @@
 softwarepixie.com, 1
 softwaresanta.com, 1
 softwaresecurityandradefernando.be, 1
-softwaresolved.com, 1
 softweb-dev.de, 1
 softwerk-edv.de, 1
 softwing.de, 1
@@ -124588,6 +125288,7 @@
 sogutma.com.tr, 1
 sohamroy.me, 1
 sohanakhan.tk, 1
+sohanman.com, 1
 sohka.eu, 1
 soia.ca, 1
 soilegustafsson.fi, 1
@@ -124599,10 +125300,10 @@
 soissons-technopole.org, 1
 soji.io, 1
 sokak-sanati.tk, 1
+sokaksepeti.com, 1
 sokenconstruction.com, 1
 soket.ee, 1
 sokkenkraam.nl, 1
-soko.nl, 1
 soko.reisen, 1
 sokolin.com, 1
 sokolmelnik.tk, 1
@@ -124616,7 +125317,6 @@
 sol-negro.tk, 1
 sol.de, 1
 sol24.net, 1
-solace.com, 1
 solaland.co.uk, 1
 solalnathan.com, 1
 solalt.com, 1
@@ -124634,7 +125334,6 @@
 solarbynatureinc.com, 1
 solarcia.com.br, 1
 solareagricola.it, 1
-solarexperts.hu, 1
 solarfaa.ir, 1
 solarfever.ga, 1
 solargaming.tk, 1
@@ -124682,6 +125381,7 @@
 soldiersmg.tk, 1
 sole-erdwaermetauscher.de, 1
 soleanos.tk, 1
+solechuva.com.br, 1
 solectrus.de, 1
 soledadmataro.tk, 1
 soledadpenades.com, 0
@@ -124697,6 +125397,7 @@
 solidariedadecultura.pt, 1
 solidarityzone.org, 1
 solidform.ml, 1
+solidgroundchiro.com, 1
 solidhost.cf, 1
 solidian.com, 1
 solidimage.com.br, 1
@@ -124726,6 +125427,7 @@
 soliten.de, 1
 soliujing.ml, 1
 solium.com, 1
+soliver-group.com, 1
 solliv.com, 1
 solmek.co.uk, 1
 solnascentepapelaria.com.br, 1
@@ -124803,7 +125505,6 @@
 soluzionifightlist.cf, 1
 solvation.de, 1
 solvaybank.com, 1
-solved.tips, 1
 solvedapp.io, 1
 solvemethod.com, 1
 solviejo.tk, 1
@@ -124817,7 +125518,6 @@
 soma.com.au, 1
 somaar.tk, 1
 somaini.li, 1
-somaliagenda.com, 1
 somaliaonline.com, 1
 somalilandtalk.tk, 1
 somanao.com, 1
@@ -124962,6 +125662,7 @@
 sonodrom.tk, 1
 sonoecoracao.com.br, 1
 sonofsunart.com, 1
+sonohigurashi.blog, 1
 sonologic.nl, 1
 sonology.tk, 1
 sonomacounty.gov, 1
@@ -125103,7 +125804,6 @@
 sosuchki.com, 1
 sosyalat.com, 1
 sosyalevin.com, 1
-sot-te.ch, 1
 sot.blue, 1
 sot.red, 1
 sota.sh, 1
@@ -125170,12 +125870,14 @@
 soumya.xyz, 1
 soumya92.me, 1
 sounah.com, 1
+sound-gardens.com, 1
 sound-orpheus.tk, 1
 sound-recording.org, 1
 sound-wave.tk, 1
 sound.as, 1
 soundabout.nl, 1
 soundar.eu.org, 1
+soundar.net, 1
 soundbase.tk, 1
 soundblast.tk, 1
 soundcache.tk, 1
@@ -125184,7 +125886,6 @@
 soundclick.com, 1
 soundcloud-to-mp3.com, 1
 soundcloud.com, 1
-soundcloud.org, 1
 soundee.com, 1
 soundeo.com, 1
 soundeo.net, 1
@@ -125239,6 +125940,7 @@
 sourcecode.love, 1
 sourcecode.tw, 1
 sourcegraph.com, 1
+sourcehut.net, 1
 sources.tk, 1
 sourcesdegarrigue.fr, 1
 sourcexchange.net, 1
@@ -125249,7 +125951,6 @@
 sourraundweb.tk, 1
 sourse.co, 1
 sous-surveillance.net, 0
-south32hermosa.com, 1
 southafrican.dating, 1
 southambouncycastle.co.uk, 1
 southamerican.dating, 1
@@ -125287,6 +125988,7 @@
 southlaketx.gov, 1
 southlandcasino.com, 1
 southlandurology.com, 1
+southmarengo.com, 1
 southmarengoal.gov, 1
 southmelbourne.apartments, 1
 southmill.com, 1
@@ -125295,7 +125997,6 @@
 southogdencity.gov, 1
 southphoenixair.tk, 1
 southridgeservices.com, 1
-southshorehomecare.org, 1
 southside-crew.com, 1
 southside-digital.co.uk, 1
 southside-tuning-day.de, 1
@@ -125349,6 +126050,7 @@
 soyladani.com, 1
 soylemeztrading.com, 1
 soytusitio.com, 1
+soyunperro.com, 1
 soyuznik.ml, 1
 soyvigilante.com, 1
 sozai-good.com, 1
@@ -125447,7 +126149,6 @@
 spalnobelyo.com, 1
 spaltron.net, 1
 spam.lol, 1
-spam.red, 1
 spamasaurus.com, 1
 spamcage.com, 1
 spamdrain.com, 1
@@ -125540,6 +126241,7 @@
 spartanis.tk, 1
 spartankids.in, 1
 sparvagn.tk, 1
+spaseekers.com, 1
 spasem-park.tk, 1
 spasicilia.it, 1
 spasskellner-comedykellner.ch, 1
@@ -125594,6 +126296,7 @@
 spec-ranking.pl, 1
 specdrones.us, 1
 specflow.org, 1
+special-education-degree.net, 1
 special-equipment.tk, 1
 special-ops.org, 1
 specialcameras.tk, 1
@@ -125606,7 +126309,6 @@
 specialized-hosting.eu, 1
 specialnoise.tk, 1
 specialofficesupplies.tk, 1
-specialprojectsdesk.com, 1
 specialproperties.com, 1
 specialsite.tk, 1
 specialtechnique.tk, 1
@@ -125721,6 +126423,7 @@
 spertto.com, 1
 spes.solutions, 1
 spesys-services.fr, 1
+spetsialist-po-zakupkam.ru, 1
 spetsialist.cf, 1
 spetskabel.ru, 1
 spettacolocame.ga, 1
@@ -125728,6 +126431,7 @@
 speventos.es, 1
 spewingmews.moe, 1
 speww.com, 1
+sphaeristerium.it, 1
 sphere-realty.com, 1
 sphereblur.com, 1
 spherejoias.com.br, 1
@@ -125741,7 +126445,7 @@
 spiceislandhome.com, 1
 spicejungle.com, 1
 spicemail.cc, 1
-spicemoney.com, 1
+spicemoney.com, 0
 spicerack.co.uk, 0
 spicerack.uk, 1
 spichki.tk, 1
@@ -125778,7 +126482,6 @@
 spiellawine.de, 1
 spielmit.com, 1
 spieltexte.de, 1
-spielzeugpistolen.de, 1
 spiet.nl, 1
 spiffsearch.com, 1
 spiga.ch, 0
@@ -125791,6 +126494,7 @@
 spilerpsychotherapy.ca, 1
 spilka-dyplomativ.tk, 1
 spillbasen.no, 1
+spillefuglen.com, 1
 spillersfamily.net, 0
 spillforum.no, 1
 spillhosting.no, 1
@@ -125822,7 +126526,6 @@
 spinscity.net, 1
 spinscity777.info, 1
 spintracer.de, 1
-spiraldynamics.pro, 1
 spiralstabilization.com, 1
 spireat.it, 1
 spirella-shop.ch, 1
@@ -125840,7 +126543,7 @@
 spiritualife.net, 1
 spiritualites.ch, 0
 spiritualityrise.com, 1
-spiritualpsychologyofacting.com, 0
+spiritualpsychologyofacting.com, 1
 spiritualvybz.com, 1
 spiritworld.ml, 1
 spiro.se, 1
@@ -125894,6 +126597,7 @@
 spofia.nu, 1
 spokanecounty.gov, 1
 spokaneexteriors.com, 1
+spokanevalleywa.gov, 1
 spokeoaffiliates.com, 1
 spokesly.com, 1
 spolekatelier.cz, 1
@@ -125938,6 +126642,7 @@
 sportcenter.ml, 1
 sportchirp.com, 1
 sportclipsfranchise.com, 1
+sportcompactwarehouse.com, 1
 sportda.tk, 1
 sportdfw.com, 1
 sporte3q.com, 1
@@ -125990,7 +126695,6 @@
 sportsdans.tk, 1
 sportsdeck.tk, 1
 sportsdestinations.com, 1
-sportservice.bz, 1
 sportsgraphing.com, 1
 sportskibat.tk, 1
 sportsmagy.com, 1
@@ -126012,7 +126716,6 @@
 sportvissenfun.tk, 1
 sportwars.net, 1
 sportwette.net, 1
-sportwetten-anbieter.com, 1
 sportwettenbonus.de, 1
 sportwettenschweiz.net, 1
 sportxt.ru, 0
@@ -126083,6 +126786,7 @@
 spribe.co, 1
 spribe.io, 1
 spribe.net, 1
+spribe.tech, 1
 spribegaming.com, 1
 spricknet.de, 1
 sprietlopen.tk, 1
@@ -126094,6 +126798,7 @@
 springfieldbricks.com, 0
 springfieldchartertownship.gov, 1
 springfieldneurological.com, 1
+springfieldsd.gov, 1
 springfieldvt.gov, 1
 springgrillhouse.com, 1
 springgrovepa.gov, 1
@@ -126147,6 +126852,7 @@
 spufpowered.com, 1
 spur.com.br, 1
 spurghi.roma.it, 1
+spurstark.de, 1
 spurto.in, 1
 sputnik1net.org, 1
 spx.com, 1
@@ -126161,6 +126867,7 @@
 spyequipmentuk.co.uk, 1
 spypornone.com, 1
 spyprofit.ru, 1
+spyra.rocks, 1
 spyroszarzonis.com, 1
 spyse.com, 1
 spytrash.tk, 1
@@ -126192,7 +126899,6 @@
 sqsd.xyz, 1
 squad.fr, 1
 squadco.com, 1
-squadgames.ru, 1
 squalesdechatou.org, 1
 squality2.xyz, 1
 squardllc.ml, 1
@@ -126223,7 +126929,6 @@
 squareinvoices.com, 1
 squarelab.it, 1
 squaremktg.com, 1
-squaremktgstaging.com, 1
 squarenoid.com, 1
 squareoffer.com, 1
 squareonebgc.com.ph, 1
@@ -126263,7 +126968,6 @@
 srae.me.uk, 1
 srandom.com, 1
 sranje.rocks, 1
-sratim.tv, 1
 sravyareddy.space, 1
 srb.help, 1
 srbc.gov, 1
@@ -126282,7 +126986,6 @@
 sreenadh.in, 1
 srfloki.com, 1
 srhdesign.co.uk, 1
-srhr.org, 1
 sri.com.pa, 1
 srife.net, 1
 srigc.com, 1
@@ -126336,10 +127039,10 @@
 srsfwd.eu, 1
 srsfwd.net, 1
 srsfwd.org, 1
+srto.win, 1
 srun.in, 0
 sruthisjewellery.com, 1
 srvonfire.com, 1
-srwminc.com, 1
 srx.sx, 1
 ss-news.tk, 1
 ss.com, 1
@@ -126411,6 +127114,7 @@
 ssld.at, 1
 ssldecoder.eu, 1
 ssldev.net, 1
+sslgctx.gov, 1
 sslgram.com, 1
 sslle.eu, 1
 sslmate.com, 1
@@ -126450,6 +127154,7 @@
 ssslgaragedoors.co.za, 1
 sssppp.gq, 1
 sssss.click, 1
+sssssssss.com, 1
 ssst.top, 1
 sst-racing.ch, 1
 sst.ru, 1
@@ -126513,7 +127218,9 @@
 staffingnation.com, 1
 staffordpk.tk, 1
 staffsocial.fr, 1
+stage-bluejeans.com, 1
 stage-metrobible.org, 1
+stage-privacyportal-ui.azurewebsites.net, 1
 stage-props-blank-guns.com, 1
 stage-recuperation-points-bordeaux.com, 1
 stage-recuperation-points-lille.com, 1
@@ -126527,6 +127234,7 @@
 stage-recuperation-points-rennes.com, 1
 stage-recuperation-points-strasbourg.com, 1
 stage-recuperation-points-toulouse.com, 1
+stage-ui.azurewebsites.net, 1
 stage.wepay.com, 1
 stage4.ch, 1
 stageirites.com, 1
@@ -126539,7 +127247,7 @@
 staging-scholar.tk, 1
 stagingpepocoin.com, 1
 stagmarketim.com, 1
-stagoz.com, 0
+stagoz.com, 1
 stahlen.dk, 1
 stahlfors.com, 1
 stahlp.dk, 1
@@ -126614,7 +127322,9 @@
 standardnotes.com, 1
 standards.gov, 1
 standardstraversal.jp, 1
+standardwohnungsbaukredit.ag, 1
 standardwohnungsbaukredit.biz, 1
+standardwohnungsbaukredit.com, 1
 standardwohnungsbaukredit.eu, 1
 standardwohnungsbaukredit.org, 1
 standdownofnorthjersey.org, 1
@@ -126691,6 +127401,7 @@
 stardrive.cf, 1
 starease.com, 1
 starease.net, 1
+starengineeringinc.com, 1
 stareplanymiast.pl, 1
 starexponent.com, 1
 starfall.systems, 1
@@ -126725,7 +127436,6 @@
 starkvilleurgentcareclinic.com, 1
 starlabs.bio, 1
 starlanka.com, 1
-starleague-navigators.com, 1
 starlincuesta.gq, 1
 starline.ru, 1
 starlinks.tk, 1
@@ -126751,6 +127461,7 @@
 starrosesandplants.com, 1
 starry.blue, 1
 starrynight.com, 1
+starryvoid.com, 1
 starsam80.net, 1
 starsandmanifolds.xyz, 0
 starsbattle.net, 1
@@ -126839,7 +127550,8 @@
 startupweb.io, 1
 startw.cf, 1
 startwithpieter.com, 1
-startzz.digital, 1
+startzz.online, 1
+startzz.shop, 1
 starvizyon.com, 1
 starwarschronology.com, 1
 starwatches.eu, 1
@@ -126892,8 +127604,6 @@
 statisticalsurveys.com, 1
 statistician-online.com, 0
 statistik-seminare.de, 1
-statistik.at, 1
-statistik.gv.at, 1
 statistikian.com, 1
 statnevlajky.sk, 1
 statnivlajky.cz, 1
@@ -126915,7 +127625,6 @@
 statusmantra.tk, 1
 statuswatch.io, 1
 statz.pl, 1
-stau-a.de, 1
 stauffer-media.net, 1
 staufferenergie.ch, 1
 stavanger.kommune.no, 1
@@ -126923,9 +127632,9 @@
 stavinchains.tk, 1
 stavnager.net, 1
 stavropol-news.ga, 1
-stavros.ovh, 1
 staxflax.tk, 1
 stay-curious.at, 1
+stay4all.nl, 1
 stayby.me, 1
 staycurrent.eu, 1
 staycurrent.nl, 1
@@ -126958,6 +127667,7 @@
 stced.org, 1
 stcharlescountycsfamo.gov, 1
 stcharlesparish.gov, 1
+stclairpa.gov, 1
 stclairvet.co.uk, 1
 stclementmatawan.org, 1
 stclementreligioused.org, 1
@@ -126971,6 +127681,7 @@
 stdnet.ru, 1
 stdssr.com, 1
 ste2.de, 1
+stea-web.com, 1
 steacy.tech, 1
 steadfastagencies.com.au, 1
 steadfastplacements.com.au, 1
@@ -127076,13 +127787,12 @@
 steffi-in-australien.com, 1
 steffi-knorn.de, 1
 steffko.net, 1
-stefpastoor.nl, 1
+stefpastoor.nl, 0
 steggemachine.com, 1
 stehlik.co.uk, 1
 stehlik.sk, 1
 steigerlegal.ch, 1
 steinbach.ai, 1
-steinbergmedia.de, 1
 steiner-dominik.at, 1
 steiner.do, 1
 steiner.is, 1
@@ -127117,7 +127827,7 @@
 steller.co, 1
 stelletjeafgebeuktemongolen.tk, 1
 stellexshop.ru, 1
-stelling.nl, 1
+stelling.nl, 0
 stellmacher.name, 1
 stelovisual.pl, 1
 stels.ml, 1
@@ -127168,6 +127878,7 @@
 stephencreilly.com, 1
 stephenhaunts.com, 1
 stephenperreira.com, 1
+stephenplustwik.com, 1
 stephenreescarter.net, 1
 stephenschirle.gq, 1
 stephenschirle.ml, 1
@@ -127198,7 +127909,6 @@
 stepzen.com, 1
 ster-enzo.nl, 1
 ster.nl, 1
-sterchi-fromages.ch, 0
 stereoamistadmomos.ga, 1
 stereoamistadmomos.gq, 1
 stereoamistadmomos.ml, 1
@@ -127236,6 +127946,7 @@
 steuerberater-essen-steele.com, 1
 steuerberater-hopfner.de, 1
 steuerboard.org, 1
+steuerheld-werden.de, 1
 steuerimgriff.de, 1
 steuerkanzlei-edel.de, 1
 steuern-recht-wirtschaft.de, 1
@@ -127305,9 +128016,9 @@
 stgeorgegolfing.com, 1
 stgeorgeks.gov, 1
 stgeorgesbank.com.pa, 1
+stgermainwi.gov, 1
 stghv.com, 1
 stgiannanorthfieldnj.org, 1
-stgusa.com, 1
 stgy.it, 1
 sth.sh, 1
 sthelen.eu, 1
@@ -127315,6 +128026,7 @@
 sthenryrc.org, 1
 sthetix.info, 1
 sthpr.gr, 1
+sthreemarketing.com, 1
 stibal.art, 1
 stichtingcompassroemenie.nl, 1
 stichtingcoronaonderzoek.nl, 1
@@ -127353,6 +128065,7 @@
 stiebelservice.com.au, 1
 stiebelstore.com.au, 1
 stiehler-leipzig.tk, 1
+stiekemverliefdopjou.nl, 1
 stierheating.com, 1
 stiff.wang, 1
 stifflersmom.ga, 1
@@ -127361,6 +128074,7 @@
 stiftung-lq.ch, 1
 stiftung-lq.com, 1
 stiftung-lq.net, 1
+stiftungleostrauss.com, 1
 stiftunglq.com, 1
 stigviewer.com, 1
 stihiya.tk, 1
@@ -127376,6 +128090,7 @@
 stileapp.com, 1
 stilecop.com, 1
 stilettobg.com, 1
+stilfoto.net, 1
 stilingavonia.lt, 1
 stilldrunkfromyesterday.com, 1
 stillpointmag.org, 1
@@ -127392,6 +128107,7 @@
 stiltnerelectric.com, 1
 stilus-patent.ru, 1
 stimmgabel.lu, 1
+stimulants.uk, 1
 stina-vino.hr, 1
 stingraybook.com, 1
 stinici.site, 1
@@ -127416,6 +128132,7 @@
 stitchlabs.com, 1
 stivesbouncycastlehire.co.uk, 1
 stjh.org.sg, 1
+stjohnbjc.org, 1
 stjohncamden.com, 1
 stjohnin.com, 1
 stjohnin.gov, 1
@@ -127469,6 +128186,7 @@
 stmaryextra.uk, 1
 stmaryscountymd.gov, 1
 stmaryskutztown.com, 1
+stmarysmdsao.gov, 1
 stmarysnutley.org, 1
 stmarystfd.org, 1
 stmaryswv.gov, 1
@@ -127488,7 +128206,6 @@
 stnl.de, 0
 stntrading.eu, 1
 sto-garant.nl, 1
-stob-architekten.de, 1
 stock-ai.com, 1
 stockageprive.net, 1
 stockanalysis.com, 1
@@ -127506,6 +128223,7 @@
 stocks-adviser.com, 1
 stockslam.ga, 1
 stocksnews.tk, 1
+stockspy.ru, 1
 stockstuck.com, 1
 stockt-shirtdesigns.com, 1
 stocktonengineering.co.uk, 1
@@ -127530,7 +128248,6 @@
 stoicatedy.ovh, 1
 stoicnotaries.com, 1
 stoicus.com.br, 1
-stoildaaliyski.com, 1
 stoinov.com, 1
 stoketalent.com, 1
 stokl.com.au, 0
@@ -127619,8 +128336,6 @@
 stopfraud.gov, 1
 stoph.at, 1
 stophoax.id, 1
-stopitparimatch.online, 1
-stopitstavki.online, 1
 stopka.tk, 1
 stopkadr-studio.ru, 1
 stoplight.io, 1
@@ -127658,7 +128373,6 @@
 storebusy.nz, 1
 storecard.tk, 1
 storecove.com, 0
-storedaway.co.uk, 1
 storedieu.com, 1
 storedsafe.com, 1
 storeforward.email, 1
@@ -127705,11 +128419,13 @@
 stormsglass.com, 1
 stormwatcher.org, 1
 stormylegions.tk, 1
+storri.in, 1
 storspillercasino.com, 1
 storungssuche.com, 1
 storvann.net, 1
 storvann.no, 1
 storvault.co.za, 1
+story.be, 1
 story.nl, 1
 storyark.de, 1
 storyark.eu, 1
@@ -127822,7 +128538,6 @@
 strashtrading.com, 1
 strass-sur-mesure.fr, 1
 strassberger.tk, 1
-strata-gallery.com, 1
 stratahealth.com, 1
 strate.io, 1
 strategery.io, 1
@@ -127843,7 +128558,9 @@
 stratfordct.gov, 1
 stratfordnh.gov, 1
 stratfordwi.gov, 1
+stratforge.com, 1
 strathspeycrown.com, 1
+strati.com.br, 1
 stratik.com.co, 1
 stratinator.com, 1
 stratlibs.org.uk, 1
@@ -127919,7 +128636,6 @@
 street-medics.fr, 1
 street-race.tk, 1
 street-racing.tk, 1
-street-tek.com, 1
 streetart.tk, 1
 streetartcities.com, 1
 streetballromania.tk, 1
@@ -127936,7 +128652,6 @@
 streetspirit.tk, 1
 streetspotr.com, 1
 streetstunters.tk, 1
-streetvendors.africa, 1
 streetview.wien, 1
 streetwitnessingchurch.com, 1
 strefapi.com, 1
@@ -127966,6 +128681,7 @@
 strijdmeevoorvrede.gent, 1
 strijkkraal.tk, 1
 strijkshop.be, 1
+strikeone.io, 1
 strikeout.ga, 1
 strikers.cf, 1
 strikers.futbol, 1
@@ -127989,6 +128705,7 @@
 strn.pl, 1
 strobe.cool, 1
 strobel.cl, 1
+strobotti.com, 1
 stroccounioncity.org, 1
 stroeck.at, 1
 stroeder.com, 1
@@ -128005,8 +128722,8 @@
 strojmaster.tk, 1
 stroke-of-luck.com, 1
 strokesb.store, 1
+strokesurvivor.nz, 1
 strom.family, 1
-stromaci.sk, 1
 stromak.cz, 0
 stromectol.gq, 1
 stromkomfort.cz, 1
@@ -128036,7 +128753,6 @@
 strophicmusic.com, 1
 stropkova.eu, 1
 strosebelmar.com, 1
-strosemausoleum.com, 1
 stroseoflima.com, 1
 strotmann.de, 1
 strousberg.net, 1
@@ -128059,7 +128775,6 @@
 strullmeier.eu, 1
 strumpe.lv, 1
 strunecka.cz, 1
-strutsdepot.com, 1
 struxureon.com, 1
 strydom.me.uk, 1
 strypsteen.me, 1
@@ -128067,6 +128782,7 @@
 stsen.de, 1
 stsolarenerji.com, 1
 ststanislaus.com, 1
+ststanstrans.org, 1
 ststephensc.gov, 1
 sttammanyurology.com, 1
 sttelemediagdc.in, 1
@@ -128075,7 +128791,6 @@
 sttl-topographie.com, 1
 sttpk.id, 0
 sttrv.ru, 1
-stuartalexander.com.au, 1
 stuartbeard.com, 1
 stuartbell.co.uk, 1
 stuartbell.uk, 1
@@ -128148,6 +128863,7 @@
 studio-np.ru, 1
 studio-one.ru, 1
 studio-satellite.com, 1
+studio1213.us, 1
 studio32.tk, 1
 studio4101.ga, 1
 studio413.net, 1
@@ -128155,6 +128871,7 @@
 studio678.com, 0
 studio91.tk, 1
 studioadevents.com, 1
+studioamai.be, 1
 studioamoureus.nl, 1
 studioandrew.tk, 1
 studioavvocato.milano.it, 1
@@ -128280,7 +128997,9 @@
 stupidstatetricks.com, 1
 stupidthoughts.tk, 1
 stupino-stroy.cf, 1
+sturdybusiness.com, 1
 sturents.com, 1
+sturgeonbaywi.gov, 1
 stut.tk, 1
 stutelage.com, 1
 stutsmancounty.gov, 1
@@ -128428,6 +129147,7 @@
 suburbservice.net, 0
 subversionnews.tk, 1
 subvetcustoms.com, 1
+subway.co.id, 1
 subwaysurfers.tk, 1
 subwaytrain.tk, 1
 succ.in, 1
@@ -128445,6 +129165,7 @@
 succubus.network, 1
 succubus.xxx, 1
 succulentplantguru.com, 1
+succulenty.ru, 1
 sucessclick.gq, 1
 suche.org, 1
 suchhire.com, 1
@@ -128647,6 +129368,7 @@
 sumran.in, 1
 sumter.info, 1
 sumtercountysc.gov, 1
+sumterhousecleaning.com, 1
 sumthing.com, 1
 sumtotallab.host, 1
 sumutoday.com, 1
@@ -128740,6 +129462,7 @@
 sunnyssingh.tk, 1
 sunnyx3m.com, 1
 sunokuran.tk, 1
+sunoven.com, 1
 sunpax.ga, 1
 sunpig.com.my, 1
 sunpig.com.sg, 1
@@ -128752,6 +129475,7 @@
 sunrichtec.com, 1
 sunrise.tk, 1
 sunrisebeachmo.gov, 1
+sunrisebeachtx.gov, 1
 sunrisesolutionsutah.com, 1
 sunrisewhen.com, 1
 sunroof.ga, 1
@@ -128777,6 +129501,7 @@
 sunsquare.cz, 1
 sunstar.bg, 1
 sunstaroptical.com, 1
+sunsumba.com, 1
 sunsun-jewelry.com, 1
 sunsun.co, 1
 sunsun.com.sg, 1
@@ -128812,6 +129537,7 @@
 supel.gq, 1
 supel.ml, 1
 super-60.com, 1
+super-60.net, 1
 super-baik.tk, 1
 super-boy.tk, 1
 super-gs.jp, 1
@@ -128824,6 +129550,7 @@
 super11.nl, 1
 super365.info, 1
 super365aa.com, 1
+super60.ag, 1
 super60.org, 1
 superaficionados.com, 1
 superalem.org, 1
@@ -128935,6 +129662,7 @@
 supernogi.ga, 1
 supernovicebaker.com, 1
 superops.ai, 1
+superpaczka24.pl, 1
 superpase.com, 1
 superpi.noip.me, 1
 superpowerexperts.com, 1
@@ -129082,9 +129810,11 @@
 surplusdirectory.ml, 1
 surplusrecord.com, 1
 surpreem.com, 1
+surprisepubliclibrary.gov, 1
 surpriz-net.tk, 1
 surrealdb.com, 1
 surrealistas.tk, 1
+surreycyclingclub.co.uk, 1
 surreyheathyc.org.uk, 0
 surreysportspark.co.uk, 1
 surrogacyaccount.com, 1
@@ -129401,6 +130131,7 @@
 sweetbabyjesus.com, 1
 sweetbasilscafe.com, 1
 sweetcalculus.ru, 1
+sweetcoraline.eu.org, 1
 sweetcorner.tk, 1
 sweetdata.io, 1
 sweetdeko.com, 1
@@ -129501,6 +130232,7 @@
 swiss-export-compliance.com, 1
 swiss-vanilla.ch, 1
 swiss-vanilla.com, 1
+swissaquashop.ch, 1
 swissbearfoodservices.com, 1
 swissbit.com, 1
 swissborg.com, 1
@@ -129611,11 +130343,11 @@
 sydneylawnandturf.com.au, 0
 sydneylounge.ga, 1
 sydneyshisha.com.au, 1
-sydneysteinger.com, 1
 sydneyvangelder.com, 1
 syds.xyz, 1
 syedmuhdadasgardezi.tk, 1
 syenar.net, 1
+syetiket.com, 1
 sygnalista-24.pl, 1
 syhost.at, 1
 syhost.ch, 1
@@ -129640,6 +130372,7 @@
 sylvangarden.net, 1
 sylvantownshipmi.gov, 1
 sylve.ch, 0
+sylviaharke.de, 1
 sylwiaipiotr.pl, 1
 sylwiart.pl, 1
 sylwiasun.com, 1
@@ -129691,14 +130424,12 @@
 synchronyse.com, 1
 synclio.com, 1
 syncmylife.net, 0
-syncoffice.com, 1
-synconlinemedia.com, 1
 syncplay.pl, 1
+syncresis.com, 1
 syncrony.com, 1
 syncsci.com, 1
 syncspace.live, 1
 synd.io, 1
-syndic-discount.fr, 0
 syndicate.vip, 1
 syndigo.com, 1
 syndika.co, 1
@@ -129736,7 +130467,6 @@
 synthetictrading.com, 1
 synthezis.tk, 1
 synthroidpills.com, 1
-synthv.fun, 0
 syntia.tk, 1
 syntric.io, 1
 syo-ryuga.jp, 1
@@ -129765,7 +130495,6 @@
 sys-stat.de, 1
 sys-state.de, 1
 sys-tm.com, 1
-sys.pub, 0
 sysadmin.pm, 1
 sysadmin.xyz, 0
 sysadmin21.tk, 1
@@ -129799,7 +130528,6 @@
 sysrq.in, 1
 sysrq.tech, 0
 syssolindia.com, 1
-sysstat.de, 1
 sysstate.de, 1
 systea.fr, 1
 systea.net, 1
@@ -129878,7 +130606,6 @@
 szepsegbennedrejlik.hu, 1
 szerbnyelvkonyv.hu, 1
 szerelem.love, 1
-szerelmes-sms.hu, 1
 szetoesq.com, 1
 szhighsun.com, 1
 szih.org.pl, 1
@@ -129919,8 +130646,6 @@
 t-moon.hr, 1
 t-network.nl, 1
 t-op2.com, 1
-t-opcs.com, 1
-t-opcs.info, 1
 t-pc.org, 1
 t-rink.com, 1
 t-shirt-template.com, 1
@@ -129967,6 +130692,7 @@
 t6957.co, 1
 t7035.com, 0
 t776633.com, 1
+t7802.com, 0
 t7e.de, 1
 t7tech.net, 1
 t8.software, 1
@@ -130003,7 +130729,6 @@
 t9297.co, 1
 t9721.com, 1
 t9728.co, 1
-t9i.in, 1
 ta-maison.fr, 1
 ta-nehisicoates.com, 1
 ta-nuth.nl, 0
@@ -130050,7 +130775,6 @@
 tablamatica.tk, 1
 tablascreek.com, 1
 tableandhearth.com, 1
-tableconvert.com, 1
 tabledown.ga, 1
 tabledusud.be, 1
 tabledusud.nl, 1
@@ -130136,6 +130860,7 @@
 tafp3.ga, 1
 tafs.com, 1
 tafusu-support.com, 1
+tag-insights.com, 1
 tagabrand.co.uk, 1
 tagalliances.com, 1
 tagalog.com, 1
@@ -130207,7 +130932,6 @@
 tailpuff.net, 0
 tails.boum.org, 1
 tailsteak.tk, 1
-tailwind.com, 1
 tailwindapp.com, 1
 tainiesonline.tk, 1
 taintedart.co.nz, 1
@@ -130233,6 +130957,7 @@
 taj-portal.tk, 1
 tajbrighton.tk, 1
 tajcitymnhd.com, 1
+tajeercarrent.com, 1
 tajilamagazine.com.br, 1
 tajmisreg.com, 1
 tajniy-smisl.cf, 1
@@ -130250,6 +130975,7 @@
 takanogroup.co.jp, 1
 takao-hs.com, 1
 takarabrig.com, 1
+takase.buzz, 1
 takayaindustries.ml, 1
 take-a-screenshot.org, 1
 take1give1.com, 0
@@ -130274,11 +131000,9 @@
 takepicturesleavefootprints.com, 1
 takeshi.cz, 1
 takestars.tk, 1
-takethatfile.com, 0
 takethatspainfanclub.tk, 1
 takeyourpic.co.uk, 1
 takezo.tk, 1
-takhfifeirani.ir, 1
 takhshlaw.com, 1
 taki.sh, 1
 taki.sk, 1
@@ -130300,6 +131024,7 @@
 taktraneh.com, 1
 takuhai12.com, 1
 takumi-s.net, 1
+takumikougyou.co.jp, 1
 takusan.ru, 1
 takuse.cf, 1
 takysoft.tk, 1
@@ -130310,6 +131035,7 @@
 taldia.es, 1
 taleatherworks.com, 1
 talendipank.ee, 1
+talengo.com, 1
 talentbazi.com, 1
 talentcast.nl, 1
 talentcast.org, 1
@@ -130404,6 +131130,7 @@
 tamalcloud.com, 1
 tamamo.cat, 1
 tamarac.gov, 1
+tamarasoft.com, 1
 tamareverson.tk, 1
 tamarind.by, 1
 tambayology.com, 1
@@ -130455,7 +131182,6 @@
 tamylove.net, 1
 tan90.tw, 1
 tanabekensetsu.co.jp, 1
-tanacebu.com, 1
 tanacio.com, 1
 tanatos.ga, 1
 tanchynski.com, 1
@@ -130500,11 +131226,11 @@
 tangyue.date, 1
 tangzhao.net, 1
 tanhaa.tk, 1
+tanhongit.com, 1
 taniawizualizacja.pl, 1
 tanie-obraczki-szczecin.tk, 1
 tanie-uprawnienia-sep.pl, 1
 tanie-uslugi-ksiegowe.pl, 1
-taniekasy.online, 1
 taniku-succulent.com, 1
 taninmislazer.com, 1
 tanjaradovic.tk, 1
@@ -130526,6 +131252,7 @@
 tannerwj.com, 1
 tannextcloud.cf, 1
 tannlegenityrkia.no, 1
+tanomimaster.com, 1
 tanovar.com, 1
 tanphu.tk, 1
 tanpopo.io, 1
@@ -130537,6 +131264,7 @@
 tantravoorlichting.nl, 1
 tantrum-rocks.tk, 1
 tantso.com, 1
+tanuki.army, 1
 tanushka.tk, 1
 tanveersingh.tk, 1
 tanweerkhan.tk, 1
@@ -130567,7 +131295,6 @@
 taoways.com, 0
 taoyingchang.tk, 1
 tap.az, 1
-tapahtumakauppa.fi, 1
 tapbutdao.com, 1
 tapchiphaidep.info, 1
 tapcloud.com, 1
@@ -130582,6 +131309,7 @@
 tappezzeria.roma.it, 1
 tappezziere.milano.it, 0
 tappezziere.roma.it, 1
+tappyshop.com.br, 1
 tapquad.com, 1
 taprix.org, 1
 taqamorocco.ma, 1
@@ -130590,7 +131318,7 @@
 taqun.club, 1
 tara.ru, 1
 tarabici.tk, 1
-taraiid.com, 0
+taraiid.com, 1
 tarakan-klopik.tk, 1
 taraksarkar.tk, 1
 taranagar.tk, 1
@@ -130610,6 +131338,7 @@
 tardics.net, 1
 tardis.cloud, 1
 tardis.io, 1
+tardishomelab.com, 1
 tarek.wtf, 1
 tarekfadel.com, 1
 tarfand-pc.tk, 1
@@ -130656,7 +131385,6 @@
 tarot-online.it, 1
 tarot.vn, 1
 tarotgratis.vip, 1
-tarotistasvidentes.es, 1
 tarotreadingexplained.com, 1
 tarotsgratuits.com, 1
 tarper24.net, 1
@@ -130705,10 +131433,8 @@
 taskworld.com, 1
 tasogarenoinori.net, 1
 tasonoken.tk, 1
-taspo.de, 1
 tasports.com.au, 1
 tasports2043.com.au, 1
-tastebudsmarketing.com, 1
 tastenewwines.com, 1
 tasteville.com.au, 1
 tastic.com, 1
@@ -130716,7 +131442,6 @@
 tastycool.io, 1
 tastyplacement.com, 1
 tastystakes.com, 1
-tastyworks.com, 1
 tastyworksreview.co, 1
 tasvideos.org, 1
 tatamypa.gov, 1
@@ -130733,12 +131458,14 @@
 tatary.cf, 1
 tatary.tk, 1
 tate.com, 1
+tatecountyms.gov, 1
 tateesq.com, 0
 tateishi-ip.com, 1
 tatemode.com, 1
 tatercraft.org, 1
 taters.org, 1
 tatewake.com, 1
+tatfan.com, 1
 tathanhson.com, 1
 tatiana-kpb.tk, 1
 tatilsepeti.com, 1
@@ -130810,6 +131537,7 @@
 taxboard.gov.au, 1
 taxborn.com, 0
 taxdispute.win, 1
+taxesreclaimed.com, 1
 taxfunder.co.uk, 1
 taxfunder.uk, 1
 taxglobalizers.com, 1
@@ -130838,7 +131566,6 @@
 taxipool.co.il, 1
 taxis-collectifs.ch, 0
 taxisafmatosinhos.pt, 1
-taxisantandreudelabarca.es, 1
 taxiscollectifs.ch, 0
 taxiseek.ga, 1
 taxiunion.info, 1
@@ -130850,6 +131577,7 @@
 taxprocpa.com, 1
 taxteam.co.il, 1
 taxuni.com, 1
+tayar2u.my, 1
 taybee.net, 1
 tayebbayri.com, 1
 taylorandfrancis.com, 1
@@ -130861,6 +131589,7 @@
 taylored.ga, 1
 taylorelectionsfl.gov, 1
 taylorfarms.com, 1
+taylorfrancis.com, 1
 taylorfry.au, 1
 taylorfry.co.nz, 1
 taylorfry.com, 1
@@ -130870,7 +131599,6 @@
 taylors-castles.co.uk, 1
 taylorshillsamoan.org, 1
 taylorstauss.com, 1
-taysbookkeeping.com, 1
 tazamobile.ga, 1
 tazarelax.es, 1
 tazefirsat.com, 1
@@ -130962,7 +131690,6 @@
 tci-thailand.org, 1
 tcit.fr, 0
 tcj.ir, 1
-tcksolutions.com, 0
 tcl.sh, 1
 tcmk-tomsk.ru, 1
 tcmskarate.fr, 1
@@ -130997,6 +131724,7 @@
 tdeecalculator.org, 1
 tdelmas.ovh, 1
 tdev.team, 1
+tdk-ventures.com, 1
 tdk.eu, 1
 tdlesovik.ru, 1
 tdln.tk, 1
@@ -131024,7 +131752,6 @@
 teablr.com, 1
 teach.com, 1
 teach.gq, 1
-teachable.com, 1
 teachbase.ru, 1
 teachbiz.net, 1
 teacher.org, 1
@@ -131083,6 +131810,7 @@
 team7-home.com, 1
 team957.co.uk, 1
 teamarasensas.tk, 1
+teamariens.com, 1
 teamasea.com, 1
 teamassists.com, 0
 teamawesome.ga, 1
@@ -131195,7 +131923,6 @@
 teasers.ga, 1
 teatrarium.com, 1
 teatrebarcelona.com, 1
-teatrolatea.org, 1
 teatroutopia.tk, 1
 teazer.tk, 1
 teb-akademia.pl, 1
@@ -131223,9 +131950,9 @@
 tecart.de, 1
 tecartcrm.de, 1
 tecatebeerusa.com, 1
-tecdoor.pt, 1
 tece.com, 1
 tece.de, 1
+tecfix.com, 1
 tecfleet.com, 1
 tech-clips.com, 0
 tech-essential.com, 1
@@ -131243,7 +131970,7 @@
 tech-story.net, 1
 tech-urdu.tk, 1
 tech-value.eu, 1
-tech-zealots.com, 1
+tech-zealots.com, 0
 tech-zoom.com, 1
 tech3araby.com, 1
 tech4cancer.com, 1
@@ -131340,7 +132067,6 @@
 techkeep.tk, 1
 techkentucky.tk, 1
 techkilla.tk, 1
-techlab.co.il, 1
 techland.net, 1
 techlandgg.com, 1
 techlearningcollective.com, 1
@@ -131383,13 +132109,16 @@
 technick.net, 1
 technicodelabels.com, 1
 technicus.nl, 1
+technikoma.com, 1
 technikoma.eu, 1
+technikoma.net, 1
 technikoma.org, 1
 technikoma.social, 1
+technikplanet.de, 1
 techniqueelevage.ddns.net, 1
 technisys.com, 1
+techno-utopia.com, 1
 techno360.in, 1
-technochat.in, 1
 technocracy.works, 1
 technodance.tk, 1
 technodemarkt.bg, 1
@@ -131406,7 +132135,6 @@
 technolink.cf, 1
 technolink.ga, 1
 technologie-innovation.fr, 1
-technology-shopping.com, 1
 technology.cx, 1
 technologyabundant.ga, 1
 technologyandroid.tk, 1
@@ -131441,6 +132169,7 @@
 technologyvisual.ga, 1
 technologywaterfront.ga, 1
 technolution.tk, 1
+technolux.net, 0
 technomagia.tk, 1
 technomix.tk, 1
 technopedia.gq, 1
@@ -131475,6 +132204,7 @@
 techpp.com, 1
 techpressable.com, 1
 techprom.tk, 1
+techramer.com, 1
 techraptor.net, 1
 techreek.com, 1
 techrek.pl, 1
@@ -131515,6 +132245,7 @@
 techtrendnews.tk, 1
 techtrozan.ga, 1
 techunit.org, 1
+techvaz.com, 1
 techvel.pl, 1
 techview.link, 1
 techviewforum.com, 1
@@ -131566,7 +132297,6 @@
 tecnogazzetta.it, 1
 tecnogestionsas.com, 1
 tecnograficaimpresos.com, 1
-tecnoguias.com, 1
 tecnoimpianti.bz.it, 1
 tecnologiahdv.com, 1
 tecnologiasurbanas.com, 1
@@ -131577,6 +132307,7 @@
 tecnopiniones.com, 1
 tecnoticiasdigitales.tk, 1
 tecnyal.com, 1
+tecob.com, 1
 tecon.co.at, 1
 tecorrs.tk, 1
 tecparsnet.ir, 1
@@ -131586,6 +132317,7 @@
 tecsar.cn, 1
 tecsar.org, 1
 tecscipro.de, 1
+tectas.co.jp, 1
 tecumsehmi.gov, 1
 tecwolf.com.br, 1
 tecyt.com, 1
@@ -131611,6 +132343,7 @@
 tee-suche.de, 1
 teebyhuman.com, 1
 teecketing.com, 1
+teedinsiam.com, 1
 teefar.com, 1
 teehaus-shila.de, 1
 teekaymedia.tk, 1
@@ -131689,7 +132422,6 @@
 teka.ro, 1
 tekanswer.com, 1
 tekcafe.vn, 1
-tekcan.av.tr, 1
 tekdt.com, 1
 tekila.cf, 1
 tekila.ga, 1
@@ -131752,6 +132484,7 @@
 teleafrica.ga, 1
 telealarme.ch, 0
 telealarmevalais.ch, 1
+teleassistance-telealarme.com, 1
 teleblog.gq, 1
 telebugs.tk, 1
 telecablenostima.tk, 1
@@ -131783,7 +132516,6 @@
 telegashop.cf, 1
 telegra.ph, 1
 telegram-gp.ml, 1
-telegram-sms.com, 0
 telegram.org, 1
 telegram.poker, 1
 telegramlearn.tk, 1
@@ -131810,7 +132542,6 @@
 telepilote-academy.fr, 1
 telepizza.com, 1
 telepizza.es, 1
-telepizza.pt, 1
 telepok.com, 1
 telepons.com, 1
 teleport.com.br, 1
@@ -131826,8 +132557,8 @@
 teleskell.org, 1
 telesoftware.tk, 1
 telesonicengineering.com.my, 1
-teleta.co.uk, 1
 teletaxe.fr, 1
+teletechnology.in, 1
 teleteen.ru, 1
 teleteleei.ml, 1
 teletexto.com, 1
@@ -131846,7 +132577,6 @@
 telezon.ru, 1
 telfas.de, 1
 telford.codes, 1
-telhai.ac.il, 1
 telhatelite.com.br, 1
 telk.kr, 1
 telka-online.tk, 1
@@ -131863,6 +132593,7 @@
 tellme.tk, 1
 tellusaboutus.com, 1
 telly.site, 1
+telly.wtf, 1
 tellygames.com, 1
 tellyourtale.com, 1
 telnet.dk, 1
@@ -131875,7 +132606,6 @@
 telsu.fi, 1
 teltru.com, 1
 telugu4u.net, 1
-telz.com, 1
 tem.li, 1
 temaflex.tk, 1
 temariogratis.com, 1
@@ -131893,7 +132623,7 @@
 temnacepel.cz, 1
 temnikova.tk, 1
 temofoundation.com, 1
-temogroup.com, 1
+temogroup.org, 1
 temogroupe.com, 1
 temoinfidele.fr, 1
 temoinfo.com, 1
@@ -131981,6 +132711,8 @@
 tenma.pro, 1
 tennaxia.com, 1
 tenncare.gov, 1
+tennesseansforliberty.org, 1
+tenni.xyz, 0
 tennis-academy-weserbergland.de, 1
 tennis-agesc.fr, 1
 tennis-altai.tk, 1
@@ -132062,10 +132794,14 @@
 teradatta.tk, 1
 teramind.co, 1
 teramundi.com, 1
+teran.me, 1
+teran.pw, 1
+teran.ru, 1
 teranacreative.com, 1
 terapeuticaenalza.es, 1
 terapiaradial.tk, 1
 terapower.com.tw, 1
+teraren.com, 1
 teraservice.eu, 1
 teraservice.ml, 1
 terass.com, 0
@@ -132105,7 +132841,6 @@
 termoidraulico.roma.it, 1
 termopares.tk, 1
 termux.com, 1
-ternakbisnis.id, 1
 ternex.ru, 1
 ternio.io, 1
 ternitoday.it, 1
@@ -132153,14 +132888,15 @@
 terrax.net, 1
 terredeshommes.nl, 1
 terrelltx.gov, 1
-terremoto.com.br, 1
 terrenal.tk, 1
 terrenasparadise.com, 1
 terres-et-territoires.com, 1
 terresmagiques.com, 0
+territoriesredress.gov.au, 1
 territoriocuchero.tk, 1
 territoriya.tk, 1
 territory.cf, 1
+terroinsect.com.mx, 1
 terrorbilly.com, 1
 terrorblast.tk, 1
 terrorism.lol, 1
@@ -132171,7 +132907,6 @@
 terryoconnor.org, 1
 ters.ga, 1
 terudon.com, 1
-terumoindia.com, 1
 terumomedical.com, 1
 tervelde.com, 1
 terviseamet.ee, 0
@@ -132185,6 +132920,7 @@
 tesla-fire.com, 1
 tesla-tula.tk, 1
 tesladeaths.com, 1
+teslam.in, 1
 teslamagician.com, 1
 teslamate.ca, 1
 teslasuit.io, 1
@@ -132199,6 +132935,7 @@
 test-my.tk, 1
 test-na-beremennost.tk, 1
 test-online.tk, 1
+test-privacyportal-ui.azurewebsites.net, 1
 test-school.ml, 1
 test-textbooks.com, 1
 test.de, 1
@@ -132213,6 +132950,7 @@
 testbirds.cz, 1
 testbirds.sk, 1
 testcoz.tk, 1
+testdatagovernancetool.azurewebsites.net, 1
 testdemoweb.tk, 1
 testdevelocidad.com, 1
 testdomens.ga, 1
@@ -132294,6 +133032,7 @@
 tetracycline500mg.ga, 1
 tetraktus.org, 1
 tetramax.eu, 1
+tetrarch.co, 1
 tetrimus.com, 1
 tetrisponse.io, 1
 tetsudo.jp.net, 1
@@ -132307,11 +133046,11 @@
 teungedj.de, 1
 teunmulder.tk, 1
 teunstuinposters.nl, 1
-teusink.eu, 1
 teuton.io, 1
 teutonia-grossenlueder.de, 1
 teutonia08.de, 1
 teva.com, 1
+teveblad.be, 1
 teverzamelen.nl, 1
 tewarilab.co.uk, 1
 tewkesburyyoga.com, 1
@@ -132402,7 +133141,6 @@
 tf2pickup.de, 1
 tf2pickup.fi, 1
 tf2pickup.it, 1
-tf2pickup.nl, 1
 tf2pickup.org, 1
 tf2pickup.pl, 1
 tf2pickup.se, 1
@@ -132467,7 +133205,6 @@
 th.search.yahoo.com, 0
 thablubb.de, 1
 thackert.myfirewall.org, 1
-thaf.fr, 1
 thai-massage.tk, 1
 thai-ridgeback.tk, 1
 thai.dating, 1
@@ -132516,7 +133253,6 @@
 thalliman.com, 1
 thalmann.fr, 0
 thambaru.com, 0
-thamesfamilydentistry.com, 1
 thamesvalleybuses.com, 1
 thammachartconnect.com, 1
 thammysen.vn, 1
@@ -132580,7 +133316,6 @@
 the-metropolitans.tk, 1
 the-muddy-trophy-team.tk, 1
 the-mudmen.tk, 1
-the-mystery.org, 0
 the-naked.com, 1
 the-nash-education-program.com, 1
 the-northfacejackets.net.co, 1
@@ -132599,7 +133334,6 @@
 the-wandering-midget.tk, 1
 the-winx.tk, 1
 the-woods.org.uk, 1
-the-word-smith.com, 1
 the-world.tk, 1
 the-zenti.de, 1
 the12by12.com, 1
@@ -132613,7 +133347,7 @@
 theacademicpapers.co.uk, 1
 theaccountingcompanyleeds.co.uk, 1
 theaceblock.space, 1
-theachero.com, 1
+theachero.com, 0
 theactivationfunction.com, 1
 theactuary.ninja, 1
 theadamsonchronicle.tk, 1
@@ -132695,6 +133429,7 @@
 thebeatyard.nl, 1
 thebeaulife.co, 1
 thebeautyqueen.tk, 1
+thebedfordcitizen.org, 1
 thebeeyard.org, 1
 thebeginningaftertheend.online, 1
 thebeginningviolinist.com, 1
@@ -132835,7 +133570,6 @@
 thecigarlibrary.com, 1
 theciso.com, 0
 thecityhubproject.com, 1
-thecityofrefugemin.com, 1
 thecitywarehouse.clothing, 1
 theclarke.house, 1
 theclarke.wedding, 1
@@ -132859,10 +133593,10 @@
 thecommunityguide.org, 1
 thecommunitymakers.club, 1
 thecompany.pl, 1
+thecompliancepeople.co.uk, 1
 theconcordbridge.azurewebsites.net, 1
 thecondemned.tk, 1
 theconductsoflife.com, 1
-theconomy.me, 1
 theconsultant.jp, 1
 theconsultingpeople.tk, 1
 thecontentcloud.com, 1
@@ -132906,7 +133640,6 @@
 thedailybloon.tk, 1
 thedailyprosper.com, 0
 thedailyreporteronline.com, 1
-thedailyshirts.com, 1
 thedailyupvote.com, 1
 thedanceacademybuckscounty.com, 0
 thedanielswedding.com, 1
@@ -133003,6 +133736,7 @@
 thefaceshop.ca, 1
 thefaircottage.com, 1
 thefairieswantmedead.com, 1
+thefairlanetable.com, 1
 thefairytale.tk, 1
 thefallen.tk, 1
 thefamilychemist.co.uk, 1
@@ -133089,7 +133823,6 @@
 theginnylee.com, 1
 thegioibanca.tk, 1
 thegioidulich.com.vn, 1
-thegioiruoupro.com.vn, 1
 theglencoetorah.com, 1
 theglossymusings.com, 1
 thego2swatking.com, 1
@@ -133183,7 +133916,6 @@
 theindependent.com, 1
 theindiangraph.tk, 1
 theindiantimes.in, 1
-theinflatables-ni.co.uk, 1
 theinfoblog.com, 1
 theinitium.com, 0
 theinnerprism.com, 1
@@ -133237,6 +133969,7 @@
 thelafayettecompany.com, 1
 thelaimlife.com, 1
 thelakedistrict.tk, 1
+thelancergroup.com, 1
 thelandryhat.com, 1
 thelandsite.co.uk, 1
 thelangfords.au, 1
@@ -133362,8 +134095,8 @@
 themprojects.com, 1
 themurrayfamily.me.uk, 1
 themusecollaborative.org, 1
-themushroomkingdom.net, 1
 themusicalsafari.com, 1
+themusicgalaxy.com, 1
 themusicnetwork.com, 1
 themusicofchrisbulman.tk, 1
 themusicthatnobodylikes.tk, 1
@@ -133390,8 +134123,8 @@
 thenine.info, 1
 theninenine.com, 1
 theninjasedge.com, 1
-theniska.com, 1
 thenitintech.com, 1
+thenobullshit.coach, 1
 thenocman.com, 1
 thenolank.com, 1
 thenorthschool.org.uk, 0
@@ -133413,7 +134146,6 @@
 theobg.co, 1
 theobora.fr, 1
 theobromos.fr, 0
-theoc.co, 1
 theoc4ever.tk, 1
 theocharis.org, 1
 theocjournal.tk, 1
@@ -133522,6 +134254,7 @@
 thepodcastreviewshow.com, 1
 thepoetryclub.tk, 1
 thepokerbank.com, 1
+thepokerpeople.com, 1
 thepollitochicken.com, 1
 thepool.tk, 1
 thepopcornfactory.com, 1
@@ -133549,6 +134282,7 @@
 thepuzzles.eu.org, 1
 thepxhubclientportal.co.uk, 1
 thepyre.tk, 1
+thepyrographytool.com, 1
 theqrl.org, 1
 theqtree.com, 1
 thequillmagazine.org, 1
@@ -133563,7 +134297,6 @@
 therapie-psycho-emotionnelle.fr, 1
 therapiemi.ch, 1
 therapiepraxis-westbezirk.de, 1
-therapyclient.com, 1
 therapyconnects.co.uk, 1
 therapyforblackmen.org, 1
 therapyglobe.com, 1
@@ -133608,7 +134341,6 @@
 therichardsfamily.tk, 1
 therisewellness.com, 1
 therisk.global, 1
-therivercrosswarwick.co.uk, 1
 theriverspecialist.com, 1
 thermalbad-therme.de, 1
 thermia.co.nz, 1
@@ -133628,13 +134360,12 @@
 therockawaysny.com, 0
 theroguestormtrooper.com, 1
 therokasshow.tk, 1
-theroks.com, 0
+theroks.com, 1
 theromexchange.com, 1
 theroot.com, 1
 therootdental.com, 1
 therootshive.com, 1
 theros.org.uk, 1
-therowdyrose.com, 1
 therowlinglibrary.com, 1
 theroyal.tk, 1
 therugswarehouse.co.uk, 1
@@ -133768,7 +134499,6 @@
 thetapirsmouth.com, 1
 thetassos.com, 1
 thetattooedpreacher.com, 1
-thetaylorreachgroup.com, 1
 theteaaffair.com, 1
 theteaguemovie.tk, 1
 thetebodifference.com, 1
@@ -133821,7 +134551,6 @@
 theunitehistoryproject.org, 1
 theuniversallover.tk, 1
 theuniversitiesofasia.ga, 1
-theunknownfilmcompany.com, 1
 theunleashedpet.com, 1
 theunwrittenletters.tk, 1
 theupslady.cf, 1
@@ -133843,6 +134572,7 @@
 theverybusyoffice.co.uk, 1
 thevetstop.co.uk, 1
 thevikingage.com, 1
+thevillageok.gov, 1
 thevillasatparkaire.com, 1
 thevine.one, 1
 thevintagenews.com, 0
@@ -133976,6 +134706,8 @@
 thilko.com, 1
 thilobuchholz.de, 1
 thimbros.tk, 1
+thimic.net, 1
+thimic.no, 1
 thinair.co, 1
 thinairsolutions.com, 1
 thinegen.de, 1
@@ -134016,6 +134748,7 @@
 thinkingnull.com, 0
 thinkingplanet.net, 1
 thinkinitalian.com, 1
+thinkittech.com, 1
 thinkmaking.org, 1
 thinkmarketing.ca, 1
 thinkprocedural.com, 1
@@ -134024,6 +134757,7 @@
 thinkunparalleled.com, 1
 thinkwisesoftware.com, 0
 thinkwits.com, 1
+thinwildmercury.com, 1
 thinxtream.com, 1
 thirdbearsolutions.com, 1
 thirdgenphoto.co.uk, 1
@@ -134036,7 +134770,7 @@
 thirtysixseventy.ml, 1
 thirtyspot.com, 1
 thiruvarur.org, 1
-thiry-automobiles.net, 0
+thiry-automobiles.net, 1
 thisbowin.com, 1
 thiscloudiscrap.com, 0
 thisdayinhockey.tk, 1
@@ -134051,7 +134785,6 @@
 thisisart.ie, 1
 thisisbenwoo.com, 1
 thisishugo.com, 1
-thisislaikipia.co.ke, 1
 thisismit.ch, 1
 thisisrapt.com.au, 0
 thisisreno.com, 1
@@ -134092,6 +134825,7 @@
 thomasdbrown.com, 1
 thomasduerlund.dk, 1
 thomasebenrett.de, 1
+thomasecookedds.com, 1
 thomaseikel.de, 1
 thomaseyck.com, 1
 thomasfoster.co, 1
@@ -134104,6 +134838,7 @@
 thomasmerritt.de, 1
 thomaspic.com, 1
 thomaspluschris.com, 1
+thomasrichter.de, 1
 thomass.tk, 1
 thomasstevensmusic.com, 0
 thomastestor.tk, 1
@@ -134148,12 +134883,12 @@
 thoughtsynth.net, 1
 thoughtsynth.org, 1
 thoughtworthy.info, 1
-thouqi.com, 1
 thousandoakselectrical.com, 1
 thousandoaksexteriorlighting.com, 1
 thousandoakslandscapelighting.com, 1
 thousandoakslighting.com, 1
 thousandoaksoutdoorlighting.com, 1
+thowzzy.be, 1
 thoxyn.com, 1
 thpatch.net, 1
 thpay.com, 1
@@ -134251,7 +134986,6 @@
 throwmails.com, 1
 throwpass.com, 1
 thrustrules.tk, 1
-thrw.ml, 1
 ths.li, 1
 thsc.us, 1
 thsconstructors.com, 1
@@ -134336,6 +135070,7 @@
 tianeptine.com, 1
 tianjiaxi.com, 1
 tianjinair.com, 1
+tianle.sh, 1
 tianshili.me, 1
 tiantangbt.com, 1
 tianwen.tk, 1
@@ -134375,6 +135110,7 @@
 ticketix.com, 1
 ticketmaze.com, 0
 ticketpro.ca, 1
+ticketrestaurant.us, 1
 ticketrunway.com, 1
 tickets2004.tk, 1
 ticketscheapairfare.com, 1
@@ -134387,31 +135123,7 @@
 ticketsource.io, 1
 ticketsource.us, 1
 ticketsourcebeta.co.uk, 1
-ticketswap.at, 1
-ticketswap.be, 1
-ticketswap.ch, 1
-ticketswap.co, 1
-ticketswap.co.nz, 1
-ticketswap.com, 1
-ticketswap.com.au, 1
-ticketswap.com.br, 1
-ticketswap.cz, 1
-ticketswap.de, 1
-ticketswap.dk, 1
-ticketswap.es, 1
-ticketswap.fi, 1
-ticketswap.fr, 1
-ticketswap.hu, 1
-ticketswap.ie, 1
-ticketswap.in, 1
-ticketswap.it, 1
-ticketswap.nl, 1
-ticketswap.no, 1
-ticketswap.pl, 1
-ticketswap.pt, 1
 ticketswap.ru, 1
-ticketswap.se, 1
-ticketswap.uk, 1
 tickettailor.com, 1
 ticketunity.com, 1
 ticketure.com, 1
@@ -134469,7 +135181,6 @@
 tierfaszienation.de, 1
 tiergear.com.au, 1
 tiernanx.com, 1
-tierneytherapy.com, 1
 tieronegraphics.com, 1
 tierparadies-muhrielle.org, 1
 tierra-indomables.tk, 1
@@ -134501,7 +135212,6 @@
 tiftonga.gov, 1
 tig.mr, 1
 tiga-design.com, 1
-tiger-seo.com, 1
 tigercam.cl, 1
 tigerconnect.com, 1
 tigerdile.com, 1
@@ -134606,6 +135316,7 @@
 timbers.space, 1
 timbishopartist.com, 1
 timbrust.de, 1
+timbuktutimber.com, 1
 timcamara.com, 1
 timchanhxe.com, 0
 timco.cloud, 1
@@ -134717,6 +135428,7 @@
 timomontalto.de, 1
 timonenko.cf, 1
 timonline.tk, 1
+timoschlingmann.de, 1
 timosfoodbar.nl, 1
 timoso.de, 1
 timotheeduran.com, 1
@@ -134731,6 +135443,7 @@
 timscheuermann.ddns.net, 1
 timseverien.com, 1
 timstoffel.net, 0
+timsys.de, 1
 timtaubert.de, 1
 timtelfer.com, 1
 timtj.ca, 1
@@ -134794,6 +135507,7 @@
 tiny-house.ro, 1
 tiny-img.com, 1
 tiny-tattoos.tk, 1
+tiny.ee, 1
 tiny777.com, 1
 tinychen.com, 1
 tinycrm.pl, 1
@@ -134819,7 +135533,6 @@
 tinyssh.org, 1
 tinytownsoftplay.co.uk, 1
 tinytwitter.io, 1
-tinyurl.com, 1
 tinyvpn.org, 1
 tio.run, 1
 tiogacountyny.gov, 1
@@ -134866,8 +135579,8 @@
 tircentrale.net, 0
 tirebichon.eu, 1
 tiremart.com, 1
-tiremoni.com, 1
 tirflesia.it, 1
+tirgar.org, 1
 tirgul-vertiujeni.tk, 1
 tirion.network, 0
 tirion.org, 0
@@ -134876,6 +135589,7 @@
 tirodirecto.com, 1
 tiroler-kupferschmiede.com, 1
 tirs4ne.ch, 0
+tirtalawoffice.com, 1
 tirteafuera.tk, 1
 tirupatinightwear.co.in, 1
 tis-mark.ru, 1
@@ -134918,6 +135632,7 @@
 tivido.nl, 1
 tivit-chill.partners, 1
 tivit-focus-partners.com, 1
+tiwariproduction.com, 1
 tiwilandcouncil.com, 1
 tixeconsulting.com, 1
 tixel.com, 1
@@ -134943,6 +135658,7 @@
 tju.me, 1
 tjupt.org, 1
 tjurun.ga, 0
+tjxcanada.ca, 1
 tjxxzy.com, 1
 tjzzz.com, 1
 tk-its.net, 1
@@ -134961,6 +135677,7 @@
 tki.jp, 1
 tkiely.net, 1
 tkirch.de, 1
+tklist.us, 1
 tklm.pl, 1
 tkmr-gyouseishosi.com, 1
 tkn.me, 1
@@ -134988,7 +135705,6 @@
 tleplus.com, 1
 tlercher.de, 1
 tlicycling.com, 1
-tllgh.eu, 1
 tlmicorp.com, 1
 tln.lib.ee, 1
 tlo.xyz, 1
@@ -135008,7 +135724,6 @@
 tlv77.net, 1
 tlyphed.net, 1
 tlys.de, 0
-tm-sports.net, 1
 tm-t.ca, 1
 tm2ts.com, 1
 tm80plus.com, 0
@@ -135079,6 +135794,7 @@
 tnskvi.tk, 1
 tnsolutions.ro, 1
 tnsos.gov, 1
+tnt-21.com, 1
 tnt.construction, 0
 tnt2k.de, 1
 tntbooks.ca, 1
@@ -135128,7 +135844,6 @@
 tobias-weidhase.de, 1
 tobias.gr, 1
 tobias4.ddns.net, 1
-tobiasbergius.se, 1
 tobiasbrunner.net, 1
 tobiasconradi.com, 1
 tobiase.de, 1
@@ -135152,6 +135867,7 @@
 tobiaswiese.work, 1
 tobiefornerod.ch, 1
 tobiichi3227.ddns.net, 1
+tobiichi3227.eu.org, 1
 tobimi.com, 0
 tobinc.ddnss.de, 1
 tobis-rundfluege.de, 1
@@ -135164,7 +135880,6 @@
 toby3d.me, 1
 tobyalden.com, 1
 tobyschrapel.com, 0
-tobyslawn.com, 1
 tobyx.cc, 1
 tobyx.co, 1
 tobyx.com, 1
@@ -135264,7 +135979,6 @@
 tohevn.tk, 1
 toho-tk.com, 1
 tohofc.co.jp, 1
-tohokinemakan.tk, 1
 tohoku-fukushi.com, 1
 tohokufd.com, 1
 toila.best, 1
@@ -135312,7 +136026,6 @@
 tokocuan.id, 1
 tokoindo.top, 1
 tokokujogja.com, 1
-tokomegaonline.com, 1
 tokomoto-w.com, 1
 tokopedia.ga, 1
 toku.co, 0
@@ -135336,6 +136049,7 @@
 toledo.tk, 1
 toledoclassifieds.net, 1
 toledoescorts.net, 1
+toledohydraulic.com, 1
 toledotrainday.org, 1
 tolerance-zero.tk, 1
 toleressea.fr, 1
@@ -135378,6 +136092,7 @@
 tomandshirley.com, 1
 tomarnarede.pt, 1
 tomartv.pt, 1
+tomasa.cc, 1
 tomasdrtina.cz, 1
 tomashejatko.cz, 1
 tomashouzvicka.pl, 1
@@ -135444,6 +136159,7 @@
 tommic.eu, 1
 tommihynynen.com, 1
 tommy-bordas.fr, 0
+tommybrown.ru, 1
 tommycarrauto.com, 1
 tommyemo.com, 1
 tommyemo.net, 1
@@ -135682,9 +136398,7 @@
 top1health.com, 1
 top4shop.de, 1
 top5ones.com, 1
-top9.fr, 1
 topa.tk, 1
-topagrar.at, 1
 topagrar.com, 1
 topan.tk, 1
 topandtrending.com, 1
@@ -135761,6 +136475,7 @@
 topicv.com, 1
 topideipodarkov.ru, 1
 topjeans.ga, 1
+topjeepreviews.com, 1
 topjobs.ch, 1
 topknot.gq, 1
 topkorea.ml, 1
@@ -135778,6 +136493,7 @@
 topmanitas.es, 1
 topmarketplace.com.br, 1
 topmaxstore.com, 1
+topmba.com.au, 1
 topmmogames.org, 1
 topmoods.com, 1
 topmotoric.com, 1
@@ -135796,13 +136512,13 @@
 topofart.com, 1
 topofertas.tk, 1
 topofficesupplies.tk, 1
-topofmind.co.za, 1
 topofthefreegames.ml, 1
 topographic.tk, 1
 toponlinecasino.be, 1
 toponlinecasinosites.co.uk, 1
 toponlinemarketing.tk, 1
 topophile.net, 1
+topoptics.com.ua, 1
 topotom.tk, 1
 toppercan.es, 1
 toppillars.com, 1
@@ -135812,6 +136528,7 @@
 topproductsanalysis.com, 1
 topprogaragedoor.com, 1
 toppsnfts.com, 1
+toppstugansundbyberg.se, 1
 topradiosbrasil.tk, 1
 toprating.casino, 1
 toprci.com.br, 1
@@ -135835,6 +136552,7 @@
 topsport.bg, 1
 topsteroidsonline.com, 1
 topsvet.ru, 1
+toptapety.cz, 1
 toptec.net.br, 1
 toptechnews.cf, 1
 toptechnews.tk, 1
@@ -135914,7 +136632,6 @@
 tornadoautos.com, 1
 tornadodetector.ga, 1
 torngalaxy.com, 1
-tornos.site, 1
 tornyosbbq.hu, 1
 torocatala.tk, 1
 toroguapo.com, 1
@@ -136011,14 +136728,12 @@
 total-electric.com, 1
 total-privacy.tk, 1
 total-security.tk, 1
-totalabogados.cl, 1
 totalaccessnicaragua.co, 1
 totalbike.com.br, 1
 totalbyverizon.com, 1
 totalcarcheck.co.uk, 1
 totalcarpetcare.co.uk, 1
 totalchecklist.com, 1
-totalconceptnh.com, 1
 totalcontrols.eu, 1
 totalemaildelivery.com, 1
 totalenergies.ca, 1
@@ -136075,6 +136790,7 @@
 totolink.tw, 1
 totora.tk, 1
 tottoya.com, 1
+totuus.sk, 1
 totvs.com, 1
 toucan-informatique.fr, 1
 touch-up-net.com, 1
@@ -136115,6 +136831,7 @@
 touhouwiki.net, 1
 toujour.top, 1
 toulis.net, 1
+toulouscope.fr, 1
 toulouselautrec.com.br, 1
 toumeitech.com, 1
 toupcreative.com, 1
@@ -136145,6 +136862,7 @@
 tournaments.tk, 1
 tournevis.ch, 0
 touroogle.com, 1
+tourporelcaribe.com, 0
 tours-in-petersburg.tk, 1
 tours.co.th, 1
 toursandtransfers.it, 0
@@ -136224,6 +136942,7 @@
 townofcampbellwi.gov, 1
 townofcaponbridgewv.gov, 1
 townofcarthagetn.gov, 1
+townofcedarburgwi.gov, 1
 townofchenangony.gov, 1
 townofcherrycreekny.gov, 1
 townofchesterwi.gov, 1
@@ -136276,12 +136995,14 @@
 townoflagrangemcwi.gov, 1
 townoflakecityco.gov, 1
 townoflakemarinettewi.gov, 1
+townoflamartinewi.gov, 1
 townoflandisnc.gov, 1
 townoflebanonny.gov, 1
 townoflebanonwi.gov, 1
 townoflenrootwi.gov, 1
 townofleroywi.gov, 1
 townoflibertyocwi.gov, 1
+townoflindenwi.gov, 1
 townoflomira.gov, 1
 townofluskwy.gov, 1
 townoflyndonwi.gov, 1
@@ -136337,6 +137058,8 @@
 townofstarmandny.gov, 1
 townofstockbridge.gov, 1
 townofsturgeonbay-wi.gov, 1
+townofsumrallms.gov, 1
+townofsweetwater.com, 1
 townofsylvesterwi.gov, 1
 townoftaycheedahwi.gov, 1
 townoftheresawi.gov, 1
@@ -136442,7 +137165,6 @@
 tpro.rocks, 1
 tproger.ru, 1
 tpsolution.ge, 1
-tptlive.ee, 1
 tpue.de, 1
 tpx.com, 1
 tqdev.com, 0
@@ -136523,6 +137245,7 @@
 tradeandindustrydev.com, 1
 tradebot.cf, 1
 tradebotcompany.ml, 1
+tradebuilders.com.au, 1
 tradedesk.co.za, 1
 tradedigital.co, 1
 tradeeasy.com, 1
@@ -136535,7 +137258,6 @@
 trademotion.com, 1
 tradeonfx.com, 1
 tradeplotter.com, 1
-traderepublic.com, 1
 traderfox.de, 1
 traderinside.ga, 1
 traderlion.com, 1
@@ -136572,7 +137294,7 @@
 tradreams.com, 1
 traducir.win, 1
 tradymoney.com, 1
-traegerbox.com, 1
+traegerbox.com, 0
 traegergrills.com, 1
 traf-bonus.tk, 1
 trafarm.ro, 1
@@ -136661,12 +137383,14 @@
 traiteurpapillonevents.be, 1
 trajectfoto.nl, 1
 trajectvideo.nl, 1
+trakid.com, 1
 trakkr.tk, 0
 trakmd.com, 1
 trakteershop.tk, 1
 trakteren.tk, 1
 traktor-troubadour.tk, 1
 tralalashow.tk, 1
+tralios.de, 1
 tramadol.ga, 1
 tramadolhcl.ga, 1
 tramclub-basel.ch, 1
@@ -136696,6 +137420,7 @@
 tranmao.vn, 1
 tranmerelectric.com, 1
 trannysurprise.com, 1
+tranquilityselfcatering.co.za, 1
 tranquillity.se, 1
 tranquillum.tk, 1
 trans-aliyans.tk, 1
@@ -136801,6 +137526,7 @@
 transtrack.net, 1
 transtur.tk, 1
 transumption.com, 1
+transvault.com, 1
 transwank.com, 1
 transwestern.com, 1
 transwestern.net, 1
@@ -136810,6 +137536,7 @@
 tranzron.ga, 1
 trapay.net, 1
 trapcall.com, 1
+trapichelaesperanza.com, 1
 trapkitchen.ml, 1
 trappersoutfitters.tk, 1
 traproulette.com, 1
@@ -136828,6 +137555,7 @@
 trashmail.com, 1
 trashnothing.com, 1
 trashpanda.website, 1
+trashpandacigars.com, 1
 trashwagon.club, 1
 trashy-gypsy.com, 1
 trashylingerie.ga, 1
@@ -136843,7 +137571,6 @@
 trastornoevitacion.com, 1
 trastornolimite.com, 1
 tratamentoparacelulite.net, 1
-tratho.com.br, 1
 tratt.net, 1
 trattamenti.biz, 1
 trattamento-cotto.it, 1
@@ -136949,7 +137676,6 @@
 travelinsurance.ga, 1
 travelinsured.com, 1
 travelist.co.nz, 1
-travelix.io, 1
 traveljunkie.tips, 1
 travelkatta.in, 1
 travelknowledge.org, 1
@@ -137045,6 +137771,7 @@
 travianbattleplanner.com, 1
 travin.tk, 1
 travis.nl, 1
+traviscoesd1tx.gov, 1
 travisf.net, 1
 travisforte.io, 1
 travisfranck.com, 1
@@ -137068,7 +137795,6 @@
 trbanka.com, 1
 trcollaborative.com, 1
 trcont.com, 1
-trdepoist.net, 1
 treadwellgordon.co.nz, 1
 treaslockbox.gov, 1
 treasureboxgreetings.com, 1
@@ -137100,10 +137826,10 @@
 treehorn.nl, 1
 treehousebydesign.com, 1
 treehouseresort.nl, 1
+treeliss.com.br, 1
 treemadeiras.com.br, 1
 treeremovalfourways.co.za, 1
 treeremovalsboksburg.co.za, 1
-treeremovalsgermiston.co.za, 1
 treeremovalspretoria.co.za, 1
 treestarmarketing.com, 1
 treevectors.com, 1
@@ -137127,6 +137853,7 @@
 trekonbh.com, 1
 trekosecia.com.br, 1
 trekscaper.tk, 1
+trelki.de, 1
 trelleborg.se, 1
 trelliscompany.org, 1
 trembler.org, 1
@@ -137139,6 +137866,7 @@
 trend-calendar.com, 1
 trend-shop.ga, 1
 trendegypt.ml, 1
+trendibit.com, 1
 trendier.com.co, 1
 trendier.mx, 1
 trendingaffords.com, 1
@@ -137162,7 +137890,6 @@
 trendpie.com, 1
 trendreportdeals.com, 1
 trends-news.tk, 1
-trends2day.com, 1
 trendsettersre.com, 1
 trendsuites.co, 1
 trendtesettur.com, 0
@@ -137325,7 +138052,6 @@
 trineco.cloud, 1
 trineco.com, 1
 trineco.fi, 1
-tringle.org, 1
 trinhhoangtien.vn, 1
 trinhtrongson.tk, 1
 trini.tk, 1
@@ -137404,6 +138130,7 @@
 triumph-stuttgart.de, 1
 trixiebooru.org, 1
 trixietainted.net, 1
+trixy.com.br, 1
 triz.co.uk, 0
 trizettoprovider.com, 1
 trkhosting.ga, 1
@@ -137514,7 +138241,6 @@
 trouvez.tk, 1
 trouvons.org, 1
 trouw.nl, 1
-trouweninoverijssel.nl, 1
 trovaprezzi.it, 1
 trovas.ch, 1
 trove.com, 1
@@ -137534,7 +138260,6 @@
 trs.tn, 1
 trtadalafil.com, 1
 trtasarim.tk, 1
-tru.ca, 1
 tru.ltd, 1
 trubapro.com, 0
 trubmet.tk, 1
@@ -137653,7 +138378,6 @@
 truepartnertechnology.com, 1
 truepartnertechnology.nl, 1
 truepartnertechnology.sg, 1
-truepestcontrol.com.au, 1
 truereligionjeanstore.tk, 1
 truerizm.ru, 1
 trueseeing.com, 1
@@ -137709,7 +138433,6 @@
 trust-ted.co.uk, 1
 trust.com, 1
 trust.zone, 1
-trust2protect.de, 1
 trustarc.com, 1
 trustarts.org, 1
 trustcert.net, 1
@@ -137753,7 +138476,6 @@
 truyen-hentai.ru, 1
 truyenfull.vn, 1
 truyenkiemhiep.com.vn, 1
-truyenmoizz.net, 1
 truyentienhiep.com.vn, 1
 trveled.com, 1
 trw-reseller.com, 1
@@ -137950,11 +138672,13 @@
 ttrecms.com, 1
 tts-assessments.com, 1
 tts.co.nz, 0
+ttshapn.org, 1
 ttsoft.pl, 1
 ttspttsp.com, 1
 ttsteel.co, 1
 ttt-networks.com, 1
 ttug.co.uk, 1
+ttunda.com, 1
 ttuwiki.ee, 1
 ttuwiki.org, 1
 ttv-bernisse80.tk, 1
@@ -138009,6 +138733,7 @@
 tudinerito.tk, 1
 tudinhoparasuacasa.com.br, 1
 tudodebompresentes.com.br, 1
+tudonoticiadigital.com, 1
 tudorproject.org, 1
 tudorrosesamplerguild.com, 1
 tudosobrehost.com.br, 1
@@ -138026,6 +138751,7 @@
 tufilo.com, 0
 tuftonboronh.gov, 1
 tugadar.com, 1
+tugafm.com, 1
 tugesha.com, 1
 tugnut.tk, 1
 tugrul.blog, 1
@@ -138051,6 +138777,7 @@
 tulalip.gov, 1
 tulana.ga, 1
 tule.studio, 1
+tuleap.net, 1
 tuleap.org, 1
 tulevaisuusdemarit.fi, 1
 tuliha.ga, 1
@@ -138085,6 +138812,7 @@
 tumen.ml, 1
 tumen.tk, 1
 tumentorweb.com.mx, 1
+tumpicon.org, 1
 tumult-productions.tk, 1
 tun.bible, 1
 tuna.be, 1
@@ -138104,13 +138832,13 @@
 tungstenworld.com, 1
 tuning-parts24.de, 1
 tuning-werkstatt-nuernberg.de, 1
-tuning.energy, 1
 tuningblog.eu, 0
 tunisia-tech.tk, 1
 tunisiadefnews.ga, 1
 tunisiana.tk, 1
 tunisiangamers.tk, 1
 tunisiapress.tk, 1
+tunktwppolice.gov, 1
 tunnel-staging.googlezip.net, 1
 tunnel.googlezip.net, 1
 tunnel53.net, 1
@@ -138137,6 +138865,7 @@
 tupatane.gq, 1
 tupeuxpastest.ch, 0
 tupi.fm, 1
+tupizm.com, 1
 tuppenceworth.ie, 1
 tuppennysfireplace.com, 1
 tupperwaresalamanca.com, 1
@@ -138205,7 +138934,6 @@
 turkishmobile.com, 1
 turkishyatirim.com, 1
 turkist.tk, 1
-turkista.ae, 1
 turkistan-rap.tk, 1
 turkiye.ai, 0
 turkkarate.tk, 1
@@ -138248,6 +138976,7 @@
 turnet.tk, 1
 turnierplanung.com, 1
 turnkey-ips.com, 1
+turnkeycybersecurityandprivacysolutions.com, 1
 turnningpoint.xyz, 1
 turnoffthelights.com, 1
 turnoffthelights.video, 1
@@ -138274,7 +139003,6 @@
 tus.si, 1
 tusar.cf, 1
 tusar.ga, 1
-tusatonline.com, 1
 tuscanyleather.it, 0
 tusconsultorex.com, 1
 tusfinanzas.ec, 1
@@ -138334,6 +139062,7 @@
 tutudaju.com, 1
 tuulialaine.com, 1
 tuvankinhdoanhonline.com, 1
+tuvanmat.com, 1
 tuversionplus.com, 1
 tuvingaynay.com, 1
 tuwaner.com, 1
@@ -138342,6 +139071,7 @@
 tuxcloud.duckdns.org, 1
 tuxcloud.net, 1
 tuxflow.de, 0
+tuxforums.com, 1
 tuxhound.org, 1
 tuxie.com, 1
 tuxito.tk, 1
@@ -138390,6 +139120,7 @@
 tver69.tk, 1
 tveronline.tk, 1
 tves.gob.ve, 1
+tvfamilie.be, 1
 tvfans.ga, 1
 tvfans.tk, 1
 tvfcu.com, 1
@@ -138399,7 +139130,6 @@
 tvindia.tk, 1
 tvipper.com, 1
 tvk.tirol, 1
-tvkaista.com, 1
 tvkaista.net, 1
 tvkaista.org, 1
 tvkaren.tk, 1
@@ -138483,7 +139213,6 @@
 twilightningzone.tk, 1
 twilite.co.uk, 1
 twilite.uk, 1
-twilleys.com, 1
 twilo-host.de, 1
 twilo.de, 1
 twincap-first.de, 1
@@ -138531,6 +139260,7 @@
 twmartin.codes, 1
 two-step-verification.solutions, 1
 twoandahalfvan.eu, 1
+twobitbusker.com, 1
 twobrothersbbq.com, 0
 twocatsinacaravan.xyz, 1
 twocornertiming.com, 1
@@ -138622,7 +139352,6 @@
 tybox.ca, 1
 tyc001.cc, 1
 tyc009.cc, 1
-tyc923.com, 1
 tycaa.org, 1
 tycho.org, 1
 tycho.tk, 1
@@ -138728,6 +139457,7 @@
 tzchz.pp.ua, 1
 tzeribi.fr, 1
 tzifas.com, 1
+tzinsurance.com, 1
 tziyona.net, 1
 tzonevrakis.gr, 1
 tzsec.com, 1
@@ -138741,7 +139471,6 @@
 u-chan.com, 0
 u-he.com, 1
 u-page.nl, 1
-u-watch.it, 1
 u.nu, 1
 u.sb, 1
 u00228.com, 0
@@ -138802,6 +139531,7 @@
 uachemlabs.com, 1
 uae-company-service.com, 1
 uaefiu.gov.ae, 1
+uaemegadeals.com, 1
 uafinance.net, 1
 ualove.tk, 1
 uamxsociologia.tk, 1
@@ -138945,7 +139675,6 @@
 udinetoday.it, 1
 udla.edu.ec, 1
 udmarbella.tk, 1
-udmddn.ru, 1
 udmurtia.tk, 1
 udo-luetkemeier.de, 1
 udomain.net, 1
@@ -138972,7 +139701,6 @@
 uevan.com, 1
 uf-ace.com, 1
 ufa-soft.tk, 1
-ufa88s.info, 1
 ufacesign.in, 1
 ufanet.id, 1
 ufanisi.mx, 1
@@ -139000,7 +139728,6 @@
 uggedal.com, 1
 ugirlx.com, 1
 ugis.info, 1
-uglychews.com, 1
 uglypeople.com, 1
 ugmtc.org, 1
 ugolovnyj-advokat.cf, 1
@@ -139067,7 +139794,6 @@
 uk-cbdoils.com, 1
 uk-staff.co.uk, 1
 uk.dating, 1
-uk.kg, 1
 uk.search.yahoo.com, 0
 ukari.hokkaido.jp, 0
 ukb.sch.id, 0
@@ -139092,8 +139818,9 @@
 uklizim.fun, 1
 ukmalls.co.uk, 1
 ukmeetandgreet.com, 1
+ukmerges-vaikyste.lt, 1
 ukmortgagecompare.co.uk, 1
-uknew.co, 1
+uknew.co, 0
 uknews.ga, 1
 uknews.ml, 1
 uknewsroom.tk, 1
@@ -139130,7 +139857,6 @@
 ukutabs.com, 1
 ukwct.org.uk, 1
 ul-fluglehrer.de, 1
-ulabox.com, 1
 ulax.org, 1
 ulax.tk, 1
 ulconnect.com, 1
@@ -139208,6 +139934,7 @@
 ultrasbet.com, 1
 ultrasite.tk, 1
 ultrasocial.ml, 1
+ultrasoundtechnicianschools.com, 1
 ultrastar-es.org, 1
 ultrasvargon.tk, 1
 ultratechlp.com, 1
@@ -139269,8 +139996,6 @@
 un-framed.co.za, 1
 un-nft.org, 1
 un-zero-un.fr, 1
-unaape-ud93.fr, 1
-unae.fr, 1
 unaffectedsound.tk, 1
 unai-yus.tk, 1
 unanaciounaseleccio.tk, 1
@@ -139375,7 +140100,6 @@
 undertow.ga, 1
 underwaterasia.info, 1
 underwear-fashion.tk, 1
-underwearoffer.com, 1
 underwood.tk, 1
 underwoodpatents.com, 1
 underworlds.tk, 1
@@ -139490,6 +140214,8 @@
 unikimages.com, 1
 unikon.su, 1
 unikos.tk, 1
+unikrn.com, 1
+unikrn.tech, 1
 unikrnb2b.com, 1
 unila.edu.br, 1
 unilab.com.ph, 1
@@ -139528,6 +140254,7 @@
 unipig.de, 0
 unipolrsa.com, 1
 uniqleen.com.au, 1
+uniqopter.com, 1
 uniqsys.eu, 1
 unique-news.tk, 1
 unique-punk.tk, 1
@@ -139548,6 +140275,7 @@
 unis-pour-le-climat.com, 1
 uniselectweb.com, 1
 uniserve.com, 1
+unisight.com, 1
 unison-d.com, 1
 unisontech.org, 1
 unisplendour.com, 1
@@ -139555,7 +140283,6 @@
 unisul.br, 1
 unisys.net.nz, 1
 unisyssecurity.com, 1
-unit-linked.ru, 1
 unit-soft.com, 0
 unit15.net, 1
 unit3d.site, 1
@@ -139574,7 +140301,6 @@
 unitedarmyofentropia.tk, 1
 unitedaviate.com, 1
 unitedbaby.fr, 1
-unitedbeautysupply.com, 1
 unitedbusinessbank.com, 1
 unitedcarremoval.com.au, 1
 unitedcyberdevelopment.com, 1
@@ -139678,6 +140404,7 @@
 universus.tk, 1
 univim.edu.mx, 1
 univitale.fr, 0
+unix.family, 1
 unix.lu, 1
 unixadm.org, 1
 unixapp.ml, 1
@@ -139688,6 +140415,7 @@
 unixauto.ro, 1
 unixauto.sk, 1
 unixer.tk, 1
+unixery.de, 1
 unixforum.org, 1
 unixfox.eu, 1
 unixgeeks.net, 1
@@ -139803,14 +140531,15 @@
 unti.me, 1
 unti.tk, 1
 untitled-home-storage.cyou, 1
+untrading.org, 1
 untro.xyz, 1
 untvweb.com, 1
-unufoundation.com, 1
 unusedrooms.com, 1
 unusualhatclub.com, 1
 unusualplaces.org, 1
 unveiledgnosis.com, 1
 unveilturkey.com, 1
+unvired.com, 1
 unwa.tk, 1
 unwire.com, 1
 unwiredbrain.com, 0
@@ -139845,7 +140574,6 @@
 upandatom.biz, 1
 upandrunningtutorials.com, 1
 upar.org, 1
-uparcel.sg, 1
 upay.ru, 1
 upbad.com, 0
 upbatangan.tk, 1
@@ -139909,6 +140637,7 @@
 uplinkgame.tk, 1
 uplinklabs.net, 1
 uplinkrev.com, 1
+uplinks24.com, 1
 upload.facebook.com, 0
 uploadbaz.me, 1
 uploadbeta.com, 1
@@ -140033,11 +140762,12 @@
 urbanbikeweamr.ga, 1
 urbanbooks.tk, 1
 urbancoffee.com.mx, 1
-urbancoyoteresearch.com, 1
+urbancoyoteresearch.com, 0
 urbancreators.dk, 1
 urbane-narrationen.de, 1
 urbanemc.net, 0
 urbanesecurity.com, 1
+urbanevielfalt.de, 1
 urbanfineart.ro, 1
 urbanfoodmarket.nl, 1
 urbanfun.ga, 1
@@ -140110,7 +140840,7 @@
 urkult.se, 0
 url.fm, 1
 url.ht, 1
-url.kg, 1
+url.kg, 0
 url.rw, 1
 urlakite.com, 1
 urlaub-busreisen.de, 1
@@ -140199,6 +140929,7 @@
 usabilis.com, 1
 usability.com.gr, 1
 usability.gov, 1
+usabynumbers.com, 1
 usacarry.com, 1
 usacrime.com, 1
 usadba.net.ru, 1
@@ -140254,7 +140985,6 @@
 usda.gov, 1
 usdailyhealth.tk, 1
 usdfc.gov, 1
-usdirect.com, 1
 usdirectory.com, 1
 usdirectory.tk, 1
 usdoj.gov, 1
@@ -140302,7 +141032,6 @@
 usherwoodexecutivetravel.com, 1
 usicecenter.gov, 1
 usidfc.gov, 1
-usinaculturalenergisa.com.br, 1
 usintimate.com.br, 1
 usitcolours.bg, 1
 usjt.br, 1
@@ -140354,6 +141083,7 @@
 ussfcu.org, 1
 ussm.gov, 1
 ussm.tk, 1
+ussnoorinayatkhan.com, 1
 ussst.org, 1
 ussst.org.in, 1
 ustaywell.com, 1
@@ -140397,7 +141127,6 @@
 utbabogados.com, 1
 utbosbeekhuuske.tk, 1
 utcast-mate.com, 1
-utduc.com, 1
 uteasybooki.com, 1
 utec.edu.pe, 1
 utensil.org, 1
@@ -140415,6 +141144,7 @@
 utilitarian.org, 1
 utilitarianism.com, 1
 utilitarianism.org, 1
+utilitarianism.uk, 1
 utilitarismo.com, 1
 utilitronium-shockwave.com, 1
 utilitronium.com, 1
@@ -140633,9 +141363,7 @@
 v9297.co, 1
 v9728.co, 1
 v9728.com, 0
-v9820.com, 1
 va-11-hall-a.cafe, 1
-va-reitartikel.com, 1
 va.gov, 0
 va11hal.la, 1
 va11halla.ddns.net, 1
@@ -140738,6 +141466,7 @@
 vakwinkeldemo.nl, 1
 val-casies.net, 1
 val-sec.com, 1
+valach.cz, 1
 valagrovoce.com, 1
 valant.io, 1
 valaphee.com, 1
@@ -140804,6 +141533,7 @@
 valiakhmetov.tk, 1
 valiant.finance, 1
 valid.com, 1
+valid.com.br, 1
 validation.link, 1
 validatis.com, 1
 validator.nu, 1
@@ -140811,6 +141541,7 @@
 validius.fi, 1
 validius.net, 1
 validus.sg, 1
+validvent.com, 1
 valigate.com, 1
 valigrama.ro, 1
 valika.ee, 1
@@ -140938,6 +141669,7 @@
 vancouverok.com, 1
 vancouverwademolition.com, 1
 vancouverwaseo.org, 1
+vancubers.com, 1
 vandaalen.email, 1
 vandalfsen.me, 1
 vandals.ml, 1
@@ -141003,6 +141735,7 @@
 vaniola.com, 1
 vanisha.co, 1
 vanished.tk, 1
+vanitas.xyz, 0
 vanitybiss.es, 1
 vanityestetik.com, 1
 vanityfairnapkins.com, 0
@@ -141055,7 +141788,6 @@
 vapemate.co.uk, 1
 vapensiero.co.uk, 1
 vapesense.co.uk, 1
-vapestore510.com, 1
 vapetaclope.cf, 1
 vapevine.ca, 1
 vapex.pl, 1
@@ -141082,6 +141814,7 @@
 variable.dk, 1
 variablyconstant.com, 1
 variance.pl, 1
+varianteespiritual.gal, 1
 variasdesign.com, 1
 variatesonline.tk, 1
 varied.ga, 1
@@ -141165,7 +141898,6 @@
 vatav.tk, 1
 vatazhok.com, 1
 vatikantour.tk, 1
-vatlieuhay.com, 1
 vatman.tk, 1
 vato.nl, 1
 vats.im, 1
@@ -141267,11 +141999,12 @@
 vdstc.com, 1
 vdw-instruments.com, 1
 vdw.ovh, 1
+vdzwan.net, 1
 ve-1xbet.com, 1
 ve.search.yahoo.com, 0
 ve3oat.ca, 1
-ve3zsh.ca, 1
 veadoscomfome.tk, 1
+veast.network, 1
 vebbankir-zajm-onlajn.gq, 1
 vebdengi.tk, 1
 veber.bg, 1
@@ -141293,7 +142026,6 @@
 vedeneev.tk, 1
 vedev.io, 1
 vedma-praktik.com, 1
-vedobakancs.hu, 0
 vedom.ru, 1
 vedran-zulin.from.hr, 1
 veebill.com, 1
@@ -141490,10 +142222,10 @@
 ventolin.ga, 1
 ventor.ml, 1
 ventosport.nl, 1
-ventriloservers.biz, 1
 ventuordici.org, 1
 venturavwparts.com, 1
 venture.biz.id, 1
+venture2learn.com, 1
 venturebanners.co.uk, 1
 ventureharbour.com, 1
 ventures.lgbt, 1
@@ -141528,6 +142260,7 @@
 verasani.ch, 1
 verasani.com, 1
 verasoie.fr, 1
+verasrvmobiledetail.com, 1
 verata.co, 0
 verberne.nu, 1
 verbert.be, 1
@@ -141579,6 +142312,7 @@
 verifalia.com, 1
 verificationlink.ga, 1
 verified.eu, 1
+verified.lu, 1
 verifiedbusiness.com, 1
 verifiedjoseph.com, 0
 verifiny.com, 1
@@ -141670,7 +142404,7 @@
 versfin.net, 1
 versicherungen-werner-hahn.de, 1
 versionit.org, 1
-verspai.de, 0
+verspai.de, 1
 versprite.com, 1
 verstaanwiskunde.co.za, 1
 verstka.cf, 1
@@ -141720,7 +142454,6 @@
 veryapt.com, 1
 verybin.com, 1
 veryestate.com, 1
-veryfi.com, 1
 veryfinecommentary.tk, 1
 verygoodmarketing.nl, 1
 verygoodwebsite.ca, 1
@@ -141734,6 +142467,7 @@
 verzekerdbijhema.nl, 1
 verzekeringsacties.nl, 1
 verzekerjebeter.nl, 1
+verzick.com, 1
 vesaviljanen.fi, 1
 vescudero.net, 1
 veseleruska.sk, 1
@@ -141747,6 +142481,7 @@
 vesmail.email, 1
 vesna2011.tk, 1
 vespacascadia.com, 1
+vesseldove.com, 1
 vessentys.com, 1
 vesta.us, 1
 vestacp.top, 1
@@ -141786,6 +142521,7 @@
 veterinanmnm.cz, 1
 veterinanmnm.eu, 1
 veterinarian-hospital.com, 1
+veterinarianedu.org, 1
 veterinario.milano.it, 1
 veterinario.roma.it, 1
 veterinarioaltea.com, 1
@@ -141818,9 +142554,11 @@
 vetsource.com, 0
 vettenburg.eu, 1
 vettix.org, 1
+vetuni.cz, 1
 vetustainversion.com, 1
 vetvim.com, 1
 veules-les-roses.fr, 1
+vev.co, 1
 veve.com, 1
 veverusak.cz, 1
 vexsh.com, 1
@@ -141911,7 +142649,6 @@
 vibgyorhigh.com, 1
 vibgyorrise.com, 1
 vibgyyor.com, 1
-vibia.com, 1
 vibioh.fr, 1
 vibox.co.uk, 1
 vibraagenciadigital.com.br, 1
@@ -141954,6 +142691,7 @@
 victora.com, 1
 victorblomberg.se, 1
 victorbuch.cf, 1
+victorc.net, 1
 victorcalvez.com, 1
 victorcanera.com, 1
 victorcarrasco.tk, 1
@@ -142002,6 +142740,7 @@
 victusrp.gq, 1
 vicugna.nl, 1
 vicyu.com, 1
+vidaliala.gov, 1
 vidanuevaparaelmundo.net, 1
 vidanuevaparaelmundo.org, 1
 vidanuevaparaelmundo.plus, 1
@@ -142152,7 +142891,6 @@
 vietnamese.dating, 1
 vietnameselove.com, 1
 vietnamhairs.com, 1
-vietnamhost.vn, 0
 vietnamphotoblog.com, 0
 vietnamphotographer.net, 1
 vietnamtravelmart.com.vn, 1
@@ -142177,10 +142915,12 @@
 viez.vn, 1
 vifranco.cl, 1
 vifsoft.com, 1
+vigerust.net, 1
 vigilanciatotal.com, 1
 vigilanciaysalud.com, 1
 vigilantesporcolombia.org, 1
 vigilanza.roma.it, 1
+vigiles.nl, 1
 vigilo.cf, 1
 vigilo.ga, 1
 vigira.com.ar, 1
@@ -142261,6 +143001,7 @@
 vilantice.cz, 1
 vilavilma.si, 1
 vilavyhlidka.cz, 1
+vilawatt.cat, 1
 vilaydin.com, 1
 vildlaithailand.cf, 1
 vildlaithailand.gq, 1
@@ -142298,6 +143039,7 @@
 villageofalmondwi.gov, 1
 villageofarenawi.gov, 1
 villageofbellevuewi.gov, 1
+villageofcallawayne.gov, 1
 villageofcarbonhill-il.gov, 1
 villageofcascadewi.gov, 1
 villageofcatskillny.gov, 1
@@ -142309,6 +143051,7 @@
 villageofdousman.gov, 1
 villageofedenwi.gov, 1
 villageoffarwellmi.gov, 1
+villageofforestvillewi.gov, 1
 villageoffremontwi.gov, 1
 villageofgraftonwi.gov, 1
 villageofgrantsburg.gov, 1
@@ -142358,6 +143101,7 @@
 villasfinistere.fr, 1
 villasforsale-bali.com, 1
 villasintrabali.com, 1
+villasupport.it, 1
 villaumbrales.tk, 1
 villavaltava.fi, 1
 villavasco.ovh, 1
@@ -142381,15 +143125,16 @@
 villu.stream, 1
 viload.org, 1
 vilony.com, 1
-vilonystore.my.id, 1
 vilostore.my.id, 1
 vilvoordelaan.be, 1
 vim.ge, 1
 vima.ch, 0
 vimbom.tk, 1
+vimbowen.xyz, 1
 vimeo.com, 1
 vimeosucks.nyc, 1
 vimexx.nl, 1
+vimium.com, 1
 vimka.gq, 1
 vimoksa.com, 1
 vimworld.com, 1
@@ -142399,6 +143144,7 @@
 vinaygarg.com, 1
 vinc.me, 1
 vinc.name.tr, 1
+vincecima.com, 1
 vincehut.top, 1
 vincent-haupert.de, 1
 vincentcox.com, 0
@@ -142428,6 +143174,7 @@
 vincie.net, 1
 vinciladislessia.it, 1
 vincitraining.com, 1
+vincour.info, 1
 vindafrid.com, 1
 vindafrid.nu, 1
 vindafrid.se, 1
@@ -142450,7 +143197,6 @@
 vingtsuncoach.tk, 1
 vinhobros.de, 1
 vinhomes.tv, 1
-vinhoscortem.com, 1
 vinhosdoalentejo.pt, 1
 vinicius.sl, 1
 viniciuscosta.tk, 1
@@ -142474,6 +143220,7 @@
 vinopan.de, 1
 vinorossoconero.com, 1
 vinoshipper.com, 1
+vinothek-northeim.de, 1
 vinovum.net, 1
 vinoxo.in, 1
 vinsation.com, 1
@@ -142529,12 +143276,15 @@
 vip11018.com, 0
 vip2132.com, 1
 vip22884.com, 0
+vip33138.com, 0
 vip4553.com, 1
 vip45bet365.com, 0
+vip5132.com, 1
 vip5414.com, 1
 vip6132.com, 1
 vip77018.com, 0
 vip8522.com, 1
+vipaairportsp3.gov, 1
 vipdirektolog.ru, 0
 vipenvia.com.br, 1
 viper-drones.com, 1
@@ -142597,6 +143347,7 @@
 viran-khodro.tk, 1
 virazh58.tk, 1
 vircloud.net, 1
+virga.pp.ua, 1
 virgi.tk, 1
 virgil.gg, 1
 virgilsecurity.com, 1
@@ -142627,6 +143378,7 @@
 virtlinux.eu, 1
 virtola.ml, 1
 virtua.com.tr, 1
+virtuaal.com, 1
 virtuakamp.com, 1
 virtual-assistant.ml, 1
 virtual-data-room.org, 1
@@ -142634,6 +143386,7 @@
 virtual-insanity.tk, 1
 virtual-webcam.com, 1
 virtual.hk, 0
+virtualarkansas.org, 1
 virtualbrands.com, 0
 virtualbrestby.tk, 1
 virtualbruges.tk, 1
@@ -142876,6 +143629,7 @@
 vitallispsy.de, 1
 vitallispsy.eu, 1
 vitallispsy.nl, 1
+vitalpazar.net, 1
 vitalpraxis-lietz.de, 1
 vitalshop.tk, 1
 vitalsolutions.ro, 1
@@ -142968,7 +143722,6 @@
 vive.link, 1
 vivediabetes-sanamente.com, 1
 vivekanandaspokenenglish.com, 1
-vivekparekh.ca, 1
 vivekselvakumar.ga, 1
 vivelawir.eu, 1
 vivemedialab.com, 1
@@ -143189,6 +143942,7 @@
 vns377i.com, 0
 vns377j.com, 0
 vns3780.com, 1
+vns5020.com, 0
 vns5151.com, 0
 vns5353.com, 0
 vns5656.com, 1
@@ -143219,13 +143973,11 @@
 vocalviews.com, 1
 vocationaujourdhui.fr, 1
 vocationnetwork.org, 1
-vocescruzadasbcs.mx, 1
 vocomo.de, 1
 voctto.com.br, 1
 vocus.aero, 1
 vocustest.aero, 1
 vod.uk.com, 0
-vodachile.cl, 1
 vodadombay.cf, 1
 vodafone.com.gh, 1
 vodavoda.tk, 1
@@ -143238,7 +143990,6 @@
 vodpay.com, 1
 vodpay.net, 1
 vodpay.org, 1
-voeding-en-fitness.nl, 1
 voetbalclubinfo.tk, 1
 voetbalforum.tk, 1
 voetbalindestad.be, 1
@@ -143252,6 +144003,7 @@
 voffka.com, 1
 vofwittenbergwi.gov, 1
 vofy.cz, 1
+vogel-verhuizingen.nl, 1
 vogelbus.ch, 1
 vogelwereld.tk, 1
 vogler.name, 1
@@ -143264,6 +144016,7 @@
 voi.ch, 1
 voice-of-design.com, 1
 voice-pic.com, 1
+voice.gov.au, 1
 voicedata.tk, 1
 voicemaker.in, 1
 voicenation.com, 1
@@ -143414,7 +144167,6 @@
 vonimus.com, 1
 vonkuenheim.de, 1
 vonniehudson.com, 1
-vonnu.edu.ee, 1
 vonpawn.com, 1
 vonski.pl, 1
 vonsuri.com, 1
@@ -143734,12 +144486,11 @@
 vseserialy.tk, 1
 vsesrazu-raiffeisen.ru, 1
 vsestiralnie.com, 0
-vsestoki.com, 1
+vsestoki.com, 0
 vsevkusno.tk, 1
 vsevolod.tk, 1
 vsgcommunity.nl, 1
 vshipit.com, 1
-vshop.de, 1
 vshop.ir, 1
 vsimosvita.com, 1
 vsl-defi.ch, 0
@@ -143859,6 +144610,7 @@
 vux.li, 1
 vuze.camera, 1
 vuzi.fr, 1
+vv066.com, 1
 vv1234.cn, 1
 vv5197.co, 1
 vv6729.co, 1
@@ -143900,6 +144652,7 @@
 vwh-kunden.de, 1
 vwittich.de, 1
 vwoforangeparts.com, 1
+vwp.su, 1
 vwpartsinternational.com, 1
 vwsaigon.vn, 0
 vwsoft.de, 1
@@ -144023,7 +144776,6 @@
 w66136.net, 0
 w66138.net, 0
 w6616.com, 1
-w661616.com, 0
 w6619.com, 1
 w6648.com, 1
 w668899.com, 1
@@ -144090,6 +144842,7 @@
 wacotrib.com, 1
 wade.gdn, 0
 wadebet.com, 1
+wadesboronc.gov, 1
 wadidi.com, 1
 wadleyga.gov, 1
 wadsana.com, 1
@@ -144100,7 +144853,6 @@
 waelisch.de, 1
 waelk.tech, 1
 waelti.xxx, 1
-waermekabine.org, 1
 waf.hk, 1
 waf.ninja, 1
 waf.sexy, 1
@@ -144118,6 +144870,7 @@
 wagepoint.com, 1
 wagesweldandfab.com, 1
 wageverify.com, 1
+waggybytes.com, 1
 wagn3r.de, 1
 wagnerbrewing.com, 1
 wagnervineyards.com, 1
@@ -144152,6 +144905,7 @@
 wak.io, 1
 waka-mono.com, 1
 waka-vapes.de, 1
+wakamiyasumiyosi.com, 1
 wakarandroid.com, 1
 wakastream.cc, 1
 wakatime.com, 1
@@ -144179,6 +144933,7 @@
 waldorf-harduf.org, 1
 waldorfdiary.com, 1
 waldparkerwoelfe.tk, 1
+waldpflegeverein.at, 1
 waldportoregon.gov, 1
 waldur.nl, 1
 waldvogel.family, 1
@@ -144209,7 +144964,6 @@
 walksedona.com, 1
 walksfourpaws.co.uk, 1
 wall-banners.tk, 1
-wall-of-death.co.nz, 1
 wallabag.org, 1
 wallabies.org, 1
 wallabywallaroo.com, 1
@@ -144247,7 +145001,6 @@
 wallmounttvinstallation.com, 1
 wallnot.dk, 1
 wallofclocks.com, 1
-wallpaperspeed.id, 1
 wallpaperstreet.tk, 1
 wallpapertag.com, 1
 wallpaperup.com, 1
@@ -144280,7 +145033,6 @@
 waltercedric.com, 0
 waltermulders.be, 1
 walterswholesale.com, 1
-waltervictor.com, 0
 waltherarms.com, 1
 waltravis.com, 1
 waltthirion.com, 1
@@ -144337,13 +145089,16 @@
 wangyue.blog, 1
 wangzhe100.xyz, 1
 wangzuan168.cc, 1
+wanjuhui.com, 1
 wanlieyan.cc, 1
 wanlieyan.com, 1
 wannabfit.nl, 1
 wannaknow.tk, 1
+wannaparty.in, 1
 wannapopularnews.cf, 1
 wannaridecostarica.com, 1
 wanorthshoreny.gov, 1
+wansfordcosmetic.co.uk, 1
 wanted.co.at, 1
 wantocode.com, 1
 wanybug.cf, 1
@@ -144456,6 +145211,7 @@
 warrencountyva.gov, 1
 warrenfisher.net, 1
 warrenhousevets.co.uk, 1
+warrenmi.gov, 1
 warrenri.gov, 1
 warringtonkidsbouncycastles.co.uk, 1
 warringtonsownbuses.co.uk, 1
@@ -144485,6 +145241,8 @@
 warwickbucks.gov, 1
 warworld.ml, 1
 was.ch, 1
+wasabiwallet.co, 1
+wasabiwallet.io, 1
 wasafat.com, 1
 wasatchconstables.com, 1
 waschmaschinen-dienst.de, 1
@@ -144530,7 +145288,6 @@
 wasistderunterschied.com, 1
 wass.ga, 1
 wassenaar.org, 1
-wasserpflanzen-freunde.de, 1
 wassim.is, 1
 wastewaterservicesltd.co.uk, 0
 wastewise.com, 0
@@ -144542,7 +145299,6 @@
 watashi.bid, 1
 wataugatx.gov, 1
 watboeithet.nl, 1
-watc.wa.gov.au, 0
 watch-host.ga, 1
 watch-wiki.org, 1
 watchamovie.ga, 1
@@ -144637,7 +145393,6 @@
 wathory.com, 1
 watisleukemie.tk, 1
 watismijnbandenspanning.nl, 1
-watobi.jp, 1
 watongaok.gov, 1
 watoo.tech, 1
 watsonsurplus.com, 1
@@ -144661,6 +145416,7 @@
 wave.ng, 1
 wave.red, 1
 waveestetic.com, 1
+waveletscreative.org, 1
 wavelifesciences.com, 1
 wavengine.com, 0
 waveous.com, 1
@@ -144694,6 +145450,7 @@
 waynecountyny.gov, 1
 waynecountyoh.gov, 1
 waynefarms.com, 1
+wayneforeman.com, 1
 waynefranklin.com, 1
 waynehartman.com, 1
 wayneo.tk, 1
@@ -144755,7 +145512,7 @@
 wcat.in, 1
 wcatherinekendall.co.uk, 1
 wcbook.ru, 0
-wcei.com.au, 0
+wcei.com.au, 1
 wcema-ok.gov, 1
 wcfauth.de, 1
 wcfcourier.com, 1
@@ -144795,7 +145552,6 @@
 wdol.gov, 1
 wdophoto.com, 1
 wdpapi.io, 1
-wdpowerenergy.com.br, 1
 wdpui.io, 1
 wdrl.info, 0
 wdsdownload.cf, 1
@@ -144829,7 +145585,6 @@
 wearandcare.net, 1
 weare.ie, 1
 weare1inspirit.com, 1
-weareallconnected.ru, 1
 wearebase.com, 1
 wearebfi.co.uk, 1
 wearecreator.uk, 1
@@ -144938,6 +145693,7 @@
 web3mantra.com, 1
 web404.net, 1
 web4all.at, 1
+web50aqui.es, 1
 web74.ga, 1
 web76.tk, 1
 webaam.com, 1
@@ -144967,6 +145723,7 @@
 webartex.ru, 1
 webarxsecurity.com, 1
 webasto-moscow.ru, 1
+webastra.fr, 1
 webauftritt.ch, 1
 webauthnlogin.com, 1
 webawere.com, 1
@@ -144980,7 +145737,6 @@
 webbricks.ru, 1
 webbuilder.de, 1
 webbureauer.dk, 1
-webby-books.com, 1
 webcafe.tk, 1
 webcam-lisa.ml, 1
 webcam-model.tk, 1
@@ -145023,11 +145779,9 @@
 webdating.tk, 1
 webdemaestrias.com, 1
 webdesign-kall.de, 1
-webdesign-moellers.de, 1
 webdesign-note.jp, 1
 webdesignagency.cf, 1
 webdesigncompanyindia.com, 1
-webdesigner4u.net, 0
 webdesignersinchennai.tk, 1
 webdesignfenua.tk, 1
 webdesignlabor.ch, 1
@@ -145060,6 +145814,7 @@
 weber911.gov, 1
 webera.lt, 1
 webera.pro, 1
+weberbasinut.gov, 1
 weberelections.gov, 1
 weberl.com, 1
 webers-webdesign.de, 1
@@ -145134,6 +145889,7 @@
 webissues.de, 1
 webitentwicklung.de, 1
 webiz.ro, 1
+webizer.fr, 1
 webjobposting.com, 1
 webkam-sex.com, 1
 webkato.ru, 1
@@ -145172,7 +145928,6 @@
 webmandat.fr, 1
 webmandesign.eu, 1
 webmarcosmarquez.tk, 1
-webmaster-infographiste-lyon.fr, 0
 webmaster16.ml, 1
 webmasterblog.tk, 1
 webmasterhall.com, 1
@@ -145187,7 +145942,6 @@
 webmetering.at, 1
 webmethod.email, 1
 webminders.it, 1
-webminidisc.com, 1
 webmining.gq, 1
 webministeriet.net, 1
 webmixseo.com, 1
@@ -145277,7 +146031,6 @@
 websitebakers.eu, 1
 websiteboost.nl, 1
 websitebuilder.org, 1
-websitebuilder.org.uk, 1
 websitecalifornia.cf, 1
 websitecare.io, 1
 websitecenter.tk, 1
@@ -145372,7 +146125,6 @@
 webuyloansfast.com, 1
 webvampiro.tk, 1
 webvanced.nl, 1
-webvas.co, 1
 webvenezuela.tk, 1
 webverdienst.tk, 1
 webviewcams.com, 1
@@ -145437,6 +146189,7 @@
 wedontca.re, 1
 wedontcaregroup.com, 1
 wedooper.com, 1
+wedos.com, 0
 wedot.co.uk, 1
 wedplay.host, 1
 wedshoots.com, 1
@@ -145454,6 +146207,7 @@
 weedypedia.de, 1
 weefriendskids.com, 1
 weegshop.nl, 1
+week.report, 1
 weekdone.com, 1
 weekendbus.pl, 1
 weekendcandy.com, 1
@@ -145532,7 +146286,6 @@
 weinfuse.com, 0
 weingut-bernd-klein.de, 1
 weinundsein.com, 1
-weinzeug.de, 1
 weinzierlweb.com, 1
 weiran.org.cn, 1
 weirdcompany.net, 1
@@ -145540,11 +146293,13 @@
 weirdesigns.com, 1
 weirdgloop.org, 1
 weirdness.tk, 1
+weirdork.com, 1
 weirdork.eu, 1
 weirdork.net, 1
 weirdork.org, 1
 weirdork.social, 1
 weirdorks.eu, 1
+weirdorks.net, 1
 weirdorks.org, 1
 weirdorks.social, 1
 weirdserver.com, 1
@@ -145593,7 +146348,6 @@
 weller.pm, 1
 wellesleycosmeticsurgery.com, 1
 wellesweb.net, 1
-wellforlifenow.com, 1
 wellgora.com, 1
 wellgreece.com, 1
 wellington-fields.de, 1
@@ -145695,7 +146449,6 @@
 weple.ga, 1
 weple.gq, 1
 weprenup.com, 1
-weqollab.com, 1
 wer-kommt-her.de, 1
 werbe-markt.de, 1
 werbe-sonnenbrillen.de, 0
@@ -145783,7 +146536,6 @@
 westappin.com.au, 1
 westbathmaine.gov, 1
 westburlingtoniowa.gov, 1
-westburyelectronic.com, 1
 westcarrollton.org, 1
 westcentenaryscouts.org.au, 1
 westcentralaor.org, 1
@@ -145857,8 +146609,7 @@
 westsalemwi.gov, 1
 westshoresrealty.com, 1
 westside-pediatrics.com, 1
-westsidechildrenstherapy.com, 1
-westsidewinemsp.com, 1
+westsidechildrenstherapy.com, 0
 westskinlaser.com, 1
 westvancouver.ca, 1
 westviewpa.gov, 1
@@ -145891,7 +146642,6 @@
 wewin.com, 1
 wewin889.com, 1
 wewitro.de, 1
-wewitro.net, 1
 weworkjpn.com, 1
 wexfordbouncycastles.ie, 1
 wexilapp.com, 1
@@ -145914,6 +146664,7 @@
 wfbvillage.gov, 1
 wfh.ovh, 1
 wfh.se, 1
+wfigueiredo.com.br, 1
 wforum.nl, 1
 wfschicago.com, 1
 wftbasis.nl, 1
@@ -145944,6 +146695,7 @@
 wgyt.tk, 1
 wh-guide.de, 1
 wh.gov, 1
+wh0.re, 1
 wh0th.ink, 1
 wh966.com, 0
 whalecrew.com, 1
@@ -145952,6 +146704,7 @@
 whanglaw.com, 1
 whannell.net, 0
 whaogirls.com, 1
+whapn.sg, 1
 what-do-kittens-need-to-eat.tk, 1
 what-does-kittens-need.ml, 1
 what-wood.servehttp.com, 1
@@ -145990,7 +146743,6 @@
 whatisthe.cloud, 1
 whatisthisapp.com, 1
 whatiswhatis.com, 1
-whatlookup.net, 1
 whatnot.ai, 1
 whatphone.com.au, 1
 whatsapp.com, 1
@@ -146053,6 +146805,7 @@
 whereiszakir.com, 1
 wheresbuzz.com.au, 1
 wheresthejump.com, 1
+wheretotravel.info, 1
 whereuare.se, 1
 whereveryougo.space, 1
 whexit.nl, 1
@@ -146116,10 +146869,12 @@
 whitealps.de, 0
 whitealps.fr, 0
 whitealps.net, 0
+whiteantelopeinteriors.com, 1
 whitebirdclinic.org, 1
 whitebox.ga, 1
 whitefieldnhpd.gov, 1
 whitefm.ch, 0
+whitefordtownshipmi.gov, 1
 whiteglovemoving.us, 0
 whitehallal.gov, 1
 whitehathackers.com.br, 1
@@ -146188,7 +146943,6 @@
 whoami.io, 1
 whocalld.com, 1
 whocalled.us, 1
-whocalledme.xyz, 1
 whocrushonme.com, 1
 whodiduexpect.com, 1
 whois.az, 1
@@ -146206,6 +146960,7 @@
 wholesalegrowersdirect.com, 1
 wholesaleimages.com, 1
 wholesalesuppliesplus.com, 1
+wholesalewarehouses.net, 1
 wholesomebuyers.com, 1
 wholesomeharvestbread.com, 0
 wholevood.com, 1
@@ -146241,6 +146996,7 @@
 whyodindrinks.com, 1
 whyopencomputing.ch, 0
 whyopencomputing.com, 0
+whypowerbrush.com, 1
 whysoslow.co.uk, 1
 whyteryan.com, 1
 whytls.com, 1
@@ -146324,7 +147080,6 @@
 wificafehosting.com, 1
 wificonnect.cc, 1
 wifimb.cz, 1
-wifinube.com, 1
 wifipineapple.com, 1
 wifirst.net, 1
 wifishing.tk, 1
@@ -146333,6 +147088,7 @@
 wiganer.tk, 1
 wigelsworth.consulting, 1
 wigelsworth.io, 1
+wigger.one, 1
 wigggle.it, 1
 wigglestudio.com, 1
 wigglywisdom.com, 1
@@ -146382,6 +147138,7 @@
 wikibulz.com, 1
 wikibuy.com, 1
 wikicooking.tk, 1
+wikicuida.pt, 1
 wikidata.org, 1
 wikidpedia.org, 1
 wikiepdia.com, 1
@@ -146554,6 +147311,7 @@
 wildglass.nl, 1
 wildhelper.com, 1
 wildlifeadaptationstrategy.gov, 1
+wildlifeforafrica.org, 1
 wildmarsian.info, 1
 wildmine.su, 1
 wildowi.cz, 1
@@ -146582,7 +147340,6 @@
 wiliquet.net, 1
 wilk.tech, 0
 wilkebouwer.nl, 1
-wilkinsondigital.com, 1
 wilkipedia.org, 1
 wilkushka.com, 1
 wilkushka.net, 1
@@ -146628,13 +147385,13 @@
 williamsigal.com, 1
 williamstonmipd.gov, 1
 williamstownmi.gov, 1
+williamtai.moe, 1
 williamtm.com, 1
 williamusherwood.com, 1
 willianchopin.tk, 1
 willich.tk, 1
 williejackson.com, 1
 willighp.de, 1
-willis-brown.ca, 1
 willkie.com, 1
 willlewis.co.uk, 1
 willmage.com, 1
@@ -146649,7 +147406,7 @@
 willowmanorgroup.com, 1
 willowpf.com, 1
 wills.co.tt, 1
-willship.co.nz, 1
+willship.co.nz, 0
 willsigal.com, 1
 willspointtx.gov, 1
 willstamper.name, 1
@@ -146672,6 +147429,7 @@
 wilomark.com, 1
 wils.jp, 1
 wilseyrealty.com, 1
+wilshirelawfirm.com, 1
 wilson-lincoln-wi.gov, 1
 wilsoncountync.gov, 1
 wilsonlanguage.com, 1
@@ -146680,7 +147438,7 @@
 wiltonmanors.gov, 1
 wiltonsandstonequarry.com.au, 1
 wiltrovira.com, 1
-wiltshirefarmfoods.com, 1
+wiltshirefarmfoods.com, 0
 wimachtendienk.com, 1
 wimarsport.it, 1
 wimbledon.com, 1
@@ -146736,6 +147494,7 @@
 windjetboats.com, 1
 windmillart.net, 1
 windmyroof.com, 0
+windoorsolutions.net, 1
 windowcleaningexperts.net, 1
 windowreplacement.net, 1
 windows, 1
@@ -146956,7 +147715,6 @@
 wisdomize.me, 1
 wisdompills.shop, 1
 wisdomteethonly.com, 1
-wisdomteethsydney.com.au, 1
 wisdotplans.gov, 1
 wise.jobs, 1
 wiseadvicetravelling.com, 0
@@ -146969,10 +147727,12 @@
 wiseinternational.org, 1
 wiseitguys.com, 1
 wiselectures.com.au, 1
+wisemans.us, 1
 wisemen.digital, 1
 wisemoney.com.vc, 1
 wisenederland.nl, 1
 wiseradiology.com.au, 1
+wisereducacao.com, 1
 wisereshape.com, 1
 wisersp.com, 1
 wisertp.com, 1
@@ -147003,6 +147763,7 @@
 wispmaeksmusic.tk, 1
 wispsuperfoods.com, 1
 wispyon.com, 1
+wisr.com.au, 1
 wiss.co.uk, 0
 wissamnr.be, 1
 wisselink.tk, 1
@@ -147068,7 +147829,7 @@
 wiz.biz, 1
 wiz.farm, 1
 wizadjournal.com, 1
-wizard.gov, 1
+wizard.gov, 0
 wizardbouncycastles.co.uk, 1
 wizardk.tk, 1
 wizardkami.tk, 1
@@ -147154,7 +147915,6 @@
 wmtools.me, 1
 wmustore.com, 1
 wnark.com, 1
-wnc-frontend-alb-1765173526.ap-northeast-2.elb.amazonaws.com, 1
 wndrdtfd.com, 1
 wnmed.com.au, 1
 wns68123.com, 1
@@ -147187,11 +147947,10 @@
 wodemo.com, 1
 wodinaz.com, 1
 wodka-division.de, 1
-woeb.fr, 1
+woeb.fr, 0
 woelckner.com, 1
 wofford-ecs.org, 0
 woffu.com, 1
-wogame.org, 1
 wogo.org, 1
 woh.org, 1
 woheni.de, 1
@@ -147202,6 +147961,7 @@
 wohnungsbau-ludwigsburg.de, 1
 wohnungsbaukredit.biz, 1
 wohnungsbaukredit.eu, 1
+wohnungsbaukredit.info, 1
 woi.vision, 1
 wois.info, 1
 wojak.xyz, 1
@@ -147269,7 +148029,6 @@
 wolvesbanemanor.com, 1
 wolvostore.com, 1
 wom.de, 1
-womanbusinessnetwork.com, 1
 womb.city, 1
 wombatnet.com, 1
 wombats.net, 1
@@ -147290,7 +148049,6 @@
 womensenews.org, 1
 womenshealth.gov, 1
 womensmedassoc.com, 1
-womensshelterofhope.com, 1
 womfs.com.au, 1
 wompenriebler.tk, 1
 womply.com, 1
@@ -147361,6 +148119,7 @@
 woodfordcountyil.gov, 1
 woodfordcountyky.gov, 1
 woodhavenmi.gov, 1
+woodhullfoundation.org, 1
 woodinvillesepticservice.net, 1
 woodlandboys.com, 1
 woodlandcreekfurniture.com, 1
@@ -147382,6 +148141,7 @@
 woodsconsulting.com, 0
 woodshouse.ru, 1
 woodsidepottery.ca, 1
+woodstocknh.gov, 1
 woodstocksupply.com, 1
 woodstone.nu, 1
 woodtrust.com, 1
@@ -147456,11 +148216,11 @@
 wordpress-szakerto.hu, 1
 wordpress-test.site, 0
 wordpress.com, 0
-wordpressarequipa.com, 1
 wordpressbot.tk, 1
 wordpressdevelopment.ml, 1
 wordregistrar.ga, 1
 wordroid.net, 1
+words.codes, 0
 wordsearchwhiz.com, 1
 wordsforellie.com, 1
 wordsmart.it, 1
@@ -147470,12 +148230,10 @@
 wordwidessl.net, 1
 wordxtra.net, 1
 wordzite.com, 1
-worio.co, 1
 work-at-home.ga, 1
 work-at-home.gq, 1
 work-in-progress.website, 1
 work.me, 1
-workahealthic.de, 1
 workaholic.tk, 1
 workaholics.tk, 1
 workaround.run, 1
@@ -147644,10 +148402,8 @@
 worldluxuryhome.tk, 1
 worldmarathons.tk, 1
 worldmeetings.com, 1
-worldnetone.com, 1
 worldnewsinbox.ga, 1
 worldnewsphoto.tk, 1
-worldnovel.online, 1
 worldofarganoil.com, 1
 worldofbelia.de, 1
 worldofgeekstuff.com, 1
@@ -147658,7 +148414,6 @@
 worldofwobble.co.uk, 1
 worldpage.tk, 1
 worldpayaccessories.com, 1
-worldpcrack.com, 1
 worldplayerx.com, 1
 worldpolitics.cf, 1
 worldrallyforum.tk, 1
@@ -147686,7 +148441,7 @@
 worldtourismgroup.com, 1
 worldtrandingnews.ml, 1
 worldtravelmagazine.tk, 1
-worldtreechocolate.ca, 1
+worldtreechocolate.ca, 0
 worldturkmans.tk, 1
 worldupdatereviews.com, 1
 worldviews-debattieren.de, 1
@@ -147712,6 +148467,7 @@
 wormincorporated.tk, 1
 wormpress.com, 1
 worms-cowclan.tk, 1
+wormss9.org, 1
 worn.pl, 1
 worongarymedical.com.au, 1
 worpswede.eu, 1
@@ -147751,7 +148507,9 @@
 woudenbergsedrukkerij.nl, 1
 woulaba.com, 1
 wound-doc.co.uk, 1
+wouterbruijning.nl, 1
 wouterkobes.nl, 1
+wouterpetri.com, 1
 wouterslop.com, 1
 wouterslop.eu, 1
 wouterslop.nl, 1
@@ -147771,7 +148529,6 @@
 wowdrive.ga, 1
 wowede.com, 0
 wowfare.com, 1
-wowgraphic.in, 1
 wowhampers.ie, 1
 wowhelp.it, 1
 wowi-ffo.de, 1
@@ -147788,7 +148545,9 @@
 wowsosellout.com, 1
 woyzeck.org, 1
 wozalapha.com, 1
+wozsun.com, 1
 wozwaardeloket.nl, 1
+wozwebdesign.com.br, 1
 wp-assistance.fr, 1
 wp-bootstrap.org, 1
 wp-bundle.co, 0
@@ -147821,6 +148580,7 @@
 wpcgm.co.uk, 1
 wpcharged.nz, 1
 wpcheck.io, 1
+wpckraft.ro, 1
 wpco.nl, 1
 wpco.se, 1
 wpcoupons.io, 1
@@ -147830,6 +148590,7 @@
 wpduta.com, 1
 wpekspres.com, 1
 wpetri.nl, 1
+wpexpert.com.tr, 1
 wpexplorer.com, 1
 wpformation.com, 1
 wpforum.tk, 1
@@ -147866,8 +148627,6 @@
 wpnews.ml, 1
 wpnews.tk, 1
 wpnovice.tk, 1
-wpnuvem.com, 1
-wpocs.com, 1
 wpoptimalizace.cz, 1
 wppbki1.com, 1
 wprank.net, 1
@@ -147911,9 +148670,11 @@
 wrc-results.com, 1
 wrd48.net, 1
 wrdcfiles.ca, 1
+wrdf.org, 1
 wrdmrk.com, 1
 wrecked.cf, 1
 wrecked.tk, 1
+wreckeroo.com.au, 1
 wreckingball.hu, 1
 wrecky.com.au, 1
 wregni.com, 1
@@ -147951,7 +148712,6 @@
 writesafer.com, 1
 writestreak.team, 1
 writeyoursmile.com, 1
-writing-arena.com, 1
 writing-expert.com, 1
 writingapps.ga, 1
 writingbee.com, 1
@@ -147967,7 +148727,6 @@
 wrm.sr, 1
 wrmea.org, 1
 wrmh343.org, 1
-wrn.sh, 1
 wrnck.cloud, 1
 wroclawguide.com, 1
 wrong.wang, 0
@@ -148049,9 +148808,7 @@
 wug.fun, 1
 wug.jp, 1
 wug.news, 1
-wui.fan, 1
 wuifan.com, 1
-wuifan.net, 1
 wuifan.org, 1
 wuji.cz, 1
 wuki.li, 1
@@ -148093,8 +148850,10 @@
 wurstmineberg.de, 1
 wurzelchaos.de, 1
 wurzelkanal.de, 1
+wushka.com.au, 1
 wusu.tk, 1
 wuupz.com, 1
+wuw.moe, 1
 wuxian.ml, 0
 wuya.eu.org, 1
 wuyuan.io, 1
@@ -148108,6 +148867,7 @@
 wvg.myds.me, 1
 wvpbs.ml, 1
 wvpbs.tk, 1
+wvpebd.gov, 1
 wvrtboard.gov, 1
 wvstateparks.com, 1
 wvv-8522.com, 1
@@ -148172,6 +148932,8 @@
 www.amazon.it, 1
 www.amazon.nl, 1
 www.banking.co.at, 1
+www.bbc.co.uk, 0
+www.bbc.com, 0
 www.braintreepayments.com, 0
 www.capitainetrain.com, 0
 www.captaintrain.com, 0
@@ -148201,7 +148963,7 @@
 www.ft.com, 1
 www.g.co, 0
 www.gamesdepartment.co.uk, 0
-www.getcloak.com, 0
+www.getcloak.com, 1
 www.gmail.com, 0
 www.googlemail.com, 0
 www.gov.pl, 1
@@ -148218,6 +148980,7 @@
 www.icann.org, 0
 www.irccloud.com, 0
 www.ki, 1
+www.lastpass.com, 0
 www.lookout.com, 1
 www.messenger.com, 1
 www.mojadm.sk, 1
@@ -148311,6 +149074,7 @@
 wyrickstaxidermy.com, 1
 wyrihaximus.net, 1
 wyrimaps.net, 1
+wyriverton.com, 1
 wysa.io, 1
 wyspa.com.pl, 1
 wyssmuller.ch, 0
@@ -148454,12 +149218,10 @@
 xarardheere.com, 1
 xarmenta.tk, 1
 xarxanet.org, 1
-xashayar.ir, 1
 xatr0z.org, 0
 xauzit.com, 1
 xav.ie, 1
 xaver.cash, 1
-xaver.su, 1
 xavi.re, 1
 xavier.is, 1
 xavierarroyo.tk, 1
@@ -148519,9 +149281,7 @@
 xb871.com, 1
 xb872.com, 1
 xb873.com, 1
-xb8801.com, 1
 xb8806.com, 1
-xb8808.com, 1
 xb8861.com, 1
 xb891.com, 1
 xb893.com, 1
@@ -148682,7 +149442,6 @@
 xenrox.net, 1
 xentho.net, 1
 xentox.com, 1
-xenttrum.com, 1
 xeonlab.de, 1
 xerbisworks.com, 1
 xerbo.net, 0
@@ -148703,7 +149462,6 @@
 xfd3.de, 1
 xfinityapparel.com, 1
 xfirma.pl, 1
-xfive.de, 1
 xfix.pw, 1
 xford.tech, 1
 xfrag-networks.com, 1
@@ -148724,6 +149482,7 @@
 xgzepto.cn, 1
 xh.nu, 0
 xh7eee.com, 1
+xhamiadituria.com, 1
 xhanster.gq, 1
 xhcmnews.com, 1
 xhibitran.tk, 1
@@ -148738,6 +149497,7 @@
 xiamenshipbuilding.com, 1
 xiamuzi.com, 1
 xiangblog.com, 1
+xiangjiaojixie.com, 1
 xianguocy.com, 1
 xiangweiqing.co.uk, 1
 xianjianruishiyouyiyuan.com, 1
@@ -148764,6 +149524,7 @@
 xiaoyu.net, 1
 xiaoyy.org, 1
 xiaoze.me, 1
+xiaozonglin.cn, 1
 xiarain.com, 1
 xiashali.me, 1
 xiaxuejin.cn, 1
@@ -148933,6 +149694,7 @@
 xiufeng.de, 1
 xiufeng.nl, 1
 xiumu.org, 1
+xiurenwang.co, 1
 xiuxiumh01.cc, 1
 xiuxiumh02.cc, 1
 xixi.com, 1
@@ -148977,6 +149739,7 @@
 xmediabigz.tk, 1
 xmediazxy.tk, 1
 xmenrevolution.com, 1
+xmessy.com, 1
 xminds.net, 1
 xmisystems.com, 1
 xmiui.com, 1
@@ -149027,6 +149790,7 @@
 xn----jtbiihtkil8b4e.xn--p1ai, 1
 xn----mtbckubhv.xn--p1ai, 1
 xn----ncfb.ws, 1
+xn----otbabmp3ae.xn--p1ai, 1
 xn----rtbbavlecj.xn--p1ai, 1
 xn----ylba7abgd9bnh0e.xn--qxa6a, 1
 xn----ymcbah8a8de3hvarv.com, 1
@@ -149083,6 +149847,7 @@
 xn--78je2j8a.cafe, 1
 xn--79q87uvkclvgd56ahq5a.net, 1
 xn--7ca.co, 1
+xn--7dvy22i.com, 1
 xn--7or43h.jp, 1
 xn--7tq776cdf4a.xn--fiqs8s, 1
 xn--7tq776cdf4a.xn--fiqz9s, 1
@@ -149126,7 +149891,6 @@
 xn--80affa6ai0a.tk, 1
 xn--80afvgfgb0aa.xn--p1ai, 1
 xn--80ah4f.xn--p1ai, 1
-xn--80ahccom2a2c.xn--p1ai, 1
 xn--80ahclcaoccacrhfebi0dcn5c1jh.xn--p1ai, 1
 xn--80ahcnlhmh.xn--p1ai, 1
 xn--80ahjdhy.tk, 1
@@ -149346,7 +150110,6 @@
 xn--l8j6d.com, 1
 xn--l8js6h476m.xn--q9jyb4c, 1
 xn--labanskllermark-ftb.se, 1
-xn--lckwg.net, 1
 xn--lfv405c.com, 1
 xn--ll-yka.de, 1
 xn--lna-2000-9za.nu, 1
@@ -149354,7 +150117,6 @@
 xn--locaaomoema-p9a.com.br, 1
 xn--losolivareos-jhb.com, 1
 xn--love-un4c7e0d4a.com, 1
-xn--lsaupp-iua.se, 1
 xn--lskieradio-3gb44h.pl, 1
 xn--lti-3qa.lv, 1
 xn--lzs398g.xn--fiqs8s, 1
@@ -149368,6 +150130,7 @@
 xn--marn-8ra.eu, 1
 xn--martnvillalba-zib.com, 1
 xn--martnvillalba-zib.net, 1
+xn--mbius-jua.band, 1
 xn--mein-kchenhelfer-ozb.de, 1
 xn--mensenges-o1a8c.gq, 1
 xn--mensengesss-t8a.gq, 1
@@ -149390,6 +150153,7 @@
 xn--morrhret-e0a.se, 1
 xn--myrepubic-wub.net, 1
 xn--myrepublc-x5a.net, 1
+xn--naade-dta.com, 1
 xn--nbetcieczane-4ib.gen.tr, 1
 xn--nicieri-b4a.ro, 1
 xn--nidar-tib.org, 1
@@ -149422,6 +150186,7 @@
 xn--photovoltaik-berwachung-opc.de, 1
 xn--pn1am9c.com, 1
 xn--pq1a637b.xn--6qq986b3xl, 1
+xn--prfontaine-c7a.name, 1
 xn--q2y08clzag4u.tw, 1
 xn--q3cb3bxa0b7h.com, 1
 xn--qckss0j.tk, 1
@@ -149455,7 +150220,6 @@
 xn--schwedischezahnrztin-pzb.de, 1
 xn--seluksportshd-kgb.com, 1
 xn--skmotoroptimering-zzb.site, 1
-xn--solidaritt-am-ort-yqb.de, 1
 xn--spenijmazania-yhc.pl, 1
 xn--spiraphnix-olb.xyz, 1
 xn--srenpind-54a.dk, 1
@@ -149483,6 +150247,7 @@
 xn--uba.eu.org, 1
 xn--ug8h.st, 1
 xn--ukasik-2db.pl, 1
+xn--ukys-f6a.lt, 1
 xn--underux-0za.eu, 1
 xn--urgencesolidarit-qqb.com, 1
 xn--urgencesolidarit-qqb.fr, 1
@@ -149579,6 +150344,7 @@
 xpertcube.com, 1
 xpertmedia.ro, 1
 xpertsunlimited.com, 1
+xpews.org, 1
 xpg.jp, 1
 xphelper.tk, 1
 xpj090.com, 1
@@ -149608,7 +150374,7 @@
 xportxpert.com, 1
 xposedornot.com, 1
 xpreflect.co.uk, 1
-xpremium.org, 1
+xpremium.org, 0
 xpressable.com, 1
 xps-auto.com, 1
 xps3dp.com, 1
@@ -149631,6 +150397,7 @@
 xreverseporn.com, 1
 xrg.cz, 1
 xrippedhd.com, 1
+xrism.ro, 1
 xrockx.de, 1
 xrp.pp.ua, 1
 xrpnews.info, 1
@@ -149641,6 +150408,7 @@
 xs4ever.org, 1
 xsait.tk, 1
 xscancun.com, 1
+xsden.info, 1
 xsec.me, 1
 xsenya74hram.tk, 1
 xseries-forum.com, 1
@@ -149665,6 +150433,7 @@
 xtaboo3d.com, 1
 xtarget.ru, 1
 xtechkr.com, 1
+xtianhe.com, 0
 xtips.us, 1
 xtom.africa, 1
 xtom.al, 1
@@ -149755,6 +150524,7 @@
 xtzone.be, 1
 xtzs6.vip, 1
 xuab.net, 1
+xuan-hao.com, 1
 xuan.com.my, 1
 xuancommagere.com, 1
 xuanmeishe.net, 0
@@ -149818,6 +150588,7 @@
 xxx-fiction.com, 1
 xxx-gays.com, 1
 xxxarabgirls.com, 1
+xxxbold.com, 0
 xxxbunker.com, 1
 xxxfreepornclip.com, 1
 xxxgr.net, 1
@@ -149879,6 +150650,7 @@
 xyzzyyyz.com, 1
 xz0.de, 1
 xzclip.cn, 1
+xzib.com, 1
 xzibits.com, 1
 xzqy.net, 1
 xztech.co, 1
@@ -150022,6 +150794,7 @@
 ya.mk, 1
 yaay.com.br, 1
 yaay.today, 1
+yaballe.com, 1
 yabbr.com.au, 1
 yabbr.io, 1
 yabo68.com, 0
@@ -150039,7 +150812,6 @@
 yachting-home.com, 1
 yachtlettering.com, 1
 yachtmarket.com.ua, 1
-yachts.rentals, 1
 yachtwaypoints.com, 1
 yacine-app.tv, 1
 yacostasolutions.com, 1
@@ -150055,7 +150827,6 @@
 yagmursoft.tk, 1
 yagoda-malina.tk, 1
 yagotour.cf, 1
-yah-music.com, 1
 yaharu.ru, 1
 yahav.co.il, 1
 yahlab.de, 1
@@ -150121,7 +150892,7 @@
 yamobila.tk, 1
 yan.gg, 1
 yan.lt, 1
-yan.net.cn, 1
+yan.net.cn, 0
 yan3321.com, 1
 yanaduday.com, 1
 yanagibashi.de, 1
@@ -150149,7 +150920,6 @@
 yanisvaroufakis.eu, 1
 yanivboost.com, 1
 yanjicg.com, 0
-yankeetv.com, 1
 yanlongli.com, 1
 yann.tw, 1
 yanngraf.ch, 0
@@ -150205,6 +150975,7 @@
 yapdentalsurgery.com, 1
 yapeal.ch, 1
 yapmaz.com, 1
+yapper.fr, 1
 yappy.com, 1
 yappy.media, 1
 yaraab.my.id, 1
@@ -150220,10 +150991,12 @@
 yaren-it.de, 1
 yaren.it, 1
 yarlesac.com, 1
+yarmarka-megamarket.ru, 1
 yarnandy.com, 1
 yarnsub.com, 1
 yarogneva.ru, 1
 yarokuk.com, 1
+yaroslavia.eu.org, 1
 yaroslavova.tk, 1
 yarowork.jp, 1
 yarplast.tk, 1
@@ -150254,7 +151027,6 @@
 yasudaseiki.cn, 1
 yasukevicious.com, 1
 yatai18.com, 1
-yataland.com, 1
 yatax.fr, 1
 yateam.cc, 1
 yates.co.nz, 1
@@ -150282,6 +151054,7 @@
 yay-btcl.work, 1
 yay.space, 1
 yayart.club, 1
+yayginegitim.net, 1
 yayl888.com, 1
 yaymaker.com, 1
 yayou.ag, 1
@@ -150433,6 +151206,7 @@
 yesjobs.ga, 1
 yesleaks.com, 1
 yesmirov.ga, 1
+yesmsp.com, 1
 yesod.in, 1
 yesogovinpetcare.com, 1
 yesolo.tk, 1
@@ -150445,7 +151219,6 @@
 yesterplay.net, 0
 yesteryear-chronicle.cf, 1
 yeswecan.co.bw, 1
-yeswehack.com, 1
 yetahost.com, 1
 yeti.ca, 1
 yeti.com, 1
@@ -150463,6 +151236,7 @@
 yfcampus.com, 1
 yfeer.com, 1
 yfengs.moe, 1
+yfh.me, 1
 yflix.xyz, 0
 yggdar.ga, 1
 yggdrasil.ws, 1
@@ -150497,7 +151271,7 @@
 yicipick.com, 1
 yicivideo.com, 1
 yicknam.my, 1
-yieldguild.io, 1
+yieldguild.io, 0
 yifanbian.me, 1
 yifansun.net, 1
 yiff.bar, 1
@@ -150557,18 +151331,16 @@
 yksolutions.ma, 1
 yl-invest.co.il, 1
 yl366.cc, 1
+yl8.com, 1
 ylanan.tk, 1
-ylcdev.tk, 1
 ylde.de, 1
 ylilauta.org, 1
 ylivemusic.com, 1
 ylromania.ro, 1
 ylwd.gov, 1
 ym069.com, 1
-ym1199.com, 1
 ym181.am, 1
 ym516.com, 1
-ym6699.com, 1
 ym966.com, 1
 ymaca.tk, 1
 ymarion.de, 1
@@ -150606,6 +151378,7 @@
 yodababy.com.tw, 1
 yodalef3.tk, 1
 yodaremote.tk, 1
+yodelmobile.com, 1
 yodocon.com, 1
 yoga-bien-etre.com, 1
 yoga-erde.de, 1
@@ -150632,12 +151405,11 @@
 yogamarlene.ch, 1
 yogananda-roma.org, 1
 yogaovelser.dk, 1
-yogaportalen.dk, 1
 yogaprague.com, 1
 yogaschule-herzraum.de, 1
 yogasolution.tk, 1
-yogasuitsyou.com, 1
 yogatherapykosha.com, 1
+yogatrainingrishikesh.com, 1
 yogaworld.tk, 1
 yogibear.tk, 1
 yogies.shop, 1
@@ -150660,7 +151432,6 @@
 yolandgao.me, 1
 yolks.in, 1
 yolo-csgo.com, 1
-yolo-insurance.com, 1
 yolo.cn, 1
 yolo.vn, 1
 yolobert.de, 1
@@ -150698,8 +151469,10 @@
 yopmail.com, 1
 yopmail.net, 1
 yoppoy.com, 1
+yops.info.pl, 1
 yopuedo.co, 0
 yoramvandevelde.net, 1
+yorcar.com, 1
 yorcom.nl, 0
 yorcool.nl, 0
 yorcybersec.co.uk, 0
@@ -150715,7 +151488,6 @@
 yorkieloverdiy.com, 1
 yorkiepooexpert.com, 1
 yorkmarkets.com, 1
-yorkmarkets38.com, 1
 yorkmoneyman.com, 1
 yorkroadyums.com, 1
 yorkshiredalesinflatables.co.uk, 1
@@ -150890,6 +151662,8 @@
 yourcrypto.tax, 1
 yourdailyalerts.net, 1
 yourdailyhealthcare.tk, 1
+yourdailylocal.com, 1
+yourdata.ai, 1
 yourdata.ga, 1
 yourdemowebsite.ml, 1
 yourdevoncornwall.wedding, 1
@@ -150931,10 +151705,10 @@
 yourlanguages.de, 1
 yourlifespirit.de, 1
 yourloan.gq, 1
-yourlocalsecurity.com, 1
 yourlondon.wedding, 1
 yourlovesong.com.mx, 1
 yourmagicstory.tk, 1
+yourmaki.com, 1
 yourmobility.ga, 1
 yourms.com, 1
 yourname.xyz, 1
@@ -150962,7 +151736,6 @@
 yourtampaparksplan.com, 1
 yourtests.tk, 1
 yourticketbooking.com, 1
-yourtopia.fr, 1
 yourtourdesk.com, 1
 yourtwojugs.com, 1
 youruseragent.info, 1
@@ -151009,6 +151782,7 @@
 youtubelet.com, 1
 youtuberis.lt, 1
 youtuberus.tk, 1
+youwebcams.org, 1
 youwelike.com, 1
 youyifans.com, 1
 youyoulemon.com, 1
@@ -151063,7 +151837,6 @@
 ytcount.com, 1
 ytec.ca, 1
 ytexa.tk, 1
-ytmous.com, 1
 ytpak.pk, 1
 ytreza.fr, 1
 ytterland.tk, 1
@@ -151111,6 +151884,7 @@
 yuharahisako.ga, 1
 yuhindo.com, 1
 yuho.vn, 1
+yui.cat, 1
 yuisyo.ml, 1
 yujixr.net, 1
 yukari.cafe, 1
@@ -151119,6 +151893,7 @@
 yukiblog.tw, 1
 yukict.com, 1
 yukieda.com, 1
+yukigroup.ru, 1
 yukimiu.cf, 1
 yukimochi.com, 1
 yukimochi.io, 1
@@ -151182,6 +151957,7 @@
 yusa.me, 1
 yushanfang.recipes, 1
 yusu.org, 1
+yusufipek.me, 1
 yusukekato.com, 1
 yusukesakai.com, 1
 yutabon.com, 0
@@ -151465,7 +152241,6 @@
 zaffke.co, 1
 zafrani.ga, 1
 zagadki-cosmosa.tk, 1
-zagerijstraat51.be, 1
 zagi.net, 1
 zagorod.spb.ru, 1
 zagrabg.com, 1
@@ -151528,7 +152303,6 @@
 zakaria.website, 1
 zakariya.blog, 1
 zakarotta.ga, 1
-zakarpattya.fun, 1
 zakaz.cf, 1
 zakazbiletov.kz, 1
 zakcutner.com, 1
@@ -151565,7 +152339,6 @@
 zalvus.com, 1
 zam0th.tk, 1
 zamalektoday.com, 1
-zamarax.com, 1
 zambianewsforum.tk, 1
 zambranopublicidadvideo.com, 1
 zamecnikkladno.cz, 1
@@ -151650,6 +152423,7 @@
 zaratime.com, 1
 zaraweb.net, 1
 zarbis.tk, 1
+zarcik.pl, 1
 zardain.tk, 1
 zarezerwuj-nocleg.com, 1
 zargescases.co.uk, 1
@@ -151676,6 +152450,7 @@
 zataz.com, 1
 zatepli.eu, 1
 zaterdagwelpen.tk, 1
+zatp.com, 0
 zatrzymanie.com.pl, 1
 zatsepin.by, 1
 zauberer-bauchredner.ch, 1
@@ -151777,7 +152552,6 @@
 zd8826.com, 1
 zd8838.com, 1
 zd8839.com, 1
-zd8853.com, 1
 zd8858.com, 1
 zd8865.com, 1
 zd8869.com, 1
@@ -151819,6 +152593,7 @@
 zeal-and.jp, 1
 zeal-interior.com, 1
 zealandia.games, 1
+zealar.com.au, 1
 zealworks.jp, 1
 zeanweb.tk, 1
 zeb.fun, 1
@@ -151836,7 +152611,6 @@
 zectazepia.tk, 1
 zecuur.nl, 1
 zedeko.pl, 1
-zedern-welt.de, 1
 zedex.cn, 1
 zednet.tk, 1
 zeds-official.com, 1
@@ -151853,8 +152627,6 @@
 zeet.tk, 1
 zeetoppers.nl, 1
 zefort.com, 1
-zeg-holz.de, 1
-zegarkidlakazdego.pl, 1
 zegels-danst.tk, 1
 zegluje.net, 1
 zeglujemy.net, 1
@@ -152011,6 +152783,7 @@
 zerodensity.tv, 1
 zerodhacapital.com, 1
 zerodhareview.co, 1
+zerodoubtclub.com, 1
 zerofox.gq, 1
 zerofy.de, 0
 zerohash.com, 1
@@ -152021,10 +152794,10 @@
 zeromaxmoving.com, 1
 zeromedia.co.id, 1
 zeromoment.marketing, 1
+zeronedefi.com, 1
 zeronet.io, 1
 zeroplast24.ru, 1
 zeropoint.bg, 1
-zerosector.io, 1
 zeroseteatacado.com.br, 1
 zerotoleranceclan.tk, 1
 zerotoone.de, 1
@@ -152121,7 +152894,7 @@
 zhaochen.xyz, 1
 zhaochengtan.com, 1
 zhaodao.ai, 1
-zhaoeq.com, 1
+zhaohanman.com, 1
 zhaopage.com, 1
 zhaostephen.com, 1
 zhaoxixiangban.cc, 1
@@ -152156,16 +152929,20 @@
 zhimajk.com, 1
 zhimingwang.org, 1
 zhina.wiki, 1
+zhinengda.com, 1
 zhis.ltd, 1
 zhitanska.com, 1
 zhivoe.tk, 1
 zhiwei.me, 1
+zhixiu.com, 1
 zhiyulife.pp.ua, 1
 zhizi.ca, 1
 zhl123.com, 1
 zhodani.space, 1
 zhodino.cf, 1
 zhodino.ga, 1
+zhongai.com, 1
+zhongpu.com, 1
 zhongqiao.com, 1
 zhongxigo.com, 1
 zhongzicili.ws, 1
@@ -152174,6 +152951,7 @@
 zhoujianghan.com, 0
 zhoujiashu.com, 1
 zhoujunlawer.ml, 1
+zhoukan.fun, 0
 zhoukz.com, 1
 zhousiru.com, 1
 zhoutiancai.cn, 1
@@ -152181,6 +152959,8 @@
 zhouzanxi.com, 1
 zhovner.com, 1
 zhthings.com, 1
+zhuangqiu.com, 1
+zhuanyekong.com, 1
 zhuihoude.com, 1
 zhuji.com, 1
 zhuji.com.cn, 1
@@ -152192,6 +152972,8 @@
 zhukaev.ml, 1
 zhuktrans.msk.ru, 1
 zhunlink.com, 1
+zhuoyuelicai.com, 1
+zhuqiang.com, 1
 zhurnalyu.ga, 1
 zi.is, 1
 zi5.net, 1
@@ -152249,6 +153031,7 @@
 zima.io, 1
 zimaoxy.com, 1
 zimbromotor.pt, 1
+zimhosiery.com, 1
 zimiao.moe, 1
 zimkaru.ga, 1
 zimmer-voss.de, 1
@@ -152304,7 +153087,6 @@
 zitadel.cloud, 1
 zitadel.com, 0
 zithromaxstrepthroat.gq, 1
-zitseng.com, 1
 zitstabureau24.nl, 1
 zivava.ge, 1
 zivimexico.com, 1
@@ -152394,14 +153176,12 @@
 zlima12.com, 1
 zlogic.xyz, 1
 zlogin.nl, 1
-zlong6.net, 1
 zlotykameleon.tk, 1
 zlotyslawecin.tk, 1
 zloybot.tk, 1
 zlpa.loan, 1
 zlr.hu, 1
 zlypi.com, 1
-zmaloveane.pl, 1
 zmarta.de, 1
 zmarta.dk, 1
 zmarta.fi, 1
@@ -152463,7 +153243,6 @@
 zodgame.xyz, 1
 zodiacohouses.com, 1
 zodiaconline.com, 1
-zodiacpoolsystems.com, 1
 zodiak.tk, 1
 zoedale.co.uk, 1
 zoedijital.com, 1
@@ -152571,6 +153350,7 @@
 zonneglossis.tk, 1
 zonnigzieuwent.nl, 1
 zontractors.com, 1
+zoo-tver.ru, 1
 zoo.org.au, 1
 zoo24.de, 1
 zooforum.tk, 1
@@ -152604,6 +153384,7 @@
 zootsys.com, 1
 zoowiki.us, 1
 zooxdata.com, 1
+zoppigioielli.com, 0
 zoptiks.com, 0
 zopyx.com, 1
 zor.com, 1
@@ -152649,6 +153430,7 @@
 zova.io, 1
 zovirax-cream.gq, 1
 zovirax-cream.ml, 1
+zovoscitvfu.cz, 1
 zovovo.com, 1
 zowe.ru, 1
 zoyride.com, 1
@@ -152666,6 +153448,7 @@
 zq.com.sg, 1
 zqwqz.org, 1
 zr-dienstleistungen.de, 1
+zrali.com, 1
 zravyobrazky.cz, 1
 zravypapir.cz, 1
 zrejstejna.cz, 1
@@ -152702,6 +153485,7 @@
 zt360.net, 1
 zta.training, 1
 ztable.io, 1
+ztctarrin.com, 1
 zten.org, 1
 ztickerz.nl, 1
 ztmovies.cf, 1
@@ -152724,11 +153508,13 @@
 zufuribita.tk, 1
 zug-anwalt.de, 0
 zugfahrplan.com, 1
+zugspitz-region-gmbh.de, 1
 zuhausejobs.at, 1
 zuhausejobs.com, 1
 zuhur2021.tk, 1
 zui.moe, 1
 zuiacg.com, 1
+zuiderlokaal.nl, 1
 zuidplein.nl, 1
 zuijia.com, 1
 zuim.de, 1
@@ -152738,12 +153524,12 @@
 zuiverjegeest.nl, 1
 zukong.party, 1
 zukunft-mobilitaet.net, 1
+zukunftswege.at, 1
 zula.africa, 1
 zulaoyun.ml, 1
 zulfumehmet.tk, 1
 zulu.id, 1
 zulu.ro, 1
-zuluconnect.net, 1
 zum-baur.de, 1
 zum-ziegenhainer.de, 1
 zumba-oostende.be, 1
@@ -152821,12 +153607,12 @@
 zxtcode.com, 1
 zy.md, 1
 zy.si, 1
-zybbo.com, 1
 zycao.com, 0
 zycie.news, 1
 zyciedirect.pl, 1
 zyciegwiazd24.pl, 1
 zyciepl.com, 1
+zycjd.com, 0
 zycrypto.com, 1
 zydecozityradio.tk, 1
 zydronium.com, 1
@@ -152842,6 +153628,8 @@
 zymmm.com, 1
 zyno.space, 1
 zypern-firma.com, 1
+zypernreisen.com, 1
+zyphorq.com, 1
 zypr.pw, 1
 zyrex.eu.org, 1
 zyria.de, 1
@@ -152875,7 +153663,6 @@
 zzops.org, 1
 zzsec.org, 1
 zzw.ca, 1
-zzyzxphile.com, 1
 zzzmode.com, 1
 zzzz365.com, 0
 zzzzz.click, 1
diff -Nru thunderbird-102.9.0+build1/security/manager/ssl/StaticHPKPins.h thunderbird-102.10.0+build2/security/manager/ssl/StaticHPKPins.h
--- thunderbird-102.9.0+build1/security/manager/ssl/StaticHPKPins.h	2023-03-11 11:24:25.000000000 +0000
+++ thunderbird-102.10.0+build2/security/manager/ssl/StaticHPKPins.h	2023-04-11 06:11:12.000000000 +0000
@@ -396,6 +396,7 @@
 static const char* const kPinset_mozilla_services_Data[] = {
   kISRG_Root_X1Fingerprint,
   kDigiCert_High_Assurance_EV_Root_CAFingerprint,
+  kDigiCert_Global_Root_G2Fingerprint,
   kDigiCert_Global_Root_CAFingerprint,
 };
 static const StaticFingerprints kPinset_mozilla_services = {
@@ -1095,4 +1096,4 @@
 
 static const int32_t kUnknownId = -1;
 
-static const PRTime kPreloadPKPinsExpirationTime = INT64_C(1686569324484000);
+static const PRTime kPreloadPKPinsExpirationTime = INT64_C(1688988864564000);
diff -Nru thunderbird-102.9.0+build1/security/manager/tools/PreloadedHPKPins.json thunderbird-102.10.0+build2/security/manager/tools/PreloadedHPKPins.json
--- thunderbird-102.9.0+build1/security/manager/tools/PreloadedHPKPins.json	2023-03-11 11:24:25.000000000 +0000
+++ thunderbird-102.10.0+build2/security/manager/tools/PreloadedHPKPins.json	2023-04-11 06:11:12.000000000 +0000
@@ -59,8 +59,17 @@
     {
       "name": "mozilla_services",
       "sha256_hashes": [
+        // Current Digicert root hierarchy (G1)
+        // Digicert is migrating users off this root hierarchy
+        // https://knowledge.digicert.com/generalinformation/digicert-root-and-intermediate-ca-certificate-updates-2023.html
         "DigiCert Global Root CA",
         "DigiCert High Assurance EV Root CA",
+        // New Digicert root hierarchy (G2)
+        // Digicert is migrating users to this root hierarchy
+        // https://knowledge.digicert.com/generalinformation/digicert-root-and-intermediate-ca-certificate-updates-2023.html
+        "DigiCert Global Root G2",
+        // Current Let’s Encrypt root hierachy
+        // https://letsencrypt.org/certificates/
         "ISRG Root X1"
       ]
     },
diff -Nru thunderbird-102.9.0+build1/security/sandbox/chromium/sandbox/win/src/sandbox_nt_util.cc thunderbird-102.10.0+build2/security/sandbox/chromium/sandbox/win/src/sandbox_nt_util.cc
--- thunderbird-102.9.0+build1/security/sandbox/chromium/sandbox/win/src/sandbox_nt_util.cc	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/security/sandbox/chromium/sandbox/win/src/sandbox_nt_util.cc	2023-04-11 06:11:13.000000000 +0000
@@ -404,6 +404,21 @@
   if (!(basic_info.Attributes & SEC_IMAGE))
     return false;
 
+  // Windows 10 2009+ may open PEs as SEC_IMAGE_NO_EXECUTE in non-dll-loading
+  // paths which looks identical to dll-loading unless we check if the section
+  // handle has execute rights.
+  // Avoid memset inserted by -ftrivial-auto-var-init=pattern.
+  STACK_UNINITIALIZED OBJECT_BASIC_INFORMATION obj_info;
+  ULONG obj_size_returned;
+  ret = g_nt.QueryObject(section, ObjectBasicInformation, &obj_info,
+                                  sizeof(obj_info), &obj_size_returned);
+
+  if (!NT_SUCCESS(ret) || sizeof(obj_info) != obj_size_returned)
+    return false;
+
+  if (!(obj_info.GrantedAccess & SECTION_MAP_EXECUTE))
+    return false;
+
   return true;
 }
 
diff -Nru thunderbird-102.9.0+build1/security/sandbox/win/src/remotesandboxbroker/remoteSandboxBroker.cpp thunderbird-102.10.0+build2/security/sandbox/win/src/remotesandboxbroker/remoteSandboxBroker.cpp
--- thunderbird-102.9.0+build1/security/sandbox/win/src/remotesandboxbroker/remoteSandboxBroker.cpp	2023-03-11 11:24:27.000000000 +0000
+++ thunderbird-102.10.0+build2/security/sandbox/win/src/remotesandboxbroker/remoteSandboxBroker.cpp	2023-04-11 06:11:14.000000000 +0000
@@ -11,7 +11,8 @@
 
 namespace mozilla {
 
-RemoteSandboxBroker::RemoteSandboxBroker() {}
+RemoteSandboxBroker::RemoteSandboxBroker(uint32_t aLaunchArch)
+    : mLaunchArch(aLaunchArch) {}
 
 RemoteSandboxBroker::~RemoteSandboxBroker() {
   MOZ_ASSERT(
@@ -86,7 +87,7 @@
   // TaskQueue) to resolve our promise as it will be blocked until we return
   // from this function.
   nsCOMPtr<nsISerialEventTarget> target = NS_GetCurrentThread();
-  mParent.Launch(mParameters.shareHandles(), target)
+  mParent.Launch(mLaunchArch, mParameters.shareHandles(), target)
       ->Then(target, __func__, std::move(resolve), std::move(reject));
 
   // Spin the event loop while the sandbox launcher process launches.
@@ -102,6 +103,7 @@
   bool rv = mParent.SendLaunchApp(std::move(mParameters), &ok, &handle) && ok;
   mParameters.shareHandles().Clear();
   if (!rv) {
+    mParent.Shutdown();
     return false;
   }
 
@@ -110,6 +112,7 @@
   HANDLE ourChildHandle = 0;
   bool dh = mParent.DuplicateFromLauncher((HANDLE)handle, &ourChildHandle);
   if (!dh) {
+    mParent.Shutdown();
     return false;
   }
 
@@ -164,8 +167,4 @@
       "RemoteSandboxBroker::SetSecurityLevelForUtilityProcess not Implemented");
 }
 
-AbstractSandboxBroker* CreateRemoteSandboxBroker() {
-  return new RemoteSandboxBroker();
-}
-
 }  // namespace mozilla
diff -Nru thunderbird-102.9.0+build1/security/sandbox/win/src/remotesandboxbroker/remoteSandboxBroker.h thunderbird-102.10.0+build2/security/sandbox/win/src/remotesandboxbroker/remoteSandboxBroker.h
--- thunderbird-102.9.0+build1/security/sandbox/win/src/remotesandboxbroker/remoteSandboxBroker.h	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/security/sandbox/win/src/remotesandboxbroker/remoteSandboxBroker.h	2023-04-11 06:11:13.000000000 +0000
@@ -20,7 +20,7 @@
 // same arch still hold.
 class RemoteSandboxBroker : public AbstractSandboxBroker {
  public:
-  RemoteSandboxBroker();
+  explicit RemoteSandboxBroker(uint32_t aLaunchArch);
 
   void Shutdown() override;
 
@@ -63,6 +63,8 @@
 
   // True if we've been shutdown.
   bool mShutdown = false;
+
+  uint32_t mLaunchArch;
 };
 
 }  // namespace mozilla
diff -Nru thunderbird-102.9.0+build1/security/sandbox/win/src/remotesandboxbroker/RemoteSandboxBrokerParent.cpp thunderbird-102.10.0+build2/security/sandbox/win/src/remotesandboxbroker/RemoteSandboxBrokerParent.cpp
--- thunderbird-102.9.0+build1/security/sandbox/win/src/remotesandboxbroker/RemoteSandboxBrokerParent.cpp	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/security/sandbox/win/src/remotesandboxbroker/RemoteSandboxBrokerParent.cpp	2023-04-11 06:11:13.000000000 +0000
@@ -12,7 +12,8 @@
 namespace mozilla {
 
 RefPtr<GenericPromise> RemoteSandboxBrokerParent::Launch(
-    const nsTArray<uint64_t>& aHandlesToShare, nsISerialEventTarget* aThread) {
+    uint32_t aLaunchArch, const nsTArray<uint64_t>& aHandlesToShare,
+    nsISerialEventTarget* aThread) {
   MOZ_ASSERT(!mProcess);
   if (mProcess) {
     // Don't re-init.
@@ -20,6 +21,9 @@
   }
 
   mProcess = new RemoteSandboxBrokerProcessParent();
+#ifdef ALLOW_GECKO_CHILD_PROCESS_ARCH
+  mProcess->SetLaunchArchitecture(aLaunchArch);
+#endif
   for (uint64_t handle : aHandlesToShare) {
     mProcess->AddHandleToShare(HANDLE(handle));
   }
diff -Nru thunderbird-102.9.0+build1/security/sandbox/win/src/remotesandboxbroker/RemoteSandboxBrokerParent.h thunderbird-102.10.0+build2/security/sandbox/win/src/remotesandboxbroker/RemoteSandboxBrokerParent.h
--- thunderbird-102.9.0+build1/security/sandbox/win/src/remotesandboxbroker/RemoteSandboxBrokerParent.h	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/security/sandbox/win/src/remotesandboxbroker/RemoteSandboxBrokerParent.h	2023-04-11 06:11:13.000000000 +0000
@@ -27,7 +27,8 @@
   // Note: we rely on the caller to keep this instance alive
   // until this promise resolves.
   // aThread is the thread to use to resolve the promise on if needed.
-  RefPtr<GenericPromise> Launch(const nsTArray<uint64_t>& aHandlesToShare,
+  RefPtr<GenericPromise> Launch(uint32_t aLaunchArch,
+                                const nsTArray<uint64_t>& aHandlesToShare,
                                 nsISerialEventTarget* aThread);
 
  private:
diff -Nru thunderbird-102.9.0+build1/security/sandbox/win/src/sandboxbroker/sandboxBroker.cpp thunderbird-102.10.0+build2/security/sandbox/win/src/sandboxbroker/sandboxBroker.cpp
--- thunderbird-102.9.0+build1/security/sandbox/win/src/sandboxbroker/sandboxBroker.cpp	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/security/sandbox/win/src/sandboxbroker/sandboxBroker.cpp	2023-04-11 06:11:13.000000000 +0000
@@ -1656,22 +1656,4 @@
   }
 }
 
-#ifdef _ARM64_
-// We can't include remoteSandboxBroker.h here directly, as it includes
-// IPDL headers, which include a different copy of the chromium base
-// libraries, which leads to conflicts.
-extern AbstractSandboxBroker* CreateRemoteSandboxBroker();
-#endif
-
-// static
-AbstractSandboxBroker* AbstractSandboxBroker::Create(
-    GeckoProcessType aProcessType) {
-#ifdef _ARM64_
-  if (aProcessType == GeckoProcessType_GMPlugin) {
-    return CreateRemoteSandboxBroker();
-  }
-#endif
-  return new SandboxBroker();
-}
-
 }  // namespace mozilla
diff -Nru thunderbird-102.9.0+build1/security/sandbox/win/src/sandboxbroker/sandboxBroker.h thunderbird-102.10.0+build2/security/sandbox/win/src/sandboxbroker/sandboxBroker.h
--- thunderbird-102.9.0+build1/security/sandbox/win/src/sandboxbroker/sandboxBroker.h	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/security/sandbox/win/src/sandboxbroker/sandboxBroker.h	2023-04-11 06:11:13.000000000 +0000
@@ -29,8 +29,6 @@
  public:
   NS_INLINE_DECL_THREADSAFE_REFCOUNTING(AbstractSandboxBroker)
 
-  static AbstractSandboxBroker* Create(GeckoProcessType aProcessType);
-
   virtual void Shutdown() = 0;
   virtual bool LaunchApp(const wchar_t* aPath, const wchar_t* aArguments,
                          base::EnvironmentMap& aEnvironment,
diff -Nru thunderbird-102.9.0+build1/services/settings/dumps/blocklists/addons-bloomfilters.json thunderbird-102.10.0+build2/services/settings/dumps/blocklists/addons-bloomfilters.json
--- thunderbird-102.9.0+build1/services/settings/dumps/blocklists/addons-bloomfilters.json	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/services/settings/dumps/blocklists/addons-bloomfilters.json	2023-04-11 06:11:13.000000000 +0000
@@ -2,6 +2,330 @@
   "data": [
     {
       "stash": {
+        "blocked": [],
+        "unblocked": []
+      },
+      "schema": 1680115045364,
+      "key_format": "{guid}:{version}",
+      "stash_time": 1680201308515,
+      "id": "384a2d2e-dc8a-435a-bdbc-ecb82e41acc1",
+      "last_modified": 1680201445669
+    },
+    {
+      "stash": {
+        "blocked": [
+          "sba4b_firefox_quantum@checkpoint.com:990.86.40",
+          "sba4b_firefox_quantum@checkpoint.com:990.70.9",
+          "sba4b_firefox_quantum@checkpoint.com:990.55.5",
+          "sba4b_firefox_quantum@checkpoint.com:990.1.2",
+          "sba4b_firefox_quantum@checkpoint.com:990.64.10",
+          "sba4b_firefox_quantum@checkpoint.com:990.60.18",
+          "sba4b_firefox_quantum@checkpoint.com:990.63.13",
+          "sba4b_firefox_quantum@checkpoint.com:990.16.1",
+          "sba4b_firefox_quantum@checkpoint.com:990.70.4",
+          "sba4b_firefox_quantum@checkpoint.com:990.75.4",
+          "sba4b_firefox_quantum@checkpoint.com:990.97.324",
+          "sba4b_firefox_quantum@checkpoint.com:990.65.4",
+          "sba4b_firefox_quantum@checkpoint.com:990.93.18",
+          "sba4b_firefox_quantum@checkpoint.com:990.88.207",
+          "sba4b_firefox_quantum@checkpoint.com:990.97.5",
+          "sba4b_firefox_quantum@checkpoint.com:990.50.5",
+          "sba4b_firefox_quantum@checkpoint.com:990.86.13",
+          "sba4b_firefox_quantum@checkpoint.com:990.56.3",
+          "sba4b_firefox_quantum@checkpoint.com:990.60.14",
+          "sba4b_firefox_quantum@checkpoint.com:990.97.103",
+          "sba4b_firefox_quantum@checkpoint.com:990.60.2",
+          "sba4b_firefox_quantum@checkpoint.com:989.88.207",
+          "sba4b_firefox_quantum@checkpoint.com:990.63.4",
+          "sba4b_firefox_quantum@checkpoint.com:990.76.14",
+          "sba4b_firefox_quantum@checkpoint.com:990.71.2",
+          "sba4b_firefox_quantum@checkpoint.com:990.65.22",
+          "sba4b_firefox_quantum@checkpoint.com:990.82.9",
+          "sba4b_firefox_quantum@checkpoint.com:990.74.6",
+          "sba4b_firefox_quantum@checkpoint.com:990.75.104",
+          "sba4b_firefox_quantum@checkpoint.com:990.85.33",
+          "sba4b_firefox_quantum@checkpoint.com:990.97.528",
+          "sba4b_firefox_quantum@checkpoint.com:990.95.4",
+          "sba4b_firefox_quantum@checkpoint.com:990.70.6",
+          "sba4b_firefox_quantum@checkpoint.com:990.97.323",
+          "sba4b_firefox_quantum@checkpoint.com:990.76.10",
+          "sba4b_firefox_quantum@checkpoint.com:990.85.18",
+          "sba4b_firefox_quantum@checkpoint.com:990.63.21",
+          "sba4b_firefox_quantum@checkpoint.com:990.85.202",
+          "sba4b_firefox_quantum@checkpoint.com:4.6",
+          "sba4b_firefox_quantum@checkpoint.com:990.69.2",
+          "sba4b_firefox_quantum@checkpoint.com:990.58.23",
+          "sba4b_firefox_quantum@checkpoint.com:990.63.29",
+          "sba4b_firefox_quantum@checkpoint.com:990.89.19",
+          "sba4b_firefox_quantum@checkpoint.com:990.97.9",
+          "sba4b_firefox_quantum@checkpoint.com:990.63.8",
+          "sba4b_firefox_quantum@checkpoint.com:0",
+          "sba4b_firefox_quantum@checkpoint.com:990.71.6",
+          "sba4b_firefox_quantum@checkpoint.com:990.61.7",
+          "sba4b_firefox_quantum@checkpoint.com:990.74.8",
+          "sba4b_firefox_quantum@checkpoint.com:990.61.10",
+          "sba4b_firefox_quantum@checkpoint.com:990.94.2",
+          "sba4b_firefox_quantum@checkpoint.com:990.78.3",
+          "sba4b_firefox_quantum@checkpoint.com:990.86.41",
+          "sba4b_firefox_quantum@checkpoint.com:990.97.322",
+          "sba4b_firefox_quantum@checkpoint.com:990.57.2",
+          "sba4b_firefox_quantum@checkpoint.com:990.63.17",
+          "sba4b_firefox_quantum@checkpoint.com:990.97.416",
+          "sba4b_firefox_quantum@checkpoint.com:900.97.114",
+          "sba4b_firefox_quantum@checkpoint.com:0.0.1",
+          "sba4b_firefox_quantum@checkpoint.com:990.16.465",
+          "sba4b_firefox_quantum@checkpoint.com:990.76.4",
+          "sba4b_firefox_quantum@checkpoint.com:990.97.533",
+          "sba4b_firefox_quantum@checkpoint.com:990.73.4",
+          "sba4b_firefox_quantum@checkpoint.com:990.75.103",
+          "sba4b_firefox_quantum@checkpoint.com:990.85.31",
+          "sba4b_firefox_quantum@checkpoint.com:990.97.539",
+          "sba4b_firefox_quantum@checkpoint.com:990.96.2",
+          "sba4b_firefox_quantum@checkpoint.com:990.61.5",
+          "sba4b_firefox_quantum@checkpoint.com:990.60.6",
+          "sba4b_firefox_quantum@checkpoint.com:990.76.11",
+          "sba4b_firefox_quantum@checkpoint.com:990.65.100",
+          "sba4b_firefox_quantum@checkpoint.com:990.74.15",
+          "sba4b_firefox_quantum@checkpoint.com:990.67.16",
+          "sba4b_firefox_quantum@checkpoint.com:990.76.6",
+          "sba4b_firefox_quantum@checkpoint.com:990.60.10",
+          "sba4b_firefox_quantum@checkpoint.com:990.81.10",
+          "sba4b_firefox_quantum@checkpoint.com:990.91.235",
+          "sba4b_firefox_quantum@checkpoint.com:990.74.11",
+          "sba4b_firefox_quantum@checkpoint.com:990.67.17",
+          "sba4b_firefox_quantum@checkpoint.com:990.82.11",
+          "sba4b_firefox_quantum@checkpoint.com:990.63.2",
+          "sba4b_firefox_quantum@checkpoint.com:990.91.18",
+          "sba4b_firefox_quantum@checkpoint.com:990.51.1",
+          "sba4b_firefox_quantum@checkpoint.com:990.63.15",
+          "sba4b_firefox_quantum@checkpoint.com:990.90.14",
+          "sba4b_firefox_quantum@checkpoint.com:990.58.11",
+          "sba4b_firefox_quantum@checkpoint.com:990.88.9",
+          "sba4b_firefox_quantum@checkpoint.com:990.56.1",
+          "sba4b_firefox_quantum@checkpoint.com:990.92.17",
+          "sba4b_firefox_quantum@checkpoint.com:990.51.6",
+          "sba4b_firefox_quantum@checkpoint.com:990.97.538",
+          "sba4b_firefox_quantum@checkpoint.com:990.83.17",
+          "sba4b_firefox_quantum@checkpoint.com:990.78.5",
+          "sba4b_firefox_quantum@checkpoint.com:990.81.104",
+          "sba4b_firefox_quantum@checkpoint.com:990.75.6",
+          "sba4b_firefox_quantum@checkpoint.com:990.74.3",
+          "sba4b_firefox_quantum@checkpoint.com:990.49.3",
+          "sba4b_firefox_quantum@checkpoint.com:990.65.8",
+          "sba4b_firefox_quantum@checkpoint.com:990.49.8",
+          "sba4b_firefox_quantum@checkpoint.com:990.60.7",
+          "sba4b_firefox_quantum@checkpoint.com:990.71.5",
+          "sba4b_firefox_quantum@checkpoint.com:990.73.2",
+          "sba4b_firefox_quantum@checkpoint.com:990.97.537",
+          "sba4b_firefox_quantum@checkpoint.com:989.95.4",
+          "sba4b_firefox_quantum@checkpoint.com:990.67.18",
+          "sba4b_firefox_quantum@checkpoint.com:990.60.15",
+          "sba4b_firefox_quantum@checkpoint.com:990.81.11",
+          "sba4b_firefox_quantum@checkpoint.com:990.81.6",
+          "sba4b_firefox_quantum@checkpoint.com:990.49.1",
+          "sba4b_firefox_quantum@checkpoint.com:990.97.407",
+          "sba4b_firefox_quantum@checkpoint.com:990.52.4",
+          "sba4b_firefox_quantum@checkpoint.com:990.68.5",
+          "sba4b_firefox_quantum@checkpoint.com:990.76.23",
+          "sba4b_firefox_quantum@checkpoint.com:990.87.15",
+          "sba4b_firefox_quantum@checkpoint.com:990.95.2",
+          "sba4b_firefox_quantum@checkpoint.com:990.64.12",
+          "sba4b_firefox_quantum@checkpoint.com:990.75.3",
+          "sba4b_firefox_quantum@checkpoint.com:990.91.21",
+          "sba4b_firefox_quantum@checkpoint.com:990.76.9",
+          "sba4b_firefox_quantum@checkpoint.com:990.50.9",
+          "sba4b_firefox_quantum@checkpoint.com:990.74.13",
+          "sba4b_firefox_quantum@checkpoint.com:990.16.468",
+          "sba4b_firefox_quantum@checkpoint.com:990.97.656",
+          "sba4b_firefox_quantum@checkpoint.com:990.49.6",
+          "sba4b_firefox_quantum@checkpoint.com:990.64.5",
+          "sba4b_firefox_quantum@checkpoint.com:990.74.17",
+          "sba4b_firefox_quantum@checkpoint.com:990.90.15",
+          "sba4b_firefox_quantum@checkpoint.com:990.97.203",
+          "sba4b_firefox_quantum@checkpoint.com:0.0.2",
+          "sba4b_firefox_quantum@checkpoint.com:990.63.19",
+          "sba4b_firefox_quantum@checkpoint.com:990.97.319",
+          "sba4b_firefox_quantum@checkpoint.com:990.70.11",
+          "sba4b_firefox_quantum@checkpoint.com:990.1.1",
+          "sba4b_firefox_quantum@checkpoint.com:990.52.2",
+          "sba4b_firefox_quantum@checkpoint.com:990.63.24",
+          "sba4b_firefox_quantum@checkpoint.com:990.65.20",
+          "sba4b_firefox_quantum@checkpoint.com:990.49.20",
+          "sba4b_firefox_quantum@checkpoint.com:990.65.16",
+          "sba4b_firefox_quantum@checkpoint.com:990.85.22",
+          "sba4b_firefox_quantum@checkpoint.com:990.60.4",
+          "sba4b_firefox_quantum@checkpoint.com:990.58.25",
+          "sba4b_firefox_quantum@checkpoint.com:990.81.12",
+          "sba4b_firefox_quantum@checkpoint.com:990.58.8",
+          "sba4b_firefox_quantum@checkpoint.com:990.63.10",
+          "sba4b_firefox_quantum@checkpoint.com:990.88.8",
+          "sba4b_firefox_quantum@checkpoint.com:990.57.5",
+          "sba4b_firefox_quantum@checkpoint.com:990.51.3",
+          "sba4b_firefox_quantum@checkpoint.com:990.86.12",
+          "sba4b_firefox_quantum@checkpoint.com:990.63.27",
+          "sba4b_firefox_quantum@checkpoint.com:990.87.21",
+          "sba4b_firefox_quantum@checkpoint.com:990.97.109",
+          "sba4b_firefox_quantum@checkpoint.com:990.84.2",
+          "sba4b_firefox_quantum@checkpoint.com:990.86.18",
+          "sba4b_firefox_quantum@checkpoint.com:990.65.10",
+          "sba4b_firefox_quantum@checkpoint.com:990.97.200",
+          "sba4b_firefox_quantum@checkpoint.com:990.65.13",
+          "sba4b_firefox_quantum@checkpoint.com:990.91.51",
+          "sba4b_firefox_quantum@checkpoint.com:990.67.13",
+          "sba4b_firefox_quantum@checkpoint.com:990.91.20",
+          "sba4b_firefox_quantum@checkpoint.com:990.53.3",
+          "sba4b_firefox_quantum@checkpoint.com:990.97.315",
+          "sba4b_firefox_quantum@checkpoint.com:990.81.103",
+          "sba4b_firefox_quantum@checkpoint.com:990.94.4",
+          "sba4b_firefox_quantum@checkpoint.com:990.85.32",
+          "sba4b_firefox_quantum@checkpoint.com:990.85.20",
+          "sba4b_firefox_quantum@checkpoint.com:990.76.18",
+          "sba4b_firefox_quantum@checkpoint.com:990.50.7",
+          "sba4b_firefox_quantum@checkpoint.com:990.91.236",
+          "sba4b_firefox_quantum@checkpoint.com:990.87.5",
+          "sba4b_firefox_quantum@checkpoint.com:990.65.2",
+          "sba4b_firefox_quantum@checkpoint.com:990.81.102"
+        ],
+        "unblocked": []
+      },
+      "schema": 1680028648213,
+      "key_format": "{guid}:{version}",
+      "stash_time": 1680114906983,
+      "id": "ec139fe0-55ff-4e8b-bff9-9dbd64fa965e",
+      "last_modified": 1680115045300
+    },
+    {
+      "stash": {
+        "blocked": [
+          "{18d5fdb0-d202-4520-8860-59d4fa1e6244}:3.11"
+        ],
+        "unblocked": []
+      },
+      "schema": 1679675803461,
+      "key_format": "{guid}:{version}",
+      "stash_time": 1680028507517,
+      "id": "d340cb62-7c49-445e-8a2f-b51fb17e5ccc",
+      "last_modified": 1680028648110
+    },
+    {
+      "stash": {
+        "blocked": [
+          "pad.firefox@microsoft.com:2.0.9",
+          "pad.firefox@microsoft.com:2.0",
+          "pad.firefox@microsoft.com:2.0.2",
+          "pad.firefox@microsoft.com:2.0.12",
+          "pad.firefox@microsoft.com:2.0.1",
+          "pad.firefox@microsoft.com:2.0.10",
+          "pad.firefox@microsoft.com:2.0.11",
+          "pad.firefox@microsoft.com:2.0.7"
+        ],
+        "unblocked": []
+      },
+      "schema": 1678819036238,
+      "key_format": "{guid}:{version}",
+      "stash_time": 1679013307051,
+      "id": "ae2225d4-9a79-438e-9067-8d24330eb533",
+      "last_modified": 1679013443657
+    },
+    {
+      "stash": {
+        "blocked": [
+          "{682a4d95-858c-4f5f-a8c2-a28f872a9421}:1.0.0"
+        ],
+        "unblocked": []
+      },
+      "schema": 1678791416155,
+      "key_format": "{guid}:{version}",
+      "stash_time": 1678818906865,
+      "id": "41a308e3-60dc-4665-b7d8-ab3e08bfd47f",
+      "last_modified": 1678819036174
+    },
+    {
+      "stash": {
+        "blocked": [
+          "{4c922ece-b755-42f1-87fd-c2668820fb1d}:1.6.5",
+          "{4c922ece-b755-42f1-87fd-c2668820fb1d}:1.6.6",
+          "{7456a8da-418f-4049-a702-60497eb17aa7}:1.6.5",
+          "{1c49c423-bf28-4ab5-8b6e-f47cfb119d18}:1.6.4",
+          "{4c922ece-b755-42f1-87fd-c2668820fb1d}:1.7.0",
+          "{919fcfd4-e70f-466a-a04e-e092e7536111}:1.6.5"
+        ],
+        "unblocked": []
+      },
+      "schema": 1678711038933,
+      "key_format": "{guid}:{version}",
+      "stash_time": 1678732507092,
+      "id": "b901a476-ea25-42c3-aab3-15c403641d8b",
+      "last_modified": 1678732641589
+    },
+    {
+      "stash": {
+        "blocked": [
+          "{8d096862-cac3-49c1-a603-c03e73c0e8a5}:1.6.0",
+          "{8d096862-cac3-49c1-a603-c03e73c0e8a5}:1.5.2"
+        ],
+        "unblocked": []
+      },
+      "schema": 1678353093789,
+      "key_format": "{guid}:{version}",
+      "stash_time": 1678710906908,
+      "id": "0c320c61-63ca-44f2-9256-71046120ebdd",
+      "last_modified": 1678711038875
+    },
+    {
+      "stash": {
+        "blocked": [
+          "{02021fda-b771-4985-ac1c-31c29bb8f418}:1.0.8"
+        ],
+        "unblocked": []
+      },
+      "schema": 1678214241597,
+      "key_format": "{guid}:{version}",
+      "stash_time": 1678235707002,
+      "id": "ded16e68-a687-4d1b-a776-2453b836351a",
+      "last_modified": 1678235841178
+    },
+    {
+      "stash": {
+        "blocked": [
+          "{bf0179d1-a0a7-4b5b-80a6-72830d1553ca}:3.8.4"
+        ],
+        "unblocked": []
+      },
+      "schema": 1678192642539,
+      "key_format": "{guid}:{version}",
+      "stash_time": 1678214107125,
+      "id": "36e82eed-ae91-4495-a51b-d305da1e8f04",
+      "last_modified": 1678214241536
+    },
+    {
+      "stash": {
+        "blocked": [
+          "{df097a64-afd0-4ddc-978a-e8d53b4500f6}:0.1"
+        ],
+        "unblocked": []
+      },
+      "schema": 1678127842251,
+      "key_format": "{guid}:{version}",
+      "stash_time": 1678192507284,
+      "id": "85168529-0651-45c5-8cbf-f5aa567f9300",
+      "last_modified": 1678192642481
+    },
+    {
+      "stash": {
+        "blocked": [
+          "{b7167583-5f86-4676-acda-02d6fb936201}:1.0"
+        ],
+        "unblocked": []
+      },
+      "schema": 1678092907812,
+      "key_format": "{guid}:{version}",
+      "stash_time": 1678127707103,
+      "id": "935548bf-5e10-4dda-8c93-8239516d5c6b",
+      "last_modified": 1678127842190
+    },
+    {
+      "stash": {
         "blocked": [
           "{d2cc7459-67a0-46c5-8fe9-ddd60ce30d09}:1.2.4"
         ],
@@ -1006,5 +1330,5 @@
       "last_modified": 1673354326131
     }
   ],
-  "timestamp": 1677847041868
+  "timestamp": 1680201445669
 }
diff -Nru thunderbird-102.9.0+build1/services/settings/dumps/blocklists/gfx.json thunderbird-102.10.0+build2/services/settings/dumps/blocklists/gfx.json
--- thunderbird-102.9.0+build1/services/settings/dumps/blocklists/gfx.json	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/services/settings/dumps/blocklists/gfx.json	2023-04-11 06:11:13.000000000 +0000
@@ -2,6 +2,58 @@
   "data": [
     {
       "os": "Linux",
+      "schema": 1680017089172,
+      "vendor": "0x10de",
+      "details": {
+        "bug": "1824778",
+        "name": "NVIDIA driver stability issues"
+      },
+      "devices": [],
+      "enabled": true,
+      "feature": "DMABUF",
+      "hardware": "",
+      "driverVendor": "nvidia/unknown",
+      "versionRange": {
+        "maxVersion": "111.*",
+        "minVersion": ""
+      },
+      "driverVersion": "",
+      "featureStatus": "BLOCKED_DEVICE",
+      "windowProtocol": "",
+      "driverVersionMax": "",
+      "desktopEnvironment": "",
+      "driverVersionComparator": "",
+      "id": "78cc082a-221b-4353-8b07-57db1d03c871",
+      "last_modified": 1680018554787
+    },
+    {
+      "os": "Linux",
+      "schema": 1680017296058,
+      "vendor": "0x10de",
+      "details": {
+        "bug": "1824778",
+        "name": "NVIDIA driver stability issues"
+      },
+      "devices": [],
+      "enabled": true,
+      "feature": "THREADSAFE_GL",
+      "hardware": "",
+      "driverVendor": "nvidia/unknown",
+      "versionRange": {
+        "maxVersion": "111.*",
+        "minVersion": ""
+      },
+      "driverVersion": "",
+      "featureStatus": "BLOCKED_DEVICE",
+      "windowProtocol": "",
+      "driverVersionMax": "",
+      "desktopEnvironment": "",
+      "driverVersionComparator": "",
+      "id": "57d7fc9f-3e12-4b79-b28e-84abda7496af",
+      "last_modified": 1680018554776
+    },
+    {
+      "os": "Linux",
       "schema": 1677861301308,
       "vendor": "0x10de",
       "details": {
@@ -1348,5 +1400,5 @@
       "last_modified": 1480349134090
     }
   ],
-  "timestamp": 1677879347585
+  "timestamp": 1680018554787
 }
diff -Nru thunderbird-102.9.0+build1/services/settings/dumps/main/devtools-compatibility-browsers.json thunderbird-102.10.0+build2/services/settings/dumps/main/devtools-compatibility-browsers.json
--- thunderbird-102.9.0+build1/services/settings/dumps/main/devtools-compatibility-browsers.json	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/services/settings/dumps/main/devtools-compatibility-browsers.json	2023-04-11 06:11:13.000000000 +0000
@@ -1,229 +1,229 @@
 {
   "data": [
     {
-      "name": "Safari",
-      "schema": 1676828360273,
-      "status": "beta",
-      "version": "16.4",
-      "browserid": "safari",
-      "id": "622fe41e-3628-478d-966b-8ed00e0b5b56",
-      "last_modified": 1677256449931
-    },
-    {
-      "name": "Safari on iOS",
-      "schema": 1677245063267,
-      "status": "beta",
-      "version": "16.4",
-      "browserid": "safari_ios",
-      "id": "13737476-bd8e-49a0-bde7-d01e4aac6019",
-      "last_modified": 1677256449926
-    },
-    {
-      "name": "Samsung Internet",
-      "schema": 1677245063433,
-      "status": "current",
-      "version": "20.0",
-      "browserid": "samsunginternet_android",
-      "id": "74a1c6f7-709f-410d-8540-a0a4545b042b",
-      "last_modified": 1677256449920
-    },
-    {
-      "name": "Chrome Android",
-      "schema": 1676640266287,
+      "name": "Edge",
+      "schema": 1679145859020,
       "status": "nightly",
-      "version": "112",
-      "browserid": "chrome_android",
-      "id": "1f3d0b6c-cfc1-4d9a-817b-84afe10f7d75",
-      "last_modified": 1676648523401
+      "version": "113",
+      "browserid": "edge",
+      "id": "a191ad56-e312-4b3b-93ce-12d33b1e7fdd",
+      "last_modified": 1679292138407
     },
     {
-      "name": "WebView Android",
-      "schema": 1676640266900,
-      "status": "nightly",
-      "version": "112",
-      "browserid": "webview_android",
-      "id": "11e416f7-0514-413d-a6ff-fa4d25f33182",
-      "last_modified": 1676648523398
+      "name": "Opera Android",
+      "schema": 1679145859850,
+      "status": "current",
+      "version": "74",
+      "browserid": "opera_android",
+      "id": "81824509-a511-4fb0-ad6c-2621ea61fa77",
+      "last_modified": 1679292138402
     },
     {
       "name": "Firefox for Android",
-      "schema": 1676640266695,
+      "schema": 1679145859685,
       "status": "nightly",
-      "version": "112",
+      "version": "113",
       "browserid": "firefox_android",
-      "id": "e69efd93-530d-4466-8506-b76cd88a0fd7",
-      "last_modified": 1676648523394
+      "id": "0b7b7a9b-c2e0-4daa-be5a-1f8e3b333e14",
+      "last_modified": 1679292138397
     },
     {
       "name": "Firefox",
-      "schema": 1676640266492,
+      "schema": 1679145859353,
       "status": "nightly",
-      "version": "112",
+      "version": "113",
       "browserid": "firefox",
-      "id": "69ca36df-86aa-43f1-a35c-89940b11bebe",
-      "last_modified": 1676648523392
-    },
-    {
-      "name": "WebView Android",
-      "schema": 1676640266797,
-      "status": "current",
-      "version": "110",
-      "browserid": "webview_android",
-      "id": "a34cab01-b617-4ded-a09a-7dcfb4c1dd1d",
-      "last_modified": 1676648523389
+      "id": "36d33cd8-6e3a-4ab8-ad9c-ece003bcb1d0",
+      "last_modified": 1679292138393
     },
     {
-      "name": "Chrome Android",
-      "schema": 1676640266178,
+      "name": "Edge",
+      "schema": 1679145858840,
       "status": "current",
-      "version": "110",
-      "browserid": "chrome_android",
-      "id": "7b3adc78-1bce-4cdd-aa53-794a56487ad2",
-      "last_modified": 1676648523386
-    },
-    {
-      "name": "WebView Android",
-      "schema": 1676640266847,
-      "status": "beta",
       "version": "111",
-      "browserid": "webview_android",
-      "id": "1e3324d0-5f51-4b20-ad65-a53185ca0ce4",
-      "last_modified": 1676648523379
+      "browserid": "edge",
+      "id": "6bd814ae-a7bb-4441-827e-4401964ed347",
+      "last_modified": 1679292138385
     },
     {
-      "name": "Chrome Android",
-      "schema": 1676640266230,
+      "name": "Edge",
+      "schema": 1679145858929,
       "status": "beta",
-      "version": "111",
-      "browserid": "chrome_android",
-      "id": "83ad8ded-0958-403a-8ef1-f516585b8cc1",
-      "last_modified": 1676648523377
+      "version": "112",
+      "browserid": "edge",
+      "id": "d72d44fe-f840-4042-9689-be25f8f3fc48",
+      "last_modified": 1679292138377
     },
     {
       "name": "Firefox for Android",
-      "schema": 1676640266596,
+      "schema": 1679145859518,
       "status": "current",
-      "version": "110",
+      "version": "111",
       "browserid": "firefox_android",
-      "id": "6eb8f3ec-9018-4f1d-8c92-02f0ae248681",
-      "last_modified": 1676648523374
+      "id": "c84628f5-fd4c-433f-932b-c719ac7db848",
+      "last_modified": 1679292138373
     },
     {
       "name": "Firefox",
-      "schema": 1676640266391,
+      "schema": 1679145859192,
       "status": "current",
-      "version": "110",
+      "version": "111",
       "browserid": "firefox",
-      "id": "b652c866-d130-4b72-b36c-4e16d0a7ea0b",
-      "last_modified": 1676648523371
+      "id": "81afa5f4-c81a-48f4-99e1-2df1d3122a8a",
+      "last_modified": 1679292138369
     },
     {
       "name": "Firefox",
-      "schema": 1676640266441,
+      "schema": 1679145859273,
       "status": "beta",
-      "version": "111",
+      "version": "112",
       "browserid": "firefox",
-      "id": "81afa5f4-c81a-48f4-99e1-2df1d3122a8a",
-      "last_modified": 1676648523364
+      "id": "69ca36df-86aa-43f1-a35c-89940b11bebe",
+      "last_modified": 1679292138358
     },
     {
       "name": "Firefox for Android",
-      "schema": 1676640266646,
+      "schema": 1679145859602,
       "status": "beta",
-      "version": "111",
+      "version": "112",
       "browserid": "firefox_android",
-      "id": "c84628f5-fd4c-433f-932b-c719ac7db848",
-      "last_modified": 1676648523361
+      "id": "e69efd93-530d-4466-8506-b76cd88a0fd7",
+      "last_modified": 1679292138354
     },
     {
       "name": "Chrome",
-      "schema": 1676035448518,
+      "schema": 1678454665865,
       "status": "nightly",
-      "version": "112",
+      "version": "113",
       "browserid": "chrome",
-      "id": "ef8b5a2b-9377-4923-b905-dc9041df44c3",
-      "last_modified": 1676037304829
+      "id": "a1cfb4ee-e783-46ff-b410-5fcc9e44c48f",
+      "last_modified": 1678458552598
     },
     {
-      "name": "Edge",
-      "schema": 1676035448729,
+      "name": "Chrome Android",
+      "schema": 1678454666223,
       "status": "nightly",
-      "version": "112",
-      "browserid": "edge",
-      "id": "d72d44fe-f840-4042-9689-be25f8f3fc48",
-      "last_modified": 1676037304826
+      "version": "113",
+      "browserid": "chrome_android",
+      "id": "8863ff12-d171-4987-a8a2-3ad47c466205",
+      "last_modified": 1678458552593
     },
     {
       "name": "Opera",
-      "schema": 1676035448940,
+      "schema": 1678454666556,
       "status": "nightly",
-      "version": "97",
+      "version": "98",
       "browserid": "opera",
-      "id": "ea3999af-d75b-41c7-b744-ef9badfb4723",
-      "last_modified": 1676037304823
+      "id": "048cf0bc-8f77-4897-bf08-0cb3503eb9e4",
+      "last_modified": 1678458552588
+    },
+    {
+      "name": "WebView Android",
+      "schema": 1678454666888,
+      "status": "nightly",
+      "version": "113",
+      "browserid": "webview_android",
+      "id": "3b7e7208-ac56-4aa5-81a1-11d49e7eb7ec",
+      "last_modified": 1678458552583
+    },
+    {
+      "name": "Chrome",
+      "schema": 1678454665688,
+      "status": "current",
+      "version": "111",
+      "browserid": "chrome",
+      "id": "93f26c36-5be9-4183-a271-b39e6a06b8bf",
+      "last_modified": 1678458552577
     },
     {
       "name": "Opera",
-      "schema": 1676035448881,
-      "status": "beta",
+      "schema": 1678454666388,
+      "status": "current",
       "version": "96",
       "browserid": "opera",
       "id": "95fd1f92-7a9a-413e-af7c-2b58179691dc",
-      "last_modified": 1676037304817
+      "last_modified": 1678458552566
     },
     {
       "name": "Opera",
-      "schema": 1676035448831,
-      "status": "current",
-      "version": "95",
+      "schema": 1678454666470,
+      "status": "beta",
+      "version": "97",
       "browserid": "opera",
-      "id": "a83007e2-3f6d-4282-a7be-5552e91fc2f1",
-      "last_modified": 1676037304814
+      "id": "ea3999af-d75b-41c7-b744-ef9badfb4723",
+      "last_modified": 1678458552562
     },
     {
-      "name": "Edge",
-      "schema": 1676035448624,
+      "name": "Chrome",
+      "schema": 1678454665777,
+      "status": "beta",
+      "version": "112",
+      "browserid": "chrome",
+      "id": "ef8b5a2b-9377-4923-b905-dc9041df44c3",
+      "last_modified": 1678458552558
+    },
+    {
+      "name": "Chrome Android",
+      "schema": 1678454666040,
       "status": "current",
-      "version": "110",
-      "browserid": "edge",
-      "id": "baa61b5a-ce43-4531-beea-a273fefa1e0e",
-      "last_modified": 1676037304812
+      "version": "111",
+      "browserid": "chrome_android",
+      "id": "83ad8ded-0958-403a-8ef1-f516585b8cc1",
+      "last_modified": 1678458552554
     },
     {
-      "name": "Chrome",
-      "schema": 1676035448409,
+      "name": "WebView Android",
+      "schema": 1678454666722,
       "status": "current",
-      "version": "110",
-      "browserid": "chrome",
-      "id": "51a62bb5-f0d0-46d5-a791-c91f9337778f",
-      "last_modified": 1676037304809
+      "version": "111",
+      "browserid": "webview_android",
+      "id": "1e3324d0-5f51-4b20-ad65-a53185ca0ce4",
+      "last_modified": 1678458552550
     },
     {
-      "name": "Edge",
-      "schema": 1676035448676,
+      "name": "WebView Android",
+      "schema": 1678454666805,
       "status": "beta",
-      "version": "111",
-      "browserid": "edge",
-      "id": "6bd814ae-a7bb-4441-827e-4401964ed347",
-      "last_modified": 1676037304802
+      "version": "112",
+      "browserid": "webview_android",
+      "id": "11e416f7-0514-413d-a6ff-fa4d25f33182",
+      "last_modified": 1678458552538
     },
     {
-      "name": "Chrome",
-      "schema": 1676035448468,
+      "name": "Chrome Android",
+      "schema": 1678454666140,
       "status": "beta",
-      "version": "111",
-      "browserid": "chrome",
-      "id": "93f26c36-5be9-4183-a271-b39e6a06b8bf",
-      "last_modified": 1676037304799
+      "version": "112",
+      "browserid": "chrome_android",
+      "id": "1f3d0b6c-cfc1-4d9a-817b-84afe10f7d75",
+      "last_modified": 1678458552534
     },
     {
-      "name": "Opera Android",
-      "schema": 1674912258295,
+      "name": "Safari",
+      "schema": 1676828360273,
+      "status": "beta",
+      "version": "16.4",
+      "browserid": "safari",
+      "id": "622fe41e-3628-478d-966b-8ed00e0b5b56",
+      "last_modified": 1677256449931
+    },
+    {
+      "name": "Safari on iOS",
+      "schema": 1677245063267,
+      "status": "beta",
+      "version": "16.4",
+      "browserid": "safari_ios",
+      "id": "13737476-bd8e-49a0-bde7-d01e4aac6019",
+      "last_modified": 1677256449926
+    },
+    {
+      "name": "Samsung Internet",
+      "schema": 1677245063433,
       "status": "current",
-      "version": "73",
-      "browserid": "opera_android",
-      "id": "0f8063e0-6d53-4c6f-83a7-7eccf4ae0dfa",
-      "last_modified": 1675063900233
+      "version": "20.0",
+      "browserid": "samsunginternet_android",
+      "id": "74a1c6f7-709f-410d-8540-a0a4545b042b",
+      "last_modified": 1677256449920
     },
     {
       "name": "Safari",
@@ -281,15 +281,6 @@
     },
     {
       "name": "Firefox",
-      "schema": 1662643476267,
-      "status": "planned",
-      "version": "113",
-      "browserid": "firefox",
-      "id": "36d33cd8-6e3a-4ab8-ad9c-ece003bcb1d0",
-      "last_modified": 1662648201687
-    },
-    {
-      "name": "Firefox",
       "schema": 1662643476308,
       "status": "planned",
       "version": "114",
@@ -362,15 +353,6 @@
     },
     {
       "name": "Firefox for Android",
-      "schema": 1662643476944,
-      "status": "planned",
-      "version": "113",
-      "browserid": "firefox_android",
-      "id": "0b7b7a9b-c2e0-4daa-be5a-1f8e3b333e14",
-      "last_modified": 1662648201653
-    },
-    {
-      "name": "Firefox for Android",
       "schema": 1662643476982,
       "status": "planned",
       "version": "114",
@@ -469,5 +451,5 @@
       "last_modified": 1645448267500
     }
   ],
-  "timestamp": 1677256449931
+  "timestamp": 1679292138407
 }
diff -Nru thunderbird-102.9.0+build1/services/settings/dumps/main/password-rules.json thunderbird-102.10.0+build2/services/settings/dumps/main/password-rules.json
--- thunderbird-102.9.0+build1/services/settings/dumps/main/password-rules.json	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/services/settings/dumps/main/password-rules.json	2023-04-11 06:11:13.000000000 +0000
@@ -817,12 +817,6 @@
       "last_modified": 1624479577187
     },
     {
-      "Domain": "fnac.com",
-      "password-rules": "minlength: 8; required: lower; required: upper; required: digit;",
-      "id": "967dfded-a339-4f7d-82d6-8bd18990a200",
-      "last_modified": 1624479577182
-    },
-    {
       "Domain": "fuelrewards.com",
       "password-rules": "minlength: 8; maxlength: 16; allowed: upper,lower,digit,[!#$%@];",
       "id": "7e44d18c-7aa9-479d-b99b-9ddf848abb94",
@@ -1585,5 +1579,5 @@
       "last_modified": 1624479576629
     }
   ],
-  "timestamp": 1659924409785
+  "timestamp": 1679600032742
 }
diff -Nru thunderbird-102.9.0+build1/services/settings/dumps/main/search-config.json thunderbird-102.10.0+build2/services/settings/dumps/main/search-config.json
--- thunderbird-102.9.0+build1/services/settings/dumps/main/search-config.json	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/services/settings/dumps/main/search-config.json	2023-04-11 06:11:13.000000000 +0000
@@ -1,6 +1,312 @@
 {
   "data": [
     {
+      "urls": {
+        "trending": {
+          "query": "client=firefox&tpsf=ftr&q={searchTerms}",
+          "fullPath": "https://www.google.com/complete/search"
+        }
+      },
+      "params": {
+        "searchUrlGetParams": [
+          {
+            "name": "client",
+            "value": "firefox-b-d"
+          },
+          {
+            "name": "q",
+            "value": "{searchTerms}"
+          }
+        ]
+      },
+      "schema": 1678791413625,
+      "appliesTo": [
+        {
+          "default": "yes-if-no-other",
+          "excluded": {
+            "regions": [
+              "ru",
+              "tr",
+              "by",
+              "kz"
+            ]
+          },
+          "included": {
+            "everywhere": true
+          }
+        },
+        {
+          "override": true,
+          "orderHint": 2000,
+          "application": {
+            "distributions": [
+              "MozillaOnline"
+            ]
+          }
+        },
+        {
+          "params": {
+            "searchUrlGetParams": [
+              {
+                "name": "client",
+                "value": "firefox-b-e"
+              },
+              {
+                "name": "q",
+                "value": "{searchTerms}"
+              }
+            ]
+          },
+          "included": {
+            "everywhere": true
+          },
+          "application": {
+            "channel": [
+              "esr"
+            ]
+          },
+          "telemetryId": "google-b-e"
+        },
+        {
+          "params": {
+            "searchUrlGetParams": [
+              {
+                "name": "q",
+                "value": "{searchTerms}"
+              }
+            ]
+          },
+          "default": "yes",
+          "included": {
+            "regions": [
+              "ru",
+              "tr",
+              "by",
+              "kz"
+            ]
+          },
+          "telemetryId": "google-com-nocodes"
+        },
+        {
+          "default": "no",
+          "included": {
+            "locales": {
+              "matches": [
+                "zh-CN"
+              ]
+            },
+            "regions": [
+              "cn"
+            ]
+          }
+        },
+        {
+          "params": {
+            "searchUrlGetParams": [
+              {
+                "name": "client",
+                "value": "firefox-b-e"
+              },
+              {
+                "name": "q",
+                "value": "{searchTerms}"
+              }
+            ]
+          },
+          "default": "no",
+          "included": {
+            "locales": {
+              "matches": [
+                "zh-CN"
+              ]
+            },
+            "regions": [
+              "cn"
+            ]
+          },
+          "application": {
+            "channel": [
+              "esr"
+            ]
+          }
+        },
+        {
+          "params": {
+            "searchUrlGetParams": [
+              {
+                "name": "client",
+                "value": "firefox-b-1-d"
+              },
+              {
+                "name": "q",
+                "value": "{searchTerms}"
+              }
+            ]
+          },
+          "included": {
+            "regions": [
+              "us"
+            ]
+          },
+          "extraParams": [
+            {
+              "name": "channel",
+              "pref": "google_channel_us",
+              "condition": "pref"
+            }
+          ],
+          "telemetryId": "google-b-1-d"
+        },
+        {
+          "params": {
+            "searchUrlGetParams": [
+              {
+                "name": "client",
+                "value": "firefox-b-1-e"
+              },
+              {
+                "name": "q",
+                "value": "{searchTerms}"
+              }
+            ]
+          },
+          "included": {
+            "regions": [
+              "us"
+            ]
+          },
+          "application": {
+            "channel": [
+              "esr"
+            ]
+          },
+          "extraParams": [
+            {
+              "name": "channel",
+              "pref": "google_channel_us",
+              "condition": "pref"
+            }
+          ],
+          "telemetryId": "google-b-1-e"
+        },
+        {
+          "params": {
+            "searchUrlGetParams": [
+              {
+                "name": "client",
+                "value": "ubuntu"
+              },
+              {
+                "name": "q",
+                "value": "{searchTerms}"
+              }
+            ]
+          },
+          "override": true,
+          "application": {
+            "distributions": [
+              "canonical",
+              "canonical-001"
+            ]
+          },
+          "extraParams": [
+            {
+              "name": "channel",
+              "value": "fs"
+            }
+          ],
+          "telemetryId": "google-canonical"
+        },
+        {
+          "params": {
+            "searchUrlGetParams": [
+              {
+                "name": "client",
+                "value": "ubuntu-sn"
+              },
+              {
+                "name": "q",
+                "value": "{searchTerms}"
+              }
+            ]
+          },
+          "override": true,
+          "application": {
+            "distributions": [
+              "canonical-002"
+            ]
+          },
+          "extraParams": [
+            {
+              "name": "channel",
+              "value": "fs"
+            }
+          ],
+          "telemetryId": "google-ubuntu-sn"
+        },
+        {
+          "params": {
+            "searchUrlGetParams": [
+              {
+                "name": "client",
+                "value": "firefox-b-lm"
+              },
+              {
+                "name": "q",
+                "value": "{searchTerms}"
+              }
+            ]
+          },
+          "override": true,
+          "application": {
+            "distributions": [
+              "mint-001"
+            ]
+          },
+          "telemetryId": "google-b-lm"
+        },
+        {
+          "params": {
+            "searchUrlGetParams": [
+              {
+                "name": "client",
+                "value": "firefox-b-1-lm"
+              },
+              {
+                "name": "q",
+                "value": "{searchTerms}"
+              }
+            ]
+          },
+          "included": {
+            "regions": [
+              "us"
+            ]
+          },
+          "override": true,
+          "application": {
+            "distributions": [
+              "mint-001"
+            ]
+          },
+          "telemetryId": "google-b-1-lm"
+        }
+      ],
+      "extraParams": [
+        {
+          "name": "channel",
+          "pref": "google_channel_row",
+          "condition": "pref"
+        }
+      ],
+      "telemetryId": "google-b-d",
+      "webExtension": {
+        "id": "google@search.mozilla.org"
+      },
+      "id": "cb8e7210-9f0b-48fa-8708-b9a03df79eea",
+      "last_modified": 1678922485545
+    },
+    {
       "schema": 1674842123977,
       "appliesTo": [
         {
@@ -750,127 +1056,35 @@
             }
           },
           "telemetryId": "ebay-ch",
-          "webExtension": {
-            "locales": [
-              "ch"
-            ]
-          }
-        }
-      ],
-      "webExtension": {
-        "id": "ebay@search.mozilla.org"
-      },
-      "id": "cbe309e0-f638-4996-9dfc-ea5c19ef16e9",
-      "last_modified": 1675353179507
-    },
-    {
-      "params": {
-        "searchUrlGetParams": [
-          {
-            "name": "pc",
-            "value": "MOZI"
-          },
-          {
-            "name": "q",
-            "value": "{searchTerms}"
-          }
-        ]
-      },
-      "schema": 1674751976781,
-      "appliesTo": [
-        {
-          "included": {
-            "locales": {
-              "matches": [
-                "ach",
-                "af",
-                "an",
-                "ar",
-                "ast",
-                "az",
-                "ca",
-                "ca-valencia",
-                "cak",
-                "da",
-                "de",
-                "dsb",
-                "el",
-                "eo",
-                "es-CL",
-                "es-ES",
-                "es-MX",
-                "eu",
-                "fa",
-                "ff",
-                "fi",
-                "fr",
-                "fur",
-                "fy-NL",
-                "gn",
-                "gu-IN",
-                "hi-IN",
-                "hr",
-                "hsb",
-                "ia",
-                "is",
-                "it",
-                "ja-JP-macos",
-                "ja",
-                "ka",
-                "kab",
-                "km",
-                "kn",
-                "lij",
-                "lo",
-                "lt",
-                "mk",
-                "ms",
-                "my",
-                "nb-NO",
-                "ne-NP",
-                "nl",
-                "nn-NO",
-                "oc",
-                "pa-IN",
-                "pt-BR",
-                "rm",
-                "ro",
-                "sc",
-                "sco",
-                "son",
-                "sq",
-                "sr",
-                "sv-SE",
-                "th",
-                "tl",
-                "trs",
-                "uk",
-                "ur",
-                "uz",
-                "wo",
-                "xh",
-                "zh-CN"
-              ],
-              "startsWith": [
-                "bn",
-                "en"
-              ]
-            }
-          }
-        },
-        {
-          "params": {
-            "searchUrlGetParams": [
-              {
-                "name": "pc",
-                "value": "MOZR"
-              },
-              {
-                "name": "q",
-                "value": "{searchTerms}"
-              }
+          "webExtension": {
+            "locales": [
+              "ch"
             ]
+          }
+        }
+      ],
+      "webExtension": {
+        "id": "ebay@search.mozilla.org"
+      },
+      "id": "cbe309e0-f638-4996-9dfc-ea5c19ef16e9",
+      "last_modified": 1675353179507
+    },
+    {
+      "params": {
+        "searchUrlGetParams": [
+          {
+            "name": "pc",
+            "value": "MOZI"
           },
+          {
+            "name": "q",
+            "value": "{searchTerms}"
+          }
+        ]
+      },
+      "schema": 1674751976781,
+      "appliesTo": [
+        {
           "included": {
             "locales": {
               "matches": [
@@ -948,261 +1162,19 @@
                 "en"
               ]
             }
-          },
-          "application": {
-            "channel": [
-              "esr"
-            ]
-          },
-          "telemetryId": "bing-esr"
-        },
-        {
-          "params": {
-            "searchUrlGetParams": [
-              {
-                "name": "ptag",
-                "value": "MOZZ0000000020"
-              },
-              {
-                "name": "pc",
-                "value": "MZSL01"
-              },
-              {
-                "name": "q",
-                "value": "{searchTerms}"
-              }
-            ]
-          },
-          "default": "yes",
-          "override": true,
-          "application": {
-            "distributions": [
-              "sweetlabs-b-oem1",
-              "sweetlabs-b-r-oem1"
-            ]
-          }
-        },
-        {
-          "params": {
-            "searchUrlGetParams": [
-              {
-                "name": "ptag",
-                "value": "MOZZ0000000020"
-              },
-              {
-                "name": "pc",
-                "value": "MZSL02"
-              },
-              {
-                "name": "q",
-                "value": "{searchTerms}"
-              }
-            ]
-          },
-          "default": "yes",
-          "override": true,
-          "application": {
-            "distributions": [
-              "sweetlabs-b-oem2",
-              "sweetlabs-b-r-oem2"
-            ]
-          }
-        },
-        {
-          "params": {
-            "searchUrlGetParams": [
-              {
-                "name": "ptag",
-                "value": "MOZZ0000000020"
-              },
-              {
-                "name": "pc",
-                "value": "MZSL03"
-              },
-              {
-                "name": "q",
-                "value": "{searchTerms}"
-              }
-            ]
-          },
-          "default": "yes",
-          "override": true,
-          "application": {
-            "distributions": [
-              "sweetlabs-b-oem3",
-              "sweetlabs-b-r-oem3"
-            ]
-          }
-        },
-        {
-          "default": "yes",
-          "included": {
-            "everywhere": true
-          },
-          "application": {
-            "distributions": [
-              "acer-003",
-              "acer-004"
-            ]
-          }
-        },
-        {
-          "params": {
-            "searchUrlGetParams": [
-              {
-                "name": "pc",
-                "value": "MOZX"
-              },
-              {
-                "name": "q",
-                "value": "{searchTerms}"
-              }
-            ]
-          },
-          "override": true,
-          "application": {
-            "distributions": [
-              "acer-003",
-              "acer-004"
-            ]
-          }
-        },
-        {
-          "override": "true",
-          "orderHint": 2500,
-          "application": {
-            "distributions": [
-              "MozillaOnline"
-            ]
-          }
-        }
-      ],
-      "webExtension": {
-        "id": "bing@search.mozilla.org"
-      },
-      "id": "7ec766f6-639a-4618-91bc-33eb3d4378c6",
-      "last_modified": 1675353179505
-    },
-    {
-      "params": {
-        "searchUrlGetParams": [
-          {
-            "name": "q",
-            "value": "{searchTerms}"
-          }
-        ]
-      },
-      "schema": 1674147734571,
-      "appliesTo": [
-        {
-          "included": {
-            "everywhere": true
-          }
-        },
-        {
-          "included": {
-            "everywhere": true
-          },
-          "application": {
-            "channel": [
-              "esr"
-            ]
-          },
-          "extraParams": [
-            {
-              "name": "t",
-              "value": "ftsa",
-              "purpose": "searchbar",
-              "condition": "purpose"
-            }
-          ],
-          "telemetryId": "ddg-esr"
-        },
-        {
-          "override": "true",
-          "application": {
-            "distributions": [
-              "mint-001"
-            ]
-          },
-          "extraParams": [
-            {
-              "name": "t",
-              "value": "lm",
-              "purpose": "searchbar",
-              "condition": "purpose"
-            }
-          ]
-        }
-      ],
-      "extraParams": [
-        {
-          "name": "t",
-          "value": "ffab",
-          "purpose": "searchbar",
-          "condition": "purpose"
-        }
-      ],
-      "telemetryId": "ddg",
-      "webExtension": {
-        "id": "ddg@search.mozilla.org"
-      },
-      "id": "c0b26c0e-63e6-4235-b2ce-5f16b6a8bf87",
-      "last_modified": 1674751976728
-    },
-    {
-      "schema": 1673982699337,
-      "appliesTo": [
-        {
-          "included": {
-            "regions": [
-              "us"
-            ]
-          },
-          "application": {
-            "minVersion": "89.0a1"
-          },
-          "telemetryId": "amazondotcom-us",
-          "webExtension": {
-            "locales": [
-              "us"
-            ]
-          }
-        },
-        {
-          "included": {
-            "regions": [
-              "us"
-            ]
-          },
-          "application": {
-            "maxVersion": "89.0a1"
           }
         },
         {
-          "excluded": {
-            "regions": [
-              "at",
-              "au",
-              "be",
-              "ca",
-              "ch",
-              "cn",
-              "de",
-              "es",
-              "fr",
-              "gb",
-              "ie",
-              "in",
-              "it",
-              "jp",
-              "mc",
-              "nl",
-              "pt",
-              "se",
-              "sm",
-              "us",
-              "va"
+          "params": {
+            "searchUrlGetParams": [
+              {
+                "name": "pc",
+                "value": "MOZR"
+              },
+              {
+                "name": "q",
+                "value": "{searchTerms}"
+              }
             ]
           },
           "included": {
@@ -1210,683 +1182,743 @@
               "matches": [
                 "ach",
                 "af",
+                "an",
                 "ar",
+                "ast",
                 "az",
-                "bg",
+                "ca",
+                "ca-valencia",
                 "cak",
-                "cy",
                 "da",
+                "de",
+                "dsb",
                 "el",
-                "en-GB",
-                "en-US",
                 "eo",
-                "es-AR",
+                "es-CL",
+                "es-ES",
+                "es-MX",
                 "eu",
                 "fa",
-                "ga-IE",
-                "gd",
-                "gl",
+                "ff",
+                "fi",
+                "fr",
+                "fur",
+                "fy-NL",
                 "gn",
+                "gu-IN",
+                "hi-IN",
                 "hr",
-                "hy-AM",
+                "hsb",
                 "ia",
                 "is",
+                "it",
+                "ja-JP-macos",
+                "ja",
                 "ka",
+                "kab",
                 "km",
+                "kn",
+                "lij",
+                "lo",
                 "lt",
                 "mk",
                 "ms",
                 "my",
                 "nb-NO",
+                "ne-NP",
+                "nl",
                 "nn-NO",
-                "pt-PT",
+                "oc",
+                "pa-IN",
+                "pt-BR",
+                "rm",
                 "ro",
-                "si",
+                "sc",
+                "sco",
+                "son",
                 "sq",
                 "sr",
+                "sv-SE",
                 "th",
                 "tl",
                 "trs",
-                "uz"
-              ]
-            }
-          }
-        }
-      ],
-      "telemetryId": "amazondotcom",
-      "webExtension": {
-        "id": "amazondotcom@search.mozilla.org"
-      },
-      "id": "071c671c-7c1b-469d-a771-ab16ff6e8beb",
-      "last_modified": 1674147734519
-    },
-    {
-      "schema": 1673982696406,
-      "appliesTo": [
-        {
-          "included": {
-            "locales": {
-              "matches": [
+                "uk",
+                "ur",
+                "uz",
+                "wo",
+                "xh",
+                "zh-CN"
+              ],
+              "startsWith": [
                 "bn",
-                "bn-IN",
-                "kn",
-                "gu-IN",
-                "mr",
-                "pa-IN",
-                "ta",
-                "te",
-                "ur"
+                "en"
               ]
-            },
-            "regions": [
-              "in"
-            ]
-          },
-          "telemetryId": "amazon-in",
-          "webExtension": {
-            "locales": [
-              "in"
-            ]
-          }
-        },
-        {
-          "included": {
-            "regions": [
-              "fr",
-              "mc"
-            ]
+            }
           },
-          "telemetryId": "amazon-france",
-          "webExtension": {
-            "locales": [
-              "france"
-            ]
-          }
-        },
-        {
-          "included": {
-            "locales": {
-              "matches": [
-                "fr"
-              ]
-            },
-            "regions": [
-              "be"
+          "application": {
+            "channel": [
+              "esr"
             ]
           },
-          "telemetryId": "amazon-france",
-          "webExtension": {
-            "locales": [
-              "france"
-            ]
-          }
+          "telemetryId": "bing-esr"
         },
         {
-          "included": {
-            "regions": [
-              "jp"
+          "params": {
+            "searchUrlGetParams": [
+              {
+                "name": "ptag",
+                "value": "MOZZ0000000020"
+              },
+              {
+                "name": "pc",
+                "value": "MZSL01"
+              },
+              {
+                "name": "q",
+                "value": "{searchTerms}"
+              }
             ]
           },
-          "telemetryId": "amazon-jp",
-          "webExtension": {
-            "locales": [
-              "jp"
+          "default": "yes",
+          "override": true,
+          "application": {
+            "distributions": [
+              "sweetlabs-b-oem1",
+              "sweetlabs-b-r-oem1"
             ]
           }
         },
         {
-          "included": {
-            "regions": [
-              "it",
-              "sm",
-              "va"
+          "params": {
+            "searchUrlGetParams": [
+              {
+                "name": "ptag",
+                "value": "MOZZ0000000020"
+              },
+              {
+                "name": "pc",
+                "value": "MZSL02"
+              },
+              {
+                "name": "q",
+                "value": "{searchTerms}"
+              }
             ]
           },
-          "telemetryId": "amazon-it",
-          "webExtension": {
-            "locales": [
-              "it"
+          "default": "yes",
+          "override": true,
+          "application": {
+            "distributions": [
+              "sweetlabs-b-oem2",
+              "sweetlabs-b-r-oem2"
             ]
           }
         },
         {
-          "included": {
-            "regions": [
-              "at",
-              "ch",
-              "de"
+          "params": {
+            "searchUrlGetParams": [
+              {
+                "name": "ptag",
+                "value": "MOZZ0000000020"
+              },
+              {
+                "name": "pc",
+                "value": "MZSL03"
+              },
+              {
+                "name": "q",
+                "value": "{searchTerms}"
+              }
             ]
           },
-          "telemetryId": "amazon-de",
-          "webExtension": {
-            "locales": [
-              "de"
+          "default": "yes",
+          "override": true,
+          "application": {
+            "distributions": [
+              "sweetlabs-b-oem3",
+              "sweetlabs-b-r-oem3"
             ]
           }
         },
         {
+          "default": "yes",
           "included": {
-            "regions": [
-              "gb",
-              "ie"
-            ]
+            "everywhere": true
           },
-          "telemetryId": "amazon-en-GB",
-          "webExtension": {
-            "locales": [
-              "en-GB"
+          "application": {
+            "distributions": [
+              "acer-003",
+              "acer-004"
             ]
           }
         },
         {
-          "included": {
-            "regions": [
-              "au"
+          "params": {
+            "searchUrlGetParams": [
+              {
+                "name": "pc",
+                "value": "MOZX"
+              },
+              {
+                "name": "q",
+                "value": "{searchTerms}"
+              }
             ]
           },
-          "telemetryId": "amazon-au",
-          "webExtension": {
-            "locales": [
-              "au"
+          "override": true,
+          "application": {
+            "distributions": [
+              "acer-003",
+              "acer-004"
             ]
           }
         },
         {
-          "included": {
-            "regions": [
-              "ca"
-            ]
-          },
-          "telemetryId": "amazon-ca",
-          "webExtension": {
-            "locales": [
-              "ca"
+          "override": "true",
+          "orderHint": 2500,
+          "application": {
+            "distributions": [
+              "MozillaOnline"
             ]
           }
+        }
+      ],
+      "webExtension": {
+        "id": "bing@search.mozilla.org"
+      },
+      "id": "7ec766f6-639a-4618-91bc-33eb3d4378c6",
+      "last_modified": 1675353179505
+    },
+    {
+      "params": {
+        "searchUrlGetParams": [
+          {
+            "name": "q",
+            "value": "{searchTerms}"
+          }
+        ]
+      },
+      "schema": 1674147734571,
+      "appliesTo": [
+        {
+          "included": {
+            "everywhere": true
+          }
         },
         {
           "included": {
-            "regions": [
-              "nl"
-            ]
+            "everywhere": true
           },
           "application": {
-            "minVersion": "89.0a1"
-          },
-          "telemetryId": "amazon-nl",
-          "webExtension": {
-            "locales": [
-              "nl"
+            "channel": [
+              "esr"
             ]
-          }
+          },
+          "extraParams": [
+            {
+              "name": "t",
+              "value": "ftsa",
+              "purpose": "searchbar",
+              "condition": "purpose"
+            }
+          ],
+          "telemetryId": "ddg-esr"
         },
         {
-          "excluded": {
-            "locales": {
-              "matches": [
-                "fr"
-              ]
-            }
+          "override": "true",
+          "application": {
+            "distributions": [
+              "mint-001"
+            ]
           },
+          "extraParams": [
+            {
+              "name": "t",
+              "value": "lm",
+              "purpose": "searchbar",
+              "condition": "purpose"
+            }
+          ]
+        }
+      ],
+      "extraParams": [
+        {
+          "name": "t",
+          "value": "ffab",
+          "purpose": "searchbar",
+          "condition": "purpose"
+        }
+      ],
+      "telemetryId": "ddg",
+      "webExtension": {
+        "id": "ddg@search.mozilla.org"
+      },
+      "id": "c0b26c0e-63e6-4235-b2ce-5f16b6a8bf87",
+      "last_modified": 1674751976728
+    },
+    {
+      "schema": 1673982699337,
+      "appliesTo": [
+        {
           "included": {
             "regions": [
-              "be"
+              "us"
             ]
           },
           "application": {
             "minVersion": "89.0a1"
           },
-          "telemetryId": "amazon-nl",
+          "telemetryId": "amazondotcom-us",
           "webExtension": {
             "locales": [
-              "nl"
+              "us"
             ]
           }
         },
         {
           "included": {
             "regions": [
-              "es",
-              "pt"
+              "us"
             ]
           },
-          "telemetryId": "amazon-es",
-          "webExtension": {
-            "locales": [
-              "spain"
-            ]
+          "application": {
+            "maxVersion": "89.0a1"
           }
         },
         {
-          "included": {
+          "excluded": {
             "regions": [
-              "se"
+              "at",
+              "au",
+              "be",
+              "ca",
+              "ch",
+              "cn",
+              "de",
+              "es",
+              "fr",
+              "gb",
+              "ie",
+              "in",
+              "it",
+              "jp",
+              "mc",
+              "nl",
+              "pt",
+              "se",
+              "sm",
+              "us",
+              "va"
             ]
           },
-          "telemetryId": "amazon-se",
-          "webExtension": {
-            "locales": [
-              "sweden"
-            ]
+          "included": {
+            "locales": {
+              "matches": [
+                "ach",
+                "af",
+                "ar",
+                "az",
+                "bg",
+                "cak",
+                "cy",
+                "da",
+                "el",
+                "en-GB",
+                "en-US",
+                "eo",
+                "es-AR",
+                "eu",
+                "fa",
+                "ga-IE",
+                "gd",
+                "gl",
+                "gn",
+                "hr",
+                "hy-AM",
+                "ia",
+                "is",
+                "ka",
+                "km",
+                "lt",
+                "mk",
+                "ms",
+                "my",
+                "nb-NO",
+                "nn-NO",
+                "pt-PT",
+                "ro",
+                "si",
+                "sq",
+                "sr",
+                "th",
+                "tl",
+                "trs",
+                "uz"
+              ]
+            }
           }
         }
-      ],
-      "webExtension": {
-        "id": "amazon@search.mozilla.org"
-      },
-      "id": "a620b506-c3ae-4332-97bb-190a73868580",
-      "last_modified": 1674147734517
-    },
-    {
-      "params": {
-        "searchUrlGetParams": [
-          {
-            "name": "tn",
-            "value": "monline_7_dg"
-          },
-          {
-            "name": "ie",
-            "value": "utf-8"
-          },
-          {
-            "name": "wd",
-            "value": "{searchTerms}"
-          }
-        ],
-        "suggestUrlGetParams": [
-          {
-            "name": "tn",
-            "value": "monline_7_dg"
-          },
-          {
-            "name": "ie",
-            "value": "utf-8"
-          },
-          {
-            "name": "action",
-            "value": "opensearch"
-          },
-          {
-            "name": "wd",
-            "value": "{searchTerms}"
-          }
-        ]
+      ],
+      "telemetryId": "amazondotcom",
+      "webExtension": {
+        "id": "amazondotcom@search.mozilla.org"
       },
-      "schema": 1672159002777,
+      "id": "071c671c-7c1b-469d-a771-ab16ff6e8beb",
+      "last_modified": 1674147734519
+    },
+    {
+      "schema": 1673982696406,
       "appliesTo": [
         {
-          "params": {
-            "searchUrlGetParams": [
-              {
-                "name": "ie",
-                "value": "utf-8"
-              },
-              {
-                "name": "wd",
-                "value": "{searchTerms}"
-              }
-            ],
-            "suggestUrlGetParams": [
-              {
-                "name": "tn",
-                "value": "monline_4_dg"
-              },
-              {
-                "name": "ie",
-                "value": "utf-8"
-              },
-              {
-                "name": "action",
-                "value": "opensearch"
-              },
-              {
-                "name": "wd",
-                "value": "{searchTerms}"
-              }
+          "included": {
+            "locales": {
+              "matches": [
+                "bn",
+                "bn-IN",
+                "kn",
+                "gu-IN",
+                "mr",
+                "pa-IN",
+                "ta",
+                "te",
+                "ur"
+              ]
+            },
+            "regions": [
+              "in"
             ]
           },
-          "default": "yes",
-          "override": true,
-          "orderHint": 3000,
-          "application": {
-            "distributions": [
-              "MozillaOnline"
+          "telemetryId": "amazon-in",
+          "webExtension": {
+            "locales": [
+              "in"
             ]
-          },
-          "extraParams": [
-            {
-              "name": "tn",
-              "value": "monline_4_dg",
-              "purpose": "searchbar",
-              "condition": "purpose"
-            },
-            {
-              "name": "tn",
-              "value": "monline_3_dg",
-              "purpose": "homepage",
-              "condition": "purpose"
-            },
-            {
-              "name": "tn",
-              "value": "monline_3_dg",
-              "purpose": "newtab",
-              "condition": "purpose"
-            }
-          ]
+          }
         },
         {
           "included": {
-            "locales": {
-              "matches": [
-                "zh-CN"
-              ]
-            }
+            "regions": [
+              "fr",
+              "mc"
+            ]
+          },
+          "telemetryId": "amazon-france",
+          "webExtension": {
+            "locales": [
+              "france"
+            ]
           }
         },
         {
-          "default": "yes",
           "included": {
             "locales": {
               "matches": [
-                "zh-CN"
+                "fr"
               ]
             },
             "regions": [
-              "cn"
+              "be"
+            ]
+          },
+          "telemetryId": "amazon-france",
+          "webExtension": {
+            "locales": [
+              "france"
             ]
           }
         },
         {
-          "default": "no",
-          "override": true,
-          "application": {
-            "distributions": [
-              "acer-003",
-              "acer-004"
+          "included": {
+            "regions": [
+              "jp"
             ]
-          }
-        }
-      ],
-      "telemetryId": "baidu",
-      "webExtension": {
-        "id": "baidu@search.mozilla.org"
-      },
-      "id": "52dd490a-89e8-45f2-96b0-f2c72e157526",
-      "last_modified": 1672778333684
-    },
-    {
-      "params": {
-        "searchUrlGetParams": [
-          {
-            "name": "client",
-            "value": "firefox-b-d"
           },
-          {
-            "name": "q",
-            "value": "{searchTerms}"
+          "telemetryId": "amazon-jp",
+          "webExtension": {
+            "locales": [
+              "jp"
+            ]
           }
-        ]
-      },
-      "schema": 1647173200890,
-      "appliesTo": [
+        },
         {
-          "default": "yes-if-no-other",
-          "excluded": {
+          "included": {
             "regions": [
-              "ru",
-              "tr",
-              "by",
-              "kz"
+              "it",
+              "sm",
+              "va"
             ]
           },
-          "included": {
-            "everywhere": true
+          "telemetryId": "amazon-it",
+          "webExtension": {
+            "locales": [
+              "it"
+            ]
           }
         },
         {
-          "override": true,
-          "orderHint": 2000,
-          "application": {
-            "distributions": [
-              "MozillaOnline"
+          "included": {
+            "regions": [
+              "at",
+              "ch",
+              "de"
+            ]
+          },
+          "telemetryId": "amazon-de",
+          "webExtension": {
+            "locales": [
+              "de"
             ]
           }
         },
         {
-          "params": {
-            "searchUrlGetParams": [
-              {
-                "name": "client",
-                "value": "firefox-b-e"
-              },
-              {
-                "name": "q",
-                "value": "{searchTerms}"
-              }
-            ]
-          },
           "included": {
-            "everywhere": true
-          },
-          "application": {
-            "channel": [
-              "esr"
+            "regions": [
+              "gb",
+              "ie"
             ]
           },
-          "telemetryId": "google-b-e"
+          "telemetryId": "amazon-en-GB",
+          "webExtension": {
+            "locales": [
+              "en-GB"
+            ]
+          }
         },
         {
-          "params": {
-            "searchUrlGetParams": [
-              {
-                "name": "q",
-                "value": "{searchTerms}"
-              }
+          "included": {
+            "regions": [
+              "au"
             ]
           },
-          "default": "yes",
+          "telemetryId": "amazon-au",
+          "webExtension": {
+            "locales": [
+              "au"
+            ]
+          }
+        },
+        {
           "included": {
             "regions": [
-              "ru",
-              "tr",
-              "by",
-              "kz"
+              "ca"
             ]
           },
-          "telemetryId": "google-com-nocodes"
+          "telemetryId": "amazon-ca",
+          "webExtension": {
+            "locales": [
+              "ca"
+            ]
+          }
         },
         {
-          "default": "no",
           "included": {
-            "locales": {
-              "matches": [
-                "zh-CN"
-              ]
-            },
             "regions": [
-              "cn"
+              "nl"
+            ]
+          },
+          "application": {
+            "minVersion": "89.0a1"
+          },
+          "telemetryId": "amazon-nl",
+          "webExtension": {
+            "locales": [
+              "nl"
             ]
           }
         },
         {
-          "params": {
-            "searchUrlGetParams": [
-              {
-                "name": "client",
-                "value": "firefox-b-e"
-              },
-              {
-                "name": "q",
-                "value": "{searchTerms}"
-              }
-            ]
-          },
-          "default": "no",
-          "included": {
+          "excluded": {
             "locales": {
               "matches": [
-                "zh-CN"
+                "fr"
               ]
-            },
+            }
+          },
+          "included": {
             "regions": [
-              "cn"
+              "be"
             ]
           },
           "application": {
-            "channel": [
-              "esr"
+            "minVersion": "89.0a1"
+          },
+          "telemetryId": "amazon-nl",
+          "webExtension": {
+            "locales": [
+              "nl"
             ]
           }
         },
         {
-          "params": {
-            "searchUrlGetParams": [
-              {
-                "name": "client",
-                "value": "firefox-b-1-d"
-              },
-              {
-                "name": "q",
-                "value": "{searchTerms}"
-              }
-            ]
-          },
           "included": {
             "regions": [
-              "us"
+              "es",
+              "pt"
             ]
           },
-          "extraParams": [
-            {
-              "name": "channel",
-              "pref": "google_channel_us",
-              "condition": "pref"
-            }
-          ],
-          "telemetryId": "google-b-1-d"
+          "telemetryId": "amazon-es",
+          "webExtension": {
+            "locales": [
+              "spain"
+            ]
+          }
         },
         {
-          "params": {
-            "searchUrlGetParams": [
-              {
-                "name": "client",
-                "value": "firefox-b-1-e"
-              },
-              {
-                "name": "q",
-                "value": "{searchTerms}"
-              }
-            ]
-          },
           "included": {
             "regions": [
-              "us"
+              "se"
             ]
           },
-          "application": {
-            "channel": [
-              "esr"
+          "telemetryId": "amazon-se",
+          "webExtension": {
+            "locales": [
+              "sweden"
             ]
+          }
+        }
+      ],
+      "webExtension": {
+        "id": "amazon@search.mozilla.org"
+      },
+      "id": "a620b506-c3ae-4332-97bb-190a73868580",
+      "last_modified": 1674147734517
+    },
+    {
+      "params": {
+        "searchUrlGetParams": [
+          {
+            "name": "tn",
+            "value": "monline_7_dg"
           },
-          "extraParams": [
-            {
-              "name": "channel",
-              "pref": "google_channel_us",
-              "condition": "pref"
-            }
-          ],
-          "telemetryId": "google-b-1-e"
-        },
+          {
+            "name": "ie",
+            "value": "utf-8"
+          },
+          {
+            "name": "wd",
+            "value": "{searchTerms}"
+          }
+        ],
+        "suggestUrlGetParams": [
+          {
+            "name": "tn",
+            "value": "monline_7_dg"
+          },
+          {
+            "name": "ie",
+            "value": "utf-8"
+          },
+          {
+            "name": "action",
+            "value": "opensearch"
+          },
+          {
+            "name": "wd",
+            "value": "{searchTerms}"
+          }
+        ]
+      },
+      "schema": 1672159002777,
+      "appliesTo": [
         {
           "params": {
             "searchUrlGetParams": [
               {
-                "name": "client",
-                "value": "ubuntu"
+                "name": "ie",
+                "value": "utf-8"
               },
               {
-                "name": "q",
+                "name": "wd",
                 "value": "{searchTerms}"
               }
-            ]
-          },
-          "override": true,
-          "application": {
-            "distributions": [
-              "canonical",
-              "canonical-001",
-              "canonical-002"
-            ]
-          },
-          "extraParams": [
-            {
-              "name": "channel",
-              "value": "fs"
-            }
-          ],
-          "telemetryId": "google-canonical"
-        },
-        {
-          "params": {
-            "searchUrlGetParams": [
+            ],
+            "suggestUrlGetParams": [
               {
-                "name": "client",
-                "value": "firefox-b-lm"
+                "name": "tn",
+                "value": "monline_4_dg"
               },
               {
-                "name": "q",
+                "name": "ie",
+                "value": "utf-8"
+              },
+              {
+                "name": "action",
+                "value": "opensearch"
+              },
+              {
+                "name": "wd",
                 "value": "{searchTerms}"
               }
             ]
           },
+          "default": "yes",
           "override": true,
+          "orderHint": 3000,
           "application": {
             "distributions": [
-              "mint-001"
+              "MozillaOnline"
             ]
           },
-          "telemetryId": "google-b-lm"
+          "extraParams": [
+            {
+              "name": "tn",
+              "value": "monline_4_dg",
+              "purpose": "searchbar",
+              "condition": "purpose"
+            },
+            {
+              "name": "tn",
+              "value": "monline_3_dg",
+              "purpose": "homepage",
+              "condition": "purpose"
+            },
+            {
+              "name": "tn",
+              "value": "monline_3_dg",
+              "purpose": "newtab",
+              "condition": "purpose"
+            }
+          ]
         },
         {
-          "params": {
-            "searchUrlGetParams": [
-              {
-                "name": "client",
-                "value": "firefox-b-1-lm"
-              },
-              {
-                "name": "q",
-                "value": "{searchTerms}"
-              }
-            ]
-          },
           "included": {
+            "locales": {
+              "matches": [
+                "zh-CN"
+              ]
+            }
+          }
+        },
+        {
+          "default": "yes",
+          "included": {
+            "locales": {
+              "matches": [
+                "zh-CN"
+              ]
+            },
             "regions": [
-              "us"
+              "cn"
             ]
-          },
+          }
+        },
+        {
+          "default": "no",
           "override": true,
           "application": {
             "distributions": [
-              "mint-001"
+              "acer-003",
+              "acer-004"
             ]
-          },
-          "telemetryId": "google-b-1-lm"
-        }
-      ],
-      "extraParams": [
-        {
-          "name": "channel",
-          "pref": "google_channel_row",
-          "condition": "pref"
+          }
         }
       ],
-      "telemetryId": "google-b-d",
+      "telemetryId": "baidu",
       "webExtension": {
-        "id": "google@search.mozilla.org"
+        "id": "baidu@search.mozilla.org"
       },
-      "id": "cb8e7210-9f0b-48fa-8708-b9a03df79eea",
-      "last_modified": 1647254756387
+      "id": "52dd490a-89e8-45f2-96b0-f2c72e157526",
+      "last_modified": 1672778333684
     },
     {
       "schema": 1623235246279,
@@ -2787,5 +2819,5 @@
       "last_modified": 1583937832210
     }
   ],
-  "timestamp": 1675353179510
+  "timestamp": 1678922485545
 }
diff -Nru thunderbird-102.9.0+build1/services/settings/dumps/main/search-telemetry-v2.json thunderbird-102.10.0+build2/services/settings/dumps/main/search-telemetry-v2.json
--- thunderbird-102.9.0+build1/services/settings/dumps/main/search-telemetry-v2.json	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/services/settings/dumps/main/search-telemetry-v2.json	2023-04-11 06:11:13.000000000 +0000
@@ -1,46 +1,7 @@
 {
   "data": [
     {
-      "schema": 1674146204409,
-      "taggedCodes": [
-        "ffab",
-        "ffcm",
-        "ffhp",
-        "ffip",
-        "ffit",
-        "ffnt",
-        "ffocus",
-        "ffos",
-        "ffsb",
-        "fpas",
-        "fpsa",
-        "ftas",
-        "ftsa",
-        "lm",
-        "newext"
-      ],
-      "telemetryId": "duckduckgo",
-      "organicCodes": [],
-      "codeParamName": "t",
-      "queryParamName": "q",
-      "searchPageRegexp": "^https://duckduckgo\\.com/",
-      "expectedOrganicCodes": [
-        "hz",
-        "h_",
-        "hs",
-        "ha",
-        "hb",
-        "hc"
-      ],
-      "extraAdServersRegexps": [
-        "^https://duckduckgo.com/y\\.js?.*ad_provider\\=",
-        "^https://www\\.amazon\\.(?:[a-z.]{2,24}).*(?:tag=duckduckgo-)"
-      ],
-      "id": "9dfd626b-26f2-4913-9d0a-27db6cb7d8ca",
-      "last_modified": 1674751991106
-    },
-    {
-      "schema": 1672245404849,
+      "schema": 1678791413786,
       "taggedCodes": [
         "firefox-a",
         "firefox-b",
@@ -65,7 +26,8 @@
         "firefox-b-tinno",
         "firefox-b-pn-wt",
         "firefox-b-pn-wt-us",
-        "ubuntu"
+        "ubuntu",
+        "ubuntu-sn"
       ],
       "telemetryId": "google",
       "organicCodes": [],
@@ -84,7 +46,46 @@
         "^https://www\\.google(?:adservices)?\\.com/(?:pagead/)?aclk"
       ],
       "id": "635a3325-1995-42d6-be09-dbe4b2a95453",
-      "last_modified": 1672778125399
+      "last_modified": 1678922429086
+    },
+    {
+      "schema": 1674146204409,
+      "taggedCodes": [
+        "ffab",
+        "ffcm",
+        "ffhp",
+        "ffip",
+        "ffit",
+        "ffnt",
+        "ffocus",
+        "ffos",
+        "ffsb",
+        "fpas",
+        "fpsa",
+        "ftas",
+        "ftsa",
+        "lm",
+        "newext"
+      ],
+      "telemetryId": "duckduckgo",
+      "organicCodes": [],
+      "codeParamName": "t",
+      "queryParamName": "q",
+      "searchPageRegexp": "^https://duckduckgo\\.com/",
+      "expectedOrganicCodes": [
+        "hz",
+        "h_",
+        "hs",
+        "ha",
+        "hb",
+        "hc"
+      ],
+      "extraAdServersRegexps": [
+        "^https://duckduckgo.com/y\\.js?.*ad_provider\\=",
+        "^https://www\\.amazon\\.(?:[a-z.]{2,24}).*(?:tag=duckduckgo-)"
+      ],
+      "id": "9dfd626b-26f2-4913-9d0a-27db6cb7d8ca",
+      "last_modified": 1674751991106
     },
     {
       "schema": 1671479978127,
@@ -173,5 +174,5 @@
       "last_modified": 1643136933989
     }
   ],
-  "timestamp": 1674751991106
+  "timestamp": 1678922429086
 }
diff -Nru thunderbird-102.9.0+build1/services/settings/dumps/security-state/intermediates.json thunderbird-102.10.0+build2/services/settings/dumps/security-state/intermediates.json
--- thunderbird-102.9.0+build1/services/settings/dumps/security-state/intermediates.json	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/services/settings/dumps/security-state/intermediates.json	2023-04-11 06:11:13.000000000 +0000
@@ -1,6 +1,204 @@
 {
   "data": [
     {
+      "schema": 1680511689525,
+      "derHash": "9vi81BPJczFm6FhDtGjdNucnFS2aN7FRKcDnZI7O5jk=",
+      "subject": "CN=SHECA OV Server CA G7,O=UniTrust,C=CN",
+      "subjectDN": "MEAxCzAJBgNVBAYTAkNOMREwDwYDVQQKDAhVbmlUcnVzdDEeMBwGA1UEAwwVU0hFQ0EgT1YgU2VydmVyIENBIEc3",
+      "whitelist": false,
+      "attachment": {
+        "hash": "74f8b64ebb878cae50637037ba71ed194776d06db80a0d99d9d7bb69aa72bd2c",
+        "size": 2003,
+        "filename": "Avi_QOpi59uZzfLmkrdh6vjem03c1I8chB3tK_OFL7M=.pem",
+        "location": "security-state-staging/intermediates/e61bfabc-0234-47bf-902a-9b8818738a56.pem",
+        "mimetype": "application/x-pem-file"
+      },
+      "pubKeyHash": "Avi/QOpi59uZzfLmkrdh6vjem03c1I8chB3tK/OFL7M=",
+      "crlite_enrolled": false,
+      "id": "b6aa83f8-f475-4f5c-8d7e-dcb466827c22",
+      "last_modified": 1680512223621
+    },
+    {
+      "schema": 1680270493771,
+      "derHash": "PdacW+Fw+UP4BNHTH+j5FsDAImzd166pqpoM39NHQ2E=",
+      "subject": "CN=UCA Global G2 Root,O=UniTrust,C=CN",
+      "subjectDN": "MD0xCzAJBgNVBAYTAkNOMREwDwYDVQQKDAhVbmlUcnVzdDEbMBkGA1UEAwwSVUNBIEdsb2JhbCBHMiBSb290",
+      "whitelist": false,
+      "attachment": {
+        "hash": "731abf0288a65056be76b95961168ac9cefd34f85f98777eeb686e5ba6c912a2",
+        "size": 2052,
+        "filename": "ElXKvoFS-mTflC96R0F-KflsHOEb-MhOy-KBXMEoCBA=.pem",
+        "location": "security-state-staging/intermediates/457d9552-723c-4b98-97ad-990c5a4bedd6.pem",
+        "mimetype": "application/x-pem-file"
+      },
+      "pubKeyHash": "ElXKvoFS+mTflC96R0F+KflsHOEb+MhOy+KBXMEoCBA=",
+      "crlite_enrolled": false,
+      "id": "cafda296-6d89-431c-a92d-0bd54e535030",
+      "last_modified": 1680271023541
+    },
+    {
+      "schema": 1679518190665,
+      "derHash": "uLGLq6y2qU6r5pKMa6z09qLYQjXX+GZIa194RHO+cIw=",
+      "subject": "CN=CATrust ECC DV SSL CA,O=Zhejiang Xinya Network Technology Co.\\, Ltd.,C=CN",
+      "subjectDN": "MGMxCzAJBgNVBAYTAkNOMTQwMgYDVQQKEytaaGVqaWFuZyBYaW55YSBOZXR3b3JrIFRlY2hub2xvZ3kgQ28uLCBMdGQuMR4wHAYDVQQDExVDQVRydXN0IEVDQyBEViBTU0wgQ0E=",
+      "whitelist": false,
+      "attachment": {
+        "hash": "2ab6599fd3c8df213b615d6d3adaac51b5dd5ab735e95d8920d82f75d82bafc7",
+        "size": 1268,
+        "filename": "3UyXjiYjrNvUOYfp8OLu2PTkIolV-fC0_CEKjYqPo8U=.pem",
+        "location": "security-state-staging/intermediates/42de34a5-6028-49ac-ad65-66dd57d6e252.pem",
+        "mimetype": "application/x-pem-file"
+      },
+      "pubKeyHash": "3UyXjiYjrNvUOYfp8OLu2PTkIolV+fC0/CEKjYqPo8U=",
+      "crlite_enrolled": false,
+      "id": "f446d9cb-98b5-4366-981c-641d30e22c9d",
+      "last_modified": 1679518623586
+    },
+    {
+      "schema": 1679518189726,
+      "derHash": "aZeihYStCsZhkTbivB+pxjHKMCS4KEKU4m/OM2vlQcM=",
+      "subject": "CN=CATrust RSA OV SSL CA,O=Zhejiang Xinya Network Technology Co.\\, Ltd.,C=CN",
+      "subjectDN": "MGMxCzAJBgNVBAYTAkNOMTQwMgYDVQQKEytaaGVqaWFuZyBYaW55YSBOZXR3b3JrIFRlY2hub2xvZ3kgQ28uLCBMdGQuMR4wHAYDVQQDExVDQVRydXN0IFJTQSBPViBTU0wgQ0E=",
+      "whitelist": false,
+      "attachment": {
+        "hash": "c50626a2bf256c4f795c7546f7c51cc388150ec1253e5b17c5822c4e348a36d8",
+        "size": 2284,
+        "filename": "v6XOiEkxQzkn7SEb0Q2LQaZ0gtWNS8AnXawpcfDPS60=.pem",
+        "location": "security-state-staging/intermediates/95162acb-3cc8-4551-883d-e2e3116b7a77.pem",
+        "mimetype": "application/x-pem-file"
+      },
+      "pubKeyHash": "v6XOiEkxQzkn7SEb0Q2LQaZ0gtWNS8AnXawpcfDPS60=",
+      "crlite_enrolled": false,
+      "id": "6a472d8a-b1a2-4dea-a336-15de8f5e3e00",
+      "last_modified": 1679518623577
+    },
+    {
+      "schema": 1679518188768,
+      "derHash": "JuHhe1efUd4DIEUhttZzI8l7DzUemSPFqo5/Mz+atI4=",
+      "subject": "CN=CATrust RSA EV SSL CA,O=Zhejiang Xinya Network Technology Co.\\, Ltd.,C=CN",
+      "subjectDN": "MGMxCzAJBgNVBAYTAkNOMTQwMgYDVQQKEytaaGVqaWFuZyBYaW55YSBOZXR3b3JrIFRlY2hub2xvZ3kgQ28uLCBMdGQuMR4wHAYDVQQDExVDQVRydXN0IFJTQSBFViBTU0wgQ0E=",
+      "whitelist": false,
+      "attachment": {
+        "hash": "e0b60ed6235c7c1b2e6a29c91630c277016d26759c1fac2990ec71ed1f76c672",
+        "size": 2272,
+        "filename": "BtUPHcjEELm-QnFyE15TdkdlQOavUDnjajRQcWpYsl0=.pem",
+        "location": "security-state-staging/intermediates/27cd65f3-81c0-4ac3-a394-2ba20dda0ca1.pem",
+        "mimetype": "application/x-pem-file"
+      },
+      "pubKeyHash": "BtUPHcjEELm+QnFyE15TdkdlQOavUDnjajRQcWpYsl0=",
+      "crlite_enrolled": false,
+      "id": "e33f5591-6c13-4223-a468-b530f7cd851e",
+      "last_modified": 1679518623567
+    },
+    {
+      "schema": 1679518187835,
+      "derHash": "iYxEvueLFjTI1YBwCjgUa59YCeswcDQivLNfQE5qEOw=",
+      "subject": "CN=CATrust ECC EV SSL CA,O=Zhejiang Xinya Network Technology Co.\\, Ltd.,C=CN",
+      "subjectDN": "MGMxCzAJBgNVBAYTAkNOMTQwMgYDVQQKEytaaGVqaWFuZyBYaW55YSBOZXR3b3JrIFRlY2hub2xvZ3kgQ28uLCBMdGQuMR4wHAYDVQQDExVDQVRydXN0IEVDQyBFViBTU0wgQ0E=",
+      "whitelist": false,
+      "attachment": {
+        "hash": "da5540304b11677882ea6ae0ec717e4b5e57af19c621241695957f1a715d3cfd",
+        "size": 1260,
+        "filename": "hIyspf1ZWyfmS7ZOEhBNhGHOU6RFe3xq6HrgMqSZ30U=.pem",
+        "location": "security-state-staging/intermediates/716326ca-2ca9-412a-a186-4908fab9e555.pem",
+        "mimetype": "application/x-pem-file"
+      },
+      "pubKeyHash": "hIyspf1ZWyfmS7ZOEhBNhGHOU6RFe3xq6HrgMqSZ30U=",
+      "crlite_enrolled": false,
+      "id": "198baa50-bb6f-4745-b605-6b4e0d4d3282",
+      "last_modified": 1679518623557
+    },
+    {
+      "schema": 1679518186919,
+      "derHash": "wfeN/0sT1kyxCe6yrfxLFkAM9Y6MCF+pVHLKUWVZBNw=",
+      "subject": "CN=CATrust ECC OV SSL CA,O=Zhejiang Xinya Network Technology Co.\\, Ltd.,C=CN",
+      "subjectDN": "MGMxCzAJBgNVBAYTAkNOMTQwMgYDVQQKEytaaGVqaWFuZyBYaW55YSBOZXR3b3JrIFRlY2hub2xvZ3kgQ28uLCBMdGQuMR4wHAYDVQQDExVDQVRydXN0IEVDQyBPViBTU0wgQ0E=",
+      "whitelist": false,
+      "attachment": {
+        "hash": "3bece7a6b82fa63353dc9b8f92d4246e6b4aa212220b446d2f0e1600baf82e04",
+        "size": 1268,
+        "filename": "dTVBbobQ2Ok-sZMKOKt0n9iYoBl2bqIUEkZMIKpowiU=.pem",
+        "location": "security-state-staging/intermediates/a0db7a14-88b2-49fb-8ce0-fad4acb30896.pem",
+        "mimetype": "application/x-pem-file"
+      },
+      "pubKeyHash": "dTVBbobQ2Ok+sZMKOKt0n9iYoBl2bqIUEkZMIKpowiU=",
+      "crlite_enrolled": false,
+      "id": "2fd47a56-dee1-4852-bb55-c48b9c9dca1a",
+      "last_modified": 1679518623547
+    },
+    {
+      "schema": 1679518185972,
+      "derHash": "KSX5m593b4QdC0wJoH8KNsEH8JN2Eeg+AHpxLkt+xzU=",
+      "subject": "CN=GZCA ECC DV SSL CA,O=Guizhou Electronic Certification Technology Co.\\, Ltd.,C=CN",
+      "subjectDN": "MGoxCzAJBgNVBAYTAkNOMT4wPAYDVQQKEzVHdWl6aG91IEVsZWN0cm9uaWMgQ2VydGlmaWNhdGlvbiBUZWNobm9sb2d5IENvLiwgTHRkLjEbMBkGA1UEAxMSR1pDQSBFQ0MgRFYgU1NMIENB",
+      "whitelist": false,
+      "attachment": {
+        "hash": "20ba25c049bb6275e2df1411c3b57caf370ace54bbb113a9009b68ce9c14fa39",
+        "size": 1276,
+        "filename": "b_IMNNNv_FTbv-C7MMHsmjCkXCfwDWOhmqEFl5il9W0=.pem",
+        "location": "security-state-staging/intermediates/8d552c15-b5f4-449d-b02a-a6b7154bb03c.pem",
+        "mimetype": "application/x-pem-file"
+      },
+      "pubKeyHash": "b/IMNNNv/FTbv+C7MMHsmjCkXCfwDWOhmqEFl5il9W0=",
+      "crlite_enrolled": false,
+      "id": "40c3d218-9465-4338-9925-2c0c2b467776",
+      "last_modified": 1679518623537
+    },
+    {
+      "schema": 1679518185013,
+      "derHash": "UPFoRh2Kvz0E5Uvs0AlkXQtxxJ/fVh4NjUOtkAXH+MQ=",
+      "subject": "CN=CATrust RSA DV SSL CA,O=Zhejiang Xinya Network Technology Co.\\, Ltd.,C=CN",
+      "subjectDN": "MGMxCzAJBgNVBAYTAkNOMTQwMgYDVQQKEytaaGVqaWFuZyBYaW55YSBOZXR3b3JrIFRlY2hub2xvZ3kgQ28uLCBMdGQuMR4wHAYDVQQDExVDQVRydXN0IFJTQSBEViBTU0wgQ0E=",
+      "whitelist": false,
+      "attachment": {
+        "hash": "acd1f4f34a78e8e0484ee2f961ef7598795e43a6bfe7c316a4a21d194123ad17",
+        "size": 2280,
+        "filename": "N7vnsahv1k49T5Q2aUOGwPQQO7vC3fd1R6bOSKLtzco=.pem",
+        "location": "security-state-staging/intermediates/9c173173-2fdc-4b67-b5c8-1b8d4afbcc07.pem",
+        "mimetype": "application/x-pem-file"
+      },
+      "pubKeyHash": "N7vnsahv1k49T5Q2aUOGwPQQO7vC3fd1R6bOSKLtzco=",
+      "crlite_enrolled": false,
+      "id": "2014a9a5-bf50-429b-92e1-751d01acc3e9",
+      "last_modified": 1679518623527
+    },
+    {
+      "schema": 1679496492018,
+      "derHash": "LhmMIn+T+c+W97ihmG9llzVQLJVkB9s28NSj1gH0JHI=",
+      "subject": "CN=cyber_Folks,O=cyber_Folks S.A.,C=PL",
+      "subjectDN": "MD4xCzAJBgNVBAYTAlBMMRkwFwYDVQQKDBBjeWJlcl9Gb2xrcyBTLkEuMRQwEgYDVQQDDAtjeWJlcl9Gb2xrcw==",
+      "whitelist": false,
+      "attachment": {
+        "hash": "af7452cf60f895407cabded55c5f101c501466461b80c9552ae1d72d1ca49017",
+        "size": 1703,
+        "filename": "shhKME0KxqZQ2wHqxgxToMHmEKhynXo_W0VCw1DIHRU=.pem",
+        "location": "security-state-staging/intermediates/9eb81bcd-faf9-49a0-910e-d37386c11aec.pem",
+        "mimetype": "application/x-pem-file"
+      },
+      "pubKeyHash": "shhKME0KxqZQ2wHqxgxToMHmEKhynXo/W0VCw1DIHRU=",
+      "crlite_enrolled": false,
+      "id": "2da2da44-5d5f-4bbe-9515-f533a291ad43",
+      "last_modified": 1679497023553
+    },
+    {
+      "schema": 1679348884403,
+      "derHash": "/jy+2DjTC6uQAYTB8hpLJ9MhHLXJJX1+mFwq5DrGqJ8=",
+      "subject": "CN=DigiCert QuoVadis G3 Qualified TLS RSA4096 SHA256 2023 CA1,O=QuoVadis Trustlink B.V.,C=NL",
+      "subjectDN": "MIGNMQswCQYDVQQGEwJOTDEgMB4GA1UECgwXUXVvVmFkaXMgVHJ1c3RsaW5rIEIuVi4xFzAVBgNVBGEMDk5UUk5MLTMwMjM3NDU5MUMwQQYDVQQDDDpEaWdpQ2VydCBRdW9WYWRpcyBHMyBRdWFsaWZpZWQgVExTIFJTQTQwOTYgU0hBMjU2IDIwMjMgQ0Ex",
+      "whitelist": false,
+      "attachment": {
+        "hash": "86aebbb76a7e4b04ea41677c2df013545eb98d7452e87bb68bcb48b1c1fbf0a1",
+        "size": 2548,
+        "filename": "YubuyclU_SovUNMJEaROc1k7BuMker87y_5vmVN7WpI=.pem",
+        "location": "security-state-staging/intermediates/acc32d68-3a01-4913-aebb-4ab3cd246e71.pem",
+        "mimetype": "application/x-pem-file"
+      },
+      "pubKeyHash": "YubuyclU/SovUNMJEaROc1k7BuMker87y/5vmVN7WpI=",
+      "crlite_enrolled": false,
+      "id": "c0049371-5f14-47b1-8279-402e553cb17c",
+      "last_modified": 1679349423384
+    },
+    {
       "schema": 1677228491917,
       "derHash": "KuBib5pD7bKwoi1BDrBsSC75glY6cXokcofFBNeb+YA=",
       "subject": "CN=Vitalwerks Internet Solutions\\, No-IP TLS ICA,O=Vitalwerks Internet Solutions\\, LLC,C=US",
@@ -4231,42 +4429,6 @@
       "last_modified": 1666727873126
     },
     {
-      "schema": 1666727431867,
-      "derHash": "8K+uGHBGpDHt3O/xnOWuMG1SM4+IoR7BG5W4HVIYlaQ=",
-      "subject": "CN=FUJIFILM Fnet CA - S2,O=FUJIFILM,C=JP",
-      "subjectDN": "MEAxCzAJBgNVBAYTAkpQMREwDwYDVQQKEwhGVUpJRklMTTEeMBwGA1UEAxMVRlVKSUZJTE0gRm5ldCBDQSAtIFMy",
-      "whitelist": false,
-      "attachment": {
-        "hash": "f434c76c8251a421ee8fc800cbd407cd274659ab482bae169fb0c1f83989689a",
-        "size": 2028,
-        "filename": "FoZrORtfOQVQIdnaO-pphxZC_MNQQ1WYobR981Jaydk=.pem",
-        "location": "security-state-staging/intermediates/e9d8a1ba-614f-45db-990f-7a8f75f34a1a.pem",
-        "mimetype": "application/x-pem-file"
-      },
-      "pubKeyHash": "FoZrORtfOQVQIdnaO+pphxZC/MNQQ1WYobR981Jaydk=",
-      "crlite_enrolled": false,
-      "id": "70e78e77-a582-4640-a51d-cd1c1b140a32",
-      "last_modified": 1666727873112
-    },
-    {
-      "schema": 1666727411841,
-      "derHash": "/uojidT3JysCT1Gvcej+hKpUNpjQFcHSQXk1ldYgn7k=",
-      "subject": "CN=Fuji Xerox Xnet CA - S2,O=Fuji Xerox,C=JP",
-      "subjectDN": "MEQxCzAJBgNVBAYTAkpQMRMwEQYDVQQKEwpGdWppIFhlcm94MSAwHgYDVQQDExdGdWppIFhlcm94IFhuZXQgQ0EgLSBTMg==",
-      "whitelist": false,
-      "attachment": {
-        "hash": "710e4f1163a011055b893eb9dfc6cf94f414414a197db5107a182e64dde4831f",
-        "size": 2150,
-        "filename": "B7_wi5BX-cgrZ8uOuYuwLz2cFlyRGuCKCG8QhI13A_8=.pem",
-        "location": "security-state-staging/intermediates/8fd4cc27-e252-4688-a23a-052184b7be3c.pem",
-        "mimetype": "application/x-pem-file"
-      },
-      "pubKeyHash": "B7/wi5BX+cgrZ8uOuYuwLz2cFlyRGuCKCG8QhI13A/8=",
-      "crlite_enrolled": false,
-      "id": "9e504fc6-6c09-43d6-9bec-886929b25629",
-      "last_modified": 1666727873098
-    },
-    {
       "schema": 1666727446208,
       "derHash": "sJNdwEtOYMDELe9+xXobHY+VjReYjnHMgKjPXmNbpbQ=",
       "subject": "CN=D-TRUST SSL Class 3 CA 1 EV 2009,O=D-Trust GmbH,C=DE",
@@ -8875,24 +9037,6 @@
       "last_modified": 1666727869270
     },
     {
-      "schema": 1666727353324,
-      "derHash": "dqxae3TjELnmJOf30Rg4DKloW0DEFsa4meSm1Cm+ej8=",
-      "subject": "CN=TLS RSA ICA R1,O=Public Key Infrastructure Ltd,L=Victoria,ST=Mahé,C=SC",
-      "subjectDN": "MHExCzAJBgNVBAYTAlNDMQ4wDAYDVQQIDAVNYWjDqTERMA8GA1UEBwwIVmljdG9yaWExJjAkBgNVBAoMHVB1YmxpYyBLZXkgSW5mcmFzdHJ1Y3R1cmUgTHRkMRcwFQYDVQQDDA5UTFMgUlNBIElDQSBSMQ==",
-      "whitelist": false,
-      "attachment": {
-        "hash": "07805d7a273057b5374a9a0d3d4f5b9798c42802984c1a7a1293a3517d8e8a75",
-        "size": 2146,
-        "filename": "U9LfjT2tp7DInjOaxZZKrKVVV0njtruyUezjKlI9ECI=.pem",
-        "location": "security-state-staging/intermediates/f63bb3d1-0f61-4eb3-8110-2dcb2dd89f9f.pem",
-        "mimetype": "application/x-pem-file"
-      },
-      "pubKeyHash": "U9LfjT2tp7DInjOaxZZKrKVVV0njtruyUezjKlI9ECI=",
-      "crlite_enrolled": false,
-      "id": "a7b96ff4-2c19-4bf8-b220-36ee57cf2fe4",
-      "last_modified": 1666727869256
-    },
-    {
       "schema": 1666727413717,
       "derHash": "YBjw3/qk1I9rNj29iVtD1yBpH5ZY49lAcn+xSZ1SUAU=",
       "subject": "CN=AgID CA1,OU=Area Soluzioni per la Pubblica Amministrazione,O=Agenzia per l'Italia Digitale,L=Roma,C=IT",
@@ -12727,24 +12871,6 @@
       "last_modified": 1666727866353
     },
     {
-      "schema": 1666727422744,
-      "derHash": "FUxDPEkZKcXvaG6DjjI2ZKAOag2CLMyVj7TasD5JoI8=",
-      "subject": "CN=DigiCert SHA2 Secure Server CA,O=DigiCert Inc,C=US",
-      "subjectDN": "ME0xCzAJBgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxJzAlBgNVBAMTHkRpZ2lDZXJ0IFNIQTIgU2VjdXJlIFNlcnZlciBDQQ==",
-      "whitelist": false,
-      "attachment": {
-        "hash": "2243aecd6936cfcb0b2508e8f42b06f31a4950982b0c91e3d4965cdd8da03fb4",
-        "size": 1646,
-        "filename": "5kJvNEMw0KjrCAu7eXY5HZdvyCS13BbA0VJG1RSP91w=.pem",
-        "location": "security-state-staging/intermediates/17691b06-48fb-4385-a9ab-05f0ad126518.pem",
-        "mimetype": "application/x-pem-file"
-      },
-      "pubKeyHash": "5kJvNEMw0KjrCAu7eXY5HZdvyCS13BbA0VJG1RSP91w=",
-      "crlite_enrolled": false,
-      "id": "987746d9-41a0-4c53-a6d5-6d8cab9cb559",
-      "last_modified": 1666727866339
-    },
-    {
       "schema": 1666727330386,
       "derHash": "l6BzlXxYEnJXV2cvIiaQZVoUB9cQEe38iy+txRKJEdo=",
       "subject": "CN=DigiCert G5 TLS ECC SHA384 2021 CA1,O=DigiCert\\, Inc.,C=US",
@@ -13555,24 +13681,6 @@
       "last_modified": 1666727865652
     },
     {
-      "schema": 1666727424777,
-      "derHash": "RYRGunXZMukU8jwrV7fRku3bwhgdlY4Rga1SUXR6Hug=",
-      "subject": "CN=DigiCert ECC Secure Server CA,O=DigiCert Inc,C=US",
-      "subjectDN": "MEwxCzAJBgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxJjAkBgNVBAMTHURpZ2lDZXJ0IEVDQyBTZWN1cmUgU2VydmVyIENB",
-      "whitelist": false,
-      "attachment": {
-        "hash": "a08faded51b3b3920af25497e34885fc9fd376487470bebe6e0fd0db256b786a",
-        "size": 1333,
-        "filename": "PZXN3lRAy-8tBKk2Ox6F7jIlnzr2Yzmwqc3JnyfXoCw=.pem",
-        "location": "security-state-staging/intermediates/7f8f54d6-880c-4f5e-90c5-43950f09297f.pem",
-        "mimetype": "application/x-pem-file"
-      },
-      "pubKeyHash": "PZXN3lRAy+8tBKk2Ox6F7jIlnzr2Yzmwqc3JnyfXoCw=",
-      "crlite_enrolled": false,
-      "id": "bb0f20bc-ccc7-4c44-bd16-0b2a94e64928",
-      "last_modified": 1666727865640
-    },
-    {
       "schema": 1666727432527,
       "derHash": "dWqrkA4/XHYnNLZGH8MqndNB6h1KBCg0CSM8OXh6hn4=",
       "subject": "CN=TrustAsia ECC OV TLS Pro CA G3,O=TrustAsia Technologies\\, Inc.,C=CN",
@@ -15985,24 +16093,6 @@
       "last_modified": 1664326624918
     },
     {
-      "schema": 1664326193930,
-      "derHash": "lNTs4u2aVFe5aaE7JgSJ6aX+R5CgQfJ6PrQSbIRBjvk=",
-      "subject": "CN=DigiCert Secure Server CA,O=DigiCert Inc,C=US",
-      "subjectDN": "MEgxCzAJBgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxIjAgBgNVBAMTGURpZ2lDZXJ0IFNlY3VyZSBTZXJ2ZXIgQ0E=",
-      "whitelist": false,
-      "attachment": {
-        "hash": "bec9cb08be3aa288fb4998e6e9c6dc9b1663aa11bdbb71f81585d4a5a2b0b828",
-        "size": 1642,
-        "filename": "v2OX1FzmsvhGRs3vKv7P5R4N-Aly9A_qKXxfEauTwao=.pem",
-        "location": "security-state-staging/intermediates/bf9b04aa-1962-494b-b2f3-412c59ec9e7d.pem",
-        "mimetype": "application/x-pem-file"
-      },
-      "pubKeyHash": "v2OX1FzmsvhGRs3vKv7P5R4N+Aly9A/qKXxfEauTwao=",
-      "crlite_enrolled": false,
-      "id": "9d6a47bb-9ab0-4f77-b52f-493e7af27c1e",
-      "last_modified": 1664326624895
-    },
-    {
       "schema": 1664326193057,
       "derHash": "JT48lzLfiHTD1U2lIsFxEULJjCzqdmRjUVKomgPuk2Q=",
       "subject": "CN=Optum Public Trust CA 1,O=Optum,L=Minneapolis,ST=Minnesota,C=US",
@@ -20143,24 +20233,6 @@
       "last_modified": 1656593824346
     },
     {
-      "schema": 1656593437897,
-      "derHash": "YTvHs5w3gkHulTuhpRno9f4wIjsEV/EMw14wpJM7oT8=",
-      "subject": "CN=EV TLS RSA ICA R1,O=Public Key Infrastructure Ltd,L=Victoria,ST=Mahé,C=SC",
-      "subjectDN": "MHQxCzAJBgNVBAYTAlNDMQ4wDAYDVQQIDAVNYWjDqTERMA8GA1UEBwwIVmljdG9yaWExJjAkBgNVBAoMHVB1YmxpYyBLZXkgSW5mcmFzdHJ1Y3R1cmUgTHRkMRowGAYDVQQDDBFFViBUTFMgUlNBIElDQSBSMQ==",
-      "whitelist": false,
-      "attachment": {
-        "hash": "fbe36d0fa1ad5d6d988f5f830844c59500d80d4149af2056825c684ac8ef5d9b",
-        "size": 2162,
-        "filename": "gBX99XA0NOEUd6rWyM2Sljn_RHatTUjnhh-CTUMNF9Y=.pem",
-        "location": "security-state-staging/intermediates/22134104-5ce1-42ac-854b-0e9140df8eb5.pem",
-        "mimetype": "application/x-pem-file"
-      },
-      "pubKeyHash": "gBX99XA0NOEUd6rWyM2Sljn/RHatTUjnhh+CTUMNF9Y=",
-      "crlite_enrolled": false,
-      "id": "41e8228f-c39f-4e86-a653-69a80795066d",
-      "last_modified": 1656593824337
-    },
-    {
       "schema": 1656593435988,
       "derHash": "o2wcxiPs8+2JmprBT91WIJGYWOYh5od+Ae9Q2h22o6s=",
       "subject": "CN=E-Tugra EV TLS ECC SubCA R1,O=E-TUGRA EBG BILISIM TEKNOLOJILERI VE HIZMETLERI ANONIM SIRKETI,C=TR",
@@ -20215,24 +20287,6 @@
       "last_modified": 1656593824210
     },
     {
-      "schema": 1656593425074,
-      "derHash": "pfS4JqWGN/kStp/oWZByQ73+qnGgLcRCnQZk4hSgqds=",
-      "subject": "CN=EV TLS ECC ICA R1,O=Public Key Infrastructure Ltd,L=Victoria,ST=Mahé,C=SC",
-      "subjectDN": "MHQxCzAJBgNVBAYTAlNDMQ4wDAYDVQQIDAVNYWjDqTERMA8GA1UEBwwIVmljdG9yaWExJjAkBgNVBAoMHVB1YmxpYyBLZXkgSW5mcmFzdHJ1Y3R1cmUgTHRkMRowGAYDVQQDDBFFViBUTFMgRUNDIElDQSBSMQ==",
-      "whitelist": false,
-      "attachment": {
-        "hash": "dcc0d85bdf90fcf9cf7180560e60a2a8735444b0cf4bcd9483a97388169a84d0",
-        "size": 1341,
-        "filename": "Hm-YeyBPf0CgyqM7jDoHDoSn9_W6pVfgP9SsXIGh6d4=.pem",
-        "location": "security-state-staging/intermediates/5ce080da-dabc-4e36-8b5a-0e36fecb1504.pem",
-        "mimetype": "application/x-pem-file"
-      },
-      "pubKeyHash": "Hm+YeyBPf0CgyqM7jDoHDoSn9/W6pVfgP9SsXIGh6d4=",
-      "crlite_enrolled": false,
-      "id": "3eeb12fb-0aad-47f1-a573-fd1113a062d0",
-      "last_modified": 1656593824201
-    },
-    {
       "schema": 1656593424089,
       "derHash": "eF/TI2TEV+KutDU6qVgI83GqiQbhHEDhPDOKaz7nO+E=",
       "subject": "CN=MuaSSL.com EV TLS Issuing ECC CA R1,O=Hao Quang Viet Software Company Limited,C=VN",
@@ -20287,24 +20341,6 @@
       "last_modified": 1656593824138
     },
     {
-      "schema": 1656593412481,
-      "derHash": "7R/0Bw8IaOsgoDGfxgGRmAD25e/YI6YVayf4nLBLLCY=",
-      "subject": "CN=TLS ECC ICA R1,O=Public Key Infrastructure Ltd,L=Victoria,ST=Mahé,C=SC",
-      "subjectDN": "MHExCzAJBgNVBAYTAlNDMQ4wDAYDVQQIDAVNYWjDqTERMA8GA1UEBwwIVmljdG9yaWExJjAkBgNVBAoMHVB1YmxpYyBLZXkgSW5mcmFzdHJ1Y3R1cmUgTHRkMRcwFQYDVQQDDA5UTFMgRUNDIElDQSBSMQ==",
-      "whitelist": false,
-      "attachment": {
-        "hash": "e07516a3d91d1c5a8b3fc6ec9cd8ad2b76925600350276269dcc00fe8df93cce",
-        "size": 1329,
-        "filename": "x0b-nG3FvmwYXc4hymUVggr-35gjXzG-RtqvVgdjLaY=.pem",
-        "location": "security-state-staging/intermediates/a994028c-43d8-4c39-93e5-ed4c3d460e02.pem",
-        "mimetype": "application/x-pem-file"
-      },
-      "pubKeyHash": "x0b+nG3FvmwYXc4hymUVggr+35gjXzG+RtqvVgdjLaY=",
-      "crlite_enrolled": false,
-      "id": "f9fab06a-de8a-425a-9a91-57e2c36a06b7",
-      "last_modified": 1656593824092
-    },
-    {
       "schema": 1656593398913,
       "derHash": "myWmp71RvF9cTwbg0SGP03DdMfr9XNO2J8gvIC8bRlc=",
       "subject": "CN=SSL.com EV SSL Enterprise Intermediate CA RSA R2,O=SSL Corp,L=Houston,ST=Texas,C=US",
@@ -27361,5 +27397,5 @@
       "last_modified": 1559865863642
     }
   ],
-  "timestamp": 1677855423522
+  "timestamp": 1680512223621
 }
diff -Nru thunderbird-102.9.0+build1/SOURCE_CHANGESET thunderbird-102.10.0+build2/SOURCE_CHANGESET
--- thunderbird-102.9.0+build1/SOURCE_CHANGESET	2023-03-11 11:25:10.000000000 +0000
+++ thunderbird-102.10.0+build2/SOURCE_CHANGESET	2023-04-11 06:11:54.000000000 +0000
@@ -1 +1 @@
-e26ff04290d095dac006a3710b07077ee5d20f31
\ No newline at end of file
+737a5c36e0f939b688ff1d6fb75b139cfdf60ae9
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/taskcluster/ci/docker-image/kind.yml thunderbird-102.10.0+build2/taskcluster/ci/docker-image/kind.yml
--- thunderbird-102.9.0+build1/taskcluster/ci/docker-image/kind.yml	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/ci/docker-image/kind.yml	2023-04-11 06:11:13.000000000 +0000
@@ -194,9 +194,6 @@
         symbol: I(PR)
         parent: debian10-base
         definition: partner-repack
-    updatebot:
-        symbol: I(3rdp)
-        parent: push-to-try
     periodic-updates:
         symbol: I(file)
         parent: ubuntu1804-base
diff -Nru thunderbird-102.9.0+build1/taskcluster/ci/fetch/kind.yml thunderbird-102.10.0+build2/taskcluster/ci/fetch/kind.yml
--- thunderbird-102.9.0+build1/taskcluster/ci/fetch/kind.yml	2023-03-11 11:24:27.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/ci/fetch/kind.yml	2023-04-11 06:11:14.000000000 +0000
@@ -17,4 +17,3 @@
     - resource-monitor.yml
     - toolchain-clang-tidy-external.yml
     - toolchains.yml
-    - updatebot.yml
diff -Nru thunderbird-102.9.0+build1/taskcluster/ci/fetch/updatebot.yml thunderbird-102.10.0+build2/taskcluster/ci/fetch/updatebot.yml
--- thunderbird-102.9.0+build1/taskcluster/ci/fetch/updatebot.yml	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/ci/fetch/updatebot.yml	1970-01-01 00:00:00.000000000 +0000
@@ -1,33 +0,0 @@
-# This Source Code Form is subject to the terms of the Mozilla Public
-# License, v. 2.0. If a copy of the MPL was not distributed with this
-# file, You can obtain one at http://mozilla.org/MPL/2.0/.
----
-cloud-sql-proxy-1.25.0:
-    description: Windows executable for Google's Cloud SQL Proxy
-    fetch:
-        type: static-url
-        url: https://storage.googleapis.com/cloudsql-proxy/v1.25.0/cloud_sql_proxy_x64.exe
-        sha256: b922a8d3924499b829bfe53a25382f9b340ea804a738e2a7d8b34957a329a2dd
-        size: 16195072
-        artifact-name: cloud_sql_proxy.exe
-php-windows-7.4.24:
-    description: VC15 x64 Non Thread Safe (2021-Sep-21 16:58:34)
-    fetch:
-        type: static-url
-        url: https://windows.php.net/downloads/releases/archives/php-7.4.24-nts-Win32-vc15-x64.zip
-        sha256: 1e93fb390ab2761a47d27c97225a518759731c632c0dd87436cbf25f19582436
-        size: 26067094
-        artifact-name: php.tar.zst
-        add-prefix: php-win/
-arcanist:
-    description: checkout of arcanist for running on Windows
-    fetch:
-        type: git
-        repo: https://github.com/phacility/arcanist.git
-        revision: a028291f8e5e79b6446ad67ed8b0be9c5ec8f029
-depot_tools:
-    description: Google's depot_tools package
-    fetch:
-        type: git
-        repo: https://chromium.googlesource.com/chromium/tools/depot_tools.git
-        revision: 7b3351443198f4e7d068999b169385b55a43679a
diff -Nru thunderbird-102.9.0+build1/taskcluster/ci/packages/debian.yml thunderbird-102.10.0+build2/taskcluster/ci/packages/debian.yml
--- thunderbird-102.9.0+build1/taskcluster/ci/packages/debian.yml	2023-03-11 11:24:27.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/ci/packages/debian.yml	2023-04-11 06:11:13.000000000 +0000
@@ -37,6 +37,7 @@
             sed -i -e "s/__VERSION__/$(awk -F\" '$2 {print $2}' mercurial/__version__.py)-1.deb11moz1/" \
                          -e "s/__DATE__/$(date --rfc-2822)/" \
                          -e "s/__CODENAME__/bullseye/" debian/changelog
+        patch: mercurial-timeout.diff
 
 deb11-valgrind:
     description: "Valgrind for Debian bullseye"
diff -Nru thunderbird-102.9.0+build1/taskcluster/ci/packages/ubuntu.yml thunderbird-102.10.0+build2/taskcluster/ci/packages/ubuntu.yml
--- thunderbird-102.9.0+build1/taskcluster/ci/packages/ubuntu.yml	2023-03-11 11:24:27.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/ci/packages/ubuntu.yml	2023-04-11 06:11:14.000000000 +0000
@@ -52,6 +52,7 @@
             sed -i -e "s/__VERSION__/$(awk -F\" '$2 {print $2}' mercurial/__version__.py)-1.ub18moz1/" \
                          -e "s/__DATE__/$(date --rfc-2822)/" \
                          -e "s/__CODENAME__/bionic/" debian/changelog
+        patch: mercurial-timeout.diff
 
 ub20-python-zstandard:
     description: "python-zstandard for Ubuntu focal"
@@ -79,3 +80,4 @@
             sed -i -e "s/__VERSION__/$(awk -F\" '$2 {print $2}' mercurial/__version__.py)-1.ub20moz1/" \
                          -e "s/__DATE__/$(date --rfc-2822)/" \
                          -e "s/__CODENAME__/focal/" debian/changelog
+        patch: mercurial-timeout.diff
diff -Nru thunderbird-102.9.0+build1/taskcluster/ci/updatebot/kind.yml thunderbird-102.10.0+build2/taskcluster/ci/updatebot/kind.yml
--- thunderbird-102.9.0+build1/taskcluster/ci/updatebot/kind.yml	2023-03-11 11:24:27.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/ci/updatebot/kind.yml	1970-01-01 00:00:00.000000000 +0000
@@ -1,91 +0,0 @@
-# This Source Code Form is subject to the terms of the Mozilla Public
-# License, v. 2.0. If a copy of the MPL was not distributed with this
-# file, You can obtain one at http://mozilla.org/MPL/2.0/.
----
-loader: gecko_taskgraph.loader.transform:loader
-
-kind-dependencies:
-    - fetch
-    - toolchain
-
-transforms:
-    - gecko_taskgraph.transforms.release_notifications:transforms
-    - gecko_taskgraph.transforms.job:transforms
-    - gecko_taskgraph.transforms.task:transforms
-
-jobs:
-    cron:
-        description: Cron Job for Updatebot
-        run-on-projects: []
-        treeherder:
-            kind: other
-            platform: updatebot/all
-            symbol: cron
-            tier: 1
-        worker-type: b-linux
-        worker:
-            docker-image: {in-tree: updatebot}
-            max-run-time: 3600
-            taskcluster-proxy: true
-        scopes:
-            - secrets:get:project/updatebot/{level}/try-sshkey
-            - secrets:get:project/updatebot/{level}/phabricator-token
-            - secrets:get:project/updatebot/{level}/bugzilla-api-key
-            - secrets:get:project/updatebot/{level}/database-password
-            - secrets:get:project/updatebot/{level}/sentry-url
-            - secrets:get:project/updatebot/{level}/sql-proxy-config
-            - hooks:trigger-hook:project-gecko/in-tree-action-1-generic/*
-        run:
-            using: run-task
-            command: /builds/worker/run.py /builds/worker/checkouts/gecko /builds/worker/updatebot
-        notifications:
-            subject: 'updatebot cron failed'
-            message: 'updatebot cron failed'
-            status-types:
-                - on-failed
-                - on-exception
-            emails: ["tom@mozilla.com", "jewilde@mozilla.com"]
-        fetches:
-            toolchain:
-                - linux64-rust
-
-    cron-win:
-        description: Cron Job for Updatebot (Windows)
-        run-on-projects: []
-        treeherder:
-            kind: other
-            platform: updatebot/all
-            symbol: w-cron
-            tier: 1
-        worker-type: b-win2012
-        worker:
-            max-run-time: 3600
-            taskcluster-proxy: true
-            # begin _GENERATE_DEPOT_TOOLS_BINARIES_
-            # artifacts:
-            #     - type: directory
-            #       name: public/depot_tools.zip
-            #       path: build\src\obj-build\depot_tools
-            # end _GENERATE_DEPOT_TOOLS_BINARIES_
-            env:
-                TOOLTOOL_MANIFEST: "taskcluster/ci/updatebot/tooltool-manifests/updatebot.manifest"
-                MSYSTEM: "MINGW64"
-        run:
-            using: run-task
-            cwd: '{checkout}'
-            command: ./taskcluster/docker/updatebot/windows-setup.sh
-            tooltool-downloads: internal
-        scopes:
-            - secrets:get:project/updatebot/{level}/try-sshkey
-            - secrets:get:project/updatebot/{level}/phabricator-token
-            - secrets:get:project/updatebot/{level}/bugzilla-api-key
-            - secrets:get:project/updatebot/{level}/database-password
-            - secrets:get:project/updatebot/{level}/sentry-url
-            - secrets:get:project/updatebot/{level}/sql-proxy-config
-            - hooks:trigger-hook:project-gecko/in-tree-action-1-generic/*
-        fetches:
-            fetch:
-                - cloud-sql-proxy-1.25.0
-                - php-windows-7.4.24
-                - arcanist
-                - depot_tools
diff -Nru thunderbird-102.9.0+build1/taskcluster/ci/updatebot/tooltool-manifests/updatebot.manifest thunderbird-102.10.0+build2/taskcluster/ci/updatebot/tooltool-manifests/updatebot.manifest
--- thunderbird-102.9.0+build1/taskcluster/ci/updatebot/tooltool-manifests/updatebot.manifest	2023-03-11 11:24:27.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/ci/updatebot/tooltool-manifests/updatebot.manifest	1970-01-01 00:00:00.000000000 +0000
@@ -1,29 +0,0 @@
-[
-  {
-    "version": "vcruntime140.dll from Microsoft Visual C++ Redistributable for Visual Studio 2019 ver 14.29.30133.0",
-    "size": 97160,
-    "visibility": "internal",
-    "digest": "aa6afd6bea27f554e3646152d8c4f96f7bcaaa4933f8b7c04346e410f93f23cfa6d29362fd5d51ccbb8b6223e094cd89e351f072ad0517553703f5bf9de28778",
-    "algorithm": "sha512",
-    "filename": "vcruntime140.dll",
-    "unpack": false
-  },
-  {
-    "version": "Visual Studio Community 2019, Windows SDK 10.0.19041.0, and a few system dlls Lobotmized for Angle Update",
-    "filename": "vs-sdk-and-windir-shim.zip",
-    "size": 463564917,
-    "algorithm": "sha512",
-    "digest": "20d93b0014ca44a666ca2b5cc570127f24378454889ff0a036df72213cd18140185d2c2e61df40bf1e4c0d9d2dc83a7796af9d2a13252de3c85faad068291945",
-    "visibility": "internal",
-    "unpack": true
-  },
-  {
-    "version": "Windows binaries for depot_tools retrieved with depot_tools revision 7b3351443198f4e7d068999b169385b55a43679a on 2021-12-18",
-    "filename": "depot_tools-preloaded-binaries-7b3351443198f4e7d068999b169385b55a43679a-2021-12-18.zip",
-    "size": 315038144,
-    "algorithm": "sha512",
-    "digest": "250f3f3fcf631c53de1f505c53eb5ba782864fa92111eef0d710a1e7d0ad3da66db2fb8908d7c6d83e149674e976984d679f9a641eb9bea0b5c3d7b4f236920d",
-    "visibility": "internal",
-    "unpack": true
-  }
-]
diff -Nru thunderbird-102.9.0+build1/taskcluster/docker/partner-repack/known_hosts thunderbird-102.10.0+build2/taskcluster/docker/partner-repack/known_hosts
--- thunderbird-102.9.0+build1/taskcluster/docker/partner-repack/known_hosts	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/docker/partner-repack/known_hosts	2023-04-11 06:11:13.000000000 +0000
@@ -1,2 +1,3 @@
-|1|l1+RDluaBh2vgAVjzSQP5cMsazU=|zA0AvSBB4c3SJ6OM1H0pjrTY/BQ= ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAq2A7hRGmdnm9tUDbO9IDSwBK6TbQa+PXYPCPy6rbTrTtw7PHkccKrpp0yVhp5HdEIcKr6pLlVDBfOLX9QUsyCOV0wzfjIJNlGEYsdlLJizHhbn2mUjvSAHQqZETYP81eFzLQNnPHt4EVVUh7VfDESU84KezmD5QlWpXLmvU31/yMf+Se8xhHTvKSCZIFImWwoG6mbUoWf9nzpIoaSjB+weqqUUmpaaasXVal72J+UX2B+2RPW3RcT0eOzQgqlJL3RKrTJvdsjE3JEAvGq3lGHSZXy28G3skua2SmVi/w4yCE6gbODqnTWlg7+wC604ydGXA8VJiS5ap43JXiUFFAaQ==
-|1|A4q4hHD/XV6BPf9bom/6780dCwk=|gm+K1qkEPDUMm1axYNTOkbI1BQ4= ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAq2A7hRGmdnm9tUDbO9IDSwBK6TbQa+PXYPCPy6rbTrTtw7PHkccKrpp0yVhp5HdEIcKr6pLlVDBfOLX9QUsyCOV0wzfjIJNlGEYsdlLJizHhbn2mUjvSAHQqZETYP81eFzLQNnPHt4EVVUh7VfDESU84KezmD5QlWpXLmvU31/yMf+Se8xhHTvKSCZIFImWwoG6mbUoWf9nzpIoaSjB+weqqUUmpaaasXVal72J+UX2B+2RPW3RcT0eOzQgqlJL3RKrTJvdsjE3JEAvGq3lGHSZXy28G3skua2SmVi/w4yCE6gbODqnTWlg7+wC604ydGXA8VJiS5ap43JXiUFFAaQ==
+github.com ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOMqqnkVzrm0SdG6UOoqKLsabgH5C9okWi0dh2l9GKJl
+github.com ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBEmKSENjQEezOmxkZMy7opKgwFB9nkt5YRrYMjNuG5N87uRgg6CLrbo5wAdT/y6v0mKV0U2w0WZ2YB/++Tpockg=
+github.com ssh-rsa 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
diff -Nru thunderbird-102.9.0+build1/taskcluster/docker/updatebot/arcanist_patch_size.patch thunderbird-102.10.0+build2/taskcluster/docker/updatebot/arcanist_patch_size.patch
--- thunderbird-102.9.0+build1/taskcluster/docker/updatebot/arcanist_patch_size.patch	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/docker/updatebot/arcanist_patch_size.patch	1970-01-01 00:00:00.000000000 +0000
@@ -1,13 +0,0 @@
-diff --git a/src/workflow/ArcanistDiffWorkflow.php b/src/workflow/ArcanistDiffWorkflow.php
-index 38aa4b62..c9b7e215 100644
---- a/src/workflow/ArcanistDiffWorkflow.php
-+++ b/src/workflow/ArcanistDiffWorkflow.php
-@@ -899,7 +899,7 @@ EOTEXT
-       throw new Exception(pht('Repository API is not supported.'));
-     }
- 
--    $limit = 1024 * 1024 * 4;
-+    $limit = 1024 * 1024 * 12;
-     foreach ($changes as $change) {
-       $size = 0;
-       foreach ($change->getHunks() as $hunk) {
diff -Nru thunderbird-102.9.0+build1/taskcluster/docker/updatebot/arcanist_windows_stream.patch thunderbird-102.10.0+build2/taskcluster/docker/updatebot/arcanist_windows_stream.patch
--- thunderbird-102.9.0+build1/taskcluster/docker/updatebot/arcanist_windows_stream.patch	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/docker/updatebot/arcanist_windows_stream.patch	1970-01-01 00:00:00.000000000 +0000
@@ -1,19 +0,0 @@
-diff --git a/src/channel/PhutilSocketChannel.php b/src/channel/PhutilSocketChannel.php
-index 4bd2a47a..2ad3fd85 100644
---- a/src/channel/PhutilSocketChannel.php
-+++ b/src/channel/PhutilSocketChannel.php
-@@ -46,9 +46,11 @@ final class PhutilSocketChannel extends PhutilChannel {
-       if (!$socket) {
-         continue;
-       }
--      $ok = stream_set_blocking($socket, false);
--      if (!$ok) {
--        throw new Exception(pht('Failed to set socket nonblocking!'));
-+      if (strtoupper(substr(PHP_OS, 0, 3)) !== 'WIN') {
-+        $ok = stream_set_blocking($socket, false);
-+        if (!$ok) {
-+          throw new Exception(pht('Failed to set socket nonblocking!'));
-+        }
-       }
-     }
- 
diff -Nru thunderbird-102.9.0+build1/taskcluster/docker/updatebot/Dockerfile thunderbird-102.10.0+build2/taskcluster/docker/updatebot/Dockerfile
--- thunderbird-102.9.0+build1/taskcluster/docker/updatebot/Dockerfile	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/docker/updatebot/Dockerfile	1970-01-01 00:00:00.000000000 +0000
@@ -1,21 +0,0 @@
-FROM $DOCKER_IMAGE_PARENT
-MAINTAINER Tom Ritter <tom@mozilla.com>
-
-VOLUME /builds/worker/checkouts
-
-COPY    privileged-setup.sh     /setup/privileged-setup.sh
-COPY    updatebot-version.sh    /setup/updatebot-version.sh
-COPY    setup.sh                /builds/worker/setup.sh
-COPY    run.py                  /builds/worker/run.py
-COPY    hgrc                    /etc/mercurial/hgrc.d/updatebot.rc
-
-RUN     cd /setup && ./privileged-setup.sh
-
-ENV     HOME                /builds/worker
-ENV     SHELL               /bin/bash
-ENV     USER                worker
-ENV     LOGNAME             worker
-ENV     PYTHONUNBUFFERED    1
-ENV     PATH                "/builds/worker/go/bin:/builds/worker/fetches/rustc/bin:${PATH}"
-
-RUN     cd /builds/worker && ./setup.sh
diff -Nru thunderbird-102.9.0+build1/taskcluster/docker/updatebot/hgrc thunderbird-102.10.0+build2/taskcluster/docker/updatebot/hgrc
--- thunderbird-102.9.0+build1/taskcluster/docker/updatebot/hgrc	2023-03-11 11:24:27.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/docker/updatebot/hgrc	1970-01-01 00:00:00.000000000 +0000
@@ -1,7 +0,0 @@
-[ui]
-ssh = ssh -i $HOME/id_rsa -l updatebot@mozilla.com -o UserKnownHostsFile=$HOME/ssh_known_hosts
-username = Updatebot <updatebot@mozilla.com>
-
-[extensions]
-strip =
-push-to-try = $HOME/.mozbuild/version-control-tools/hgext/push-to-try
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/taskcluster/docker/updatebot/privileged-setup.sh thunderbird-102.10.0+build2/taskcluster/docker/updatebot/privileged-setup.sh
--- thunderbird-102.9.0+build1/taskcluster/docker/updatebot/privileged-setup.sh	2023-03-11 11:24:27.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/docker/updatebot/privileged-setup.sh	1970-01-01 00:00:00.000000000 +0000
@@ -1,80 +0,0 @@
-#!/bin/bash
-# This Source Code Form is subject to the terms of the Mozilla Public
-# License, v. 2.0. If a copy of the MPL was not distributed with this
-# file, You can obtain one at http://mozilla.org/MPL/2.0/.
-
-set -vex
-
-. ./updatebot-version.sh # Get UPDATEBOT_REVISION
-
-# If you edit this, be sure to edit fetch/updatebot.yml
-export SQLPROXY_REVISION=fb1939ab92846761595833361c6b0b0ecd543861
-
-export DEBIAN_FRONTEND=noninteractive
-
-# Update apt-get lists
-apt-get update -y
-
-# Install dependencies
-apt-get install -y --no-install-recommends \
-    arcanist \
-    bzr \
-    ca-certificates \
-    curl \
-    ed \
-    golang-go \
-    gcc \
-    libc6-dev \
-    python-requests \
-    python-requests-unixsocket \
-    python3.5 \
-    python3-minimal \
-    python3-wheel \
-    python3-pip \
-    python3-venv \
-    python3-requests \
-    python3-requests-unixsocket \
-    python3-setuptools \
-    nodejs \
-    npm \
-    openssh-client \
-    rsync \
-    wget
-
-mkdir -p /builds/worker/.mozbuild
-chown -R worker:worker /builds/worker/
-export GOPATH=/builds/worker/go
-
-# pdf.js setup
-# We want to aviod downloading a ton of packages all the time, so
-# we will preload the pdf.js repo (and packages) in the Docker image
-# and only update it at runtime. This means that the `./mach vendor`
-# behavior for pdf.js will also be kind of custom
-npm install -g gulp-cli
-cd /builds/worker/
-git clone https://github.com/mozilla/pdf.js.git
-cd /builds/worker/pdf.js
-npm ci
-
-# Build Google's Cloud SQL Proxy from source
-cd /builds/worker/
-mkdir cloud_sql_proxy
-cd cloud_sql_proxy
-go mod init .
-go get github.com/GoogleCloudPlatform/cloudsql-proxy/cmd/cloud_sql_proxy@$SQLPROXY_REVISION
-
-# Check out source code
-cd /builds/worker/
-git clone https://github.com/mozilla-services/updatebot.git
-cd updatebot
-git checkout "$UPDATEBOT_REVISION"
-
-# Set up dependencies
-cd /builds/worker/
-chown -R worker:worker .
-chown -R worker:worker .*
-
-python3 -m pip install -U pip
-python3 -m pip install poetry
-
-rm -rf /setup
diff -Nru thunderbird-102.9.0+build1/taskcluster/docker/updatebot/run.py thunderbird-102.10.0+build2/taskcluster/docker/updatebot/run.py
--- thunderbird-102.9.0+build1/taskcluster/docker/updatebot/run.py	2023-03-11 11:24:27.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/docker/updatebot/run.py	1970-01-01 00:00:00.000000000 +0000
@@ -1,223 +0,0 @@
-#!/usr/bin/env python3
-# This Source Code Form is subject to the terms of the Mozilla Public
-# License, v. 2.0. If a copy of the MPL was not distributed with this
-# file, # You can obtain one at http://mozilla.org/MPL/2.0/.
-
-from __future__ import absolute_import, print_function
-
-import sys
-
-sys.path.append("/builds/worker/checkouts/gecko/third_party/python")
-sys.path.append(".")
-
-import os
-import stat
-import base64
-import signal
-import platform
-import requests
-import subprocess
-import taskcluster
-
-# Bump this number when you need to cause a commit for the job to re-run: 21
-
-if len(sys.argv) < 3:
-    print("Usage:", sys.argv[0], "gecko-dev-path updatebot-path [moz-fetches-dir]")
-    sys.exit(1)
-
-GECKO_DEV_PATH = sys.argv[1].replace("/", os.path.sep)
-UPDATEBOT_PATH = sys.argv[2].replace("/", os.path.sep)
-
-# Only needed on Windows
-if len(sys.argv) > 3:
-    FETCHES_PATH = sys.argv[3].replace("/", os.path.sep)
-else:
-    FETCHES_PATH = None
-
-HOME_PATH = os.path.expanduser("~")
-
-OPERATING_MODE = (
-    "prod"
-    if os.environ.get("GECKO_HEAD_REPOSITORY", "")
-    == "https://hg.mozilla.org/mozilla-central"
-    else "dev"
-)
-
-DEV_PHAB_URL = "https://phabricator-dev.allizom.org/"
-PROD_PHAB_URL = "https://phabricator.services.mozilla.com/"
-
-phabricator_url = DEV_PHAB_URL if OPERATING_MODE == "dev" else PROD_PHAB_URL
-
-
-def log(*args):
-    print(*args)
-
-
-def get_secret(name):
-    secret = None
-    if "TASK_ID" in os.environ:
-        secrets_url = (
-            "http://taskcluster/secrets/v1/secret/project/updatebot/"
-            + ("3" if OPERATING_MODE == "prod" else "2")
-            + "/"
-            + name
-        )
-        res = requests.get(secrets_url)
-        res.raise_for_status()
-        secret = res.json()
-    else:
-        secrets = taskcluster.Secrets(taskcluster.optionsFromEnvironment())
-        secret = secrets.get("project/updatebot/" + OPERATING_MODE + "/" + name)
-    secret = secret["secret"] if "secret" in secret else None
-    secret = secret["value"] if "value" in secret else None
-    return secret
-
-
-# Get TC Secrets =======================================
-log("Operating mode is ", OPERATING_MODE)
-log("Getting secrets...")
-bugzilla_api_key = get_secret("bugzilla-api-key")
-phabricator_token = get_secret("phabricator-token")
-try_sshkey = get_secret("try-sshkey")
-database_config = get_secret("database-password")
-sentry_url = get_secret("sentry-url")
-sql_proxy_config = get_secret("sql-proxy-config")
-
-# Update Updatebot =======================================
-if OPERATING_MODE == "dev":
-    """
-    If we are in development mode, we will update from github.
-    (This command will probably only work if we checkout a branch FWIW.)
-
-    This allows us to iterate faster by committing to github and
-    re-running the cron job on Taskcluster, without rebuilding the
-    Docker image.
-
-    However, this mechanism is bypassing the security feature we
-    have in-tree, where upstream out-of-tree code is fixed at a known
-    revision and cannot be changed without a commit to m-c.
-
-    Therefore, we only do this in dev mode when running on try.
-    """
-
-    os.chdir(UPDATEBOT_PATH)
-    log("Performing git repo update...")
-    command = ["git", "symbolic-ref", "-q", "HEAD"]
-
-    r = subprocess.run(command)
-    if r.returncode == 0:
-        # This indicates we are on a branch, and not a specific revision
-        subprocess.check_call(["git", "pull", "origin"])
-
-# Set Up SSH & Phabricator ==============================
-os.chdir(HOME_PATH)
-log("Setting up ssh and phab keys...")
-with open("id_rsa", "w") as sshkey:
-    sshkey.write(try_sshkey)
-os.chmod("id_rsa", stat.S_IRUSR | stat.S_IWUSR)
-
-arc_filename = ".arcrc"
-if platform.system() == "Windows":
-    arc_path = os.path.join(FETCHES_PATH, "..", "AppData", "Roaming")
-    os.makedirs(arc_path, exist_ok=True)
-    os.chdir(arc_path)
-    log("Writing %s to %s" % (arc_filename, arc_path))
-else:
-    os.chdir(HOME_PATH)
-
-arcrc = open(arc_filename, "w")
-towrite = """
-{
-  "hosts": {
-    "PHAB_URL_HERE": {
-      "token": "TOKENHERE"
-    }
-  }
-}
-""".replace(
-    "TOKENHERE", phabricator_token
-).replace(
-    "PHAB_URL_HERE", phabricator_url + "api/"
-)
-arcrc.write(towrite)
-arcrc.close()
-os.chmod(arc_filename, stat.S_IRUSR | stat.S_IWUSR)
-
-# Set up the Cloud SQL Proxy =============================
-os.chdir(HOME_PATH)
-log("Setting up cloud_sql_proxy...")
-with open("sql-proxy-key", "w") as proxy_key_file:
-    proxy_key_file.write(
-        base64.b64decode(sql_proxy_config["key-value"]).decode("utf-8")
-    )
-
-instance_name = sql_proxy_config["instance-name"]
-if platform.system() == "Linux":
-    sql_proxy_command = "/builds/worker/go/bin/cloud_sql_proxy"
-else:
-    sql_proxy_command = os.path.join(UPDATEBOT_PATH, "..", "cloud_sql_proxy.exe")
-
-sql_proxy_command += (
-    " -instances=" + instance_name + "=tcp:3306 -credential_file=sql-proxy-key"
-)
-sql_proxy_args = {
-    "stdout": subprocess.PIPE,
-    "stderr": subprocess.PIPE,
-    "shell": True,
-    "start_new_session": True,
-}
-
-if platform.system() == "Windows":
-    si = subprocess.STARTUPINFO()
-    si.dwFlags = subprocess.CREATE_NEW_PROCESS_GROUP
-
-    sql_proxy_args["startupinfo"] = si
-
-sql_proxy = subprocess.Popen((sql_proxy_command), **sql_proxy_args)
-
-try:
-    (stdout, stderr) = sql_proxy.communicate(input=None, timeout=2)
-    log("sql proxy stdout:", stdout.decode("utf-8"))
-    log("sql proxy stderr:", stderr.decode("utf-8"))
-except subprocess.TimeoutExpired:
-    log("no sqlproxy output in 2 seconds, this means it probably didn't error.")
-    log("sqlproxy pid:", sql_proxy.pid)
-
-database_config["host"] = "127.0.0.1"
-
-# Vendor =================================================
-log("Getting Updatebot ready...")
-os.chdir(UPDATEBOT_PATH)
-localconfig = {
-    "General": {
-        "env": OPERATING_MODE,
-        "gecko-path": GECKO_DEV_PATH,
-    },
-    "Logging": {
-        "local": True,
-        "sentry": True,
-        "sentry_config": {"url": sentry_url, "debug": False},
-    },
-    "Database": database_config,
-    "Bugzilla": {
-        "apikey": bugzilla_api_key,
-    },
-    "Taskcluster": {
-        "url_treeherder": "https://treeherder.mozilla.org/",
-        "url_taskcluster": "http://taskcluster/",
-    },
-}
-
-log("Writing local config file")
-config = open("localconfig.py", "w")
-config.write("localconfig = " + str(localconfig))
-config.close()
-
-log("Running updatebot")
-# On Windows, Updatebot is run by windows-setup.sh
-if platform.system() == "Linux":
-    subprocess.check_call(["python3", "-m", "poetry", "run", "./automation.py"])
-
-    # Clean up ===============================================
-    log("Killing cloud_sql_proxy")
-    os.kill(sql_proxy.pid, signal.SIGTERM)
diff -Nru thunderbird-102.9.0+build1/taskcluster/docker/updatebot/setup.sh thunderbird-102.10.0+build2/taskcluster/docker/updatebot/setup.sh
--- thunderbird-102.9.0+build1/taskcluster/docker/updatebot/setup.sh	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/docker/updatebot/setup.sh	1970-01-01 00:00:00.000000000 +0000
@@ -1,14 +0,0 @@
-#!/bin/bash
-# This Source Code Form is subject to the terms of the Mozilla Public
-# License, v. 2.0. If a copy of the MPL was not distributed with this
-# file, You can obtain one at http://mozilla.org/MPL/2.0/.
-
-set -vex
-
-# Copy the system known_hosts to the home directory so we have uniformity with Windows
-# and the ssh command will find them in the same place.
-cp /etc/ssh/ssh_known_hosts "$HOME/ssh_known_hosts"
-
-# If poetry is not run as worker, then it won't work when run as user later.
-cd /builds/worker/updatebot
-/usr/local/bin/poetry install
diff -Nru thunderbird-102.9.0+build1/taskcluster/docker/updatebot/updatebot-version.sh thunderbird-102.10.0+build2/taskcluster/docker/updatebot/updatebot-version.sh
--- thunderbird-102.9.0+build1/taskcluster/docker/updatebot/updatebot-version.sh	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/docker/updatebot/updatebot-version.sh	1970-01-01 00:00:00.000000000 +0000
@@ -1 +0,0 @@
-export UPDATEBOT_REVISION=5ea77bfef02c065d77aa670ca1b0819295f11136
diff -Nru thunderbird-102.9.0+build1/taskcluster/docker/updatebot/VERSION thunderbird-102.10.0+build2/taskcluster/docker/updatebot/VERSION
--- thunderbird-102.9.0+build1/taskcluster/docker/updatebot/VERSION	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/docker/updatebot/VERSION	1970-01-01 00:00:00.000000000 +0000
@@ -1 +0,0 @@
-1
\ No newline at end of file
diff -Nru thunderbird-102.9.0+build1/taskcluster/docker/updatebot/windows-php.ini thunderbird-102.10.0+build2/taskcluster/docker/updatebot/windows-php.ini
--- thunderbird-102.9.0+build1/taskcluster/docker/updatebot/windows-php.ini	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/docker/updatebot/windows-php.ini	1970-01-01 00:00:00.000000000 +0000
@@ -1,130 +0,0 @@
-[PHP]
-
-engine = On
-short_open_tag = Off
-precision = 14
-output_buffering = 4096
-zlib.output_compression = Off
-implicit_flush = Off
-unserialize_callback_func =
-serialize_precision = -1
-disable_functions =
-disable_classes =
-zend.enable_gc = On
-zend.exception_ignore_args = Off
-expose_php = On
-max_execution_time = 30
-max_input_time = 60
-memory_limit = 128M
-error_reporting = E_ALL
-display_errors = On
-display_startup_errors = On
-log_errors = On
-log_errors_max_len = 1024
-ignore_repeated_errors = Off
-ignore_repeated_source = Off
-report_memleaks = On
-variables_order = "GPCS"
-request_order = "GP"
-register_argc_argv = Off
-auto_globals_jit = On
-post_max_size = 8M
-auto_prepend_file =
-auto_append_file =
-default_mimetype = "text/html"
-default_charset = "UTF-8"
-doc_root =
-user_dir =
-extension_dir = "ext"
-enable_dl = Off
-file_uploads = On
-upload_max_filesize = 2M
-max_file_uploads = 20
-allow_url_fopen = On
-allow_url_include = Off
-default_socket_timeout = 60
-extension=curl
-
-[CLI Server]
-cli_server.color = On
-
-[Pdo_mysql]
-pdo_mysql.default_socket=
-
-[mail function]
-SMTP = localhost
-smtp_port = 25
-mail.add_x_header = Off
-
-[ODBC]
-odbc.allow_persistent = On
-odbc.check_persistent = On
-odbc.max_persistent = -1
-odbc.max_links = -1
-odbc.defaultlrl = 4096
-odbc.defaultbinmode = 1
-
-[MySQLi]
-mysqli.max_persistent = -1
-mysqli.allow_persistent = On
-mysqli.max_links = -1
-mysqli.default_port = 3306
-mysqli.default_socket =
-mysqli.default_host =
-mysqli.default_user =
-mysqli.default_pw =
-mysqli.reconnect = Off
-
-[mysqlnd]
-mysqlnd.collect_statistics = On
-mysqlnd.collect_memory_statistics = On
-
-[PostgreSQL]
-pgsql.allow_persistent = On
-pgsql.auto_reset_persistent = Off
-pgsql.max_persistent = -1
-pgsql.max_links = -1
-pgsql.ignore_notice = 0
-pgsql.log_notice = 0
-
-[bcmath]
-bcmath.scale = 0
-
-[Session]
-session.save_handler = files
-session.use_strict_mode = 0
-session.use_cookies = 1
-session.use_only_cookies = 1
-session.name = PHPSESSID
-session.auto_start = 0
-session.cookie_lifetime = 0
-session.cookie_path = /
-session.cookie_domain =
-session.cookie_httponly =
-session.cookie_samesite =
-session.serialize_handler = php
-session.gc_probability = 1
-session.gc_divisor = 1000
-session.gc_maxlifetime = 1440
-session.referer_check =
-session.cache_limiter = nocache
-session.cache_expire = 180
-session.use_trans_sid = 0
-session.sid_length = 26
-session.trans_sid_tags = "a=href,area=href,frame=src,form="
-session.sid_bits_per_character = 5
-
-[Assertion]
-zend.assertions = 1
-
-[Tidy]
-tidy.clean_output = Off
-
-[soap]
-soap.wsdl_cache_enabled=1
-soap.wsdl_cache_dir="/tmp"
-soap.wsdl_cache_ttl=86400
-soap.wsdl_cache_limit = 5
-
-[ldap]
-ldap.max_links = -1
diff -Nru thunderbird-102.9.0+build1/taskcluster/docker/updatebot/windows-setup.sh thunderbird-102.10.0+build2/taskcluster/docker/updatebot/windows-setup.sh
--- thunderbird-102.9.0+build1/taskcluster/docker/updatebot/windows-setup.sh	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/docker/updatebot/windows-setup.sh	1970-01-01 00:00:00.000000000 +0000
@@ -1,135 +0,0 @@
-#!/bin/bash
-# This Source Code Form is subject to the terms of the Mozilla Public
-# License, v. 2.0. If a copy of the MPL was not distributed with this
-# file, You can obtain one at http://mozilla.org/MPL/2.0/.
-
-set -vex
-
-. ./taskcluster/docker/updatebot/updatebot-version.sh # Get UPDATEBOT_REVISION
-
-HOME=$(python3 -c "import os;print(os.path.expanduser('~'))")
-export HOME
-GECKO_PATH="$PWD"
-UPDATEBOT_PATH="$MOZ_FETCHES_DIR/updatebot"
-
-# MOZ_FETCHES_DIR is in Z:/ format.  When we update the PATH we need to use
-#   /z/ format.  Fortunately, we can translate them like so:
-cd "$MOZ_FETCHES_DIR"
-MOZ_FETCHES_PATH="$PWD"
-
-#########################################################
-# Install dependencies
-
-# Move depot_tools
-cd "$MOZ_FETCHES_DIR"
-mv depot_tools.git depot_tools
-
-
-# Generating a new version of the preloaded depot_tools download can be done by:
-# 1) Running the task, uncommenting the variable assignment below, uncommenting the 
-#    _GENERATE_DEPOT_TOOLS_BINARIES_ section in taskcluster/ci/updatebot/kind.yml,
-#    and ensuring that an angle update will actually take place (so it downloads the depot_tools)
-# 2) Downloading and sanity-checking the depot_tools-preloaded-binaries-GIT_HASH-DATE.zip artifact
-# 3) Adding it to tooltool
-# 4) Updating the updatebot manifest
-# Note that even for the same git revision the downloaded tools can change, so they are tagged
-# with both the git hash and the date it was generated
-
-# export GENERATE_DEPOT_TOOLS_BINARIES=1
-
-if test -n "$GENERATE_DEPOT_TOOLS_BINARIES"; then
-    cp -r depot_tools depot_tools-from-git
-fi
-
-# Git is at /c/Program Files/Git/cmd/git.exe
-#  It's in PATH for this script (confusingly) but not in PATH so we need to add it
-export PATH="/c/Program Files/Git/cmd:$PATH"
-
-# php & arcanist
-if [ -n "$TOOLTOOL_MANIFEST" ]; then
- . "$GECKO_PATH/taskcluster/scripts/misc/tooltool-download.sh"
-fi
-
-cp "$MOZ_FETCHES_DIR/vcruntime140.dll" "$MOZ_FETCHES_DIR/php-win"
-cp "$GECKO_PATH/taskcluster/docker/updatebot/windows-php.ini" "$MOZ_FETCHES_DIR/php-win/php.ini"
-
-cd "$MOZ_FETCHES_DIR/arcanist.git"
-patch -p1 < "$GECKO_PATH/taskcluster/docker/updatebot/arcanist_windows_stream.patch"
-patch -p1 < "$GECKO_PATH/taskcluster/docker/updatebot/arcanist_patch_size.patch"
-cd "$MOZ_FETCHES_DIR"
-
-export PATH="$MOZ_FETCHES_PATH/php-win:$PATH"
-export PATH="$MOZ_FETCHES_PATH/arcanist.git/bin:$PATH"
-
-# get Updatebot
-cd "$MOZ_FETCHES_DIR"
-git clone https://github.com/mozilla-services/updatebot.git
-cd updatebot
-git checkout "$UPDATEBOT_REVISION"
-
-# base python needs
-python3 -m pip install --no-warn-script-location --user -U pip
-python3 -m pip install --no-warn-script-location --user poetry wheel requests setuptools
-
-# updatebot dependencies
-cd "$UPDATEBOT_PATH"
-python3 -m poetry install
-
-# taskcluster secrets and writing out localconfig
-cd "$GECKO_PATH"
-python3 ./taskcluster/docker/updatebot/run.py "$GECKO_PATH" "$UPDATEBOT_PATH" "$MOZ_FETCHES_PATH"
-
-# mercurial configuration
-cp "$GECKO_PATH/taskcluster/docker/updatebot/hgrc" "$HOME/.hgrc"
-# Windows is not happy with $HOME in the hgrc so we need to do a hack to replace it
-#   with the actual value
-( echo "cat <<EOF" ; cat "$HOME/.hgrc" ) | sh > tmp
-mv tmp "$HOME/.hgrc"
-
-# ssh known hosts
-cp "$GECKO_PATH/taskcluster/docker/push-to-try/known_hosts" "$HOME/ssh_known_hosts"
-
-#########################################################
-# Run it
-export PYTHONIOENCODING=utf8
-export PYTHONUNBUFFERED=1
-
-cd "$UPDATEBOT_PATH"
-python3 -m poetry run python3 ./automation.py
-
-#########################################################
-if test -n "$GENERATE_DEPOT_TOOLS_BINARIES"; then
-    # Artifacts
-
-    cd "$MOZ_FETCHES_PATH"
-    mv depot_tools depot_tools-from-tc
-
-    # Clean out unneeded files
-    # Need to use cmd because for some reason rm from bash throws 'Access Denied'
-    cmd '/c for /d /r %i in (*__pycache__) do rmdir /s /q %i'
-    rm -rf depot_tools-from-git/.git || true
-
-    # Delete the files that are already in git
-    find depot_tools-from-git -mindepth 1 -maxdepth 1 | sed s/depot_tools-from-git/depot_tools-from-tc/ | while read -r d; do rm -rf "$d"; done
-
-    # Make the artifact
-    rm -rf depot_tools-preloaded-binaries #remove it if it existed (i.e. we probably have one from tooltool already)
-    mv depot_tools-from-tc depot_tools-preloaded-binaries
-
-    # zip can't add symbolic links, and exits with an error code. || true avoids a script crash
-    zip -r depot_tools-preloaded-binaries.zip depot_tools-preloaded-binaries/ || true
-
-    # Convoluted way to get the git hash, because we don't have a .git directory
-    # Adding extra print statements just in case we need to debug it
-    GIT_HASH=$(grep depot_tools -A 1 "$GECKO_PATH/taskcluster/ci/fetch/updatebot.yml" | tee /dev/tty | grep revision | tee /dev/tty | awk -F': *' '{print $2}' | tee /dev/tty)
-    DATE=$(date -I)
-    mv depot_tools-preloaded-binaries.zip "depot_tools-preloaded-binaries-$GIT_HASH-$DATE.zip"
-
-    # Put the artifact into the directory we will look for it
-    mkdir -p "$GECKO_PATH/obj-build/depot_tools" || true
-    mv "depot_tools-preloaded-binaries-$GIT_HASH-$DATE.zip" "$GECKO_PATH/obj-build/depot_tools"
-fi
-
-#########################################################
-echo "Killing SQL Proxy"
-taskkill -f -im cloud_sql_proxy.exe || true
diff -Nru thunderbird-102.9.0+build1/taskcluster/docs/kinds.rst thunderbird-102.10.0+build2/taskcluster/docs/kinds.rst
--- thunderbird-102.9.0+build1/taskcluster/docs/kinds.rst	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/docs/kinds.rst	2023-04-11 06:11:13.000000000 +0000
@@ -705,10 +705,6 @@
 -------------------
 Push tasks to try to test new scriptworker deployments.
 
-updatebot
-------------------
-Check for updates to (supported) third party libraries, and manage their lifecycle.
-
 fuzzing
 -------
 
diff -Nru thunderbird-102.9.0+build1/taskcluster/gecko_taskgraph/target_tasks.py thunderbird-102.10.0+build2/taskcluster/gecko_taskgraph/target_tasks.py
--- thunderbird-102.9.0+build1/taskcluster/gecko_taskgraph/target_tasks.py	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/gecko_taskgraph/target_tasks.py	2023-04-11 06:11:13.000000000 +0000
@@ -993,13 +993,6 @@
     return [l for l, t in full_task_graph.tasks.items() if filter(t.label)]
 
 
-# Run Updatebot's cron job 4 times daily.
-@_target_task("updatebot_cron")
-def target_tasks_updatebot_cron(full_task_graph, parameters, graph_config):
-    """Select tasks required to run Updatebot's cron job"""
-    return ["updatebot-cron"]
-
-
 @_target_task("customv8_update")
 def target_tasks_customv8_update(full_task_graph, parameters, graph_config):
     """Select tasks required for building latest d8/v8 version."""
diff -Nru thunderbird-102.9.0+build1/taskcluster/scripts/misc/fetch-content thunderbird-102.10.0+build2/taskcluster/scripts/misc/fetch-content
--- thunderbird-102.9.0+build1/taskcluster/scripts/misc/fetch-content	2023-03-11 11:24:26.000000000 +0000
+++ thunderbird-102.10.0+build2/taskcluster/scripts/misc/fetch-content	2023-04-11 06:11:13.000000000 +0000
@@ -182,8 +182,8 @@
 
     t0 = time.time()
     with urllib.request.urlopen(
-        url, cafile=certifi.where()
-    ) if certifi else urllib.request.urlopen(url) as fh:
+        url, timeout=60, cafile=certifi.where()
+    ) if certifi else urllib.request.urlopen(url, timeout=60) as fh:
         if not url.endswith(".gz") and fh.info().get("Content-Encoding") == "gzip":
             fh = gzip.GzipFile(fileobj=fh)
 
diff -Nru thunderbird-102.9.0+build1/testing/mozharness/external_tools/robustcheckout.py thunderbird-102.10.0+build2/testing/mozharness/external_tools/robustcheckout.py
--- thunderbird-102.9.0+build1/testing/mozharness/external_tools/robustcheckout.py	2023-03-11 11:24:27.000000000 +0000
+++ thunderbird-102.10.0+build2/testing/mozharness/external_tools/robustcheckout.py	2023-04-11 06:11:14.000000000 +0000
@@ -41,7 +41,7 @@
 # Causes worker to purge caches on process exit and for task to retry.
 EXIT_PURGE_CACHE = 72
 
-testedwith = b"4.5 4.6 4.7 4.8 4.9 5.0 5.1 5.2 5.3 5.4 5.5 5.6 5.7 5.8"
+testedwith = b"4.5 4.6 4.7 4.8 4.9 5.0 5.1 5.2 5.3 5.4 5.5 5.6 5.7 5.8 5.9"
 minimumhgversion = b"4.5"
 
 cmdtable = {}
@@ -61,12 +61,8 @@
 
 
 def peerlookup(remote, v):
-    # TRACKING hg46 4.6 added commandexecutor API.
-    if util.safehasattr(remote, "commandexecutor"):
-        with remote.commandexecutor() as e:
-            return e.callcommand(b"lookup", {b"key": v}).result()
-    else:
-        return remote.lookup(v)
+    with remote.commandexecutor() as e:
+        return e.callcommand(b"lookup", {b"key": v}).result()
 
 
 @command(
@@ -181,6 +177,8 @@
     # worker.backgroundclose only makes things faster if running anti-virus,
     # which our automation doesn't. Disable it.
     ui.setconfig(b"worker", b"backgroundclose", False)
+    # Don't wait forever if the connection hangs
+    ui.setconfig(b"http", b"timeout", 600)
 
     # By default the progress bar starts after 3s and updates every 0.1s. We
     # change this so it shows and updates every 1.0s.
@@ -511,6 +509,10 @@
                         pycompat.bytestr(str(e.reason)),
                     )
                 )
+        elif isinstance(e, socket.timeout):
+            ui.warn(b"socket timeout\n")
+            handlenetworkfailure()
+            return True
         else:
             ui.warn(
                 b"unhandled exception during network operation; type: %s; "
@@ -531,7 +533,12 @@
         rootnode = peerlookup(clonepeer, b"0")
     except error.RepoLookupError:
         raise error.Abort(b"unable to resolve root revision from clone " b"source")
-    except (error.Abort, ssl.SSLError, urllibcompat.urlerr.urlerror) as e:
+    except (
+        error.Abort,
+        ssl.SSLError,
+        urllibcompat.urlerr.urlerror,
+        socket.timeout,
+    ) as e:
         if handlepullerror(e):
             return callself()
         raise
@@ -570,6 +577,11 @@
 
     if storevfs.exists(b".hg/requires"):
         requires = set(storevfs.read(b".hg/requires").splitlines())
+        # "share-safe" (enabled by default as of hg 6.1) moved most
+        # requirements to a new file, so we need to look there as well to avoid
+        # deleting and re-cloning each time
+        if b"share-safe" in requires:
+            requires |= set(storevfs.read(b".hg/store/requires").splitlines())
         # FUTURE when we require generaldelta, this is where we can check
         # for that.
         required = {b"dotencode", b"fncache"}
@@ -619,7 +631,12 @@
                     shareopts=shareopts,
                     stream=True,
                 )
-        except (error.Abort, ssl.SSLError, urllibcompat.urlerr.urlerror) as e:
+        except (
+            error.Abort,
+            ssl.SSLError,
+            urllibcompat.urlerr.urlerror,
+            socket.timeout,
+        ) as e:
             if handlepullerror(e):
                 return callself()
             raise
@@ -687,7 +704,12 @@
                     pullop = exchange.pull(repo, remote, heads=pullrevs)
                     if not pullop.rheads:
                         raise error.Abort(b"unable to pull requested revision")
-        except (error.Abort, ssl.SSLError, urllibcompat.urlerr.urlerror) as e:
+        except (
+            error.Abort,
+            ssl.SSLError,
+            urllibcompat.urlerr.urlerror,
+            socket.timeout,
+        ) as e:
             if handlepullerror(e):
                 return callself()
             raise
@@ -723,14 +745,7 @@
         try:
             old_sparse_fn = getattr(repo.dirstate, "_sparsematchfn", None)
             if old_sparse_fn is not None:
-                # TRACKING hg50
-                # Arguments passed to `matchmod.always` were unused and have been removed
-                if util.versiontuple(n=2) >= (5, 0):
-                    repo.dirstate._sparsematchfn = lambda: matchmod.always()
-                else:
-                    repo.dirstate._sparsematchfn = lambda: matchmod.always(
-                        repo.root, ""
-                    )
+                repo.dirstate._sparsematchfn = lambda: matchmod.always()
 
             with timeit("purge", "purge"):
                 if purge(
@@ -767,13 +782,9 @@
                 b"%s" % (sparse_profile, checkoutrevision)
             )
 
-        # TRACKING hg48 - parseconfig takes `action` param
-        if util.versiontuple(n=2) >= (4, 8):
-            old_config = sparsemod.parseconfig(
-                repo.ui, repo.vfs.tryread(b"sparse"), b"sparse"
-            )
-        else:
-            old_config = sparsemod.parseconfig(repo.ui, repo.vfs.tryread(b"sparse"))
+        old_config = sparsemod.parseconfig(
+            repo.ui, repo.vfs.tryread(b"sparse"), b"sparse"
+        )
 
         old_includes, old_excludes, old_profiles = old_config
 
@@ -795,7 +806,9 @@
             # one to change the sparse profile and another to update to the new
             # revision. This is not desired. But there's not a good API in
             # Mercurial to do this as one operation.
-            with repo.wlock(), timeit("sparse_update_config", "sparse-update-config"):
+            with repo.wlock(), repo.dirstate.parentchange(), timeit(
+                "sparse_update_config", "sparse-update-config"
+            ):
                 # pylint --py3k: W1636
                 fcounts = list(
                     map(
diff -Nru thunderbird-102.9.0+build1/toolkit/components/downloads/DownloadPaths.jsm thunderbird-102.10.0+build2/toolkit/components/downloads/DownloadPaths.jsm
--- thunderbird-102.9.0+build1/toolkit/components/downloads/DownloadPaths.jsm	2023-03-11 11:24:41.000000000 +0000
+++ thunderbird-102.10.0+build2/toolkit/components/downloads/DownloadPaths.jsm	2023-04-11 06:11:28.000000000 +0000
@@ -14,17 +14,30 @@
   /**
    * Sanitizes an arbitrary string via mimeSvc.validateFileNameForSaving.
    *
+   * If the filename being validated is one that was returned from a
+   * file picker, pass false for compressWhitespaces and true for
+   * allowInvalidFilenames. Otherwise, the default values of the arguments
+   * should generally be used.
+   *
    * @param {string} leafName The full leaf name to sanitize
    * @param {boolean} [compressWhitespaces] Whether consecutive whitespaces
-   *        should be compressed.
+   *        should be compressed. The default value is true.
+   * @param {boolean} [allowInvalidFilenames] Allow invalid and dangerous
+   *        filenames and extensions as is.
    */
-  sanitize(leafName, { compressWhitespaces = true } = {}) {
+  sanitize(
+    leafName,
+    { compressWhitespaces = true, allowInvalidFilenames = false } = {}
+  ) {
     const mimeSvc = Cc["@mozilla.org/mime;1"].getService(Ci.nsIMIMEService);
 
     let flags = mimeSvc.VALIDATE_SANITIZE_ONLY | mimeSvc.VALIDATE_DONT_TRUNCATE;
     if (!compressWhitespaces) {
       flags |= mimeSvc.VALIDATE_DONT_COLLAPSE_WHITESPACE;
     }
+    if (allowInvalidFilenames) {
+      flags |= mimeSvc.VALIDATE_ALLOW_INVALID_FILENAMES;
+    }
     return mimeSvc.validateFileNameForSaving(leafName, "", flags);
   },
 
diff -Nru thunderbird-102.9.0+build1/toolkit/components/search/tests/xpcshell/searchconfigs/test_distributions.js thunderbird-102.10.0+build2/toolkit/components/search/tests/xpcshell/searchconfigs/test_distributions.js
--- thunderbird-102.9.0+build1/toolkit/components/search/tests/xpcshell/searchconfigs/test_distributions.js	2023-03-11 11:24:42.000000000 +0000
+++ thunderbird-102.10.0+build2/toolkit/components/search/tests/xpcshell/searchconfigs/test_distributions.js	2023-04-11 06:11:28.000000000 +0000
@@ -31,7 +31,7 @@
   }
 }
 
-for (let canonicalId of ["canonical", "canonical-001", "canonical-002"]) {
+for (let canonicalId of ["canonical", "canonical-001"]) {
   tests.push({
     locale: "en-US",
     region: "US",
diff -Nru thunderbird-102.9.0+build1/toolkit/components/telemetry/docs/data/environment.rst thunderbird-102.10.0+build2/toolkit/components/telemetry/docs/data/environment.rst
--- thunderbird-102.9.0+build1/toolkit/components/telemetry/docs/data/environment.rst	2023-03-11 11:24:42.000000000 +0000
+++ thunderbird-102.10.0+build2/toolkit/components/telemetry/docs/data/environment.rst	2023-04-11 06:11:28.000000000 +0000
@@ -86,6 +86,7 @@
           ua: <string>, // identifier derived from the user agent downloading the installer, e.g., chrome, Google Chrome 123
           dltoken: <string>, // Unique token created at Firefox download time. ex: c18f86a3-f228-4d98-91bb-f90135c0aa9c
           msstoresignedin: <boolean>, // optional, only present if the installation was done through the Microsoft Store, and was able to retrieve the "campaign ID" it was first installed with. this value is "true" if the user was signed into the Microsoft Store when they first installed, and false otherwise
+          dlsource: <string>, // identifier that indicate where installations of Firefox originate
         },
         sandbox: {
           effectiveContentProcessLevel: <integer>,
diff -Nru thunderbird-102.9.0+build1/toolkit/components/telemetry/tests/unit/TelemetryEnvironmentTesting.jsm thunderbird-102.10.0+build2/toolkit/components/telemetry/tests/unit/TelemetryEnvironmentTesting.jsm
--- thunderbird-102.9.0+build1/toolkit/components/telemetry/tests/unit/TelemetryEnvironmentTesting.jsm	2023-03-11 11:24:42.000000000 +0000
+++ thunderbird-102.10.0+build2/toolkit/components/telemetry/tests/unit/TelemetryEnvironmentTesting.jsm	2023-04-11 06:11:28.000000000 +0000
@@ -52,7 +52,7 @@
 const EXPECTED_HDD_FIELDS = ["profile", "binary", "system"];
 
 // Valid attribution code to write so that settings.attribution can be tested.
-const ATTRIBUTION_CODE = "source%3Dgoogle.com";
+const ATTRIBUTION_CODE = "source%3Dgoogle.com%26dlsource%3Dunittest";
 
 function truncateToDays(aMsec) {
   return Math.floor(aMsec / MILLISECONDS_PER_DAY);
@@ -338,6 +338,7 @@
     if ((gIsWindows || gIsMac) && AppConstants.MOZ_BUILD_APP == "browser") {
       Assert.equal(typeof data.settings.attribution, "object");
       Assert.equal(data.settings.attribution.source, "google.com");
+      Assert.equal(data.settings.attribution.dlsource, "unittest");
     }
 
     this.checkIntlSettings(data.settings);
diff -Nru thunderbird-102.9.0+build1/toolkit/components/url-classifier/LookupCache.cpp thunderbird-102.10.0+build2/toolkit/components/url-classifier/LookupCache.cpp
--- thunderbird-102.9.0+build1/toolkit/components/url-classifier/LookupCache.cpp	2023-03-11 11:24:43.000000000 +0000
+++ thunderbird-102.10.0+build2/toolkit/components/url-classifier/LookupCache.cpp	2023-04-11 06:11:28.000000000 +0000
@@ -171,7 +171,8 @@
     : mPrimed(false),
       mTableName(aTableName),
       mProvider(aProvider),
-      mRootStoreDirectory(aRootStoreDir) {
+      mRootStoreDirectory(aRootStoreDir),
+      mVLPrefixSet(nullptr) {
   UpdateRootDirHandle(mRootStoreDirectory);
 }
 
@@ -192,6 +193,8 @@
 }
 
 nsresult LookupCache::Init() {
+  MOZ_ASSERT(!mVLPrefixSet);
+
   mVLPrefixSet = new VariableLengthPrefixSet();
   nsresult rv = mVLPrefixSet->Init(mTableName);
   NS_ENSURE_SUCCESS(rv, rv);
diff -Nru thunderbird-102.9.0+build1/toolkit/content/contentAreaUtils.js thunderbird-102.10.0+build2/toolkit/content/contentAreaUtils.js
--- thunderbird-102.9.0+build1/toolkit/content/contentAreaUtils.js	2023-03-11 11:24:42.000000000 +0000
+++ thunderbird-102.10.0+build2/toolkit/content/contentAreaUtils.js	2023-04-11 06:11:28.000000000 +0000
@@ -1098,7 +1098,11 @@
 
 // This is only used after the user has entered a filename.
 function validateFileName(aFileName) {
-  let processed = DownloadPaths.sanitize(aFileName) || "_";
+  let processed =
+    DownloadPaths.sanitize(aFileName, {
+      compressWhitespaces: false,
+      allowInvalidFilenames: true,
+    }) || "_";
   if (AppConstants.platform == "android") {
     // If a large part of the filename has been sanitized, then we
     // will use a default filename instead
diff -Nru thunderbird-102.9.0+build1/toolkit/modules/GMPInstallManager.jsm thunderbird-102.10.0+build2/toolkit/modules/GMPInstallManager.jsm
--- thunderbird-102.9.0+build1/toolkit/modules/GMPInstallManager.jsm	2023-03-11 11:24:43.000000000 +0000
+++ thunderbird-102.10.0+build2/toolkit/modules/GMPInstallManager.jsm	2023-04-11 06:11:28.000000000 +0000
@@ -642,8 +642,11 @@
   get isInstalled() {
     return (
       this.version &&
+      !!this.hashValue &&
       GMPPrefs.getString(GMPPrefs.KEY_PLUGIN_VERSION, "", this.id) ===
-        this.version
+        this.version &&
+      GMPPrefs.getString(GMPPrefs.KEY_PLUGIN_HASHVALUE, "", this.id) ===
+        this.hashValue
     );
   },
   get isEME() {
@@ -768,6 +771,13 @@
             let abi = GMPUtils._expectedABI(gmpAddon);
             log.info("Setting ABI to '" + abi + "' for " + gmpAddon.id);
             GMPPrefs.setString(GMPPrefs.KEY_PLUGIN_ABI, abi, gmpAddon.id);
+            // We use the combination of the hash and version to ensure we are
+            // up to date.
+            GMPPrefs.setString(
+              GMPPrefs.KEY_PLUGIN_HASHVALUE,
+              gmpAddon.hashValue,
+              gmpAddon.id
+            );
             // Setting the version pref signals installation completion to consumers,
             // if you need to set other prefs etc. do it before this.
             GMPPrefs.setString(
diff -Nru thunderbird-102.9.0+build1/toolkit/modules/GMPUtils.jsm thunderbird-102.10.0+build2/toolkit/modules/GMPUtils.jsm
--- thunderbird-102.9.0+build1/toolkit/modules/GMPUtils.jsm	2023-03-11 11:24:42.000000000 +0000
+++ thunderbird-102.10.0+build2/toolkit/modules/GMPUtils.jsm	2023-04-11 06:11:29.000000000 +0000
@@ -110,12 +110,13 @@
 
   _expectedABI(aPlugin) {
     let defaultABI = UpdateUtils.ABI;
+    let expectedABIs = [defaultABI];
     if (aPlugin.id == WIDEVINE_ID && this._isWindowsOnARM64()) {
-      // On Windows on aarch64, we need the x86 plugin,
-      // as there's no native aarch64 plugins yet.
-      defaultABI = defaultABI.replace(/aarch64/g, "x86");
+      // On Windows on aarch64, we may use either the x86 or the ARM64 plugin
+      // as we are still shipping the former to release.
+      expectedABIs.push(defaultABI.replace(/aarch64/g, "x86"));
     }
-    return defaultABI;
+    return expectedABIs.join(",");
   },
 };
 
@@ -131,11 +132,13 @@
   KEY_PLUGIN_LAST_INSTALL_FAILED: "media.{0}.lastInstallFailed",
   KEY_PLUGIN_LAST_INSTALL_START: "media.{0}.lastInstallStart",
   KEY_PLUGIN_LAST_UPDATE: "media.{0}.lastUpdate",
+  KEY_PLUGIN_HASHVALUE: "media.{0}.hashValue",
   KEY_PLUGIN_VERSION: "media.{0}.version",
   KEY_PLUGIN_AUTOUPDATE: "media.{0}.autoupdate",
   KEY_PLUGIN_VISIBLE: "media.{0}.visible",
   KEY_PLUGIN_ABI: "media.{0}.abi",
   KEY_PLUGIN_FORCE_SUPPORTED: "media.{0}.forceSupported",
+  KEY_PLUGIN_ALLOW_X64_ON_ARM64: "media.{0}.allow-x64-plugin-on-arm64",
   KEY_URL: "media.gmp-manager.url",
   KEY_URL_OVERRIDE: "media.gmp-manager.url.override",
   KEY_CERT_CHECKATTRS: "media.gmp-manager.cert.checkAttributes",
diff -Nru thunderbird-102.9.0+build1/toolkit/modules/tests/xpcshell/test_GMPInstallManager.js thunderbird-102.10.0+build2/toolkit/modules/tests/xpcshell/test_GMPInstallManager.js
--- thunderbird-102.9.0+build1/toolkit/modules/tests/xpcshell/test_GMPInstallManager.js	2023-03-11 11:24:42.000000000 +0000
+++ thunderbird-102.10.0+build2/toolkit/modules/tests/xpcshell/test_GMPInstallManager.js	2023-04-11 06:11:29.000000000 +0000
@@ -79,6 +79,7 @@
   GMPPrefs.setInt(GMPPrefs.KEY_PLUGIN_VERSION, 4, addon2);
   GMPPrefs.setBool(GMPPrefs.KEY_PLUGIN_AUTOUPDATE, false, addon2);
   GMPPrefs.setBool(GMPPrefs.KEY_CERT_CHECKATTRS, true);
+  GMPPrefs.setString(GMPPrefs.KEY_PLUGIN_HASHVALUE, "5", addon1);
 
   Assert.equal(GMPPrefs.getString(GMPPrefs.KEY_URL), "http://not-really-used");
   Assert.equal(
@@ -98,6 +99,10 @@
   );
   Assert.ok(GMPPrefs.getBool(GMPPrefs.KEY_CERT_CHECKATTRS));
   GMPPrefs.setBool(GMPPrefs.KEY_PLUGIN_AUTOUPDATE, true, addon2);
+  Assert.equal(
+    GMPPrefs.getString(GMPPrefs.KEY_PLUGIN_HASHVALUE, "", addon1),
+    "5"
+  );
 });
 
 /**
@@ -1011,6 +1016,10 @@
       !!GMPPrefs.getInt(GMPPrefs.KEY_PLUGIN_LAST_UPDATE, "", gmpAddon.id)
     );
     Assert.equal(
+      GMPPrefs.getString(GMPPrefs.KEY_PLUGIN_HASHVALUE, "", gmpAddon.id),
+      expectedDigest
+    );
+    Assert.equal(
       GMPPrefs.getString(GMPPrefs.KEY_PLUGIN_VERSION, "", gmpAddon.id),
       "1.1"
     );
diff -Nru thunderbird-102.9.0+build1/toolkit/mozapps/downloads/HelperAppDlg.jsm thunderbird-102.10.0+build2/toolkit/mozapps/downloads/HelperAppDlg.jsm
--- thunderbird-102.9.0+build1/toolkit/mozapps/downloads/HelperAppDlg.jsm	2023-03-11 11:24:43.000000000 +0000
+++ thunderbird-102.10.0+build2/toolkit/mozapps/downloads/HelperAppDlg.jsm	2023-04-11 06:11:28.000000000 +0000
@@ -376,7 +376,8 @@
               // overwriting it does the right thing.
               if (
                 result.exists() &&
-                this.getFinalLeafName(result.leafName) == result.leafName
+                this.getFinalLeafName(result.leafName, "", true) ==
+                  result.leafName
               ) {
                 allowOverwrite = true;
               }
@@ -395,7 +396,8 @@
                 newDir,
                 result.leafName,
                 null,
-                allowOverwrite
+                allowOverwrite,
+                true
               );
             } catch (ex) {
               // When the chosen download directory is write-protected,
@@ -416,10 +418,12 @@
     })().catch(Cu.reportError);
   },
 
-  getFinalLeafName(aLeafName, aFileExt) {
+  getFinalLeafName(aLeafName, aFileExt, aAfterFilePicker) {
     return (
-      DownloadPaths.sanitize(aLeafName) ||
-      "unnamed" + (aFileExt ? "." + aFileExt : "")
+      DownloadPaths.sanitize(aLeafName, {
+        compressWhitespaces: !aAfterFilePicker,
+        allowInvalidFilenames: aAfterFilePicker,
+      }) || "unnamed" + (aFileExt ? "." + aFileExt : "")
     );
   },
 
@@ -438,12 +442,20 @@
    *          if aLeafName is non-empty
    * @param   aAllowExisting
    *          if set to true, avoid creating a unique file.
+   * @param   aAfterFilePicker
+   *          if set to true, this was a file entered by the user from a file picker.
    * @return  nsIFile
    *          the created file
    * @throw   an error such as permission doesn't allow creation of
    *          file, etc.
    */
-  validateLeafName(aLocalFolder, aLeafName, aFileExt, aAllowExisting = false) {
+  validateLeafName(
+    aLocalFolder,
+    aLeafName,
+    aFileExt,
+    aAllowExisting = false,
+    aAfterFilePicker = false
+  ) {
     if (!(aLocalFolder && isUsableDirectory(aLocalFolder))) {
       throw new Components.Exception(
         "Destination directory non-existing or permission error",
@@ -451,7 +463,7 @@
       );
     }
 
-    aLeafName = this.getFinalLeafName(aLeafName, aFileExt);
+    aLeafName = this.getFinalLeafName(aLeafName, aFileExt, aAfterFilePicker);
     aLocalFolder.append(aLeafName);
 
     if (!aAllowExisting) {
diff -Nru thunderbird-102.9.0+build1/toolkit/mozapps/extensions/internal/GMPProvider.jsm thunderbird-102.10.0+build2/toolkit/mozapps/extensions/internal/GMPProvider.jsm
--- thunderbird-102.9.0+build1/toolkit/mozapps/extensions/internal/GMPProvider.jsm	2023-03-11 11:24:43.000000000 +0000
+++ thunderbird-102.10.0+build2/toolkit/mozapps/extensions/internal/GMPProvider.jsm	2023-04-11 06:11:29.000000000 +0000
@@ -618,6 +618,7 @@
       gmpService.removeAndDeletePluginDirectory(this.gmpPath);
     }
     GMPPrefs.reset(GMPPrefs.KEY_PLUGIN_VERSION, this.id);
+    GMPPrefs.reset(GMPPrefs.KEY_PLUGIN_HASHVALUE, this.id);
     GMPPrefs.reset(GMPPrefs.KEY_PLUGIN_ABI, this.id);
     GMPPrefs.reset(GMPPrefs.KEY_PLUGIN_LAST_UPDATE, this.id);
     AddonManagerPrivate.callAddonListeners("onUninstalled", this);
@@ -757,7 +758,14 @@
     try {
       let greDir = Services.dirsvc.get(NS_GRE_DIR, Ci.nsIFile);
       let path = greDir.path;
-      if (GMPUtils._isWindowsOnARM64()) {
+      if (
+        GMPUtils._isWindowsOnARM64() &&
+        GMPPrefs.getBool(
+          GMPPrefs.KEY_PLUGIN_ALLOW_X64_ON_ARM64,
+          true,
+          CLEARKEY_PLUGIN_ID
+        )
+      ) {
         path = PathUtils.join(path, "i686");
       }
       let clearkeyPath = PathUtils.join(
diff -Nru thunderbird-102.9.0+build1/toolkit/mozapps/update/common/updatererrors.h thunderbird-102.10.0+build2/toolkit/mozapps/update/common/updatererrors.h
--- thunderbird-102.9.0+build1/toolkit/mozapps/update/common/updatererrors.h	2023-03-11 11:24:43.000000000 +0000
+++ thunderbird-102.10.0+build2/toolkit/mozapps/update/common/updatererrors.h	2023-04-11 06:11:28.000000000 +0000
@@ -23,11 +23,17 @@
 #define WRITE_ERROR 7
 // #define UNEXPECTED_ERROR 8 // Replaced with errors 38-42
 #define ELEVATION_CANCELED 9
+
+// Error codes 10-14 are related to memory allocation failures.
+// Note: If more memory allocation error codes are added, the implementation of
+// isMemoryAllocationErrorCode in UpdateService.jsm should be updated to account
+// for them.
 #define READ_STRINGS_MEM_ERROR 10
 #define ARCHIVE_READER_MEM_ERROR 11
 #define BSPATCH_MEM_ERROR 12
 #define UPDATER_MEM_ERROR 13
 #define UPDATER_QUOTED_PATH_MEM_ERROR 14
+
 #define BAD_ACTION_ERROR 15
 #define STRING_CONVERSION_ERROR 16
 
diff -Nru thunderbird-102.9.0+build1/toolkit/mozapps/update/tests/browser/browser.ini thunderbird-102.10.0+build2/toolkit/mozapps/update/tests/browser/browser.ini
--- thunderbird-102.9.0+build1/toolkit/mozapps/update/tests/browser/browser.ini	2023-03-11 11:24:43.000000000 +0000
+++ thunderbird-102.10.0+build2/toolkit/mozapps/update/tests/browser/browser.ini	2023-04-11 06:11:28.000000000 +0000
@@ -101,3 +101,6 @@
 # Telemetry Update Ping Tests
 [browser_telemetry_updatePing_downloaded_ready.js]
 [browser_telemetry_updatePing_staged_ready.js]
+
+# Memory Fallback Tests
+[browser_memory_allocation_error_fallback.js]
diff -Nru thunderbird-102.9.0+build1/toolkit/mozapps/update/tests/browser/browser_memory_allocation_error_fallback.js thunderbird-102.10.0+build2/toolkit/mozapps/update/tests/browser/browser_memory_allocation_error_fallback.js
--- thunderbird-102.9.0+build1/toolkit/mozapps/update/tests/browser/browser_memory_allocation_error_fallback.js	1970-01-01 00:00:00.000000000 +0000
+++ thunderbird-102.10.0+build2/toolkit/mozapps/update/tests/browser/browser_memory_allocation_error_fallback.js	2023-04-11 06:11:29.000000000 +0000
@@ -0,0 +1,85 @@
+/* Any copyright is dedicated to the Public Domain.
+ * http://creativecommons.org/publicdomain/zero/1.0/ */
+
+"use strict";
+
+/**
+ * When the updater fails with a memory allocation error, we should fall back to
+ * updating without staging.
+ */
+
+const READ_STRINGS_MEM_ERROR = 10;
+const ARCHIVE_READER_MEM_ERROR = 11;
+const BSPATCH_MEM_ERROR = 12;
+const UPDATER_MEM_ERROR = 13;
+const UPDATER_QUOTED_PATH_MEM_ERROR = 14;
+
+const EXPECTED_STATUS =
+  AppConstants.platform == "win" ? STATE_PENDING_SVC : STATE_PENDING;
+
+let env = Cc["@mozilla.org/process/environment;1"].getService(
+  Ci.nsIEnvironment
+);
+
+add_setup(async function setup() {
+  await SpecialPowers.pushPrefEnv({
+    set: [
+      [PREF_APP_UPDATE_STAGING_ENABLED, true],
+      [PREF_APP_UPDATE_SERVICE_ENABLED, true],
+    ],
+  });
+
+  registerCleanupFunction(() => {
+    env.set("MOZ_FORCE_ERROR_CODE", "");
+  });
+});
+
+async function memAllocErrorFallback(errorCode) {
+  env.set("MOZ_FORCE_ERROR_CODE", errorCode.toString());
+
+  // Since the partial should be successful specify an invalid size for the
+  // complete update.
+  let params = {
+    queryString: "&invalidCompleteSize=1",
+    backgroundUpdate: true,
+    continueFile: CONTINUE_STAGING,
+    waitForUpdateState: EXPECTED_STATUS,
+  };
+  await runAboutPrefsUpdateTest(params, [
+    {
+      panelId: "apply",
+      checkActiveUpdate: { state: EXPECTED_STATUS },
+      continueFile: null,
+    },
+  ]);
+}
+
+function cleanup() {
+  reloadUpdateManagerData(true);
+  removeUpdateFiles(true);
+}
+
+add_task(async function memAllocErrorFallback_READ_STRINGS_MEM_ERROR() {
+  await memAllocErrorFallback(READ_STRINGS_MEM_ERROR);
+  cleanup();
+});
+
+add_task(async function memAllocErrorFallback_ARCHIVE_READER_MEM_ERROR() {
+  await memAllocErrorFallback(ARCHIVE_READER_MEM_ERROR);
+  cleanup();
+});
+
+add_task(async function memAllocErrorFallback_BSPATCH_MEM_ERROR() {
+  await memAllocErrorFallback(BSPATCH_MEM_ERROR);
+  cleanup();
+});
+
+add_task(async function memAllocErrorFallback_UPDATER_MEM_ERROR() {
+  await memAllocErrorFallback(UPDATER_MEM_ERROR);
+  cleanup();
+});
+
+add_task(async function memAllocErrorFallback_UPDATER_QUOTED_PATH_MEM_ERROR() {
+  await memAllocErrorFallback(UPDATER_QUOTED_PATH_MEM_ERROR);
+  cleanup();
+});
diff -Nru thunderbird-102.9.0+build1/toolkit/mozapps/update/updater/archivereader.cpp thunderbird-102.10.0+build2/toolkit/mozapps/update/updater/archivereader.cpp
--- thunderbird-102.9.0+build1/toolkit/mozapps/update/updater/archivereader.cpp	2023-03-11 11:24:42.000000000 +0000
+++ thunderbird-102.10.0+build2/toolkit/mozapps/update/updater/archivereader.cpp	2023-04-11 06:11:28.000000000 +0000
@@ -203,12 +203,15 @@
     }
   }
 
+  MarReadResult result =
 #ifdef XP_WIN
-  mArchive = mar_wopen(path);
+    mar_wopen(path, &mArchive);
 #else
-  mArchive = mar_open(path);
+    mar_open(path, &mArchive);
 #endif
-  if (!mArchive) {
+  if (result == MAR_MEM_ERROR) {
+    return ARCHIVE_READER_MEM_ERROR;
+  } else if (result != MAR_READ_SUCCESS) {
     return READ_ERROR;
   }
 
diff -Nru thunderbird-102.9.0+build1/toolkit/mozapps/update/updater/updater.cpp thunderbird-102.10.0+build2/toolkit/mozapps/update/updater/updater.cpp
--- thunderbird-102.9.0+build1/toolkit/mozapps/update/updater/updater.cpp	2023-03-11 11:24:43.000000000 +0000
+++ thunderbird-102.10.0+build2/toolkit/mozapps/update/updater/updater.cpp	2023-04-11 06:11:28.000000000 +0000
@@ -2724,6 +2724,12 @@
     putenv(const_cast<char*>("MOZ_TEST_PROCESS_UPDATES="));
 #endif
   } else {
+#ifdef TEST_UPDATER
+    const char* forceErrorCodeString = getenv("MOZ_FORCE_ERROR_CODE");
+    if (forceErrorCodeString && *forceErrorCodeString) {
+      rv = atoi(forceErrorCodeString);
+    }
+#endif
     if (rv) {
       LOG(("failed: %d", rv));
     } else {
diff -Nru thunderbird-102.9.0+build1/toolkit/mozapps/update/UpdateService.jsm thunderbird-102.10.0+build2/toolkit/mozapps/update/UpdateService.jsm
--- thunderbird-102.9.0+build1/toolkit/mozapps/update/UpdateService.jsm	2023-03-11 11:24:42.000000000 +0000
+++ thunderbird-102.10.0+build2/toolkit/mozapps/update/UpdateService.jsm	2023-04-11 06:11:29.000000000 +0000
@@ -1863,6 +1863,22 @@
 }
 
 /**
+ * This function determines whether the error represented by the passed error
+ * code is the result of the updater failing to allocate memory. This is
+ * relevant when staging because, since Firefox is also running, we may not be
+ * able to allocate much memory. Thus, if we fail to stage an update, we may
+ * succeed at updating without staging.
+ *
+ * @param   An integer error code from the update.status file. Should be one of
+ *          the codes enumerated in updatererrors.h.
+ * @returns true if the code represents a memory allocation error.
+ *          Otherwise, false.
+ */
+function isMemoryAllocationErrorCode(errorCode) {
+  return errorCode >= 10 && errorCode <= 14;
+}
+
+/**
  * Update Patch
  * @param   patch
  *          A <patch> element to initialize this object with
@@ -4401,12 +4417,26 @@
     cleanUpReadyUpdateDir(false);
 
     if (update.state == STATE_FAILED && parts[1]) {
+      let isMemError = isMemoryAllocationErrorCode(parts[1]);
       if (
         parts[1] == DELETE_ERROR_STAGING_LOCK_FILE ||
-        parts[1] == UNEXPECTED_STAGING_ERROR
+        parts[1] == UNEXPECTED_STAGING_ERROR ||
+        isMemError
       ) {
         update.state = getBestPendingState();
         writeStatusFile(getReadyUpdateDir(), update.state);
+        if (isMemError) {
+          LOG(
+            `UpdateManager:refreshUpdateStatus - Updater failed to ` +
+              `allocate enough memory to successfully stage. Setting ` +
+              `status to "${update.state}"`
+          );
+        } else {
+          LOG(
+            `UpdateManager:refreshUpdateStatus - Unexpected staging error. ` +
+              `Setting status to "${update.state}"`
+          );
+        }
       } else if (isServiceSpecificErrorCode(parts[1])) {
         // Sometimes when staging, we might encounter an error that is
         // specific to the Maintenance Service. If this happens, we should try
diff -Nru thunderbird-102.9.0+build1/uriloader/exthandler/nsExternalHelperAppService.cpp thunderbird-102.10.0+build2/uriloader/exthandler/nsExternalHelperAppService.cpp
--- thunderbird-102.9.0+build1/uriloader/exthandler/nsExternalHelperAppService.cpp	2023-03-11 11:24:43.000000000 +0000
+++ thunderbird-102.10.0+build2/uriloader/exthandler/nsExternalHelperAppService.cpp	2023-04-11 06:11:28.000000000 +0000
@@ -3303,6 +3303,13 @@
                       aMimeType.EqualsLiteral(BINARY_OCTET_STREAM) ||
                       aMimeType.EqualsLiteral("application/x-msdownload");
 
+  // We don't want to save hidden files starting with a dot, so remove any
+  // leading periods. This is done first, so that the remainder will be
+  // treated as the filename, and not an extension.
+  // Also, Windows ignores terminating dots. So we have to as well, so
+  // that our security checks do "the right thing"
+  fileName.Trim(".");
+
   // We get the mime service here even though we're the default implementation
   // of it, so it's possible to override only the mime service and not need to
   // reimplement the whole external helper app service itself.
@@ -3316,8 +3323,9 @@
         nsAutoCString leafName;
         url->GetFileName(leafName);
         if (!leafName.IsEmpty()) {
-          if (NS_SUCCEEDED(UnescapeFragment(leafName, url, fileName))) {
-            CopyUTF8toUTF16(leafName, aFileName);  // use escaped name
+          if (NS_FAILED(UnescapeFragment(leafName, url, fileName))) {
+            CopyUTF8toUTF16(leafName, fileName);  // use escaped name instead
+            fileName.Trim(".");
           }
         }
 
@@ -3378,10 +3386,6 @@
     }
   }
 
-  // Windows ignores terminating dots. So we have to as well, so
-  // that our security checks do "the right thing"
-  fileName.Trim(".", false);
-
   // If an empty filename is allowed, then return early. It will be saved
   // using the filename of the temporary file that was created for the download.
   if (aFlags & VALIDATE_ALLOW_EMPTY && fileName.IsEmpty()) {
@@ -3456,24 +3460,20 @@
     }
   }
 
-#ifdef XP_WIN
-  nsLocalFile::CheckForReservedFileName(fileName);
-#endif
+  CheckDefaultFileName(fileName, aFlags);
 
-  // If the extension is one these types, replace it with .download, as these
-  // types of files can have signifance on Windows. This happens for any file,
-  // not just those with the shortcut mime type.
-  if (StringEndsWith(fileName, u".lnk"_ns, nsCaseInsensitiveStringComparator) ||
-      StringEndsWith(fileName, u".local"_ns,
-                     nsCaseInsensitiveStringComparator) ||
-      StringEndsWith(fileName, u".url"_ns, nsCaseInsensitiveStringComparator) ||
-      StringEndsWith(fileName, u".scf"_ns, nsCaseInsensitiveStringComparator)) {
-    fileName.AppendLiteral(".download");
-  }
+  // Make the filename safe for the filesystem.
+  SanitizeFileName(fileName, aFlags);
 
+  aFileName = fileName;
+  return mimeInfo.forget();
+}
+
+void nsExternalHelperAppService::CheckDefaultFileName(nsAString& aFileName,
+                                                      uint32_t aFlags) {
   // If no filename is present, use a default filename.
   if (!(aFlags & VALIDATE_NO_DEFAULT_FILENAME) &&
-      (fileName.Length() == 0 || fileName.RFind(".") == 0)) {
+      (aFileName.Length() == 0 || aFileName.RFind(u".") == 0)) {
     nsCOMPtr<nsIStringBundleService> stringService =
         mozilla::components::StringBundle::Service();
     if (stringService) {
@@ -3484,21 +3484,15 @@
         nsAutoString defaultFileName;
         bundle->GetStringFromName("DefaultSaveFileName", defaultFileName);
         // Append any existing extension to the default filename.
-        fileName = defaultFileName + fileName;
+        aFileName = defaultFileName + aFileName;
       }
     }
 
-    // Use 'index' as a last resort.
-    if (!fileName.Length()) {
-      fileName.AssignLiteral("index");
+    // Use 'Untitled' as a last resort.
+    if (!aFileName.Length()) {
+      aFileName.AssignLiteral("Untitled");
     }
   }
-
-  // Make the filename safe for the filesystem.
-  SanitizeFileName(fileName, aFlags);
-
-  aFileName = fileName;
-  return mimeInfo.forget();
 }
 
 void nsExternalHelperAppService::SanitizeFileName(nsAString& aFileName,
@@ -3689,6 +3683,32 @@
     outFileName.Truncate(lastNonTrimmable);
   }
 
+#ifdef XP_WIN
+  if (nsLocalFile::CheckForReservedFileName(outFileName)) {
+    outFileName.Truncate();
+    CheckDefaultFileName(outFileName, aFlags);
+  }
+
+#endif
+
+  if (!(aFlags & VALIDATE_ALLOW_INVALID_FILENAMES)) {
+    // If the extension is one these types, replace it with .download, as these
+    // types of files can have significance on Windows or Linux.
+    // This happens for any file, not just those with the shortcut mime type.
+    if (StringEndsWith(outFileName, u".lnk"_ns,
+                       nsCaseInsensitiveStringComparator) ||
+        StringEndsWith(outFileName, u".local"_ns,
+                       nsCaseInsensitiveStringComparator) ||
+        StringEndsWith(outFileName, u".url"_ns,
+                       nsCaseInsensitiveStringComparator) ||
+        StringEndsWith(outFileName, u".scf"_ns,
+                       nsCaseInsensitiveStringComparator) ||
+        StringEndsWith(outFileName, u".desktop"_ns,
+                       nsCaseInsensitiveStringComparator)) {
+      outFileName.AppendLiteral(".download");
+    }
+  }
+
   aFileName = outFileName;
 }
 
diff -Nru thunderbird-102.9.0+build1/uriloader/exthandler/nsExternalHelperAppService.h thunderbird-102.10.0+build2/uriloader/exthandler/nsExternalHelperAppService.h
--- thunderbird-102.9.0+build1/uriloader/exthandler/nsExternalHelperAppService.h	2023-03-11 11:24:43.000000000 +0000
+++ thunderbird-102.10.0+build2/uriloader/exthandler/nsExternalHelperAppService.h	2023-04-11 06:11:28.000000000 +0000
@@ -207,6 +207,10 @@
       nsAString& aFileName, const nsACString& aMimeType, nsIURI* aURI,
       nsIURI* aOriginalURI, uint32_t aFlags, bool aAllowURLExtension);
 
+  // If aFileName is blank or just an extension, set aFileName to the
+  // default filename.
+  void CheckDefaultFileName(nsAString& aFileName, uint32_t aFlags);
+
   // Ensure that the filename is safe for the file system. This will remove or
   // replace any invalid characters and trim extra whitespace as needed. If the
   // filename is too long, it will be truncated but the existing period and
diff -Nru thunderbird-102.9.0+build1/uriloader/exthandler/tests/mochitest/save_filenames.html thunderbird-102.10.0+build2/uriloader/exthandler/tests/mochitest/save_filenames.html
--- thunderbird-102.9.0+build1/uriloader/exthandler/tests/mochitest/save_filenames.html	2023-03-11 11:24:42.000000000 +0000
+++ thunderbird-102.10.0+build2/uriloader/exthandler/tests/mochitest/save_filenames.html	2023-04-11 06:11:28.000000000 +0000
@@ -60,10 +60,11 @@
 <img id="i14" src="http://localhost:8000/save_filename.sjs?type=jpeg&filename=anotherjpg.jpg.exe" data-filename="anotherjpg.jpg.jpg" data-filename-platformlinux="anotherjpg.jpg.jpeg">
 
 <!-- jpeg with no filename portion -->
-<img id="i15" src="http://localhost:8000/save_filename.sjs?type=jpeg&filename=.jpg" data-filename="index.jpg">
+<img id="i15" src="http://localhost:8000/save_filename.sjs?type=jpeg&filename=.jpg"
+     data-filename="jpg.jpg" data-filename-platformlinux="jpg.jpeg">
 
 <!-- png with no filename portion and invalid extension -->
-<img id="i16" src="http://localhost:8000/save_filename.sjs?type=png&filename=.exe" data-filename="index.png">
+<img id="i16" src="http://localhost:8000/save_filename.sjs?type=png&filename=.exe" data-filename="exe.png">
 
 <!-- png with escaped characters -->
 <img id="i17" src="http://localhost:8000/save_filename.sjs?type=png&filename=first%20file.png" data-filename="first file.png">
@@ -295,6 +296,17 @@
 <!-- embedded child html -->
 <object id="i77" data="http://localhost:8000/save_filename.sjs?type=html&filename=child.par"
         data-filename="child.par" data-unknown="true"></object>
+
+<!-- file starting with a dot with and unknown extension -->
+<img id="i78" src="http://localhost:8000/save_filename.sjs?type=png&filename=.extension" data-filename="extension.png">
+
+<!-- html file starting with a dot -->
+<object id="i79" data="http://localhost:8000/save_filename.sjs?type=html&filename=.alternate"
+        data-filename="alternate.html" data-filename-platformwin="alternate.htm" data-unknown="true"></object>
+
+<!-- unrecognized file type starting with a dot -->
+<object id="i80" data="http://localhost:8000/save_filename.sjs?type=otherimage&filename=.alternate" data-filename="alternate"
+        data-unknown="true"></object>
 </span>
 
 <!-- This set is used to test the filename specified by the download attribute is validated correctly. -->
diff -Nru thunderbird-102.9.0+build1/uriloader/exthandler/tests/unit/test_filename_sanitize.js thunderbird-102.10.0+build2/uriloader/exthandler/tests/unit/test_filename_sanitize.js
--- thunderbird-102.9.0+build1/uriloader/exthandler/tests/unit/test_filename_sanitize.js	2023-03-11 11:24:43.000000000 +0000
+++ thunderbird-102.10.0+build2/uriloader/exthandler/tests/unit/test_filename_sanitize.js	2023-04-11 06:11:29.000000000 +0000
@@ -134,7 +134,7 @@
   );
 
   // no filename, so index is used by default.
-  Assert.equal(checkFilename(".png", 0), "index.png");
+  Assert.equal(checkFilename(".png", 0), "png.png");
 
   // sanitization only, so index is not added, but initial period is stripped.
   Assert.equal(
diff -Nru thunderbird-102.9.0+build1/widget/windows/nsDataObj.cpp thunderbird-102.10.0+build2/widget/windows/nsDataObj.cpp
--- thunderbird-102.9.0+build1/widget/windows/nsDataObj.cpp	2023-03-11 11:24:43.000000000 +0000
+++ thunderbird-102.10.0+build2/widget/windows/nsDataObj.cpp	2023-04-11 06:11:29.000000000 +0000
@@ -1082,66 +1082,64 @@
 }  // GetFileContents
 
 // Ensure that the supplied name doesn't have invalid characters.
-static void ValidateFilename(nsString& aFilename) {
+static void ValidateFilename(nsString& aFilename, bool isShortcut) {
   nsCOMPtr<nsIMIMEService> mimeService = do_GetService("@mozilla.org/mime;1");
   if (NS_WARN_IF(!mimeService)) {
     aFilename.Truncate();
     return;
   }
 
+  uint32_t flags = nsIMIMEService::VALIDATE_SANITIZE_ONLY;
+  if (isShortcut) {
+    flags |= nsIMIMEService::VALIDATE_ALLOW_INVALID_FILENAMES;
+  }
+
   nsAutoString outFilename;
-  mimeService->ValidateFileNameForSaving(aFilename, EmptyCString(),
-                                         nsIMIMEService::VALIDATE_SANITIZE_ONLY,
+  mimeService->ValidateFileNameForSaving(aFilename, EmptyCString(), flags,
                                          outFilename);
   aFilename = outFilename;
 }
 
 //
-// Given a unicode string, convert it down to a valid local charset filename
-// with the supplied extension. This ensures that we do not cut MBCS characters
-// in the middle.
+// Given a unicode string, convert it to a valid local charset filename
+// and append the .url extension to be used for a shortcut file.
+// This ensures that we do not cut MBCS characters in the middle.
 //
 // It would seem that this is more functionality suited to being in nsIFile.
 //
-static bool CreateFilenameFromTextA(nsString& aText, const char* aExtension,
-                                    char* aFilename, uint32_t aFilenameLen) {
-  ValidateFilename(aText);
-  if (aText.IsEmpty()) return false;
-
-  // repeatably call WideCharToMultiByte as long as the title doesn't fit in the
-  // buffer available to us. Continually reduce the length of the source title
-  // until the MBCS version will fit in the buffer with room for the supplied
-  // extension. Doing it this way ensures that even in MBCS environments there
-  // will be a valid MBCS filename of the correct length.
-  int maxUsableFilenameLen =
-      aFilenameLen - strlen(aExtension) - 1;  // space for ext + null byte
-  int currLen, textLen = (int)std::min<uint32_t>(aText.Length(), aFilenameLen);
-  char defaultChar = '_';
-  do {
-    currLen = WideCharToMultiByte(CP_ACP, WC_COMPOSITECHECK | WC_DEFAULTCHAR,
-                                  aText.get(), textLen--, aFilename,
-                                  maxUsableFilenameLen, &defaultChar, nullptr);
-  } while (currLen == 0 && textLen > 0 &&
-           GetLastError() == ERROR_INSUFFICIENT_BUFFER);
-  if (currLen > 0 && textLen > 0) {
-    strcpy(&aFilename[currLen], aExtension);
-    return true;
-  } else {
-    // empty names aren't permitted
+static bool CreateURLFilenameFromTextA(nsAutoString& aText, char* aFilename) {
+  if (aText.IsEmpty()) {
     return false;
   }
+  aText.AppendLiteral(".URL");
+  ValidateFilename(aText, true);
+  if (aText.IsEmpty()) {
+    return false;
+  }
+
+  // ValidateFilename should already be checking the filename length, but do
+  // an extra check to verify for the local code page that the converted text
+  // doesn't go over MAX_PATH and just return false if it does.
+  char defaultChar = '_';
+  int currLen = WideCharToMultiByte(CP_ACP, WC_COMPOSITECHECK | WC_DEFAULTCHAR,
+                                    aText.get(), -1, aFilename, MAX_PATH,
+                                    &defaultChar, nullptr);
+  return currLen != 0;
 }
 
-static bool CreateFilenameFromTextW(nsString& aText, const wchar_t* aExtension,
-                                    wchar_t* aFilename, uint32_t aFilenameLen) {
-  ValidateFilename(aText);
-  if (aText.IsEmpty()) return false;
-
-  const int extensionLen = wcslen(aExtension);
-  if (aText.Length() + extensionLen + 1 > aFilenameLen)
-    aText.Truncate(aFilenameLen - extensionLen - 1);
+// Wide character version of CreateURLFilenameFromTextA
+static bool CreateURLFilenameFromTextW(nsAutoString& aText,
+                                       wchar_t* aFilename) {
+  if (aText.IsEmpty()) {
+    return false;
+  }
+  aText.AppendLiteral(".URL");
+  ValidateFilename(aText, true);
+  if (aText.IsEmpty() || aText.Length() >= MAX_PATH) {
+    return false;
+  }
+
   wcscpy(&aFilename[0], aText.get());
-  wcscpy(&aFilename[aText.Length()], aExtension);
   return true;
 }
 
@@ -1188,12 +1186,11 @@
 
   // get a valid filename in the following order: 1) from the page title,
   // 2) localized string for an untitled page, 3) just use "Untitled.URL"
-  if (!CreateFilenameFromTextA(title, ".URL", fileGroupDescA->fgd[0].cFileName,
-                               MAX_PATH)) {
+  if (!CreateURLFilenameFromTextA(title, fileGroupDescA->fgd[0].cFileName)) {
     nsAutoString untitled;
     if (!GetLocalizedString("noPageTitle", untitled) ||
-        !CreateFilenameFromTextA(untitled, ".URL",
-                                 fileGroupDescA->fgd[0].cFileName, MAX_PATH)) {
+        !CreateURLFilenameFromTextA(untitled,
+                                    fileGroupDescA->fgd[0].cFileName)) {
       strcpy(fileGroupDescA->fgd[0].cFileName, "Untitled.URL");
     }
   }
@@ -1230,12 +1227,11 @@
 
   // get a valid filename in the following order: 1) from the page title,
   // 2) localized string for an untitled page, 3) just use "Untitled.URL"
-  if (!CreateFilenameFromTextW(title, L".URL", fileGroupDescW->fgd[0].cFileName,
-                               MAX_PATH)) {
+  if (!CreateURLFilenameFromTextW(title, fileGroupDescW->fgd[0].cFileName)) {
     nsAutoString untitled;
     if (!GetLocalizedString("noPageTitle", untitled) ||
-        !CreateFilenameFromTextW(untitled, L".URL",
-                                 fileGroupDescW->fgd[0].cFileName, MAX_PATH)) {
+        !CreateURLFilenameFromTextW(untitled,
+                                    fileGroupDescW->fgd[0].cFileName)) {
       wcscpy(fileGroupDescW->fgd[0].cFileName, L"Untitled.URL");
     }
   }
@@ -2153,7 +2149,7 @@
   }
 
   // make the name safe for the filesystem
-  ValidateFilename(srcFileName);
+  ValidateFilename(srcFileName, false);
   if (srcFileName.IsEmpty()) return E_FAIL;
 
   sourceURI.swap(*aSourceURI);
diff -Nru thunderbird-102.9.0+build1/widget/windows/nsFilePicker.cpp thunderbird-102.10.0+build2/widget/windows/nsFilePicker.cpp
--- thunderbird-102.9.0+build1/widget/windows/nsFilePicker.cpp	2023-03-11 11:24:43.000000000 +0000
+++ thunderbird-102.10.0+build2/widget/windows/nsFilePicker.cpp	2023-04-11 06:11:29.000000000 +0000
@@ -529,7 +529,9 @@
 
 NS_IMETHODIMP
 nsFilePicker::AppendFilter(const nsAString& aTitle, const nsAString& aFilter) {
-  mComFilterList.Append(aTitle, aFilter);
+  nsAutoString sanitizedFilter(aFilter);
+  sanitizedFilter.ReplaceChar('%', '_');
+  mComFilterList.Append(aTitle, sanitizedFilter);
   return NS_OK;
 }
 
diff -Nru thunderbird-102.9.0+build1/xpcom/io/FileUtilsWin.cpp thunderbird-102.10.0+build2/xpcom/io/FileUtilsWin.cpp
--- thunderbird-102.9.0+build1/xpcom/io/FileUtilsWin.cpp	2023-03-11 11:24:43.000000000 +0000
+++ thunderbird-102.10.0+build2/xpcom/io/FileUtilsWin.cpp	2023-04-11 06:11:29.000000000 +0000
@@ -9,6 +9,7 @@
 #include <windows.h>
 #include <psapi.h>
 
+#include "base/process_util.h"
 #include "mozilla/ProfilerLabels.h"
 #include "mozilla/Unused.h"
 #include "nsWindowsHelpers.h"
@@ -63,4 +64,76 @@
   return NtPathToDosPath(mappedFilename, aFilename);
 }
 
+template <class T>
+struct RVAMap {
+  RVAMap(HANDLE map, DWORD offset) {
+    SYSTEM_INFO info;
+    GetSystemInfo(&info);
+
+    DWORD alignedOffset =
+        (offset / info.dwAllocationGranularity) * info.dwAllocationGranularity;
+
+    MOZ_ASSERT(offset - alignedOffset < info.dwAllocationGranularity, "Wtf");
+
+    mRealView = ::MapViewOfFile(map, FILE_MAP_READ, 0, alignedOffset,
+                                sizeof(T) + (offset - alignedOffset));
+
+    mMappedView =
+        mRealView
+            ? reinterpret_cast<T*>((char*)mRealView + (offset - alignedOffset))
+            : nullptr;
+  }
+  ~RVAMap() {
+    if (mRealView) {
+      ::UnmapViewOfFile(mRealView);
+    }
+  }
+  operator const T*() const { return mMappedView; }
+  const T* operator->() const { return mMappedView; }
+
+ private:
+  const T* mMappedView;
+  void* mRealView;
+};
+
+uint32_t GetExecutableArchitecture(const wchar_t* aPath) {
+  nsAutoHandle file(::CreateFileW(aPath, GENERIC_READ, FILE_SHARE_READ, nullptr,
+                                  OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL,
+                                  nullptr));
+  if (!file) {
+    return base::PROCESS_ARCH_INVALID;
+  }
+
+  nsAutoHandle map(
+      ::CreateFileMappingW(file, nullptr, PAGE_READONLY, 0, 0, nullptr));
+  if (!map) {
+    return base::PROCESS_ARCH_INVALID;
+  }
+
+  RVAMap<IMAGE_DOS_HEADER> peHeader(map, 0);
+  if (!peHeader) {
+    return base::PROCESS_ARCH_INVALID;
+  }
+
+  RVAMap<IMAGE_NT_HEADERS> ntHeader(map, peHeader->e_lfanew);
+  if (!ntHeader) {
+    return base::PROCESS_ARCH_INVALID;
+  }
+
+  switch (ntHeader->FileHeader.Machine) {
+    case IMAGE_FILE_MACHINE_I386:
+      return base::PROCESS_ARCH_I386;
+    case IMAGE_FILE_MACHINE_AMD64:
+      return base::PROCESS_ARCH_X86_64;
+    case IMAGE_FILE_MACHINE_ARM64:
+      return base::PROCESS_ARCH_ARM_64;
+    case IMAGE_FILE_MACHINE_ARM:
+    case IMAGE_FILE_MACHINE_ARMNT:
+    case IMAGE_FILE_MACHINE_THUMB:
+      return base::PROCESS_ARCH_ARM;
+    default:
+      return base::PROCESS_ARCH_INVALID;
+  }
+}
+
 }  // namespace mozilla
diff -Nru thunderbird-102.9.0+build1/xpcom/io/FileUtilsWin.h thunderbird-102.10.0+build2/xpcom/io/FileUtilsWin.h
--- thunderbird-102.9.0+build1/xpcom/io/FileUtilsWin.h	2023-03-11 11:24:43.000000000 +0000
+++ thunderbird-102.10.0+build2/xpcom/io/FileUtilsWin.h	2023-04-11 06:11:28.000000000 +0000
@@ -140,6 +140,8 @@
 bool HandleToFilename(HANDLE aHandle, const LARGE_INTEGER& aOffset,
                       nsAString& aFilename);
 
+uint32_t GetExecutableArchitecture(const wchar_t* aPath);
+
 }  // namespace mozilla
 
 #endif  // mozilla_FileUtilsWin_h
diff -Nru thunderbird-102.9.0+build1/xpcom/io/nsLocalFileWin.cpp thunderbird-102.10.0+build2/xpcom/io/nsLocalFileWin.cpp
--- thunderbird-102.9.0+build1/xpcom/io/nsLocalFileWin.cpp	2023-03-11 11:24:43.000000000 +0000
+++ thunderbird-102.10.0+build2/xpcom/io/nsLocalFileWin.cpp	2023-04-11 06:11:29.000000000 +0000
@@ -192,7 +192,7 @@
 }
 
 // static
-void nsLocalFile::CheckForReservedFileName(nsString& aFileName) {
+bool nsLocalFile::CheckForReservedFileName(const nsString& aFileName) {
   static const char* forbiddenNames[] = {
       "COM1", "COM2", "COM3", "COM4", "COM5", "COM6", "COM7",  "COM8",
       "COM9", "LPT1", "LPT2", "LPT3", "LPT4", "LPT5", "LPT6",  "LPT7",
@@ -205,10 +205,12 @@
       // invalid name is either the entire string, or a prefix with a period
       if (aFileName.Length() == nameLen ||
           aFileName.CharAt(nameLen) == char16_t('.')) {
-        aFileName.Truncate();
+        return true;
       }
     }
   }
+
+  return false;
 }
 
 class nsDriveEnumerator : public nsSimpleEnumerator,
@@ -1859,13 +1861,27 @@
     ::GetNamedSecurityInfoW((LPWSTR)destPath.get(), SE_FILE_OBJECT,
                             DACL_SECURITY_INFORMATION, nullptr, nullptr,
                             &pOldDACL, nullptr, &pSD);
-    if (pOldDACL)
-      ::SetNamedSecurityInfoW(
-          (LPWSTR)destPath.get(), SE_FILE_OBJECT,
-          DACL_SECURITY_INFORMATION | UNPROTECTED_DACL_SECURITY_INFORMATION,
-          nullptr, nullptr, pOldDACL, nullptr);
-    if (pSD) {
-      LocalFree((HLOCAL)pSD);
+    UniquePtr<VOID, LocalFreeDeleter> autoFreeSecDesc(pSD);
+    if (pOldDACL) {
+      // Test the current DACL, if we find one that is inherited then we can
+      // skip the reset. This avoids a request for SeTcbPrivilege, which can
+      // cause a lot of audit events if enabled (Bug 1816694).
+      bool inherited = false;
+      for (DWORD i = 0; i < pOldDACL->AceCount; ++i) {
+        VOID* pAce = nullptr;
+        if (::GetAce(pOldDACL, i, &pAce) &&
+            static_cast<PACE_HEADER>(pAce)->AceFlags & INHERITED_ACE) {
+          inherited = true;
+          break;
+        }
+      }
+
+      if (!inherited) {
+        ::SetNamedSecurityInfoW(
+            (LPWSTR)destPath.get(), SE_FILE_OBJECT,
+            DACL_SECURITY_INFORMATION | UNPROTECTED_DACL_SECURITY_INFORMATION,
+            nullptr, nullptr, pOldDACL, nullptr);
+      }
     }
   }
 
diff -Nru thunderbird-102.9.0+build1/xpcom/io/nsLocalFileWin.h thunderbird-102.10.0+build2/xpcom/io/nsLocalFileWin.h
--- thunderbird-102.9.0+build1/xpcom/io/nsLocalFileWin.h	2023-03-11 11:24:43.000000000 +0000
+++ thunderbird-102.10.0+build2/xpcom/io/nsLocalFileWin.h	2023-04-11 06:11:28.000000000 +0000
@@ -50,8 +50,8 @@
   static nsresult RevealFile(const nsString& aResolvedPath);
 
   // Checks if the filename is one of the windows reserved filenames
-  // (com1, com2, etc...) and truncates the string if so.
-  static void CheckForReservedFileName(nsString& aFileName);
+  // (com1, com2, etc...) and returns true if so.
+  static bool CheckForReservedFileName(const nsString& aFileName);
 
  private:
   // CopyMove and CopySingleFile constants for |options| parameter: